Searching networks software vulnerabilities

The Lucent Closed Network protocol can allow re

transmitted | attackers | networks | protocol | 'Network | Network | secret | access | shared | remote | Closed | Lucent | clear | Name' | which | allow | used | SSID | they | join | have | can | not |

The Lucent Closed Network protocol can allow remote attackers to join Closed Network networks which they do not have access to. The 'Network Name' or SSID, which is used as a shared secret to join the network, is transmitted in the clear.


Foundry Networks ServerIron switches do not dec

vulnerabilities | inaccessible | ServerIron | otherwise | attackers | different | "url-map" | intended | switches | Networks | applying | traffic | Foundry | exploit | forward | server | switch | easier | decode | which | rules | would | could | cause | make | than | URIs | not |

Foundry Networks ServerIron switches do not decode URIs when applying "url-map" rules, which could make it easier for attackers to cause the switch to forward traffic to a different server than intended and exploit vulnerabilities that would otherwise be inaccessible.


The default configuration of Foundry Networks E

configuration | information | sensitive | attackers | community | arbitrary | EdgeIron | Networks | strings | Foundry | default | allows | modify | remote | 4802F | SNMP | via |

The default configuration of Foundry Networks EdgeIron 4802F allows remote attackers to modify sensitive information via arbitrary SNMP community strings.


SMC Networks Barricade Wireless Cable/DSL Broad

SMC7004VWBR | Cable/DSL | Broadband | attackers | Barricade | Networks | Wireless | packets | service | certain | denial | allows | Router | remote | cause | PPTP | port | via | SMC |

SMC Networks Barricade Wireless Cable/DSL Broadband Router SMC7004VWBR allows remote attackers to cause a denial of service via certain packets to PPTP port 1723 on the internal interface.


The Session Initiation Protocol (SIP) implement

Initiation | Protocol | Session |

The Session Initiation Protocol (SIP) implementation in Nortel Networks Succession Communication Server 2000, when using SIP-T, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.


Efficient Networks 5861 DSL router, when runnin

Efficient | Networks |

Efficient Networks 5861 DSL router, when running firmware 5.3.80 configured to block incoming TCP SYN, packets allows remote attackers to cause a denial of service (crash) via a flood of TCP SYN packets to the WAN interface using a port scanner such as nmap.


Multiple vulnerabilities in the H.323 protocol

vulnerabilities | implementation | Communications | Networks | Business | Multiple | protocol | Manager | Nortel | H323 |

Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.


Buffer overflow in Real Networks RealPlayer 10

RealPlayer | attackers | arbitrary | overflow | Networks | execute | number | Buffer | remote | allows | large | code | Real | via | URL |

Buffer overflow in Real Networks RealPlayer 10 allows remote attackers to execute arbitrary code via a URL with a large number of "." (period) characters.


Nortel Networks Contivity VPN Client displays a

information | attackers | different | depending | Contivity | sensitive | username | Networks | displays | invalid | whether | message | remote | Client | Nortel | allow | error | valid | could | which | gain | VPN |

Nortel Networks Contivity VPN Client displays a different error message depending on whether the username is valid or invalid, which could allow remote attackers to gain sensitive information.


Unknown vulnerability in ScreenOS in Juniper Ne

vulnerability | NetScreen | attackers | firewall | Networks | ScreenOS | service | Unknown | Juniper | through | denial | allows | remote | cause |

Unknown vulnerability in ScreenOS in Juniper Networks NetScreen firewall 3.x through 5.x allows remote attackers to cause a denial of service (device reboot or hang) via a crafted SSH v1 packet.


SQL injection vulnerability in IP3 Networks Net

authentication | vulnerability | NetAccess | Appliance | attackers | injection | firmware | Networks | 3118b13 | remote | bypass | before | allows | via | SQL | IP3 |

SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.


Integer overflow in IEEE 802.11 network subsyst

overflow | Integer | IEEE |

Integer overflow in IEEE 802.11 network subsystem (ieee80211_ioctl.c) in FreeBSD before 6.0-STABLE, while scanning for wireless networks, allows remote attackers to execute arbitrary code by broadcasting crafted (1) beacon or (2) probe response frames.


IPSec when used with VPN networks in Mac OS X 1

networks | IPSec | used | Mac | VPN |

IPSec when used with VPN networks in Mac OS X 10.4 through 10.4.5 allows remote attackers to cause a denial of service (application crash) via unspecified vectors involving the "incorrect handling of error conditions".


na-img-4.0.34.bin for the IP3 Networks NetAcces

na-img-4034bin | NetAccess | Networks | allows | access | users | shell | local | NA75 | Unix | gain | "`" | via | IP3 |

na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 allows local users to gain Unix shell access via "`" (backtick) characters in the appliance's command line interface (CLI).


na-img-4.0.34.bin for the IP3 Networks NetAcces

na-img-4034bin | NetAccess | username | password | Networks | default | admin | NA75 | IP3 | has |

na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has a default username of admin and a default password of admin.


The (1) shadow password file in na-img-4.0.34.b


The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess database file has world readable and writable permissions, which allows local users to view sensitive information and modify data.


Unspecified vulnerability in Juniper Networks J

vulnerability | demonstrated | Unspecified | E-series | Networks | vectors | related | unknown | "client | Juniper | routers | attack | PROTOS | before | JUNOSe | remote | impact | OUSPG | suite | 7-1-1 | code" | test | has | DNS |

Unspecified vulnerability in Juniper Networks JUNOSe E-series routers before 7-1-1 has unknown impact and remote attack vectors related to the DNS "client code," as demonstrated by the OUSPG PROTOS DNS test suite.


PHP remote file inclusion vulnerability in strl

vulnerability | strloadphp | phpOnline | inclusion | Networks | Dayana | remote | file | PHP |

PHP remote file inclusion vulnerability in strload.php in Dayana Networks phpOnline (aka PHP-Online) 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the LangFile parameter.


Cross-site scripting (XSS) vulnerability in my.

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in my.acctab.php3 in F5 Networks FirePass 1000 SSL VPN 5.5, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the sid parameter.


Unspecified vulnerability in March Networks DVR

vulnerability | Unspecified | Networks | March | DVR |

Unspecified vulnerability in March Networks DVR 3000 and 4000 Digital Video Recorders allows attackers to cause an unspecified denial of service. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.


Software vulnerabilities results 1 to 20 of 38     
Page: 12