FS S3150-8T2F 安全漏洞

FS S3150-8T2F is a switch from FS. A security vulnerability exists in the FS S3150-8T2F that originates from the transmission of a plaintext cookie containing a username and password, which could lead to credential disclosure...

EUVD-2003-1444

Malware in sbrugna...

Solarwinds Kiwi Syslog Server 安全漏洞

Solarwinds Kiwi Syslog Server is an affordable Syslog management tool for network and system engineers from Solarwinds USA. It is used to receive syslog messages and Snmp traps from network devices routers, switches, firewalls, etc. and Linux®/Unix® hosts. A security vulnerability exists in...

ASP-Nuke RC1-RC2 明文Cookie认证信息导致任意访问漏洞

BugCVE: CAN-2002-0522 BUGTRAQ: 4484 ASP-Nuke中Cookie存在设计问题，可导致攻击者以任意用户访问应用系统。 ASP-Nuke使用Cookie进行认证，当用户使用Cookie时，Cookie以非加密形式存储在本地系统上，攻击者可以通过修改Cookie信息，导致以任意用户权限访问ASP-Nuke系统，包括以管理员帐户权限访问。 ASP-Nuke RC1-RC2 厂商补丁： ASP-Nuke -------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

phpGroupWare Admin/Setup Password Plaintext Cookie Storage

The version of PhpGroupWare installed on the remote host is reported to be affected by a plaintext cookie authentication credentials information disclosure vulnerability. If web administration of PhpGroupWare is not conducted over an encrypted link, an attacker with the ability to sniff network...