CVE-2005-2243

Memory leak in inetinfo.exe in Cisco CallManager CCM 3.2 and earlier, 3.3 before 3.35, 4.0 before 4.02aSR2b, and 4.1 4.1 before 4.13SR1, when Multi Level Admin MLA is enabled, allows remote attackers to cause a denial of service memory consumption via a large number of Admin Service Tool AST logi...

CVE-2005-0505

Unknown vulnerability in Information Resource Manager IRM before 1.5.2.1 allows remote attackers to have "potentially serious" impact, related to LDAP logins...

CVE-2005-0505

CVE-2005-0505 concerns an unknown vulnerability in Information Resource Manager (IRM) prior to version 1.5.2.1 that could allow remote attackers to cause potentially serious impact, related to LDAP logins. The available sources (NVD/NVD mirror) list a high impact (base score 7.5) with network att...

CVE-2005-0505

Unknown vulnerability in Information Resource Manager IRM before 1.5.2.1 allows remote attackers to have "potentially serious" impact, related to LDAP logins...

Phishing attack possible with a delayed JavaScript prompt – Opera Security Advisories

Phishing attack possible with a delayed JavaScript prompt – Opera Security Advisories OPCOM Team | January 5, 2005 Severity: Moderate/low Problem description A malicious page can be crafted to send the userto his banking site, and shortly afterwardsdisplay a dialog enticing the user to type inhis...

CVE-2004-2470

Unspecified vulnerability in MadBMS before 1.1.5 has unknown impact and attack vectors, related to logins...

POP2 Cleartext Logins Permitted

The remote host is running a POP2 daemon that allows cleartext logins over unencrypted connections. An attacker can uncover login names and passwords by sniffing traffic to the POP2 daemon. This script was written by George A. Theall, . See the Nessus Scripts License for details. Changes by...

POP3 Cleartext Logins Permitted

The remote host is running a POP3 daemon that allows cleartext logins over unencrypted connections. An attacker can uncover user names and passwords by sniffing traffic to the POP3 daemon if a less secure authentication mechanism eg, USER command, AUTH PLAIN, AUTH LOGIN is used. Note: This plugin...

Directory traversal vulnerabilities found in NITE ftp-server version 1.83

Directory traversal vulnerabilities found in NITE ftp-server version 1.83 Discovered by Dennis Rand www.Infowarfare.dk ------------------------------------------------------------------------ SUMMARY The NiteServer is a simple FTP-Server program with some special features. It is free and easy to...

Microsoft Windows - Users Information : User Has Never Logged In

Using the supplied credentials, Nessus was able to list users who have never logged into their accounts. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10899; scriptversion"1.20"; scriptcvsdate"Date: 2018/08/13 14:32:39"; scriptnameenglish:"Microsoft Windows - Users...

CVE-2001-1507

OpenSSH before 3.0.1 with Kerberos V enabled does not properly authenticate users, which could allow remote attackers to login unchallenged...

SSH2 3.0 - Short Password Login

SSH2 3.0 - Short Password Login source: https://www.securityfocus.com/bid/3078/info An input validation error exists in version 3.0.0 of the SSH daemon sshd running on Unix platforms. It may be possible for remote users to log in to accounts for which there are two or less characters in the...

PT-2001-1613 · Lightwave · Lightwave Consoleserver 3200

Name of the Vulnerable Software and Affected Versions: Lightwave ConsoleServer 3200 Description: The issue allows remote attackers to conduct brute force password guessing because the system does not disconnect users after unsuccessful login attempts. Recommendations: For Lightwave ConsoleServer...

RFP2101.txt

-----/ RFP2101 /-------------------------------/ rfp.labs / wiretrip/---- RFPlutonium to fuel your PHP-Nuke SQL hacking user logins in PHP-Nuke web portal ------------------------------------/ rain forest puppy / [email protected] Table of contents: -/ 1 / Standard advisory information -/ 2 / High...

Remotely exploitable buffer overflow in NAI's Distributed Sniffer Agent

Bugtraq. This 'advisory' details a number of problems with NAI's sniffer product. They have fixed the problems in current versions on the sly so I have foregone notifying the vendor. They saw fit to post an advisory on Microsoft's Netmon today so 'all is fair in love and war' at least MS had the...

Microsoft Windows SMB Log In Possible

The remote host is running a Microsoft Windows operating system or Samba, a CIFS/SMB server for Unix. It was possible to log into it using one of the following accounts : - Guest account - Supplied credentials - Randomly generated credentials TRUSTED...

Re: Denial of Service in Xitami webserver all versions...

Xitami also has an overflow in one of the default example CGI programs that it comes with. http://server.com/cgi-bin/TESTCGI.EXE bla bla bla overflow argv fun. Signed, Marc eEye Digital Security http://www.eEye.com "Its a bullshit, three ring, circus sideshow. The only way to fix it is to flush i...

rlogin Service Detection

The rlogin service is running on the remote host. This service is vulnerable since data is passed between the rlogin client and server in cleartext. A man-in-the-middle attacker can exploit this to sniff logins and passwords. Also, it may allow poorly authenticated logins without passwords. If th...

rsh Service Detection

The rsh service is running on the remote host. This service is vulnerable since data is passed between the rsh client and server in cleartext. A man-in-the-middle attacker can exploit this to sniff logins and passwords. Also, it may allow poorly authenticated logins without passwords. If the host...