8435 matches found
outlook.addins.passwd.txt
Date: Fri, 12 Mar 1999 10:34:22 -0500 From: [email protected] To: [email protected] Subject: Re: Outlook stores PLAINTEXT password! Although this may not be an appropriate topic for this list, there is a related issue with Outlook password protected add-ins. Many companies make add-in...
rconsole.passwd.netware.txt
Date: Tue, 6 Oct 1998 02:36:11 -0500 From: Simple Nomad To: [email protected] Subject: NMRC Advisory - "Decryption" of the RCONSOLE Password Jeez I swear we'd be this productive all the time of fully funded. Anyway this makes up for the last one's lameness. -SN Nomad Mobile Research Centre A D...
foolproof-PC.txt
Date: Wed, 4 Nov 1998 15:55:09 -0500 From: Krish Jagannathan To: [email protected] Subject: FoolProof for PC Exploit I figured this much out -- if you are running on FoolProof for the PC Win9x and you boot up in safe mode with or without network support it will bypass the FoolProof TSR and...
yahoo.news.ticker.txt
FOR IMMEDIATE RELEASE: Application: Yahoo! NEWS TICKER Platforms : Win95,98,NT Advisory: The installation process of the Yahoo! NEWS TICKER leaves a file name "install.log" in the program directory. The file contains plaintext userid and password. The installation process also sets registry entri...
oracle.8.passwd.txt
Date: Thu, 4 Mar 1999 15:44:37 -0600 From: James Kivisild To: [email protected] Subject: Oracle Plaintext Password I now know this has been mentioned before, however I've gotten a large number of responses from people about Oracle problems similar to this. As a first time Oracle installer, I...
CVE-1999-0861
Race condition in the SSL ISAPI filter in IIS and other servers may leak information in plaintext...
CVE-1999-1369
Real Media RealServer rmserver 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain privileges...
CVE-1999-1256
Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new database is created, which allows local users to obtain the password from that file...
CVE-1999-0397
The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext...
CVE-1999-0364
Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data...
PT-1999-1083 · Quakenbush · Quakenbush Nt Password Appraiser
Name of the Vulnerable Software and Affected Versions: Quakenbush NT Password Appraiser demo version Description: The issue concerns the transmission of passwords in plaintext over the network. Recommendations: For the demo version of the Quakenbush NT Password Appraiser, consider disabling the...
CVE-1999-1073
Excite for Web Servers EWS 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a brute force or dictionary attack...
CVE-1999-1085
SSH 1.2.25, 1.2.23, and other versions, when used in in CBC Cipher Block Chaining or CFB Cipher Feedback 64 bits modes, allows remote attackers to insert arbitrary data into an existing stream between an SSH client and server by using a known plaintext attack and computing a valid CRC-32 checksum...
CVE-1999-1275
Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges...
Immunity Canvas: IIS_MACHINEKEY
Name| iismachinekey ---|--- CVE| NO-CVE Exploit Pack| CANVAS Description| Microsoft IIS MachineKey ViewState Deserialization RCE Notes| CVE Name: NO-CVE VENDOR: http://microsoft.com Notes: IMPORTANT NOTES 3/30/2018: | Test | ind. systems verified | iismachinekey success |...