CVE-2000-0178

ServerIron switches by Foundry Networks have predictable TCP/IP sequence numbers, which allows remote attackers to spoof or hijack sessions...

rightfax.txt

LoWNOISE Colombia 2000 +---RightFax Web Client v5.2: Hijack user's sessions +---Description Using your web browser When you click to log on to the rightfax server, it opens a new window. In that window you are asked for a username and password. The Toolbar on the browser is hidden, but if you ope...

CVE-2000-0111

The RightFax web client uses predictable session numbers, which allows remote attackers to hijack user sessions...

Apple Mac OSX 10 HP-UX 91011 Mandriva 67 RedHat 56 SCO 5 IRIX 6 - Shell Redirection Race Condition

Apple Mac OSX 10 HP-UX 91011 Mandriva 67 RedHat 56 SCO 5 IRIX 6 - Shell Redirection Race Condition source: https://www.securityfocus.com/bid/2006/info bash, tcsh, cash, ksh and sh are all variations of the Unix shell distributed with many Unix and Unix clone operating systems. A vulnerability...

Apple Mac OSX 10 / HP-UX 9/10/11 / Mandriva 6/7 / RedHat 5/6 / SCO 5 / IRIX 6 - Shell Redirection Race Condition

source: https://www.securityfocus.com/bid/2006/info bash, tcsh, cash, ksh and sh are all variations of the Unix shell distributed with many Unix and Unix clone operating systems. A vulnerability exists in these shells that could allow an attacker to arbitrarily write to files. A vulnerability has...

IBM Network Station Manager 2.0 R1 - Race Condition

// source: https://www.securityfocus.com/bid/900/info IBM's Network Station Manager is a client/server application which facilitates management for IBM Network Stations. It is possible to locally gain root priviliges on hosts running the NetStation daemon. NetStation which runs as root creates...

CVE-1999-0024

CVE-1999-0024 describes a DNS cache-poisoning flaw in BIND caused by predictable DNS query IDs. The connected sources consistently state DNS cache poisoning via BIND, with related discussions in Red Hat/Security advisories and CERT context. The materials do not provide a concrete patch version or...

CVE-1999-0024

DNS cache poisoning via BIND, by predictable query IDs...

bluestone.txt

Subject: Security Spoofed Id in Bluestone Sapphire/Web To: [email protected] INTRINsec Security Advisory Release Date : September 02, 1999 Software : Bluestone Sapphire/Web V5 Operating System: Solaris Impact : The attacker can access the session of other connected clients. Author :...

fwtk.gauntlet.random.seed.txt

Date: Fri, 16 Apr 1999 15:36:27 -0500 From: [email protected] To: [email protected] Subject: FWTK, Gauntlet 'random seed' security problem Summary A 'random seed' problem in lib/rand.c affects all local challenge-response authentication on FWTK and Gauntlet. Many services have support available...

CVE-1999-0024

DNS cache poisoning via BIND, by predictable query IDs...

PT-1997-1008 · Isc · Bind

Name of the Vulnerable Software and Affected Versions: BIND affected versions not specified Description: The issue involves DNS cache poisoning via BIND, which is made possible by predictable query IDs. Recommendations: At the moment, there is no information about a newer version that contains a...

Vulnerabilidades en BIND y Soluciones

Advisory ID Internal CORE-1999-0024 CVE Name: CVE-1999-0024 Bugtraq ID: 678 Descripción de los problemas Esta advertencia contiene descripciones y soluciones para dos vulnerabilidades presentes en las distribuciones actuales de BIND. Los problemas están siendo explotados activamente en Internet. ...