1493 matches found
MySQL 4.15.0 - Zero-Length Password Authentication Bypass
MySQL 4.15.0 - Zero-Length Password Authentication Bypass !/usr/bin/perl The script connects to MySQL and attempts to log in using a zero-length password Based on the vuln found by NGSSecurity The following Perl script can be used to test your version of MySQL. It will display the login packet se...
MySQL 4.1/5.0 zero-length password Auth. Bypass Exploit
Exploit for multiple platform in category remote exploits ======================================================= MySQL 4.1/5.0 zero-length password Auth. Bypass Exploit ======================================================= !/usr/bin/perl The script connects to MySQL and attempts to log in usin...
CVE-2004-0627
The checkscramble323 function in MySQL 4.1.x before 4.1.3, and 5.0, allows remote attackers to bypass authentication via a zero-length scrambled string...
ignitionServer password protection bypass
Zero length password is universal...
CVE-2004-0218
isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service infinite loop via an ISAKMP packet with a zero-length payload, as demonstrated by the Striker ISAKMP Protocol Test Suite...
CVE-2004-0367
Ethereal 0.10.1 to 0.10.2 allows remote attackers to cause a denial of service crash via a zero-length Presentation protocol selector...
security flaw
Ethereal 0.10.1 to 0.10.2 allows remote attackers to cause a denial of service crash via a zero-length Presentation protocol selector...
CVE-2004-0367
Ethereal 0.10.1 to 0.10.2 allows remote attackers to cause a denial of service crash via a zero-length Presentation protocol selector...
PT-2004-1521 · Ethereal · Ethereal
Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.10.1 through 0.10.2 Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a zero-length Presentation protocol selector. Recommendations: For versions 0.10.1 through...
PT-2003-1622 · Ethereal · Ethereal
Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.9.12 and earlier Description: The tvb get nstringz0 function does not properly handle a zero-length buffer size, which may have unknown consequences. Recommendations: For Ethereal versions 0.9.12 and earlier, at the moment...
CVE-2002-0853
Cisco Virtual Private Network VPN Client 3.5.4 and earlier allows remote attackers to cause a denial of service CPU consumption via a packet with a zero-length payload...
DEBIAN-CVE-2003-0093
The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service crash via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop...
CVE-2002-1371
filters/image-gif.c in Common Unix Printing System CUPS 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif...
DEBIAN-CVE-2002-1371
filters/image-gif.c in Common Unix Printing System CUPS 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif...
/usr/libexec/vi.recover script contains vulnerability allowing arbitrary zero-length files to be removed
Overview The /usr/libexec/vi.recover script in OpenBSD has a vulnerability that could allow an attacker to remove arbitrary zero-length files, including device nodes. Description The /usr/libexec/vi.recover script in OpenBSD cleans up vi temp files and informs a user via email if a recovery file...
security flaw
The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service crash via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields...
Security Advisory FreeBSD-SA-02:36.nfs
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:36.nfs Security Advisory The FreeBSD Project Topic: Bug in NFS server code allows remote denial of service Category: core Module: nfs Announced: 2002-08-05 Credits: Mike...
PT-2002-1419 · Ethereal · Ethereal
Name of the Vulnerable Software and Affected Versions: Ethereal versions 0.9.2 and earlier Description: The issue is related to the ASN.1 parser, which can be exploited by remote attackers to cause a denial of service crash via a certain malformed packet. This occurs because Ethereal allocates...
CVE-1999-1024
ipprint procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet...
CVE-1999-1024
ipprint procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet...