people software vulnerabilities
vulnerabilities.aspcode.net
Searching people software vulnerabilities
Internet Explorer 5.0 records the username and
username
|
password
|
Internet
|
Explorer
|
servers
|
history
|
records
|
which
|
allow
|
could
|
FTP
|
URL
|
Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information from another user's index.dat, or (2) people who are physically observing ("shoulder surfing") another user to read the information from the status bar when the user moves the mouse over a link.
The PSCipher function in PeopleSoft People Tool
PeopleSoft
|
dictionary
|
passwords
|
PSCipher
|
function
|
compares
|
strings
|
attack
|
easier
|
People
|
output
|
makes
|
local
|
guess
|
users
|
store
|
fixed
|
using
|
which
|
Tools
|
uses
|
PKCS
|
user
|
84x
|
key
|
DES
|
The PSCipher function in PeopleSoft People Tools 8.4x uses PKCS #5 with a fixed DES key to store user passwords, which makes it easier for local users to guess passwords using a dictionary attack that compares output strings.
Cross-site scripting (XSS) vulnerability in ind
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in index.php AlstraSoft E-Friends allows remote attackers to inject arbitrary web script or HTML via the p_id parameter in a people_card action. NOTE: this might overlap CVE-2006-2564.
Software vulnerabilities results 1 to 4 of 4
Page:
1