matches software vulnerabilities
vulnerabilities.aspcode.net
Searching matches software vulnerabilities
The SSH-1 protocol allows remote servers conduc
man-in-the-middle
|
corresponding
|
compromised
|
masquerade
|
challenge
|
target's
|
response
|
creating
|
protocol
|
attacker
|
Session
|
private
|
matches
|
compute
|
conduct
|
attacks
|
servers
|
replay
|
weaker
|
remote
|
allows
|
target
|
client
|
public
|
server
|
SSH-1
|
which
|
than
|
pair
|
uses
|
key
|
but
|
use
|
The SSH-1 protocol allows remote servers conduct man-in-the-middle attacks and replay a client challenge response to a target server by creating a Session ID that matches the Session ID of the target, but which uses a public key pair that is weaker than the target's public key, which allows the attacker to compute the corresponding private key and use the target's Session ID with the compromised key pair to masquerade as the target.
The Javascript "Same Origin Policy" (SOP), as i
Javascript
|
Policy"
|
Origin
|
"Same
|
The Javascript "Same Origin Policy" (SOP), as implemented in (1) Netscape, (2) Mozilla, and (3) Internet Explorer, allows a remote web server to access HTTP and SOAP/XML content from restricted sites by mapping the malicious server's parent DNS domain name to the restricted site, loading a page from the restricted site into one frame, and passing the information to the attacker-controlled frame, which is allowed because the document.domain of the two frames matches on the parent domain.
phpSquidPass before 0.2 uses an incomplete regu
authenticated
|
phpSquidPass
|
effectively
|
incomplete
|
expression
|
attackers
|
usernames
|
database
|
targeted
|
username
|
matching
|
matches
|
regular
|
delete
|
before
|
allows
|
remote
|
short
|
other
|
which
|
uses
|
find
|
its
|
end
|
via
|
phpSquidPass before 0.2 uses an incomplete regular expression to find a matching username in its database, which allows remote authenticated attackers to effectively delete other usernames via a short username that matches the end of the targeted username.
The URL pattern matching feature in BEA WebLogi
restrictions
|
wildcards
|
attackers
|
WebLogic
|
patterns
|
matching
|
rejected
|
properly
|
intended
|
because
|
feature
|
pattern
|
matches
|
illegal
|
ending
|
remote
|
Server
|
access
|
bypass
|
allow
|
which
|
legal
|
cause
|
could
|
they
|
were
|
"/*"
|
URL
|
BEA
|
"*"
|
The URL pattern matching feature in BEA WebLogic Server 6.x matches illegal patterns ending in "*" as wildcards as if they were the legal "/*" pattern, which could cause WebLogic 7.x to allow remote attackers to bypass intended access restrictions because the illegal patterns are properly rejected.
Buffer overflow in discdb.c for grip 3.1.2 allo
overflow
|
discdbc
|
Buffer
|
grip
|
Buffer overflow in discdb.c for grip 3.1.2 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the cddb lookup to return more matches than expected.
The siteaccess URIMatching implementation in eZ
implementation
|
URIMatching
|
siteaccess
|
through
|
publish
|
before
|
The siteaccess URIMatching implementation in eZ publish 3.5 through 3.8 before Friday, August 12, 2005 converts all non-alphanumeric characters in a URI to '_' (underscore), which allows remote attackers to bypass access restrictions by inserting certain characters in a URI, as demonstrated by a request for /admin:de, which matches a rule allowing only /admin_de to access /admin.
Tor before 0.1.1.20 does not validate that a se
before
|
Tor
|
Tor before 0.1.1.20 does not validate that a server descriptor's fingerprint line matches its identity key, which allows remote attackers to spoof the fingerprint line, which might be trusted by users or other applications.
SQL-Ledger 2.4.4 through 2.6.17 authenticates u
SQL-Ledger
|
SQL-Ledger 2.4.4 through 2.6.17 authenticates users by verifying that the value of the sql-ledger-[username] cookie matches the value of the sessionid parameter, which allows remote attackers to gain access as any logged-in user by setting the cookie and the parameter to the same value.
The (1) Password Manager in Mozilla Firefox 2.0
The (1) Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and earlier; and the (2) Passcard Manager in Netscape 8.1.2 and possibly other versions, do not properly verify that an ACTION URL in a FORM element containing a password INPUT element matches the web site for which the user stored a password, which allows remote attackers to obtain passwords via a password INPUT element on a different web page located on the web site intended for this password.
Buffer overflow in TinyMUX before 2.4 allows at
unspecified
|
$-command"
|
attackers
|
substring
|
overflow
|
matches
|
related
|
vectors
|
service
|
TinyMUX
|
regexp
|
Buffer
|
before
|
denial
|
allows
|
cause
|
"too
|
many
|
via
|
Buffer overflow in TinyMUX before 2.4 allows attackers to cause a denial of service via unspecified vectors related to "too many substring matches in a regexp $-command." NOTE: some of these details are obtained from third party information.
Microsoft Internet Explorer 7 allows remote att
attackers
|
Microsoft
|
Explorer
|
Internet
|
service
|
denial
|
allows
|
remote
|
cause
|
Microsoft Internet Explorer 7 allows remote attackers to cause a denial of service (browser hang) via JavaScript that matches a regular expression against a long string, as demonstrated using /(.)*/.
(1) Mozilla Firefox 2.0.0.3 and (2) GNU IceWeas
(1) Mozilla Firefox 2.0.0.3 and (2) GNU IceWeasel 2.0.0.3 allow remote attackers to cause a denial of service (browser crash or system hang) via JavaScript that matches a regular expression against a long string, as demonstrated using /(.)*/.
Apple Safari allows remote attackers to cause a
attackers
|
service
|
denial
|
remote
|
Safari
|
allows
|
Apple
|
cause
|
Apple Safari allows remote attackers to cause a denial of service (browser crash) via JavaScript that matches a regular expression against a long string, as demonstrated using /(.)*/.
Konqueror 3.5.5 release 45.4 allows remote atta
Konqueror
|
Konqueror 3.5.5 release 45.4 allows remote attackers to cause a denial of service (browser crash or abort) via JavaScript that matches a regular expression against a long string, as demonstrated using /(.)*/.
Cross-site scripting (XSS) vulnerability in Sop
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Sophos Anti-Virus for Windows 6.x before 6.5.8 and 7.x before 7.0.1 allows remote attackers to inject arbitrary web script or HTML via an archive with a file that matches a virus signature and has a crafted filename that is not properly handled by the print function in SavMain.exe.
The connect method in lib/net/http.rb in the (1
lib/net/httprb
|
connect
|
method
|
The connect method in lib/net/http.rb in the (1) Net::HTTP and (2) Net::HTTPS libraries in Ruby 1.8.5 and 1.8.6 does not verify that the commonName (CN) field in a server certificate matches the domain name in an HTTPS request, which makes it easier for remote attackers to intercept SSL transmissions via a man-in-the-middle attack or spoofed web site.
Software vulnerabilities results 1 to 17 of 17
Page:
1