computer software vulnerabilities
vulnerabilities.aspcode.net
Searching computer software vulnerabilities
Computer Associates CCC\Harvest 5.0 for Windows
CCC\Harvest
|
application
|
encryption
|
privileges
|
Associates
|
passwords
|
attacker
|
Computer
|
NT/2000
|
Windows
|
remote
|
allows
|
which
|
uses
|
weak
|
gain
|
Computer Associates CCC\Harvest 5.0 for Windows NT/2000 uses weak encryption for passwords, which allows a remote attacker to gain privileges on the application.
ZyXEL Prestige 642R and 642R-I routers do not f
reconfigure
|
interface
|
allowing
|
external
|
password
|
computer
|
internal
|
routers'
|
Prestige
|
someone
|
routers
|
access
|
router
|
642R-I
|
inside
|
filter
|
Telnet
|
known
|
ports
|
ZyXEL
|
642R
|
not
|
WAN
|
FTP
|
ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known.
Computer Associates ARCserveIT 6.61 and 6.63 (a
ARCserveIT
|
Associates
|
Computer
|
Computer Associates ARCserveIT 6.61 and 6.63 (also called ARCservIT) allows local users to overwrite arbitrary files via a symlink attack on the temporary files (1) asagent.tmp or (2) inetd.tmp.
MDG Computer Services Web Server 4D/eCommerce 3
4D/eCommerce
|
Services
|
Computer
|
Server
|
MDG
|
Web
|
MDG Computer Services Web Server 4D/eCommerce 3.5.3 allows remote attackers to exploit directory traversal vulnerability via a ../ (dot dot) containing URL-encoded slashes in the HTTP request.
Buffer overflows in Computer Associates MLink (
Associates
|
overflows
|
Computer
|
Buffer
|
MLink
|
Buffer overflows in Computer Associates MLink (CA-MLink) 6.5 and earlier may allow local users to execute arbitrary code via long command line arguments to (1) mlclear or (2) mllock.
Internet Explorer 5.01 SP3 through 6.0 SP1 allo
Explorer
|
Internet
|
Internet Explorer 5.01 SP3 through 6.0 SP1 allows remote attackers to access and execute script in the My Computer domain using the browser cache via crafted Content-Type and Content-Disposition headers, aka the "Browser Cache Script Execution in My Computer Zone" vulnerability.
Unknown "System Security Vulnerability" in Comp
Vulnerability"
|
Associates
|
Computer
|
Security
|
Unknown
|
"System
|
Unknown "System Security Vulnerability" in Computer Associates (CA) Unicenter Remote Control (URC) 6.0 allows attackers to gain privileges via the help interface.
Unknown "Denial of Service Attack" vulnerabilit
vulnerability
|
Associates
|
Computer
|
Attack"
|
Unknown
|
"Denial
|
Service
|
Unknown "Denial of Service Attack" vulnerability in Computer Associates (CA) Unicenter Remote Control (URC) 6.0 allows attackers to cause a denial of service (CPU consumption in URC host service).
Unknown "potential system security vulnerabilit
vulnerability"
|
"potential
|
Associates
|
Computer
|
security
|
Unknown
|
system
|
Unknown "potential system security vulnerability" in Computer Associates (CA) Unicenter Remote Control 5.0 through 5.2, and ControlIT 5.0 and 5.1, may allow attackers to gain privileges to the local system account.
The Windows Media Player control in Microsoft W
Microsoft
|
control
|
Windows
|
Player
|
Media
|
The Windows Media Player control in Microsoft Windows 2000 allows remote attackers to execute arbitrary script in the local computer zone via an ASX filename that contains javascript, which is executed in the local context in a preview panel.
Winamp before 5.0.4 allows remote attackers to
before
|
Winamp
|
Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file.
Computer Associates Unicenter Common Services 3
TndAddNspTmpbat
|
privileges
|
Associates
|
cleartext
|
Unicenter
|
database
|
password
|
Services
|
Computer
|
earlier
|
Common
|
stores
|
allow
|
local
|
users
|
which
|
could
|
"SA"
|
gain
|
file
|
Computer Associates Unicenter Common Services 3.0 and earlier stores the database "SA" password in cleartext in the TndAddNspTmp.bat file, which could allow local users to gain privileges.
Buffer overflow in Computer Associates (CA) Lic
Associates
|
Computer
|
overflow
|
Buffer
|
Buffer overflow in Computer Associates (CA) License Client 0.1.0.15 allows remote attackers to execute arbitrary code via a long filename in a PUTOLF request.
Directory traversal vulnerability in Computer A
vulnerability
|
Associates
|
Directory
|
traversal
|
Computer
|
Directory traversal vulnerability in Computer Associates (CA) License Client 0.1.0.15 allows remote attackers to create arbitrary files via .. (dot dot) sequences in a PUTOLF request.
Computer Associates (CA) Unicenter Asset Manage
Associates
|
Computer
|
Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 does not properly initialize the "Change Credentials for Database" window, which allows local users to recover the SQL Admin password via certain methods.
SQL injection vulnerability in the Query Design
vulnerability
|
Associates
|
injection
|
Designer
|
Computer
|
Query
|
SQL
|
SQL injection vulnerability in the Query Designer for Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 allows remote attackers to execute arbitrary SQL via an imported file.
Computer Associates (CA) eTrust Intrusion Detec
Associates
|
Computer
|
Computer Associates (CA) eTrust Intrusion Detection 3.0 allows remote attackers to cause a denial of service via large size values that are not properly validated before calling the CPImportKey function in the Crypto API.
Multiple buffer overflows in Computer Associate
Associates
|
overflows
|
Multiple
|
Computer
|
buffer
|
Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allow remote attackers to execute arbitrary code via unknown vectors.
By default Microsoft Windows XP Home Edition in
Administrator
|
attackers
|
Microsoft
|
installs
|
password
|
computer
|
control
|
account
|
default
|
Edition
|
Windows
|
remote
|
allows
|
blank
|
which
|
Home
|
gain
|
By default Microsoft Windows XP Home Edition installs with a blank password for the Administrator account, which allows remote attackers to gain control of the computer.
Cross-site scripting (XSS) vulnerability in the
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in the portal login page in Computer Associates CleverPath 4.7 allows remote attackers to execute Javascript via unknown vectors.
Software vulnerabilities results 1 to 20 of 101
Page:
1
2
3
4
5
6
►