only software vulnerabilities
vulnerabilities.aspcode.net
Searching only software vulnerabilities
ZAK in Appstation mode allows users to bypass t
applications
|
Appstation
|
starting
|
Explorer
|
allowed
|
policy
|
allows
|
Office
|
bypass
|
apps"
|
users
|
mode
|
"Run
|
only
|
ZAK
|
ZAK in Appstation mode allows users to bypass the "Run only allowed apps" policy by starting Explorer from Office 97 applications (such as Word), installing software into the TEMP directory, and changing the name to that for an allowed application, such as Winword.exe.
Cabletron SmartSwitch Router (SSR) 8000 firmwar
SmartSwitch
|
Cabletron
|
Router
|
Cabletron SmartSwitch Router (SSR) 8000 firmware 2.x can only handle 200 ARP requests per second allowing a denial of service attack to succeed with a flood of ARP requests exceeding that limit.
Xylan OmniSwitch before 3.2.6 allows remote att
OmniSwitch
|
before
|
Xylan
|
Xylan OmniSwitch before 3.2.6 allows remote attackers to bypass the login prompt via a CTRL-D (control d) character, which locks other users out of the switch because it only supports one session at a time.
The gnapster and knapster clients for Napster d
specifying
|
attackers
|
arbitrary
|
properly
|
restrict
|
knapster
|
gnapster
|
pathname
|
clients
|
Napster
|
remote
|
allows
|
access
|
client
|
files
|
which
|
only
|
full
|
read
|
file
|
not
|
MP3
|
The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname for the file.
Avaya Argent Office 2.1 compares a user-provide
authentication
|
user-provided
|
community
|
attackers
|
compares
|
correct
|
Argent
|
length
|
remote
|
allows
|
string
|
Office
|
bypass
|
Avaya
|
which
|
SNMP
|
only
|
Avaya Argent Office 2.1 compares a user-provided SNMP community string with the correct string only up to the length of the user-provided string, which allows remote attackers to bypass authentication with a 0 length community string.
Beck GmbH IPC@Chip TelnetD service supports onl
administrator
|
connection
|
disconnect
|
connecting
|
attackers
|
complete
|
IPC@Chip
|
supports
|
TelnetD
|
service
|
process
|
account
|
allows
|
remote
|
which
|
login
|
lock
|
GmbH
|
only
|
does
|
user
|
Beck
|
not
|
one
|
out
|
Beck GmbH IPC@Chip TelnetD service supports only one connection and does not disconnect a user who does not complete the login process, which allows remote attackers to lock out the administrator account by connecting to the service.
SurfControl SuperScout only filters packets con
fragmenting
|
SurfControl
|
containing
|
SuperScout
|
filtering
|
contains
|
elements
|
request
|
filters
|
packets
|
allows
|
bypass
|
packet
|
header
|
which
|
users
|
local
|
both
|
data
|
only
|
Host
|
HTTP
|
GET
|
SurfControl SuperScout only filters packets containing both an HTTP GET request and a Host header, which allows local users to bypass filtering by fragmenting packets so that no packet contains both data elements.
The digital signature mechanism for the Adobe A
executable
|
arbitrary
|
attackers
|
certified
|
signature
|
mechanism
|
verifies
|
plug-in
|
digital
|
Acrobat
|
execute
|
making
|
viewer
|
appear
|
signed
|
header
|
Adobe
|
which
|
allow
|
mode
|
only
|
code
|
PDF
|
can
|
The digital signature mechanism for the Adobe Acrobat PDF viewer only verifies the PE header of executable code for a plug-in, which can allow attackers to execute arbitrary code in certified mode by making the plug-in appear to be signed by Adobe.
Unknown vulnerability or vulnerabilities in HP
vulnerabilities
|
vulnerability
|
OpenView
|
EMANATE
|
Unknown
|
Unknown vulnerability or vulnerabilities in HP OpenView EMANATE 14.2 snmpModules allow the SNMP read-write community name to be exposed, related to (1) "'read-only' community access," and/or (2) an easily guessable community name.
grsecurity 1.9.4 for Linux kernel 2.4.18 allows
grsecurity
|
grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory.
Unknown vulnerability in Java web start 1.0.1_0
vulnerability
|
Unknown
|
101_01
|
start
|
Java
|
web
|
Unknown vulnerability in Java web start 1.0.1_01, 1.0.1, 1.0 and 1.0.1.01 (HP-UX 11.x only) allows attackers to gain access to restricted resources via unknown attack vectors.
Unknown vulnerability in NFS for SGI IRIX 6.5.2
vulnerability
|
Unknown
|
IRIX
|
SGI
|
NFS
|
Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions.
Linksys WAP55AG 1.07 allows remote attackers wi
WAP55AG
|
Linksys
|
Linksys WAP55AG 1.07 allows remote attackers with access to an SNMP read only community string to gain access to read/write communtiy strings via a query for OID 1.3.6.1.4.1.3955.2.1.13.1.2.
Unknown vulnerability in the SG_IO functionalit
functionality
|
vulnerability
|
unauthorized
|
operations
|
read-only
|
Unknown
|
perform
|
access
|
bypass
|
ide-cd
|
allows
|
erase
|
write
|
SG_IO
|
local
|
users
|
Unknown vulnerability in the SG_IO functionality in ide-cd allows local users to bypass read-only access and perform unauthorized write and erase operations.
BNC 2.9.0 only grants access when an incorrect
BNC
|
BNC 2.9.0 only grants access when an incorrect password is provided, which allows remote attackers to use the functionality intended for authorized users.
SSH Tectia Server 5.0.0 (A, F, and T), when all
Server
|
Tectia
|
SSH
|
SSH Tectia Server 5.0.0 (A, F, and T), when allowing host-based authentication only, allows users to log in with the wrong credentials.
p1003_1b.c in FreeBSD 6.1 allows local users to
unspecified
|
scheduler
|
p1003_1bc
|
settable
|
service
|
setting
|
FreeBSD
|
allows
|
policy
|
should
|
denial
|
local
|
cause
|
users
|
which
|
root
|
only
|
p1003_1b.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by setting a scheduler policy, which should only be settable by root.
JAMWiki before 0.5.0 does not properly check pe
JAMWiki
|
before
|
JAMWiki before 0.5.0 does not properly check permissions during moves of "read-only or admin-only topics," which allows remote attackers to make unauthorized changes to the wiki.
Unspecified vulnerability in Oracle Database cl
vulnerability
|
client-only
|
Unspecified
|
Database
|
Oracle
|
Unspecified vulnerability in Oracle Database client-only 10.1.0.4 has unknown impact and attack vectors related to the Export component and expdp or impdp, aka DB11.
vtiger CRM before 5.0.3 allows remote authentic
before
|
vtiger
|
CRM
|
vtiger CRM before 5.0.3 allows remote authenticated users to import and export the information for a contact even when they only have the View permission.
Software vulnerabilities results 1 to 20 of 208
Page:
1
2
3
4
5
...
11
►