Network Associates PGP KeyServer 7 LDAP Buffer Overflow

No description provided by source. $Id: pgpkeyserver7.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

Network Associates PGP KeyServer 7 - LDAP Buffer Overflow (Metasploit)

$Id: pgpkeyserver7.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

Network Associates PGP KeyServer 7 LDAP Buffer Overflow

$Id: pgpkeyserver7.rb 10908 2010-11-04 23:50:35Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

CVE-2001-1252

CVE-2001-1252 affects Network Associates PGP Keyserver 7.0. Remote attackers can bypass authentication and reach the administrative web interface by directly requesting the CGI paths under keyserver/cgi-bin for the programs (console, cs, multi_config, directory). Root cause: authentication bypass...

CVE-2001-1252

Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin for the programs 1 console, 2 cs, 3 multiconfig and 4 directory...

CVE-2001-1320

Summary: CVE-2001-1320 affects Network Associates PGP KeyServer 7.x LDAP service, where the LDAP handling/BER encoding exposes a stack buffer overflow. The PROTOS LDAPv3 test suite demonstrated denial of service and potential code execution, with exploits and proof-of-concept modules (e.g., Metas...

CVE-2001-1320

Network Associates PGP Keyserver 7.0 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via exceptional BER encodings possibly buffer overflows, as demonstrated by the PROTOS LDAPv3 test suite...

CVE-2001-1252

Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin for the programs 1 console, 2 cs, 3 multiconfig and 4 directory...

Доступ к административному интерфейсу в PGP Keyserver (anauthorized access)

Через CGI-приложения можно получить доступ к административному интерфейсу без авторизации...

[SNS Advisory No.43] PGP Keyserver Permissions Misconfiguration

---------------------------------------------------------------------- SNS Advisory No.43 PGP Keyserver Permissions Misconfiguration Problem first discovered: Fri, 3 Aug 2001 Published: Fri, 28 Sep 2001 ---------------------------------------------------------------------- Overview: --------- PGP...

Network Associates PGP Keyserver contains multiple vulnerabilities in LDAP handling code

Overview The Network Associates PGP Keyserver contains vulnerabilities that may allow denial-of-service attacks, unauthorized privileged access, or both. These vulnerabilities were revealed using the PROTOS LDAPv3 test suite and are documented in CERT Advisory CA-2001-18. If your site uses this...

CVE-2001-1320

Network Associates PGP Keyserver 7.0 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via exceptional BER encodings possibly buffer overflows, as demonstrated by the PROTOS LDAPv3 test suite...

Network Associates PGP Keyserver 7.0 Administration Web Console Multiple Vulnerabilities

Advisory ID Internal CORE-2001-0813 Bugtraq ID: None currently assigned. CVE Name: None currently assigned. Title: Network Associates PGP Keyserver 7.0 Administration Web Console Multiple Vulnerabilities Class: Access Validation Error/Design Error Remotely Exploitable: Yes Locally Exploitable: Ye...