Lucene search
+L

3100 matches found

CVE
CVE
added 2005/05/19 4:0 a.m.46 views

CVE-2004-2078

Red-M Red-Alert 2.7.5 with software 3.1 build 24 is affected. A remote attacker can trigger a denial of service (reboot and loss of logged events) by sending a long request to TCP port 80, potentially causing a buffer overflow. No explicit exploitation details or mitigations are provided in the s...

5CVSS7.3AI score0.04925EPSS
Exploits1References9Affected Software1
CVE
CVE
added 2005/05/19 4:0 a.m.47 views

CVE-2004-2080

CVE-2004-2080 affects Red-M Red-Alert 2.7.5 with software 3.1 build 24. The issue is that multiple spaces in an SSID are collapsed to a single space, which prevents Red-Alert from correctly identifying the SSID. The connected documents confirm the affected product/version and the underlying cause...

5CVSS6.9AI score0.01736EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2005/05/19 4:0 a.m.20 views

CVE-2004-2079

Red-M Red-Alert 2.7.5 with software 3.1 build 24 binds authentication to IP addresses, which allows remote attackers to bypass authentication by connecting from the same IP address as an active authenticated user...

6.8AI score0.02099EPSS
Exploits1References8
Cvelist
Cvelist
added 2005/05/19 4:0 a.m.18 views

CVE-2004-2078

Red-M Red-Alert 2.7.5 with software 3.1 build 24 allows remote attackers to cause a denial of service reboot and loss of logged events via a long request to TCP port 80, possibly triggering a buffer overflow...

7AI score0.04925EPSS
Exploits1References9
Cvelist
Cvelist
added 2005/05/14 4:0 a.m.23 views

CVE-2005-1561

Multiple cross-site scripting XSS vulnerabilities in post.asp in MaxWebPortal 1.3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 mod, 2 M, or 3 type parameter...

5.8AI score0.03963EPSS
Exploits1References6
OSV
OSV
added 2005/05/02 4:0 a.m.1 views

DEBIAN-CVE-2005-1039

Race condition in Core Utilities coreutils 5.2.1, when 1 mkdir, 2 mknod, or 3 mkfifo is running with the -m switch, allows local users to modify permissions of other files...

3.7CVSS6.6AI score0.00278EPSS
Exploits0References1
NVD
NVD
added 2004/12/31 5:0 a.m.19 views

CVE-2004-2347

blog.cgi in Leif M. Wright Web Blog 1.1 and 1.1.5 allows remote attackers to execute arbitrary commands via shell metacharacters such as '|' in the file parameter of ViewFile requests...

7.5CVSS7.6AI score0.09874EPSS
Exploits1References6
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.21 views

CVE-2002-0395

The TFTP server for Red-M 1050 Bluetooth Access Point can not be disabled and makes it easier for remote attackers to crack the administration password via brute force methods...

6.8AI score0.02402EPSS
Exploits1References2
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.19 views

CVE-2002-0396

The web management server for Red-M 1050 Bluetooth Access Point does not use session-based credentials to authenticate users, which allows attackers to connect to the server from the same IP address as a user who has already established a session...

6.5AI score0.01469EPSS
Exploits1References3
CVE
CVE
added 2004/09/01 4:0 a.m.53 views

CVE-2002-0395

CVE-2002-0395 affects the Red-M 1050 Bluetooth Access Point: its TFTP server supply chain cannot be disabled, enabling an attacker to crack the administration password via UDP-based attacks. The vulnerability comes from the TFTP server being always active, which, combined with weak admin-password...

10CVSS6.8AI score0.02402EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2004/09/01 4:0 a.m.52 views

CVE-2002-0396

The CVE-2002-0396 issue affects Red-M 1050 AP web management server. It does not require site-wide credentials for every request; session state is not tied to a logged-in user, enabling an attacker from the same IP as a valid session to access the management interface. The impact is described as ...

7.5CVSS6.6AI score0.01469EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2004/09/01 4:0 a.m.54 views

CVE-2002-0397

The Red-M 1050 Bluetooth Access Point publicly broadcasts device identifiers (name, IP, etc.) via UDP to the broadcast address on port 8887, enabling any on-network host to observe potentially sensitive AP information. Root cause appears to be information exposure through unauthenticated UDP broa...

5CVSS6AI score0.01123EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2004/09/01 4:0 a.m.51 views

CVE-2002-0398

CVE-2002-0398 affects Red-M 1050AP (Bluetooth Access Point) PPP server. The vulnerability allows bonded users to cause a denial of service and, per description, possibly execute arbitrary code via a long user name. This is tied to the PPP authentication path and the device’s management interface....

10CVSS7.6AI score0.03163EPSS
Exploits1References3Affected Software1
Exploit DB
Exploit DB
added 2004/07/13 12:0 a.m.34 views

Mozilla Browser 0.9/1.x Cache File - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/10709/info Mozilla Browser is reported prone to multiple vulnerabilities that could eventually allow for code execution on the local computer. These vulnerabilities do not represent a significant threat on their own, however, code execution in the context...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2004/02/10 12:0 a.m.38 views

Multiple RED-M RedAlert bugs

Multiple bugs with user authentication...

1.7AI score
Exploits0References1Affected Software1
NVD
NVD
added 2004/02/09 5:0 a.m.13 views

CVE-2004-2079

Red-M Red-Alert 2.7.5 with software 3.1 build 24 binds authentication to IP addresses, which allows remote attackers to bypass authentication by connecting from the same IP address as an active authenticated user...

7.5CVSS6.8AI score0.02099EPSS
Exploits1References8
NVD
NVD
added 2004/02/09 5:0 a.m.15 views

CVE-2004-2080

Red-M Red-Alert 2.7.5 with software 3.1 build 24 converts multiple spaces in a Service Set Identifier SSID to a single space, which prevents Red-Alert from correctly identifying the SSID...

5CVSS6.5AI score0.01736EPSS
Exploits1References8
NVD
NVD
added 2004/02/09 5:0 a.m.18 views

CVE-2004-2078

Red-M Red-Alert 2.7.5 with software 3.1 build 24 allows remote attackers to cause a denial of service reboot and loss of logged events via a long request to TCP port 80, possibly triggering a buffer overflow...

5CVSS7AI score0.04925EPSS
Exploits1References9
exploitpack
exploitpack
added 2004/02/09 12:0 a.m.17 views

Red-M Red-Alert 3.1 - Remote Denial of Service

Red-M Red-Alert 3.1 - Remote Denial of Service source: https://www.securityfocus.com/bid/9618/info Problems in various abilities have been identified in the Red-M Red-Alert network monitors. Because of this issues, an attacker may be able to crash a vulnerable device and eliminate logs, gain...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/06/02 12:0 a.m.34 views

Super-M Son hServer URI Traversal Arbitrary File Access

Super-M Son hServer is vulnerable to a directory traversal. It enables a remote attacker to view any file on the computer with the privileges of the web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include 'compat.inc' ; ifdescription scriptid11678; scriptversion"1.22";...

5CVSS5.6AI score0.02039EPSS
Exploits0References2
Rows per page
Query Builder