70 matches found
Microsoft Windows: Store passwords using reversible encryption
This test checks the setting for policy OpenVAS Vulnerability Test $Id: winstorepasswdreversibleencryption.nasl 11532 2018-09-21 19:07:30Z cfischer $ Check value for Store passwords using reversible encryption WMI Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH,...
Zoho ManageEngine Event Log Analyzer Cross-Site Scripting Vulnerability (CNVD-2017-26267)
Zoho ManageEngine Event Log Analyzer is the United States ZhuoHao Zoho company's set of systems, event log analysis software. A cross-site scripting vulnerability exists in Zoho ManageEngine Event Log Analyzer versions 11.4 and 11.5, which originates from a password being displayed in a cookie wi...
VMware vSphere Data Protection Remote Code Execution (CVE-2017-4914)
Multiple vulnerabilities have been reported in VMware vSphere Data Protection. The vulnerabilities are due to improper Java deserialization and use of reversible encryption. A remote attacker could exploit one of the vulnerabilities by sending specially crafted data to the targeted server, which...
VMware Patches Critical Vulnerabilities in vSphere Data Protection
VMware fixed two critical vulnerabilities in its vSphere Data Protection solution this week that could have allowed an attacker to execute commands on the virtual appliance, among other outcomes. The Department of Homeland Security’s CERT encouraged users and admins on Wednesday to apply the...
CVE-2017-4917
VMware vSphere Data Protection VDP 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained...
CVE-2017-4917
VMware vSphere Data Protection VDP 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained...
Design/Logic Flaw
VMware vSphere Data Protection VDP 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained...
CVE-2017-4917
VMware vSphere Data Protection VDP 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained...
CVE-2015-8085
Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC5...
Information disclosure
Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC5...
CVE-2015-8085
Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC5...
The vulnerability of the ABB PCM600 control and configuration device allows a intruder to gain access to user passwords.
The vulnerability of the ABB PCM600 control and configuration device lies in the use of reversible encryption for passwords stored in the ACTConfig configuration file. Exploiting this vulnerability could allow an attacker acting locally to gain access to user passwords...
IBM System Networking Switch Center DB Service Remote Elevation of Privilege Vulnerability
This vulnerability allows remote attackers to disclose information on vulnerable installations of IBM System Networking Switch Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the IBM SNSC DB Service, that listens by default on port 40999. This...
Huawei weak passwords encryption
Passwords are stored in reversible encryption...
Being the top academic system in the latest sql injection vulnerability fix-bug warning-the black bar safety net
You also again for the exam hanging branches and trouble? you also then for College how to sister phone and tangled? -, do you want to quickly find a school of nice girl?, then please see below 1. Classroom query at sql injection, as shown in Figure ! 1 union select NULL,owner from alltables brok...
Cisco Unified Videoconferencing multiple security vulnerabilities
Hardcoded user accounts, command execution, unauthorized access, password storing in reversible encryption, weak permissions, session hijacking, information leaks...
Alcatel CCAgent unauthorized access
Server does not provide any authenticaiton, password is stored on the client site in reversible encryption...
Ipswitch IMail multiple security vulnerabilities
Weak permissions for registry and installation folder. Passwords are stored in readable location with reversible encryption...
CORELAN-10-009 : Ipswitch IMAIL 11.01 multiple vulnerabilities (reversible encryption + weak ACL)
|------------------------------------------------------------------| | | | / / / / | | / / / / / / / / / / / | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | | |------------------------------------------------- EIP Hunters...
Ipswitch IMAIL 11.01 reversible encryption + weak ACL
No description provided by source. |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | |...