Searching mod digest apple software vulnerabilities

Vulnerability in digest in AIX 4.3 allows print

Vulnerability | privileges | creating | modifing | and/or | system | digest | printq | allows | users | file | gain | root | AIX | any |

Vulnerability in digest in AIX 4.3 allows printq users to gain root privileges by creating and/or modifing any file on the system.


Vulnerability in Apache httpd before 1.3.11, wh

Vulnerability | before | Apache | httpd |

Vulnerability in Apache httpd before 1.3.11, when configured for mass virtual hosting using mod_rewrite, or mod_vhost_alias in Apache 1.3.9, allows remote attackers to retrieve arbitrary files.


The default installation of Apache before 1.3.1

installation | default | before | Apache |

The default installation of Apache before 1.3.19 allows remote attackers to list directories instead of the multiview index.html file via an HTTP request for a path that contains many / (slash) characters, which causes the path to be mishandled by (1) mod_negotiation, (2) mod_dir, or (3) mod_autoindex.


Buffer overflow in digest calculation function

implementations | calculation | arbitrary | attackers | overflow | possibly | function | multiple | execute | service | secret | shared | Buffer | allows | RADIUS | digest | denial | remote | cause | data | code | via |

Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data.


The PostgreSQL authentication modules (1) mod_a

authentication | PostgreSQL | modules |

The PostgreSQL authentication modules (1) mod_auth_pgsql 0.9.5, and (2) mod_auth_pgsql_sys 0.9.4, allow remote attackers to bypass authentication and execute arbitrary SQL via a SQL injection attack on the user name.


mod_digest for Apache before 1.3.31 does not pr

mod_digest | before | Apache |

mod_digest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret.


Attachment Mod 2.3.10 module for phpBB, when us

Attachment | Mod |

Attachment Mod 2.3.10 module for phpBB, when used with Apache mod_mime, does not properly handle files with multiple file extensions, such as .php.rar, which allows remote attackers to upload and execute arbitrary code.


Multiple buffer overflows in the digest authent

authentication | functionality | attackers | arbitrary | overflows | Multiple | earlier | execute | 0928-r2 | digest | remote | buffer | allow | Pavuk | code |

Multiple buffer overflows in the digest authentication functionality in Pavuk 0.9.28-r2 and earlier allow remote attackers to execute arbitrary code.


Buffer overflow in the POP3 server in 1st Class

attackers | overflow | service | allows | remote | server | Buffer | denial | Class | cause | POP3 | Mail | 1st |

Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest).


Secure Elements Class 5 AVR (aka C5 EVM) client

Elements | Secure | Class | AVR |

Secure Elements Class 5 AVR (aka C5 EVM) client and server before 2.8.1 do not verify the integrity of a message digest, which allows remote attackers to modify and replay messages.


Multiple PHP remote file inclusion vulnerabilit

vulnerabilities | mambo-phpshop | inclusion | Multiple | Scroller | modules | Product | Module | remote | other | file | PHP |

Multiple PHP remote file inclusion vulnerabilities in the Product Scroller Module and other modules in mambo-phpshop (com_phpshop) for Mambo and Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter in (1) mod_phpshop.php, (2) mod_phpshop_allinone.php, (3) mod_phpshop_cart.php, (4) mod_phpshop_featureprod.php, (5) mod_phpshop_latestprod.php, (6) mod_product_categories.php, (7) mod_productscroller.php, and (8) mosproductsnap.php.


Unspecified vulnerability in the random number

vulnerability | Unspecified | generator | OpenWBEM | random | number |

Unspecified vulnerability in the random number generator in OpenWBEM (Web Based Enterprise Management) 3.2.0 allows attackers to gain privileges via vectors related to "local or HTTP Digest authentication."


Multiple SQL injection vulnerabilities in mod.p

vulnerabilities | eNdonesia | attackers | arbitrary | injection | commands | Multiple | execute | modphp | remote | allow | via | SQL |

Multiple SQL injection vulnerabilities in mod.php in eNdonesia 8.4 allow remote attackers to execute arbitrary SQL commands via (1) the did parameter in a (a) viewdisk operation (diskusi mod), or the (2) cid parameter in a (b) viewlink (katalog mod) or (b) viewcat (diskusi mod) operation.


The Grandstream BudgeTone 200 IP phone, with pr

Grandstream | BudgeTone |

The Grandstream BudgeTone 200 IP phone, with program 1.1.1.14 and bootloader 1.1.1.5, allows remote attackers to cause a denial of service (device crash) via SIP (1) INVITE, (2) CANCEL, or unspecified other messages with a WWW-Authenticate header containing a crafted Digest domain.


CRLF injection vulnerability in the Digest Auth

Authentication | vulnerability | Microsoft | injection | Internet | Explorer | support | Digest | CRLF |

CRLF injection vulnerability in the Digest Authentication support for Microsoft Internet Explorer 7.0.5730.11 allows remote attackers to conduct HTTP response splitting attacks via a LF (%0a) in the username attribute.


CRLF injection vulnerability in the Digest Auth

Authentication | vulnerability | injection | support | Firefox | Mozilla | Digest | CRLF |

CRLF injection vulnerability in the Digest Authentication support for Mozilla Firefox 2.0.0.3 allows remote attackers to conduct HTTP response splitting attacks via a LF (%0a) in the username attribute.


Multiple PHP remote file inclusion vulnerabilit

vulnerabilities | config[pathMod] | inclusion | attackers | arbitrary | parameter | Multiple | indexphp | execute | earlier | remote | PMECMS | allow | file | code | PHP | via | URL |

Multiple PHP remote file inclusion vulnerabilities in PMECMS 1.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the config[pathMod] parameter to index.php in (1) mod/image/, (2) mod/liens/, (3) mod/liste/, (4) mod/special/, or (5) mod/texte/.


The Avaya 4602SW IP Phone (Model 4602D02A) with

4602SW | Phone | Avaya |

The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware does not use the cnonce parameter in the Authorization header of SIP requests during MD5 digest authentication, which allows remote attackers to conduct man-in-the-middle attacks and hijack or intercept communications.


mod_auth (http_auth.c) in lighttpd before 1.4.1

mod_auth |

mod_auth (http_auth.c) in lighttpd before 1.4.16 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors involving (1) a memory leak, (2) use of md5-sess without a cnonce, (3) base64 encoded strings, and (4) trailing whitespace in the Auth-Digest header.


lighttpd 1.4.15, when run on 32 bit platforms,

lighttpd |

lighttpd 1.4.15, when run on 32 bit platforms, allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors involving the use of incompatible format specifiers in certain debugging messages in the (1) mod_scgi, (2) mod_fastcgi, and (3) mod_webdav modules.


Software vulnerabilities results 1 to 20 of 565     
Page: 12345...29