895 matches found
Mandriva Update for java-1.6.0-openjdk MDVSA-2010:084 (java-1.6.0-openjdk)
Check for the Version of java-1.6.0-openjdk OpenVAS Vulnerability Test Mandriva Update for java-1.6.0-openjdk MDVSA-2010:084 java-1.6.0-openjdk Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...
openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2010:0182-1)
java-160-openjdk version 1.7.3 fixes serveral security issues : - CVE-2010-0837: JAR 'unpack200' must verify input parameters - CVE-2010-0845: No ClassCastException for HashAttributeSet constructors if run with -Xcomp - CVE-2010-0838: CMM readMabCurveData Buffer Overflow Vulnerability -...
Fedora 12 : nss-util-3.12.5-1.fc12.1 (2009-12968)
Update to 3.12.5 This update fixes the following security flaw: CVE-2009-3555 TLS: MITM attacks via session renegotiation Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
Using sslstrip to MiTM attacks(Bypass https)-bug warning-the black bar safety net
Everyone knows, including the network for MiTM attacks can allow an attacker to more efficiently intercepted within the network the user's password and secret information. In BackTrack use EtterCap or ArpSpoof tool. But Ettercap supports the Protocol, only HTTP, FTP, Telnet, SMTP, etc. in clear...
Design/Logic Flaw
The Web Proxy Auto-Discovery WPAD feature in Microsoft Internet Explorer 6 and 7, when a primary DNS suffix with three or more components is configured, resolves an unqualified wpad hostname in a second-level domain outside this configured DNS domain, which allows remote WPAD servers to conduct...
CVE-2007-1558
CVE-2007-1558 describes a cryptographic weakness in APOP authentication that lowers MITM attack cost to recover passwords. Connected advisories show this affects multiple mail clients (e.g., Thunderbird/Icedove, Iceape, fetchmail) and related POP/ALOP implementations. Debian DSA-1305-1 and CentOS...
CVE-2007-1644
The dynamic DNS update mechanism in the DNS Server service on Microsoft Windows does not properly authenticate clients in certain deployments or configurations, which allows remote attackers to change DNS records for a web proxy server and conduct man-in-the-middle MITM attacks on web traffic,...
Microsoft DNS Server (Dynamic DNS Updates) Remote Exploit
No description provided by source. / Exploiting Microsoft DNS Dynamic Updates for Fun and profit Andres Tarasco Acu?a - c 2007 Url: http://www.514.es By default, most Microsoft DNS servers integrated with active directory allow insecure dynamic updates for dns records. This feature allows remote...
Microsoft DNS Server - Dynamic DNS UpdateChange
Microsoft DNS Server - Dynamic DNS UpdateChange / Exploiting Microsoft DNS Dynamic Updates for Fun and profit Andres Tarasco Acuña - c 2007 Url: http://www.514.es By default, most Microsoft DNS servers integrated with active directory allow insecure dynamic updates for dns records. This feature...
Microsoft DNS Server (Dynamic DNS Updates) Remote Exploit
Exploit for unknown platform in category remote exploits ========================================================= Microsoft DNS Server Dynamic DNS Updates Remote Exploit ========================================================= / Exploiting Microsoft DNS Dynamic Updates for Fun and profit Andres...
Microsoft DNS Server - Dynamic DNS Update/Change
/ Exploiting Microsoft DNS Dynamic Updates for Fun and profit Andres Tarasco Acuña - c 2007 Url: http://www.514.es By default, most Microsoft DNS servers integrated with active directory allow insecure dynamic updates for dns records. This feature allows remote users to create, change and delete...
CVE-2006-5867
fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle MITM attacks...
CVE-2005-4046
Unspecified vulnerability in Reverse SSL Proxy Plug-in for Sun Java System Application Server Standard Edition 7 2004Q2, Application Server Enterprise Edition 8.1 2005Q1, and Sun ONE Application Server 7 Standard Edition, as used in multiple web servers, allows remote attackers to conduct...
BindView Advisory: MITM Attacks Against Novell NetWare
MITM Attacks Against Novell NetWare ----------------------------------- Issue Date: 15Feb2001 Contact: Simple Nomad [email protected] http://razor.bindview.com/publish/advisories/advNovellMITM.html Topic: ------ Man-in-the-middle Attack can reveal password hashes and private keys in...
ROS-2-1905
2.1905 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...