Lucene search
K

1493 matches found

exploitpack
exploitpack
added 2004/07/10 12:0 a.m.14 views

MySQL 4.15.0 - Zero-Length Password Authentication Bypass

MySQL 4.15.0 - Zero-Length Password Authentication Bypass !/usr/bin/perl The script connects to MySQL and attempts to log in using a zero-length password Based on the vuln found by NGSSecurity The following Perl script can be used to test your version of MySQL. It will display the login packet se...

0.4AI score
Exploits0
0day.today
0day.today
added 2004/07/10 12:0 a.m.31 views

MySQL 4.1/5.0 zero-length password Auth. Bypass Exploit

Exploit for multiple platform in category remote exploits ======================================================= MySQL 4.1/5.0 zero-length password Auth. Bypass Exploit ======================================================= !/usr/bin/perl The script connects to MySQL and attempts to log in usin...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2004/07/08 4:0 a.m.27 views

CVE-2004-0627

The checkscramble323 function in MySQL 4.1.x before 4.1.3, and 5.0, allows remote attackers to bypass authentication via a zero-length scrambled string...

6.5AI score0.69647EPSS
Exploits1References3
securityvulns
securityvulns
added 2004/06/18 12:0 a.m.32 views

ignitionServer password protection bypass

Zero length password is universal...

3.4AI score
Exploits0References1Affected Software1
NVD
NVD
added 2004/05/04 4:0 a.m.24 views

CVE-2004-0218

isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service infinite loop via an ISAKMP packet with a zero-length payload, as demonstrated by the Striker ISAKMP Protocol Test Suite...

5CVSS6.5AI score0.03182EPSS
Exploits0References8
NVD
NVD
added 2004/05/04 4:0 a.m.26 views

CVE-2004-0367

Ethereal 0.10.1 to 0.10.2 allows remote attackers to cause a denial of service crash via a zero-length Presentation protocol selector...

5CVSS7.3AI score0.05275EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2004/03/30 5:6 p.m.12 views

security flaw

Ethereal 0.10.1 to 0.10.2 allows remote attackers to cause a denial of service crash via a zero-length Presentation protocol selector...

5CVSS5.9AI score0.05275EPSS
Exploits0References4
Cvelist
Cvelist
added 2004/03/25 5:0 a.m.34 views

CVE-2004-0367

Ethereal 0.10.1 to 0.10.2 allows remote attackers to cause a denial of service crash via a zero-length Presentation protocol selector...

7.2AI score0.05275EPSS
Exploits0References14
Positive Technologies
Positive Technologies
added 2004/03/25 12:0 a.m.5 views

PT-2004-1521 · Ethereal · Ethereal

Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.10.1 through 0.10.2 Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a zero-length Presentation protocol selector. Recommendations: For versions 0.10.1 through...

5CVSS7.4AI score0.05275EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2003/06/18 12:0 a.m.4 views

PT-2003-1622 · Ethereal · Ethereal

Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.9.12 and earlier Description: The tvb get nstringz0 function does not properly handle a zero-length buffer size, which may have unknown consequences. Recommendations: For Ethereal versions 0.9.12 and earlier, at the moment...

10CVSS9.4AI score0.02261EPSS
Exploits0References8
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.23 views

CVE-2002-0853

Cisco Virtual Private Network VPN Client 3.5.4 and earlier allows remote attackers to cause a denial of service CPU consumption via a packet with a zero-length payload...

6.6AI score0.02155EPSS
Exploits0References4
OSV
OSV
added 2003/03/03 5:0 a.m.1 views

DEBIAN-CVE-2003-0093

The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service crash via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop...

5CVSS6.8AI score0.01972EPSS
Exploits1References1
OSV
OSV
added 2002/12/26 5:0 a.m.4 views

CVE-2002-1371

filters/image-gif.c in Common Unix Printing System CUPS 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif...

7.9AI score
Exploits0References11
OSV
OSV
added 2002/12/26 5:0 a.m.1 views

DEBIAN-CVE-2002-1371

filters/image-gif.c in Common Unix Printing System CUPS 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif...

7.5CVSS8AI score0.04923EPSS
Exploits1References1
CERT
CERT
added 2002/09/16 12:0 a.m.14 views

/usr/libexec/vi.recover script contains vulnerability allowing arbitrary zero-length files to be removed

Overview The /usr/libexec/vi.recover script in OpenBSD has a vulnerability that could allow an attacker to remove arbitrary zero-length files, including device nodes. Description The /usr/libexec/vi.recover script in OpenBSD cleans up vi temp files and informs a user via email if a recovery file...

7AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2002/09/13 7:9 p.m.7 views

security flaw

The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service crash via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields...

5CVSS5.9AI score0.02734EPSS
Exploits0References4
securityvulns
securityvulns
added 2002/08/08 12:0 a.m.114 views

Security Advisory FreeBSD-SA-02:36.nfs

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:36.nfs Security Advisory The FreeBSD Project Topic: Bug in NFS server code allows remote denial of service Category: core Module: nfs Announced: 2002-08-05 Credits: Mike...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2002/05/03 12:0 a.m.7 views

PT-2002-1419 · Ethereal · Ethereal

Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.9.2 and earlier Description: The issue is related to the ASN.1 parser, which can be exploited by remote attackers to cause a denial of service crash via a certain malformed packet. This occurs because Ethereal allocates...

5CVSS7.3AI score0.02734EPSS
Exploits0References7
NVD
NVD
added 2001/11/28 5:0 a.m.13 views

CVE-1999-1024

ipprint procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet...

7.5CVSS6.6AI score0.02912EPSS
Exploits1References4
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.18 views

CVE-1999-1024

ipprint procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet...

6.6AI score0.02912EPSS
Exploits1References4
Rows per page
Query Builder