87 matches found
eIQnetworks Enterprise Security Analyzer Syslog TCP Server Buffer Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of eIQnetworks Enterprise Security Analyzer. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Syslog daemon, syslogserver.exe, during the processing of...
CVE-2002-1762
MBSA 1.0 stores security scans in plaintext at C:\Documents and Settings\username\SecurityScans, potentially exposing sensitive system information to users able to run malicious ActiveX/Java content. The provided sources confirm the exact location and plaintext storage, with no additional exploit...
CVE-2002-1762
Microsoft Baseline Security Analyzer MBSA 1.0 stores security scans in a known location C:\Documents and Settings\username\SecurityScans in plaintext, which could allow remote attackers to obtain sensitive information about the system via malicious active content such as ActiveX controls or Java...
CVE-2004-2091
The vulnerability entry CVE-2004-2091 concerns Microsoft Baseline Security Analyzer (MBSA) 1.2. Affected context: MBSA 1.2 may not correctly identify systems that have been patched but remain exploitable until a reboot, potentially giving administrators a false sense of security. Impact is descri...
CVE-2004-2091
Microsoft Baseline Security Analyzer MBSA 1.2 does not correctly identify systems that have been patched but remain vulnerable to exploit until the system is rebooted, possibly giving the administrator a false sense of security...
CVE-2004-2091
Microsoft Baseline Security Analyzer MBSA 1.2 does not correctly identify systems that have been patched but remain vulnerable to exploit until the system is rebooted, possibly giving the administrator a false sense of security...
CVE-2002-1762
Microsoft Baseline Security Analyzer MBSA 1.0 stores security scans in a known location C:\Documents and Settings\username\SecurityScans in plaintext, which could allow remote attackers to obtain sensitive information about the system via malicious active content such as ActiveX controls or Java...