14 matches found
EUVD-2008-7162
Malware in sbrugna...
EUVD-2022-52417
Malicious code in bioql PyPI...
CVE-2013-1187
The Connection Manager in Cisco Jabber Extensible Communications Platform aka Jabber XCP does not properly validate login data, which allows remote attackers to cause a denial of service service crash by sending a series of malformed login packets, aka Bug ID CSCts76762...
Siemens SiPass Integrated 缓冲区错误漏洞
Siemens SiPass Integrated is an access control system from Siemens, Germany. The Siemens SiPass Integrated stack overflow vulnerability, which is caused due to an affected server application not properly checking the size of packets received to configure client logins, can be exploited by an...
Cross site request forgery (csrf)
When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in through ONVIF, he can log in to the device by replaying the user's login packet...
CVE-2021-26088
An improper authentication vulnerability in FSSO Collector version 5.0.295 and below may allow an unauthenticated user to bypass a FSSO firewall policy and access the protected network via sending specifically crafted UDP login notification packets...
Fortinet FSSO Collector Agent 授权问题漏洞
The Fortinet FSSO Collector Agent is a small software program from Fortinet, Inc. that notifies the N4L Managed Router when a user authenticates to the network. An authorization issue vulnerability exists in FSSO Collector that stems from the system's efforts to properly restrict access from...
Sybase EAServer 6.x < 6.3.1 ESD#3 Multiple Code Execution Vulnerabilities
The version of Sybase EAServer installed on the remote host is 6.x prior to 6.3.1 ESD3. It is, therefore, potentially affected by multiple code execution vulnerabilities in the handling of login packets. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
Design/Logic Flaw
The Connection Manager in Cisco Jabber Extensible Communications Platform aka Jabber XCP does not properly validate login data, which allows remote attackers to cause a denial of service service crash by sending a series of malformed login packets, aka Bug ID CSCts76762...
Cisco Jabber Extensible Communications Platform Connection Manager Vulnerability
A vulnerability in the Connection Manager component of Cisco Jabber Extensible Communications Platform Jabber XCP could allow an unauthenticated, remote attacker to crash the login connection manager service. The vulnerability is due to insufficient checking of received login data. An attacker...
Sybase Open Server Null Byte Stack Memory Corruption
A remote code execution vulnerability has been reported in Sybase Open Server. The vulnerability is due to an error in the processing of malformed login packets by the server. A remote attacker may exploit this vulnerability by sending a specially crafted packet to an affected Sybase server...
FreeBSD : MySQL -- Information Disclosure and Buffer Overflow Vulnerabilities (4913886c-e875-11da-b9f4-00123ffe8333)
Secunia reports : MySQL have some vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information and compromise a vulnerable system. 1 An error within the code that generates an error response to an invalid COMTABLEDUMP packet can be exploited by an...
MySQL -- Information Disclosure and Buffer Overflow Vulnerabilities
Secunia reports: MySQL have some vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information and compromise a vulnerable system. 1 An error within the code that generates an error response to an invalid COMTABLEDUMP packet can be exploited by an...
Oracle MySQL Remote Overflow and Information Disclosure Vulnerabilities
Binary data 3527.prm...