Objectivity/DB Lock Server Denial of Service Vulnerability

This host is running Objectivity/DB Lock Server and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: secpodobjectivitydblocksrvdosvuln.nasl 7024 2017-08-30 11:51:43Z teissa $ Objectivity/DB Lock Server Denial of Service Vulnerability Authors: Veerendra GG Copyright:...

Objectivity/DB Lock Server Denial of Service Vulnerability

Objectivity/DB Lock Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-0489

The server components in Objectivity/DB 10.0 do not require authentication for administrative commands, which allows remote attackers to modify data, obtain sensitive information, or cause a denial of service by sending requests over TCP to 1 the Lock Server or 2 the Advanced Multithreaded Server...

Design/Logic Flaw

The server components in Objectivity/DB 10.0 do not require authentication for administrative commands, which allows remote attackers to modify data, obtain sensitive information, or cause a denial of service by sending requests over TCP to 1 the Lock Server or 2 the Advanced Multithreaded Server...

Objectivity/DB Lack Of Authentication

!/usr/bin/python obj.py Objectivity/DB Lack of Authentication Remote Exploit Jeremy Brown 0xjbrown41-gmail-com Jan 2011 "Objectivity, Inc. is a leader in distributed, scalable database technology. Our patented data management engine and persistent object store is the enabling technology powering...

CVE-2001-0104

MDaemon Pro 3.5.1 and earlier have a local privilege bypass: a user can bypass the "lock server" security setting by pressing Cancel at the password prompt and then pressing Enter. The available documents confirm the affected product and UI-based trigger, but do not provide concrete mitigation st...

CVE-2001-0104

MDaemon Pro 3.5.1 and earlier allows local users to bypass the "lock server" security setting by pressing the Cancel button at the password prompt, then pressing the enter key...

Bypass MDaemon 3.5.1 "Lock Server" Protection

Ok, This is my second post in the years and I have been reading all your postings so far. You all are doing a great job indeed. I would like to point out a security problem in MDaemon mail server even in ver 3.5.1 the latest. My setup: Windows NT 4.0 server SP 6.0a MDaemon Pro ver 3.5.1 The lates...