information software vulnerabilities
vulnerabilities.aspcode.net
Searching information software vulnerabilities
finger .@host on some systems may print informa
information
|
accounts
|
systems
|
finger
|
print
|
@host
|
user
|
some
|
may
|
finger .@host on some systems may print information on some user accounts.
NETBIOS share information may be published thro
information
|
published
|
registry
|
through
|
NETBIOS
|
share
|
keys
|
SNMP
|
may
|
NETBIOS share information may be published through SNMP registry keys in NT.
ICMP information such as (1) netmask and (2) ti
information
|
such
|
ICMP
|
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
An incorrect configuration of the SoftCart CGI
configuration
|
"SoftCartexe"
|
information
|
incorrect
|
disclose
|
SoftCart
|
private
|
program
|
could
|
CGI
|
An incorrect configuration of the SoftCart CGI program "SoftCart.exe" could disclose private information.
An incorrect configuration of the Webcart CGI p
configuration
|
information
|
incorrect
|
disclose
|
private
|
Webcart
|
program
|
could
|
CGI
|
An incorrect configuration of the Webcart CGI program could disclose private information.
The netstat service is running, which provides
information
|
sensitive
|
attackers
|
provides
|
service
|
netstat
|
running
|
remote
|
which
|
The netstat service is running, which provides sensitive information to remote attackers.
A service may include useful information in its
information
|
function
|
service
|
include
|
banner
|
useful
|
help
|
may
|
its
|
A service may include useful information in its banner or help function (such as the name and version), making it useful for information gathering activities.
CuteFTP uses weak encryption to store password
information
|
encryption
|
password
|
treedat
|
CuteFTP
|
store
|
uses
|
file
|
weak
|
its
|
CuteFTP uses weak encryption to store password information in its tree.dat file.
ZoneAlarm sends sensitive system and network in
information
|
cleartext
|
sensitive
|
ZoneAlarm
|
requests
|
network
|
server
|
system
|
sends
|
event
|
more
|
Zone
|
Labs
|
user
|
ZoneAlarm sends sensitive system and network information in cleartext to the Zone Labs server if a user requests more information about an event.
pdesk.cgi in PerlDesk allows remote attackers t
information
|
attackers
|
parameter
|
sensitive
|
PerlDesk
|
pdeskcgi
|
includes
|
pathname
|
invalid
|
message
|
allows
|
remote
|
error
|
which
|
lang
|
gain
|
via
|
pdesk.cgi in PerlDesk allows remote attackers to gain sensitive information via an invalid lang parameter, which includes pathname information in an error message.
Einstein 1.0 stores credit card information in
world-readable
|
information
|
walletsdat
|
plaintext
|
Einstein
|
allows
|
stores
|
credit
|
steal
|
local
|
users
|
which
|
card
|
file
|
Einstein 1.0 stores credit card information in plaintext in the world-readable wallets.dat file, which allows local users to steal the information.
StumbleInside GoText 1.01 stores sensitive user
StumbleInside
|
GoText
|
StumbleInside GoText 1.01 stores sensitive username, mail address,and phone number information in plaintext in the GoText.bin file, which allows local users to obtain that information.
WebEOC before 6.0.2 stores sensitive informatio
before
|
WebEOC
|
WebEOC before 6.0.2 stores sensitive information in locations such as URIs, web pages, and configuration files, which allows remote attackers to obtain information such as Usernames, Passwords, Emergency information, medical information, and system configuration.
Home Ftp Server 1.0.7 stores sensitive user inf
Server
|
Home
|
Ftp
|
Home Ftp Server 1.0.7 stores sensitive user information and server information in the same directory as the user's home directory, which allows remote authenticated users to obtain sensitive information by obtaining ftpmembers.lst and ftpsettings.lst.
CGIWrap before 3.10 allows remote attackers to
CGIWrap
|
before
|
CGIWrap before 3.10 allows remote attackers to obtain sensitive information via unknown attack vectors that cause errors in scripts that reveal system information.
LetterMerger 1.2 stores user information in Acc
LetterMerger
|
information
|
permissions
|
sensitive
|
insecure
|
database
|
allows
|
obtain
|
stores
|
Access
|
users
|
files
|
which
|
local
|
user
|
LetterMerger 1.2 stores user information in Access database files with insecure permissions, which allows local users to obtain sensitive information. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Unspecified vulnerability in the "Show debuggin
vulnerability
|
information"
|
Unspecified
|
debugging
|
MoinMoin
|
feature
|
"Show
|
Unspecified vulnerability in the "Show debugging information" feature in MoinMoin 1.5.7 allows remote attackers to obtain sensitive information. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Microsoft Windows Vista uses insecure default p
Vulnerability"
|
administrative
|
unspecified
|
permissions
|
information
|
"Permissive
|
Disclosure
|
Microsoft
|
sensitive
|
passwords
|
registry
|
insecure
|
default
|
Windows
|
stores"
|
allows
|
obtain
|
system
|
"local
|
Vista
|
Store
|
local
|
which
|
users
|
uses
|
ACLs
|
such
|
file
|
data
|
user
|
aka
|
Microsoft Windows Vista uses insecure default permissions for unspecified "local user information data stores" in the registry and the file system, which allows local users to obtain sensitive information such as administrative passwords, aka "Permissive User Information Store ACLs Information Disclosure Vulnerability."
Peercast places a cleartext password in a query
information
|
attackers
|
sensitive
|
obtaining
|
cleartext
|
password
|
Peercast
|
sniffing
|
history
|
network
|
browser
|
Referer
|
string
|
obtain
|
places
|
might
|
which
|
query
|
allow
|
Peercast places a cleartext password in a query string, which might allow attackers to obtain sensitive information by sniffing the network, or obtaining Referer or browser history information.
LetterGrade allows remote attackers to obtain s
information
|
LetterGrade
|
sensitive
|
attackers
|
allows
|
remote
|
obtain
|
LetterGrade allows remote attackers to obtain sensitive information (installation path or account existence) via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Software vulnerabilities results 1 to 20 of 2225
Page:
1
2
3
4
5
...
112
►