Lucene search
K

70 matches found

openvas
openvas
added 2018/04/25 12:0 a.m.25 views

Microsoft Windows: Store passwords using reversible encryption

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winstorepasswdreversibleencryption.nasl 11532 2018-09-21 19:07:30Z cfischer $ Check value for Store passwords using reversible encryption WMI Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH,...

7.3AI score
Exploits0
cnvd
cnvd
added 2017/07/28 12:0 a.m.4 views

Zoho ManageEngine Event Log Analyzer Cross-Site Scripting Vulnerability (CNVD-2017-26267)

Zoho ManageEngine Event Log Analyzer is the United States ZhuoHao Zoho company's set of systems, event log analysis software. A cross-site scripting vulnerability exists in Zoho ManageEngine Event Log Analyzer versions 11.4 and 11.5, which originates from a password being displayed in a cookie wi...

6.1CVSS6.2AI score0.02293EPSS
Exploits1References1
checkpoint_advisories
checkpoint_advisories
added 2017/06/12 12:0 a.m.41 views

VMware vSphere Data Protection Remote Code Execution (CVE-2017-4914)

Multiple vulnerabilities have been reported in VMware vSphere Data Protection. The vulnerabilities are due to improper Java deserialization and use of reversible encryption. A remote attacker could exploit one of the vulnerabilities by sending specially crafted data to the targeted server, which...

7.5CVSS4.2AI score0.08833EPSS
Exploits3
threatpost
threatpost
added 2017/06/08 12:12 p.m.26 views

VMware Patches Critical Vulnerabilities in vSphere Data Protection

VMware fixed two critical vulnerabilities in its vSphere Data Protection solution this week that could have allowed an attacker to execute commands on the virtual appliance, among other outcomes. The Department of Homeland Security’s CERT encouraged users and admins on Wednesday to apply the...

5CVSS1.4AI score0.00842EPSS
Exploits0References3
osv
osv
added 2017/06/07 5:29 p.m.3 views

CVE-2017-4917

VMware vSphere Data Protection VDP 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained...

9.8CVSS5.8AI score
Exploits0References3
nvd
nvd
added 2017/06/07 5:29 p.m.18 views

CVE-2017-4917

VMware vSphere Data Protection VDP 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained...

9.8CVSS9.3AI score0.00842EPSS
Exploits0References3
prion
prion
added 2017/06/07 5:29 p.m.15 views

Design/Logic Flaw

VMware vSphere Data Protection VDP 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained...

5CVSS9.3AI score0.00842EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2017/06/07 5:0 p.m.21 views

CVE-2017-4917

VMware vSphere Data Protection VDP 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained...

9.4AI score0.00842EPSS
Exploits0References3
nvd
nvd
added 2016/10/03 9:59 p.m.21 views

CVE-2015-8085

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC5...

4.9CVSS4.9AI score0.00489EPSS
Exploits0References2
prion
prion
added 2016/10/03 9:59 p.m.19 views

Information disclosure

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC5...

4CVSS6.8AI score0.00489EPSS
Exploits0References2Affected Software7
cvelist
cvelist
added 2016/10/03 9:0 p.m.24 views

CVE-2015-8085

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC5...

4.9AI score0.00489EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2016/07/21 12:0 a.m.7 views

The vulnerability of the ABB PCM600 control and configuration device allows a intruder to gain access to user passwords.

The vulnerability of the ABB PCM600 control and configuration device lies in the use of reversible encryption for passwords stored in the ACTConfig configuration file. Exploiting this vulnerability could allow an attacker acting locally to gain access to user passwords...

1.9CVSS5.6AI score0.00304EPSS
Exploits0References4Affected Software1
zdi
zdi
added 2015/11/10 12:0 a.m.28 views

IBM System Networking Switch Center DB Service Remote Elevation of Privilege Vulnerability

This vulnerability allows remote attackers to disclose information on vulnerable installations of IBM System Networking Switch Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the IBM SNSC DB Service, that listens by default on port 40999. This...

7.1CVSS6.1AI score0.01318EPSS
Exploits0References1
securityvulns
securityvulns
added 2012/11/14 12:0 a.m.45 views

Huawei weak passwords encryption

Passwords are stored in reversible encryption...

2AI score
Exploits0References1
myhack58
myhack58
added 2012/07/31 12:0 a.m.12 views

Being the top academic system in the latest sql injection vulnerability fix-bug warning-the black bar safety net

You also again for the exam hanging branches and trouble? you also then for College how to sister phone and tangled? -, do you want to quickly find a school of nice girl?, then please see below 1. Classroom query at sql injection, as shown in Figure ! 1 union select NULL,owner from alltables brok...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2010/11/18 12:0 a.m.32 views

Cisco Unified Videoconferencing multiple security vulnerabilities

Hardcoded user accounts, command execution, unauthorized access, password storing in reversible encryption, weak permissions, session hijacking, information leaks...

10CVSS3.6AI score0.03372EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2010/09/20 12:0 a.m.53 views

Alcatel CCAgent unauthorized access

Server does not provide any authenticaiton, password is stored on the client site in reversible encryption...

7.6CVSS4.5AI score0.01075EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2010/02/08 12:0 a.m.31 views

Ipswitch IMail multiple security vulnerabilities

Weak permissions for registry and installation folder. Passwords are stored in readable location with reversible encryption...

3AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2010/02/08 12:0 a.m.34 views

CORELAN-10-009 : Ipswitch IMAIL 11.01 multiple vulnerabilities (reversible encryption + weak ACL)

|------------------------------------------------------------------| | | | / / / / | | / / / / / / / / / / / | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | | |------------------------------------------------- EIP Hunters...

7.7AI score
Exploits0
seebug
seebug
added 2010/02/05 12:0 a.m.27 views

Ipswitch IMAIL 11.01 reversible encryption + weak ACL

No description provided by source. |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | |...

7.1AI score
Exploits0
Rows per page
Query Builder