EUVD-1999-1055

Malware in sbrugna...

GitLab: No Restriction on password

Note- 1: When I report this issue to another program, the triaged expert said The server is now only hashing a reasonable size password, this should not cause a Denial of Service . Since there does not appear to be evidence of DoS occurring here So they will take action, Only when ddos appear...

CVE-2016-2929

IBM BigFix Remote Control before 9.1.3 is vulnerable due to a weak default password policy that does not properly restrict password choices, enabling easier brute-force access for remote attackers. The issue affects IBM BigFix Remote Control components implementing authentication and password han...

CVE-2016-5848

Siemens SICAM PAS before 8.07 does not properly restrict password data in the database, which makes it easier for local users to calculate passwords by leveraging unspecified database privileges...

CVE-2016-5848

Siemens SICAM PAS before 8.07 does not properly restrict password data in the database, which makes it easier for local users to calculate passwords by leveraging unspecified database privileges...

Apple iOS iCloud子系统安全绕过漏洞

CVE ID:CVE-2014-2019 Apple iOS是一款运行在苹果iPhone和iPod touch设备上的最新的操作系统。 Apple iOS iCloud子系统存在漏洞，允许物理能接触设备的攻击者绕过密码限制，关闭查找我的iPhone服务或完成账户删除操作，然后把该服务关联在不同的Apple ID账户上。 0 Apple iOS 厂商补丁： Apple ----- Apple iOS 7.1已经修复该漏洞，建议用户下载更新： http://www.apple.com...

Forgot Password/Crowd Integration exception handling and regex improvements

If JIRA is integrated with Crowd, and Crowd has password restrictions e.g. regex, a user will receive a stack trace in JIRA if the new password does not meet Crowd's password requirements e.g. through the Forgot Password link in JIRA. noformat java.lang.IllegalArgumentException: Could not change...