intrusion software vulnerabilities
vulnerabilities.aspcode.net
Searching intrusion software vulnerabilities
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly handle packets that are sent out of order, allowing an attacker to escape detection.
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly handle packets with improper sequence numbers.
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly handle data within TCP handshake packets.
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly reassemble fragmented packets.
eTrust Intrusion Detection System (formerly Ses
Detection
|
Intrusion
|
System
|
eTrust
|
eTrust Intrusion Detection System (formerly SessionWall-3) uses weak encryption (XOR) to store administrative passwords in the registry, which allows local users to easily decrypt the passwords.
Various Intrusion Detection Systems (IDS) inclu
Detection
|
Intrusion
|
Systems
|
Various
|
Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL.
The default aide.conf file in Advanced Intrusio
Environment
|
Intrusion
|
Detection
|
Advanced
|
aideconf
|
default
|
file
|
The default aide.conf file in Advanced Intrusion Detection Environment (AIDE) before 0.7_1 on FreeBSD before 2002-08-28 does not properly check subdirectories, which could allow local users to bypass detection.
Unknown vulnerability in the DNS intrusion dete
vulnerability
|
Acceleration
|
application
|
Microsoft
|
detection
|
intrusion
|
Security
|
Internet
|
Unknown
|
filter
|
DNS
|
Unknown vulnerability in the DNS intrusion detection application filter for Microsoft Internet Security and Acceleration (ISA) Server 2000 allows remote attackers to cause a denial of service (blocked traffic to DNS servers) via a certain type of incoming DNS request that is not properly handled.
Prevx Home 1.0 allows local users with adminstr
\device\physicalmemory
|
ServiceTable
|
adminstrator
|
privileges
|
prevention
|
intrusion
|
restores
|
directly
|
original
|
kernel's
|
features
|
running
|
writing
|
allows
|
bypass
|
Prevx
|
users
|
which
|
local
|
Home
|
SDT
|
Prevx Home 1.0 allows local users with adminstrator privileges to bypass the intrusion prevention features by directly writing to \device\physicalmemory, which restores the running kernel's original SDT ServiceTable.
Computer Associates (CA) eTrust Intrusion Detec
Associates
|
Computer
|
Computer Associates (CA) eTrust Intrusion Detection 3.0 allows remote attackers to cause a denial of service via large size values that are not properly validated before calling the CPImportKey function in the Crypto API.
Unspecified vulnerability in the command line p
vulnerability
|
Unspecified
|
processing
|
command
|
line
|
Unspecified vulnerability in the command line processing (CLI) logic in Cisco Intrusion Prevention System 5.0(1) and 5.0(2) allows local users with OPERATOR or VIEWER privileges to gain additional privileges via unknown vectors.
Unspecified vulnerability in the SSL certificat
functionality
|
vulnerability
|
Unspecified
|
certificate
|
Management
|
CiscoWorks
|
checking
|
Sensors
|
Center
|
Cisco
|
SSL
|
IDS
|
Unspecified vulnerability in the SSL certificate checking functionality in Cisco CiscoWorks Management Center for IDS Sensors (IDSMC) 2.0 and 2.1, and Monitoring Center for Security (Security Monitor or Secmon) 1.1 through 2.0 and 2.1, allows remote attackers to spoof a Cisco Intrusion Detection Sensor (IDS) or Intrusion Prevention System (IPS).
SQL injection vulnerability in base_qry_main.ph
base_qry_mainphp
|
vulnerability
|
Intrusion
|
Databases
|
injection
|
Analysis
|
Console
|
SQL
|
SQL injection vulnerability in base_qry_main.php in Analysis Console for Intrusion Databases (ACID) 0.9.6b20 and Basic Analysis and Security Engine (BASE) 1.2 allows remote attackers to execute arbitrary SQL commands via the sig[1] parameter.
TippingPoint Intrusion Prevention System (IPS)
TippingPoint
|
Prevention
|
Intrusion
|
System
|
TippingPoint Intrusion Prevention System (IPS) TOS before 2.1.4.6324, and TOS 2.2.x before 2.2.1.6506, allow remote attackers to cause a denial of service (CPU consumption) via an unknown vector, probably involving an HTTP request with a negative number in the Content-Length header.
The device driver for Intel-based gigabit netwo
Intel-based
|
Prevention
|
Intrusion
|
adapters
|
network
|
gigabit
|
device
|
System
|
driver
|
Cisco
|
The device driver for Intel-based gigabit network adapters in Cisco Intrusion Prevention System (IPS) 5.1(1) through 5.1(p1), as installed on various Cisco Intrusion Prevention System 42xx appliances, allows remote attackers to cause a denial of service (kernel panic and possibly network outage) via a crafted IP packet.
Stack-based buffer overflow in the DCE/RPC prep
preprocessor
|
Stack-based
|
overflow
|
DCE/RPC
|
before
|
buffer
|
Snort
|
Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.
Computer Associates Host Intrusion Prevention S
Prevention
|
Associates
|
Intrusion
|
Computer
|
System
|
Host
|
Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers.
The Intrusion Prevention System (IPS) feature f
Prevention
|
Intrusion
|
System
|
The Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XE to 12.3T allows remote attackers to bypass IPS signatures that use regular expressions via fragmented packets.
The ATOMIC.TCP signature engine in the Intrusio
Prevention
|
Intrusion
|
ATOMICTCP
|
signature
|
System
|
engine
|
The ATOMIC.TCP signature engine in the Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XA, 12.3YA, 12.3T, and other trains allows remote attackers to cause a denial of service (IPS crash and traffic loss) via unspecified manipulations that are not properly handled by the regular expression feature, as demonstrated using the 3123.0 (Netbus Pro Traffic) signature.
Heap-based buffer overflow in SW3eng.exe in the
Heap-based
|
SW3engexe
|
overflow
|
service
|
Engine
|
buffer
|
eID
|
Heap-based buffer overflow in SW3eng.exe in the eID Engine service in CA (formerly Computer Associates) eTrust Intrusion Detection 3.0.5.57 and earlier allows remote attackers to cause a denial of service (application crash) via a long key length value to the remote administration port (9191/tcp).
Software vulnerabilities results 1 to 20 of 28
Page:
1
2
►