16 matches found
CVE-2025-27233
Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an attacker to inject unexpected arguments into the smartctl command. This can be used to leak the NTLMv2 hash from a Windows system...
Metabase 0.40.x < 0.40.8 / 0.41.x < 0.41.7 / 0.42.x < 0.42.4 / 1.40.x < 1.40.8 / 1.41.x < 1.41.7 / 1.42.x < 1.42.4
The version of Metabase installed on the remote host is prior to 1.42.4. It is, therefore, affected by multiple vulnerabilities. - Metabase has a proxy to load arbitrary URLs for JSON maps as part of our GeoJSON support. While we do validation to not return contents of arbitrary URLs, there is a...
How to Mount a CIFS (Windows File System) Share in XenServer Using the Command Line Interface
This article describes how to mount a CIFS Windows file system share in XenServer using the Command Line Interface CLI. Requirements Basic knowledge of Linux Administrator root access to XenServer host using the Command Line Interface CLI Windows username and password to access Windows share to b...
SUSE CVE-2024-35178
The Jupyter Server provides the backend for Jupyter web applications. Jupyter Server on Windows has a vulnerability that lets unauthenticated attackers leak the NTLMv2 password hash of the Windows user running the Jupyter server. An attacker can crack this password to gain access to the Windows...
Yokogawa Electric 信任管理问题漏洞
Yokogawa Electric is a server of Yokogawa Electric Yokogawa, a Japanese company. A security vulnerability exists in Yokogawa Electric. The vulnerability stems from Yokogawa Electric not changing the internal Windows account password from the initial configuration. The following products and...
Unspecified Vulnerability in IBM Security Identity Manager
IBM Security Identity Manager ISIM is a suite of identity management and governance solutions from IBM in the United States. The solution automates the creation, modification, re-authentication and termination of user privileges throughout the user lifecycle and supports policy-based password...
Fixing the Weakest Link — The Passwords — in Cybersecurity Today
Password security has long been an issue for businesses and their cybersecurity standards. Account passwords are often the weakest link in the overall security posture for many organizations. Many companies have used Microsoft's default password policies for decades. While these can be customized...
CVE-2019-15294
An issue was discovered in Gallagher Command Centre 8.10 before 8.10.1092MR2. Upon an upgrade, if a custom service account is in use and the visitor management service is installed, the Windows username and password for this service are logged in cleartext to the Commandcentre.log file...
Powershell Payload Execution
This module generates a dynamic executable on the session host using .NET templates. Code is pulled from C templates and impregnated with a payload before being sent to a modified PowerShell session with .NET 4 loaded. The compiler builds the executable standard or Windows service in memory and...
Windows Password Kracker - Free Windows Password Recovery Software
Windows Password Kracker is a free software to recover the lost or forgotten Windows password. It can quickly recover the original windows password from either LM LAN Manager or NTLM NT LAN Manager Hash. Windows encrypts the login password using LM or NTLM hash algorithm. Since these are one way...
HashCodeCracker v1.2 Video Tutorials Available
HashCodeCracker v1.2 Video Tutorials Available Hash Code Cracker V 1.2 was Released last week by BreakTheSecurity. This software will crack the MD5, SHA1,NTLMWindows Password hash codes. No need to install. Supports All platformswindows XP/7,Linux,... How to Run Hash Code Cracker Jar using Comman...
The history of the easiest Windows password rescue can't login-bug warning-the black bar safety net
Forgot Windows login password? On the Internet about solution are numerous, but after trying you will find that many methods are simply not effective, and some may even cause the system to collapse completely. By the author in Windows 2 0 0 0 and Windows XP in the repeated research and testing,...
Microsoft Internet Explorer 6.0 Firefox 0.x Netscape 7.x - IMG Tag Multiple Vulnerabilities
Microsoft Internet Explorer 6.0 Firefox 0.x Netscape 7.x - IMG Tag Multiple Vulnerabilities source: https://www.securityfocus.com/bid/11645/info Various browsers are reported prone to multiple vulnerabilities in the image handling functionality through the tag. These issues can allow remote...
IRM 005: JWalk Application Server Version 3.2c9 Directory Traversal Vulnerability
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- IRM Security Advisory No. 005 JWALK application server version 3.2C9 Directory Traversal Vulnerability Vulnerablity Type / Importance: Information Leakage / High Problem discovered: November 28th 2002 Vendor contacted: Novembe...
Доступ к защищенным файлам в AOLServer (unauthorized access)
Под Windows можно обойти защиту файлов паролем добавив к имени файла '.'...
windows.weak.passwds.txt
Secure Storage of Secrets in Windows Aleph One [email protected] Mon, 17 May 1999 14:57:31 -0700 Not long ago we discussed why you still see messages that describe yet another application that stores passwords in an insecure manner, in particular under Windows. The bottom line was that there...