enabled software vulnerabilities
vulnerabilities.aspcode.net
Searching enabled software vulnerabilities
Windows NT FTP server (WFTP) with the guest acc
Windows
|
server
|
FTP
|
Windows NT FTP server (WFTP) with the guest account enabled without a password allows an attacker to log into the FTP server using any username and password.
IP forwarding is enabled on a machine which is
forwarding
|
firewall
|
machine
|
enabled
|
router
|
which
|
not
|
IP forwarding is enabled on a machine which is not a router or firewall.
The Windows NT guest account is enabled.
account
|
enabled
|
Windows
|
guest
|
The Windows NT guest account is enabled.
IIS has the #exec function enabled for Server S
function
|
enabled
|
Include
|
Server
|
#exec
|
Side
|
has
|
IIS
|
IIS has the #exec function enabled for Server Side Include (SSI) files.
The OS/2 or POSIX subsystem in NT is enabled.
subsystem
|
enabled
|
POSIX
|
OS/2
|
The OS/2 or POSIX subsystem in NT is enabled.
Triactive Remote Manager with Basic authenticat
authentication
|
privileges
|
cleartext
|
Triactive
|
username
|
password
|
registry
|
Manager
|
enabled
|
stores
|
Remote
|
local
|
users
|
Basic
|
allow
|
which
|
could
|
keys
|
gain
|
Triactive Remote Manager with Basic authentication enabled stores the username and password in cleartext in registry keys, which could allow local users to gain privileges.
Vulnerability in Cisco IOS 11.1CC and 11.1CT wi
Vulnerability
|
distributed
|
switching
|
111CT
|
Cisco
|
111CC
|
fast
|
IOS
|
Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled interface to an interface that does not have DFS enabled, as described by Cisco bug CSCdk35564.
Vulnerability in Cisco IOS 11.1 through 11.3 wi
Vulnerability
|
Cisco
|
IOS
|
Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug CSCdk43862.
Buffer overflow in XCmail 0.99.6 with autoquote
overflow
|
XCmail
|
Buffer
|
Buffer overflow in XCmail 0.99.6 with autoquote enabled allows remote attackers to execute arbitrary commands via a long subject line.
Vulnerability in loginout in Digital OpenVMS 7.
authentication
|
Vulnerability
|
unauthorized
|
loginout
|
external
|
enabled
|
Digital
|
OpenVMS
|
earlier
|
allows
|
access
|
Vulnerability in loginout in Digital OpenVMS 7.1 and earlier allows unauthorized access when external authentication is enabled.
PHP3 with safe_mode enabled does not properly f
metacharacters
|
attackers
|
safe_mode
|
commands
|
executed
|
properly
|
enabled
|
execute
|
remote
|
filter
|
could
|
allow
|
which
|
shell
|
popen
|
PHP3
|
does
|
not
|
PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands.
Buffer overflow in Sniffit 0.3.x with the -L lo
arbitrary
|
attackers
|
commands
|
overflow
|
enabled
|
execute
|
Sniffit
|
logging
|
header
|
option
|
Buffer
|
remote
|
allows
|
long
|
MAIL
|
03x
|
via
|
Buffer overflow in Sniffit 0.3.x with the -L logging option enabled allows remote attackers to execute arbitrary commands via a long MAIL FROM mail header.
The STP protocol, as enabled in Linux 2.4.x, do
sufficient
|
attackers
|
topology
|
security
|
protocol
|
provide
|
enabled
|
allows
|
design
|
bridge
|
modify
|
which
|
Linux
|
does
|
24x
|
not
|
STP
|
The STP protocol, as enabled in Linux 2.4.x, does not provide sufficient security by design, which allows attackers to modify the bridge topology.
Solaris 8 with IPv6 enabled allows remote attac
attackers
|
enabled
|
Solaris
|
service
|
denial
|
allows
|
remote
|
cause
|
IPv6
|
Solaris 8 with IPv6 enabled allows remote attackers to cause a denial of service (kernel panic) via a crafted IPv6 packet.
The FTP client for Solaris 2.6, 7, and 8 with t
Solaris
|
client
|
debug
|
FTP
|
The FTP client for Solaris 2.6, 7, and 8 with the debug (-d) flag enabled displays the user password on the screen during login.
Lotus Domino 6.5.0 and 6.5.1, with IMAP enabled
Domino
|
Lotus
|
Lotus Domino 6.5.0 and 6.5.1, with IMAP enabled, allows remote authenticated users to change their quota by using the IMAP setquota command.
The SSL HTTP Server in HP Web-enabled Managemen
Web-enabled
|
Management
|
Software
|
through
|
Server
|
HTTP
|
SSL
|
The SSL HTTP Server in HP Web-enabled Management Software 5.0 through 5.92, with anonymous access enabled, allows remote attackers to compromise the trusted certificates by uploading their own certificates.
Unknown vulnerability in The Ignition Project i
ignitionServer
|
vulnerability
|
Ignition
|
Unknown
|
Project
|
Unknown vulnerability in The Ignition Project ignitionServer 0.1.2 through 0.3.1, with the linking service enabled, allows remote attackers to bypass authentication.
Ingate Firewall in the SIP module before 4.4.1
Firewall
|
module
|
before
|
Ingate
|
SIP
|
Ingate Firewall in the SIP module before 4.4.1 and SIParator before 4.4.1, when TLS is enabled or when SSL/TLS is enabled in the web server, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake.
Unspecified vulnerability in PlonePAS in Plone
vulnerability
|
Unspecified
|
PlonePAS
|
Plone
|
Unspecified vulnerability in PlonePAS in Plone 2.5 and 2.5.1, when anonymous member registration is enabled, allows an attacker to "masquerade as a group."
Software vulnerabilities results 1 to 20 of 586
Page:
1
2
3
4
5
...
30
►