100 matches found
Perfect Kick - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Perfect Kick published at the 'play' market has multiple vulnerabilities...
Samsung KICK Football - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities
HackApp vulnerability scanner discovered that application Samsung KICK Football published at the 'play' market has multiple vulnerabilities...
CVE-2014-5625
The Perfect Kick aka com.gamegou.PerfectKick.google application 1.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Perfect Kick aka com.gamegou.PerfectKick.google application 1.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5625
The Perfect Kick aka com.gamegou.PerfectKick.google application 1.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5625
The CVE-2014-5625 issue affects The Perfect Kick app (com.gamegou.PerfectKick.google) on Android 1.3.0, where SSL/TLS servers are not verified due to missing X.509 certificate validation. This enables MITM attackers to spoof servers and exfiltrate sensitive data via crafted certificates. The prov...
Preparing for Managed Security Services
Wade Woolwine Presents at MIRcon® 2013 As a complement to my MIRcon® 2013 presentation titled "Getting the Best Bang for the Buck with Managed Security Providers" and to address some questions I received from the audience, I have prepared a quick summary of my presentation. Many businesses consid...
CVE-2013-1747
channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service assertion failure and crash via a KICK command for a user who is not on the associated channel...
CVE-2013-1747
CVE-2013-1747 affects ngIRCd 20 and 20.1; a vulnerability in channel.c allows a remote attacker to trigger an assertion failure and crash by sending a KICK for a user not on the channel (denial of service). Exploitation status is not detailed in the provided documents. Remediation: upgrade to ngI...
USN-1759-1: Puppet vulnerabilities
It was discovered that Puppet agents incorrectly handled certain kick connections in a non-default configuration. An attacker on an authenticated client could use this issue to possibly execute arbitrary code. CVE-2013-1653 It was discovered that Puppet incorrectly handled certain catalog request...
Various invasion of the batch-a vulnerability warning-the black bar safety net
First:let others memory OVERforce him to restart @echo off start cmd %0 On this 3 lines. Second:let the other party to restart the specified number of timesvictim-specific @echo off if not exist c:\1.txt echo. c:\1.txt & goto err1 if not exist c:\2.txt echo. c:\2.txt & goto err1 if not exist...
CVE-2007-4410
ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...
CVE-2007-4410
ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...
DEBIAN-CVE-2007-4410
ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...
CVE-2007-4410
ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...
CVE-2007-4410
Affected software: ircu (IRC daemon) versions 2.10.12.05 and earlier. Issue: a synchronization flaw in handling kick actions in certain cross scenarios. Root cause: kick actions are not properly synchronized, enabling remote authenticated operators to block or override subsequent kick or de-op ac...
CVE-2007-4410
ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...
CVE-2007-4410
ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...
Opera 9 - IRC Client Remote Denial of Service
/ Opera 9 IRC client DOS exploit by Preddy and NNP http://www.smashthestack.org http://silenthack.co.uk http://www.team-rootshell.com 12 August 2006 / include include include include include include include include include include include define MYPORT 6667 define BACKLOG 10 // : KICK\r\n char di...
Unreal3.2-rus.b ircd DoS against users
It's possible to kick any user by selecting nickname different in 1 cyrillic character...