3765 matches found
CVE-1999-1533
The CVE-1999-1533 issue affects the Eicon Technology Diva LAN ISDN modem. A remote attacker can cause a denial-of-service (hang/crash) by sending a long password to the login.htm HTTP page, likely due to a buffer overflow in the login handling. Exploitation is remote via the login page parameter,...
CVE-1999-1533
Eicon Technology Diva LAN ISDN modem allows a remote attacker to cause a denial of service hang via a long password argument to the login.htm file in its HTTP service...
CVE-2001-0447
Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request containing "%2e" dot dot characters...
Internet Software Solutions Air Messenger LAN Server 3.4.2 - Full Path Disclosure
Internet Software Solutions Air Messenger LAN Server 3.4.2 - Full Path Disclosure source: https://www.securityfocus.com/bid/2881/info Air Messenger LAN Server for Microsoft Windows allows users to exchange phone, pager and email messages through a Web gateway. The path to sensitive files used by...
CVE-2001-0448
The CVE-2001-0448 entry concerns the Web Configuration Server in 602Pro LAN SUITE. It is exploitable by remote attackers via an HTTP GET request to the aux directory (and possibly other directories with legacy DOS device names), causing a denial of service. The cited CVSS data indicates a network...
CVE-2001-0448
Web configuration server in 602Pro LAN SUITE allows remote attackers to cause a denial of service via an HTTP GET HTTP request to the aux directory, and possibly other directories with legacy DOS device names...
CVE-2001-0447
CVE-2001-0447 affects the Web configuration server component of 602Pro LAN SUITE. A crafted long HTTP request containing %2e (dot dot) characters can trigger a denial of service and may allow arbitrary command execution. This is documented across NVD and CVE records; no explicit exploit code or i...
ALCATEL Speed Touch PRO port redirect exploit
Taking advantage from the ALCATEL Speed Touch Pro backdoor and configuration problems, it is possible to obtain a "full priv" access to the router and launch several attack against the internal LAN thanks to the NAT/PAT feature often made available. If the router is "telnetable" it means that "ip...
602Pro Lan Suite Denial Of Service
This problem was found with Version 2000A build 2000.1.0.35 latest version. The problem is effective locally and remotely on NT-4 and Windows 98.I haven't tested others. I dont have anything fancy to say about it really. Just somthing that was overlooked by the developers as was the last problem...
602Pro Lan Suite 2000a - Long HTTP Request Denial of Service
source: https://www.securityfocus.com/bid/2543/info A denial of service vulnerability exists in versions of 602Pro Lan Suite. A remote attacker may connect to port 80 of the vulnerable host. Via this connection, the attacker submits a long request composed of at least 1033 characters. This excess...
CVE-2000-1115
The CVE-2000-1115 flaw affects the 602Pro LAN SUITE remote web administration component (webprox.dll) and is caused by a buffer overflow that can be triggered by a long GET request. Impact per available data includes denial of service and potential arbitrary command execution, with partial impact...
602Pro Lan Suite Web Admin Overflow
Strumpf Noir Society Advisories ! Public release ! -- -= 602Pro Lan Suite Web Administration Overflow =- Release date: Wednesday, November 22, 2000 Introduction: Lan Suite is an cost-effective all-in-one application providing connection sharing, email and fax services for networks. It offers remo...
Microsoft Windows LAN Manager SNMP LanMan Shares Disclosure
It is possible to obtain the list of LanMan shares on the remote host by sending SNMP requests with the OID 1.3.6.1.4.1.77.1.2.27.1.1. An attacker may use this information to gain more knowledge about the target host. TRUSTED...
Microsoft Windows LAN Manager SNMP LanMan Users Disclosure
It is possible to obtain the list of LanMan users on the remote host by sending SNMP requests with the OID 1.3.6.1.4.1.77.1.2.25.1.1 An attacker may use this information to gain more knowledge about the target host. TRUSTED...
Any LAN user can crash Sygate
This is just a nuisance to some, as I do not know of many corporate networks that rely on a product such as Sygate. In fact I hope no corporate network relies on Sybergen software considering the way they treat security issues. They were contacted about this hole a while ago. They pretty much did...
rsh Unauthenticated Access (via finger Information)
Using common usernames as well as the usernames reported by 'finger', Nessus was able to log in through rsh. Either the accounts are not protected by passwords or the /.rhosts files are not configured properly. This vulnerability is confirmed to exist in Cisco Prime LAN Management Solution, but...
win98-con-lan.txt
All versions of Win 95 & 98 in a LAN can be crashed using a modified version of the 'win98-con'-Bug. The target must have at lea st one shared directory read-only access is enough. You just have to execute a 'special' link in a HTML-File on your own machine. This will crash down the victim's...
CVE-1999-1533
Eicon Technology Diva LAN ISDN modem allows a remote attacker to cause a denial of service hang via a long password argument to the login.htm file in its HTTP service...
CVE-1999-0430
CVE-1999-0430 affects Cisco Catalyst LAN switches with Catalyst 5000 supervisor software. A remote attacker can cause a denial of service by forcing the supervisor module to reload via a remote TCP interaction. Impacts are described as availability disruption (partial). The issue is documented ac...
CVE-1999-0430
Cisco Catalyst LAN switches running Catalyst 5000 supervisor software allows remote attackers to perform a denial of service by forcing the supervisor module to reload...