Searching management software vulnerabilities

Patrol management software allows a remote atta

administrator | management | attacker | password | software | conduct | attack | Patrol | allows | remote | replay | steal |

Patrol management software allows a remote attacker to conduct a replay attack to steal the administrator password.


A router's configuration service or management

configuration | management | interface | router's | service |

A router's configuration service or management interface (such as a web server or telnet) is configured to allow connections from arbitrary hosts.


Eastman Work Management 3.21 stores passwords i

Management | Eastman | Work |

Eastman Work Management 3.21 stores passwords in cleartext in the COMMON and LOCATOR registry keys, which could allow local users to gain privileges.


The Razor configuration management tool uses we

configuration | encryption | privileges | management | password | allows | local | which | users | Razor | gain | uses | weak | file | tool | its |

The Razor configuration management tool uses weak encryption for its password file, which allows local users to gain privileges.


The installation of Tumbleweed Messaging Manage

installation | Management | Tumbleweed | Messaging | System |

The installation of Tumbleweed Messaging Management System (MMS) 4.6 and earlier (formerly Worldtalk Worldsecure) creates a default account "sa" with no password.


Buffer overflow in cpqlogin.htm in web-enabled

cpqloginhtm | web-enabled | management | attackers | arbitrary | software | products | commands | overflow | Manager | execute | Insight | various | agents | Buffer | Compaq | allows | remote | long | user | such | name | via |

Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software products such as Insight Manager and Management Agents allows remote attackers to execute arbitrary commands via a long user name.


content.pl script in NCM Content Management Sys

Management | characters | attackers | arbitrary | parameter | inserting | contentpl | contents | database | Content | allows | script | remote | System | read | into | NCM | SQL |

content.pl script in NCM Content Management System allows remote attackers to read arbitrary contents of the content database by inserting SQL characters into the id parameter.


Symantec/AXENT NetProwler 3.5.x contains severa

Symantec/AXENT | NetProwler | passwords | attackers | contains | default | several | remote | allow | which | could | 35x |

Symantec/AXENT NetProwler 3.5.x contains several default passwords, which could allow remote attackers to (1) access to the management tier via the "admin" password, or (2) connect to a MySQL ODBC from the management tier using a blank password.


Buffer overflow in the Web management interface

management | EtherFast | interface | Cable/DSL | wireless | firmware | BEFSRU31 | overflow | BEFW11S4 | BEFSR11 | BEFSR41 | Linksys | routers | before | Buffer | router | access | point | Web |

Buffer overflow in the Web management interface in Linksys BEFW11S4 wireless access point router 2 and BEFSR11, BEFSR41, and BEFSRU31 EtherFast Cable/DSL routers with firmware before 1.43.3 with remote management enabled allows remote attackers to cause a denial of service (router crash) via a long password.


Cross-site scripting (XSS) vulnerability in the

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote attackers to steal cookies and hijack a management session via a /sgmi URL that contains malicious script, which is not quoted in the resulting error page.


The web management interface in Edimax AR-6004

administrator | management | attackers | interface | password | default | Routers | AR-6004 | appear | allows | remote | Edimax | access | login | which | gain | text | uses | ADSL | also | name | web |

The web management interface in Edimax AR-6004 ADSL Routers uses a default administrator name and password, which also appear as the default login text for the management interface, which allows remote attackers to gain access.


Multiple unknown vulnerabilities in Real Estate

vulnerabilities | Management | Multiple | Software | unknown | vectors | impact | attack | Estate | Real | have |

Multiple unknown vulnerabilities in Real Estate Management Software 1.0 have unknown impact and attack vectors.


The firmware for Intelligent Platform Managemen

Intelligent | Management | Interface | firmware | Platform |

The firmware for Intelligent Platform Management Interface (IPMI) 1.5-based Intel Server Boards and Platforms is shipped with an Authentication Type Enables parameter set to an invalid None parameter, which allows remote attackers to obtain sensitive information when LAN management functionality is enabled.


Unknown vulnerability in Radia Management Agent

vulnerability | Management | Unknown | Agent | Radia |

Unknown vulnerability in Radia Management Agent (RMA) in HP OpenView Radia Management Portal (RMP) 1.x and 2.x allows remote attackers to execute arbitrary commands via unknown vectors.


Belkin F5D7232-4 and F5D7230-4 wireless routers

F5D7230-4 | F5D7232-4 | firmware | wireless | routers | Belkin |

Belkin F5D7232-4 and F5D7230-4 wireless routers with firmware 4.03.03 and 4.05.03, when a legitimate administrator is logged into the web management interface, allow remote attackers to access the management inferface without authentication.


SmcGui.exe in Sygate Protection Agent 5.0 build

Protection | SmcGuiexe | Sygate | build | Agent |

SmcGui.exe in Sygate Protection Agent 5.0 build 6144 allows local users to obtain management control over the agent by executing the GUI (SmcGui.exe) and then killing the process, which causes the privileged management GUI to launch.


Mail Management Agent (MAILMA) (aka Mail Manage

Management | Agent | Mail |

Mail Management Agent (MAILMA) (aka Mail Management Server) in Rockliffe MailSite 7.0.3.1 and earlier generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid usernames via user requests to TCP port 106.


Mail Management Agent (MAILMA) (aka Mail Manage

Management | Agent | Mail |

Mail Management Agent (MAILMA) (aka Mail Management Server) in Rockliffe MailSite 7.0.3.1 and earlier allows remote attackers to attempt authentication with an unlimited number of user account names and passwords without denying connections, limiting the rate of connections, or locking out an account.


OpenVPN 2.0.7 and earlier, when configured to u

OpenVPN |

OpenVPN 2.0.7 and earlier, when configured to use the --management option with an IP that is not 127.0.0.1, uses a cleartext password for TCP sessions to the management interface, which might allow remote attackers to view sensitive information or cause a denial of service.


SSH Tectia Management Agent 2.1.2 allows local

Management | Tectia | Agent | SSH |

SSH Tectia Management Agent 2.1.2 allows local users to gain root privileges by running a program called sshd, which is obtained from a process listing when the "Restart" action is selected from the Management server GUI, which causes the agent to locate the pathname of the user's program and restart it with root privileges.


Software vulnerabilities results 1 to 20 of 304     
Page: 12345...16