poison software vulnerabilities
vulnerabilities.aspcode.net
Searching poison software vulnerabilities
The ARP protocol allows any host to spoof ARP r
spoofing
|
protocol
|
conduct
|
replies
|
service
|
address
|
denial
|
poison
|
allows
|
spoof
|
cache
|
host
|
ARP
|
any
|
The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service.
The default configuration for the domain name r
configuration
|
Microsoft
|
resolver
|
Windows
|
default
|
domain
|
name
|
The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts that it did not query, which allows remote attackers to poison the DNS cache.
By default, DNS servers on Windows NT 4.0 and W
servers
|
Windows
|
default
|
DNS
|
By default, DNS servers on Windows NT 4.0 and Windows 2000 Server cache glue records received from non-delegated name servers, which allows remote attackers to poison the DNS cache via spoofed DNS responses.
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8
before
|
BIND
|
ISC
|
83x
|
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.
The DNS proxy (DNSd) for multiple Symantec Gate
proxy
|
DNS
|
The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additional records.
Kerio WinRoute Firewall before 6.0.9 uses infor
Firewall
|
WinRoute
|
before
|
Kerio
|
Kerio WinRoute Firewall before 6.0.9 uses information from PTR queries in response to A queries, which allows remote attackers to poison the DNS cache or cause a denial of service (connection loss).
CRLF injection vulnerability in calendar.php in
vulnerability
|
calendarphp
|
DCP-Portal
|
injection
|
CRLF
|
CRLF injection vulnerability in calendar.php in DCP-Portal 5.3.2 and earlier allows remote attackers to conduct HTTP response splitting attacks to spoof web content and poison web caches via CRLF ("%0d%0a") sequences in the PHPSESSID parameter.
Squid 2.5 up to 2.5.STABLE7 allows remote attac
specification
|
attackers
|
including
|
25STABLE7
|
certain
|
attacks
|
headers
|
conduct
|
remote
|
allows
|
follow
|
poison
|
cache
|
Squid
|
HTTP
|
via
|
not
|
Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the cache or conduct certain attacks via headers that do not follow the HTTP specification, including (1) multiple Content-Length headers, (2) carriage return (CR) characters that are not part of a CRLF pair, and (3) header names containing whitespace characters.
The httpProcessReplyHeader function in http.c f
httpProcessReplyHeader
|
"oversized"
|
25-STABLE7
|
attackers
|
properly
|
handling
|
controls
|
function
|
context
|
earlier
|
headers
|
poison
|
header
|
remote
|
access
|
bypass
|
allow
|
cache
|
might
|
Squid
|
based
|
debug
|
httpc
|
which
|
reply
|
size
|
does
|
HTTP
|
not
|
set
|
The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size.
Unknown vulnerability in the DNSd proxy, as use
vulnerability
|
Symantec
|
Security
|
Unknown
|
Gateway
|
proxy
|
DNSd
|
used
|
Unknown vulnerability in the DNSd proxy, as used in Symantec Gateway Security 5400 2.x and 5300 1.x, Enterprise Firewall 7.0.x and 8.x, and VelociRaptor 1100/1200/1300 1.5, allows remote attackers to poison the DNS cache and redirect users to malicious sites.
Dnsmasq before 2.21 allows remote attackers to
Dnsmasq
|
before
|
Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq.
HTTP Response Splitting vulnerability in the Su
vulnerability
|
hex-encoded
|
attackers
|
Splitting
|
PHP-Nuke
|
Response
|
content
|
Surveys
|
caches
|
poison
|
allows
|
module
|
remote
|
spoof
|
HTTP
|
CRLF
|
web
|
via
|
HTTP Response Splitting vulnerability in the Surveys module in PHP-Nuke 7.6 allows remote attackers to spoof web content and poison web caches via hex-encoded CRLF ("%0d%0a") sequences in the forwarder parameter.
Microsoft ISA Server 2000 allows remote attacke
Microsoft
|
Server
|
ISA
|
Microsoft ISA Server 2000 allows remote attackers to poison the ISA cache or bypass content restriction policies via a malformed HTTP request packet containing multiple Content-Length headers.
HTTP response splitting vulnerability in the @S
@SetHTTPHeader
|
vulnerability
|
splitting
|
function
|
response
|
Domino
|
before
|
Lotus
|
HTTP
|
65x
|
HTTP response splitting vulnerability in the @SetHTTPHeader function in Lotus Domino 6.5.x before 6.5.4 and 6.0.x before 6.0.5 allows attackers to poison the web cache via malicious applications.
Multiple HTTP Response Splitting vulnerabilitie
vulnerabilities
|
hex-encoded
|
osCommerce
|
Milestone
|
attackers
|
Splitting
|
Response
|
Multiple
|
content
|
earlier
|
caches
|
poison
|
remote
|
allow
|
spoof
|
HTTP
|
CRLF
|
web
|
via
|
Multiple HTTP Response Splitting vulnerabilities in osCommerce 2.2 Milestone 2 and earlier allow remote attackers to spoof web content and poison web caches via hex-encoded CRLF ("%0d%0a") sequences in the (1) products_id or (2) pid parameter to index.php or (3) goto parameter to banner.php.
Multiple HTTP Response Splitting vulnerabilitie
vulnerabilities
|
Splitting
|
Response
|
Multiple
|
HTTP
|
Multiple HTTP Response Splitting vulnerabilities in (1) toggleshow.php, (2) togglecats.php, and (3) showprofile.php in Infopop UBB.Threads before 6.5.2 Beta allow remote attackers to spoof web content and poison web caches via CRLF ("%0d%0a") sequences in the Cat parameter.
HTTP response splitting vulnerability in langua
language_selectasp
|
vulnerability
|
splitting
|
response
|
Nuke
|
HTTP
|
ASP
|
HTTP response splitting vulnerability in language_select.asp in ASP Nuke 0.80 allows remote attackers to spoof web content and poison web caches via CRLF ("%0d%0a") sequences in the LangCode parameter.
Linux kernel before 2.6.12 allows remote attack
before
|
kernel
|
Linux
|
Linux kernel before 2.6.12 allows remote attackers to poison the bridge forwarding table using frames that have already been dropped by filtering, which can cause the bridge to forward spoofed packets.
HTTP response splitting vulnerability in index.
vulnerability
|
phpgroupware
|
phpSysInfo
|
splitting
|
indexphp
|
response
|
earlier
|
HTTP
|
used
|
HTTP response splitting vulnerability in index.php in phpSysInfo 2.4 and earlier, as used in phpgroupware 0.9.16 and earlier, and egroupware before 1.0.0.009, allows remote attackers to spoof web content and poison web caches via CRLF sequences in the charset parameter.
HTTP request smuggling vulnerability in Pound b
vulnerability
|
smuggling
|
request
|
before
|
Pound
|
HTTP
|
HTTP request smuggling vulnerability in Pound before 1.9.4 allows remote attackers to poison web caches, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with conflicting Content-length and Transfer-encoding headers.
Software vulnerabilities results 1 to 20 of 32
Page:
1
2
►