Lucene search
K

100 matches found

hackapp
hackapp
added 2016/04/01 10:7 a.m.10 views

Perfect Kick - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Perfect Kick published at the 'play' market has multiple vulnerabilities...

0.1AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:28 a.m.6 views

Samsung KICK Football - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Samsung KICK Football published at the 'play' market has multiple vulnerabilities...

0.4AI score
Exploits0References1Affected Software1
NVD
NVD
added 2014/09/09 1:55 a.m.11 views

CVE-2014-5625

The Perfect Kick aka com.gamegou.PerfectKick.google application 1.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00271EPSS
Exploits0References3
Prion
Prion
added 2014/09/09 1:55 a.m.10 views

Information disclosure

The Perfect Kick aka com.gamegou.PerfectKick.google application 1.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/09 1:0 a.m.23 views

CVE-2014-5625

The Perfect Kick aka com.gamegou.PerfectKick.google application 1.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00271EPSS
Exploits0References3
CVE
CVE
added 2014/09/09 1:0 a.m.44 views

CVE-2014-5625

The CVE-2014-5625 issue affects The Perfect Kick app (com.gamegou.PerfectKick.google) on Android 1.3.0, where SSL/TLS servers are not verified due to missing X.509 certificate validation. This enables MITM attackers to spoof servers and exfiltrate sensitive data via crafted certificates. The prov...

5.4CVSS6AI score0.00271EPSS
Exploits0References3Affected Software1
FireEye
FireEye
added 2013/12/03 5:36 p.m.16 views

Preparing for Managed Security Services

Wade Woolwine Presents at MIRcon® 2013 As a complement to my MIRcon® 2013 presentation titled "Getting the Best Bang for the Buck with Managed Security Providers" and to address some questions I received from the audience, I have prepared a quick summary of my presentation. Many businesses consid...

0.5AI score
Exploits0
UbuntuCve
UbuntuCve
added 2013/03/28 11:55 p.m.17 views

CVE-2013-1747

channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service assertion failure and crash via a KICK command for a user who is not on the associated channel...

5CVSS5.9AI score0.02712EPSS
Exploits0References5
CVE
CVE
added 2013/03/28 11:0 p.m.53 views

CVE-2013-1747

CVE-2013-1747 affects ngIRCd 20 and 20.1; a vulnerability in channel.c allows a remote attacker to trigger an assertion failure and crash by sending a KICK for a user not on the channel (denial of service). Exploitation status is not detailed in the provided documents. Remediation: upgrade to ngI...

5CVSS6.6AI score0.02712EPSS
Exploits0References7Affected Software1
Ubuntu
Ubuntu
added 2013/03/12 7:42 p.m.53 views

USN-1759-1: Puppet vulnerabilities

It was discovered that Puppet agents incorrectly handled certain kick connections in a non-default configuration. An attacker on an authenticated client could use this issue to possibly execute arbitrary code. CVE-2013-1653 It was discovered that Puppet incorrectly handled certain catalog request...

9CVSS7.8AI score0.05375EPSS
Exploits0
myhack58
myhack58
added 2008/05/11 12:0 a.m.29 views

Various invasion of the batch-a vulnerability warning-the black bar safety net

First:let others memory OVERforce him to restart @echo off start cmd %0 On this 3 lines. Second:let the other party to restart the specified number of timesvictim-specific @echo off if not exist c:\1.txt echo. c:\1.txt & goto err1 if not exist c:\2.txt echo. c:\2.txt & goto err1 if not exist...

Exploits0
UbuntuCve
UbuntuCve
added 2007/08/18 9:17 p.m.30 views

CVE-2007-4410

ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...

6CVSS5.7AI score0.01087EPSS
Exploits1References1
NVD
NVD
added 2007/08/18 9:17 p.m.20 views

CVE-2007-4410

ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...

6CVSS6.2AI score0.01087EPSS
Exploits1References5
OSV
OSV
added 2007/08/18 9:17 p.m.4 views

DEBIAN-CVE-2007-4410

ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...

6CVSS6.7AI score0.01087EPSS
Exploits1References1
OSV
OSV
added 2007/08/18 9:17 p.m.9 views

CVE-2007-4410

ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...

6.1AI score
Exploits0References5
CVE
CVE
added 2007/08/18 9:0 p.m.44 views

CVE-2007-4410

Affected software: ircu (IRC daemon) versions 2.10.12.05 and earlier. Issue: a synchronization flaw in handling kick actions in certain cross scenarios. Root cause: kick actions are not properly synchronized, enabling remote authenticated operators to block or override subsequent kick or de-op ac...

6CVSS6.2AI score0.01087EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVE
added 2007/08/18 9:0 p.m.44 views

CVE-2007-4410

ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...

6CVSS6.1AI score0.01087EPSS
Exploits1
Cvelist
Cvelist
added 2007/08/18 9:0 p.m.28 views

CVE-2007-4410

ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...

6.2AI score0.01087EPSS
Exploits1References5
Exploit DB
Exploit DB
added 2006/08/13 12:0 a.m.40 views

Opera 9 - IRC Client Remote Denial of Service

/ Opera 9 IRC client DOS exploit by Preddy and NNP http://www.smashthestack.org http://silenthack.co.uk http://www.team-rootshell.com 12 August 2006 / include include include include include include include include include include include define MYPORT 6667 define BACKLOG 10 // : KICK\r\n char di...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/07/10 12:0 a.m.37 views

Unreal3.2-rus.b ircd DoS against users

It's possible to kick any user by selecting nickname different in 1 cyrillic character...

3AI score
Exploits0
Rows per page
Query Builder