6 matches found
EUVD-2014-7378
Malware in sbrugna...
CVE-2014-7507
The Hector Leal aka ad.hector.leal.com application 13/08/14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Hector Leal aka ad.hector.leal.com application 13/08/14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7507
CVE-2014-7507 affects the Hector Leal Android app (ad.hector.leal.com, compiled 13/08/14). The vulnerability is that the app does not verify X.509 certificates from SSL servers, allowing MITM attackers to spoof servers and access sensitive information via a crafted certificate. Public sources (NV...
CVE-2014-7507
The Hector Leal aka ad.hector.leal.com application 13/08/14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Count.cgi(wwwcount)远程缓冲区溢出漏洞
BugCVE: CVE-1999-0021 BUGTRAQ: 128 Count.cgi wwwcount是一个非常流行的Web站点跟踪统计CGI程序。一般它作为Web页面点击数统计。1997年10月,这个程序被发现了两个远程漏洞。第一个漏洞比较轻微,它能允许远程用户浏览到受限制的.GIF文件,可能泄漏.GIF文件里潜在的敏感数据。 第二个漏洞比较严重,count.cgi程序在处理QUERYSTRING环境变量的时候存在缓冲区溢出漏洞。远程攻击者可以发送一个超长的请求给程序就能进行溢出攻击,以Web用户的权限在系统执行任意命令。 2.3 Muhammad A. Muquit...