physical software vulnerabilities
vulnerabilities.aspcode.net
Searching physical software vulnerabilities
The default setting for the Winlogon key entry
ShutdownWithoutLogon
|
Winlogon
|
physical
|
Windows
|
without
|
default
|
setting
|
logging
|
access
|
system
|
allows
|
entry
|
users
|
shut
|
down
|
key
|
The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in.
CDE screen lock program (screenlock) on Solaris
program
|
screen
|
lock
|
CDE
|
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.
The Economist screen saver 1999 with the "Passw
Economist
|
screen
|
saver
|
The Economist screen saver 1999 with the "Password Protected" option enabled allows users with physical access to the machine to bypass the screen saver and read files by running Internet Explorer while the screen is still locked.
Macromedia "The Matrix" screen saver on Windows
protected"
|
Macromedia
|
attackers
|
"Password
|
physical
|
pressing
|
password
|
enabled
|
machine
|
Windows
|
Matrix"
|
screen
|
bypass
|
prompt
|
allows
|
option
|
access
|
saver
|
"The
|
ESC
|
Macromedia "The Matrix" screen saver on Windows 95 with the "Password protected" option enabled allows attackers with physical access to the machine to bypass the password prompt by pressing the ESC (Escape) key.
Frontpage Server Extensions allows remote attac
Extensions
|
htimageexe
|
attackers
|
determine
|
directory
|
Frontpage
|
physical
|
virtual
|
request
|
program
|
remote
|
allows
|
Server
|
path
|
CGI
|
GET
|
via
|
Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program.
The file transfer component of AOL Instant Mess
component
|
Messenger
|
transfer
|
Instant
|
file
|
AOL
|
The file transfer component of AOL Instant Messenger (AIM) reveals the physical path of the transferred file to the remote recipient.
The shtml.exe component of Microsoft FrontPage
Microsoft
|
FrontPage
|
component
|
shtmlexe
|
The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.
PalmOS 3.5.2 and earlier uses weak encryption t
PalmOS
|
PalmOS 3.5.2 and earlier uses weak encryption to store the user password, which allows attackers with physical access to the Palm device to decrypt the password and gain access to the device.
document.d2w CGI program in the IBM Net.Data db
nonexistent
|
documentd2w
|
attackers
|
determine
|
physical
|
package
|
program
|
command
|
NetData
|
sending
|
server
|
allows
|
db2www
|
remote
|
path
|
CGI
|
IBM
|
web
|
document.d2w CGI program in the IBM Net.Data db2www package allows remote attackers to determine the physical path of the web server by sending a nonexistent command to the program.
BroadVision One-To-One Enterprise allows remote
BroadVision
|
requesting
|
Enterprise
|
One-To-One
|
determine
|
attackers
|
physical
|
server
|
allows
|
remote
|
exist
|
files
|
name
|
does
|
path
|
file
|
not
|
JSP
|
BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist.
HSWeb 2.0 HTTP server allows remote attackers t
attackers
|
directory
|
browsing
|
physical
|
enabled
|
request
|
obtain
|
server
|
allows
|
remote
|
HSWeb
|
which
|
/cgi/
|
list
|
HTTP
|
path
|
via
|
HSWeb 2.0 HTTP server allows remote attackers to obtain the physical path of the server via a request to the /cgi/ directory, which will list the path if directory browsing is enabled.
tstisapi.dll in Pi3Web 1.0.1 web server allows
tstisapidll
|
Pi3Web
|
tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to determine the physical path of the server via a URL that requests a non-existent file.
Netcruiser Web server version 0.1.2.8 and earli
Netcruiser
|
version
|
server
|
Web
|
Netcruiser Web server version 0.1.2.8 and earlier allows remote attackers to determine the physical path of the server via a URL containing (1) con, (2) com2, or (3) com3.
Cooolsoft PowerFTP Server 2.03 allows remote at
Cooolsoft
|
PowerFTP
|
Server
|
Cooolsoft PowerFTP Server 2.03 allows remote attackers to obtain the physical path of the server root via the pwd command, which lists the full pathname.
Logitech iTouch keyboards allows attackers with
user-defined
|
attackers
|
keyboards
|
function
|
commands
|
physical
|
Logitech
|
assigned
|
locking
|
execute
|
button
|
access
|
allows
|
iTouch
|
bypass
|
screen
|
system
|
have
|
been
|
Logitech iTouch keyboards allows attackers with physical access to the system to bypass the screen locking function and execute user-defined commands that have been assigned to a button.
Resin 2.0.5 through 2.1.2 allows remote attacke
Resin
|
Resin 2.0.5 through 2.1.2 allows remote attackers to reveal physical path information via a URL request for the example Java class file HelloServlet.
A design error in the IEEE1394 specification al
specification
|
FireWire/IEEE
|
sensitive
|
attackers
|
physical
|
IEEE1394
|
modified
|
memory
|
device
|
allows
|
design
|
access
|
error
|
using
|
write
|
read
|
A design error in the IEEE1394 specification allows attackers with physical access to a device to read and write to sensitive memory using a modified FireWire/IEEE 1394 client, thus bypassing intended restrictions that would normally require greater degrees of physical access to exploit.
phpScheduleIt 1.0.0 RC1 does not clear administ
phpScheduleIt
|
phpScheduleIt 1.0.0 RC1 does not clear administrative privileges if the administrator logs in as a normal user, which allows users with physical access to gain administrative privileges.
AppKit for Mac OS X 10.3.9 and 10.4.2 allows at
AppKit
|
Mac
|
AppKit for Mac OS X 10.3.9 and 10.4.2 allows attackers with physical access to create local accounts by forcing a particular error to occur at the login window.
Planet Technology Corp FGSW2402RS switch with f
privileges
|
FGSW2402RS
|
Technology
|
attackers
|
password
|
device's
|
physical
|
firmware
|
default
|
access
|
allows
|
Planet
|
switch
|
serial
|
which
|
gain
|
Corp
|
port
|
has
|
Planet Technology Corp FGSW2402RS switch with firmware 1.2 has a default password, which allows attackers with physical access to the device's serial port to gain privileges.
Software vulnerabilities results 1 to 20 of 91
Page:
1
2
3
4
5
►