5394 matches found
Design/Logic Flaw
Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch CSS series 11000 devices allows remote attackers to cause a denial of service connection slot exhaustion and device crash via a series of large packets designed to exploit the...
CVE-2007-4654
Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch CSS series 11000 devices allows remote attackers to cause a denial of service connection slot exhaustion and device crash via a series of large packets designed to exploit the...
CVE-2007-4654
Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch CSS series 11000 devices allows remote attackers to cause a denial of service connection slot exhaustion and device crash via a series of large packets designed to exploit the...
CVE-2007-3012
The web interface in Fujitsu-Siemens Computers PRIMERGY BX300 Switch Blade allows remote attackers to obtain sensitive information by canceling the authentication dialog when accessing a sub-page, which still displays the form field contents of the sub-page, as demonstrated using 1...
Fujitsu-Siemens PRIMERGY BX300 switch authentication bypass
It's possible to access some Web interface pages without authentication by their URL...
CVE-2007-3533
The 3Com IntelliJack Switch NJ220 before 2.0.23 allows remote attackers to cause a denial of service reboot and reporting outage via a loopback packet with zero in the length field...
Design/Logic Flaw
The 3Com IntelliJack Switch NJ220 before 2.0.23 allows remote attackers to cause a denial of service reboot and reporting outage via a loopback packet with zero in the length field...
CVE-2007-3533
The vulnerability CVE-2007-3533 affects the 3Com IntelliJack Switch NJ220 with firmware versions prior to 2.0.23. A malformed loopback packet with a zero length field can be sent remotely to cause a reboot and outage of reporting functions, resulting in a denial of service. The public description...
3Com IntelliJack交换机NJ220回环远程拒绝服务漏洞
BUGTRAQ ID: 24705 3Com NJ220 IntelliJack是一款智能可管理的交换机。 NJ220 IntelliJack在处理畸形的报文时存在漏洞,远程攻击者可能利用此漏洞导致设备拒绝服务 如果向NJ220交换机发送了长度为0的回环报文的话,就会导致NJ220重启,并停止向中央配置管理器工具发送事件报文。 3Com IntelliJack Switch NJ220 2.0.21 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.3com.com...
b1gbb 2.24.0 (footer.inc.php tfooter) Remote File Inclusion Vulnerability
No description provided by source. b1gBB b1g Bulletion Board footer.inc.php Remote File Inclusion Vulnerabilities D.Script : http://switch.dl.sourceforge.net/sourceforge/b1gbb/b1gbb-2.24.0.zip V.Code : include $tfooter In : footer.inc.php Exploits :...
Powl 0.94 - htmledit.php Remote File Inclusion
Powl 0.94 - htmledit.php Remote File Inclusion !/usr/bin/perl POWL - 0.94 - Remote File Inclusion Exploit Url: http://switch.dl.sourceforge.net/sourceforge/powl/powlontowiki-0.94.zip Exploit: http://site.com/path/plugins/widgets/htmledit/htmledit.php?POWLinstallPath=EvilScript: coded and f0und3d ...
Design/Logic Flaw
Alcatel-Lucent IP-Touch Telephone running OmniPCX Enterprise 7.0 and later enables the mini switch by default, which allows attackers to gain access to the voice VLAN via daisy-chained systems...
CVE-2007-2512
Alcatel-Lucent IP-Touch Telephone running OmniPCX Enterprise 7.0 and later enables the mini switch by default, which allows attackers to gain access to the voice VLAN via daisy-chained systems...
IP and MAC bundle cracked-vulnerability warning-the black bar safety net
Our school recently the MAC and IP for the bundle, but also in Server 2K on the Internet time restrictions, really annoying dead, I think I'm the one never subject to the limit of the people Ah, how can like this without a fight! The ancient saying goes,“there policies, under the measures”, then...
Then talk about the Exchange environment session hijacking(For windows2000)-vulnerability warning-the black bar safety net
The first step is to open the IP Routing function, modify the registry HKEYLOCALMACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\IPEnableRouter to 0x1, and restart the system. The second step is ARP spoofing, the specific principle I will not say. The third step is to start the hijackin...
Mandrake Linux Security Advisory : madwifi-source (MDKSA-2007:082)
The athratesample function in the athrate/sample/sample.c sample code in MadWifi before 0.9.3 allows remote attackers to cause a denial of service failed KASSERT and system crash by moving a connected system to a location with low signal strength, and possibly other vectors related to a race...
CVE-2006-7179
ieee80211input.c in MadWifi before 0.9.3 does not properly process Channel Switch Announcement Information Elements CSA IEs, which allows remote attackers to cause a denial of service loss of communication via a Channel Switch Count less than or equal to one, triggering a channel change...
CVE-2006-7179
ieee80211input.c in MadWifi before 0.9.3 does not properly process Channel Switch Announcement Information Elements CSA IEs, which allows remote attackers to cause a denial of service loss of communication via a Channel Switch Count less than or equal to one, triggering a channel change...
CVE-2006-7179
ieee80211input.c in MadWifi before 0.9.3 does not properly process Channel Switch Announcement Information Elements CSA IEs, which allows remote attackers to cause a denial of service loss of communication via a Channel Switch Count less than or equal to one, triggering a channel change...
CVE-2006-7179
CVE-2006-7179 affects the MadWifi driver: ieee80211_input.c before 0.9.3 fails to properly process Channel Switch Announcement Information Elements, allowing remote attackers to cause a denial of service (loss of communication) by triggering a channel switch with Channel Switch Count ≤ 1. Public ...