Searching attacker software vulnerabilities

Buffer overflow in SMTP HELO command in Sendmai

activities | Sendmail | attacker | overflow | command | remote | Buffer | allows | HELO | hide | SMTP |

Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities.


In older versions of Sendmail, an attacker coul

character | attacker | commands | versions | Sendmail | execute | older | could | root | pipe | use |

In older versions of Sendmail, an attacker could use a pipe character to execute root commands.


DPEC Online Courseware allows an attacker to ch

Courseware | password | attacker | original | another | knowing | without | user's | Online | allows | change | DPEC |

DPEC Online Courseware allows an attacker to change another user's password without knowing the original password.


Denial of service in SMTP applications such as

applications | Sendmail | attacker | service | remote | Denial | SMTP | such |

Denial of service in SMTP applications such as Sendmail, when a remote attacker (e.g. spammer) uses many "RCPT TO" commands in the same connection.


Linux 2.2.3 and earlier allow a remote attacker

Linux |

Linux 2.2.3 and earlier allow a remote attacker to perform an IP fragmentation attack, causing a denial of service.


Patrol management software allows a remote atta

administrator | management | attacker | password | software | conduct | attack | Patrol | allows | remote | replay | steal |

Patrol management software allows a remote attacker to conduct a replay attack to steal the administrator password.


In IIS, an attacker could determine a real path

non-existent | interpreted | determine | attacker | request | would | using | could | Perl | path | real | IIS | URL |

In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl (perl.exe) .


An attacker can identify a CISCO device by send

identify | attacker | sending | packet | device | CISCO | port | can | SYN |

An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol (CDP).


The Webcom CGI Guestbook programs wguest.exe an

"template" | wguestexe | rguestexe | arbitrary | parameter | Guestbook | attacker | programs | Webcom | remote | using | files | allow | read | CGI |

The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote attacker to read arbitrary files using the "template" parameter.


A remote attacker can gain access to a file sys

attacker | system | access | remote | using | file | gain | can |

A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares.


TFTP is not running in a restricted directory,

information | restricted | directory | sensitive | attacker | allowing | password | running | access | remote | files | TFTP | such | not |

TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files.


An attacker can force a printer to print arbitr

arbitrary | documents | attacker | printer | force | print | can |

An attacker can force a printer to print arbitrary documents (e.g. if the printer doesn't require a password) or to become disabled.


A network intrusion detection system (IDS) does

detection | intrusion | network | system |

A network intrusion detection system (IDS) does not properly handle packets that are sent out of order, allowing an attacker to escape detection.


Buffer overflow in the Eyedog ActiveX control a

arbitrary | attacker | commands | overflow | execute | ActiveX | control | Eyedog | Buffer | remote | allows |

Buffer overflow in the Eyedog ActiveX control allows a remote attacker to execute arbitrary commands.


Mutt mail client allows a remote attacker to ex

metacharacters | attacker | commands | execute | allows | client | remote | shell | Mutt | mail | via |

Mutt mail client allows a remote attacker to execute commands via shell metacharacters.


Error messages generated by gdm with the Verbos

VerboseAuth | generated | identify | attacker | messages | setting | system | allows | users | valid | Error | gdm |

Error messages generated by gdm with the VerboseAuth setting allows an attacker to identify valid users on a system.


counter.exe 2.70 allows a remote attacker to ca

counterexe |

counter.exe 2.70 allows a remote attacker to cause a denial of service (hang) via a long argument.


Slackware Linux 3.4 pkgtool allows local attack

arbitrary | Slackware | attacker | symlink | pkgtool | allows | attack | reply | files | Linux | local | write | file | read | via |

Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.


Stalker Internet Mail Server 1.6 allows a remot

Internet | attacker | service | Stalker | denial | remote | Server | allows | cause | Mail |

Stalker Internet Mail Server 1.6 allows a remote attacker to cause a denial of service (crash) via a long HELO command.


The OpenPGP PGP standard allows an attacker to

cryptanalytic | determine | signature | encrypted | attacker | standard | captures | message | OpenPGP | private | alters | signed | single | allows | attack | which | file | PGP | key | via |

The OpenPGP PGP standard allows an attacker to determine the private signature key via a cryptanalytic attack in which the attacker alters the encrypted private key file and captures a single message signed with the signature key.


Software vulnerabilities results 1 to 20 of 291     
Page: 12345...15