predictable software vulnerabilities
vulnerabilities.aspcode.net
Searching predictable software vulnerabilities
The make-temp-name Lisp function in Emacs 20 cr
make-temp-name
|
predictable
|
temporary
|
attackers
|
function
|
conduct
|
symlink
|
creates
|
allows
|
attack
|
Emacs
|
files
|
which
|
names
|
Lisp
|
The make-temp-name Lisp function in Emacs 20 creates temporary files with predictable names, which allows attackers to conduct a symlink attack.
WinCE 3.0.9348 generates predictable TCP Initia
WinCE
|
WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
Cisco AP340 base station produces predictable T
predictable
|
produces
|
Sequence
|
Initial
|
Numbers
|
station
|
Cisco
|
AP340
|
base
|
TCP
|
Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
Microsoft Windows 2000 telnet service creates n
Microsoft
|
Windows
|
Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the first of two variants of this vulnerability.
Microsoft Windows 2000 telnet service creates n
Microsoft
|
Windows
|
Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the second of two variants of this vulnerability.
SonicWALL SOHO uses easily predictable TCP sequ
predictable
|
attackers
|
SonicWALL
|
sequence
|
sessions
|
numbers
|
allows
|
remote
|
hijack
|
easily
|
spoof
|
which
|
SOHO
|
uses
|
TCP
|
SonicWALL SOHO uses easily predictable TCP sequence numbers, which allows remote attackers to spoof or hijack sessions.
Ipswitch IMail 7.04 and earlier uses predictabl
Ipswitch
|
IMail
|
Ipswitch IMail 7.04 and earlier uses predictable session IDs for authentication, which allows remote attackers to hijack sessions of other users.
jmcce 1.3.8 in Mandrake 8.1 creates log files i
jmcce
|
jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack.
msxlsview.sh in xlsview for catdoc 0.91 and ear
msxlsviewsh
|
xlsview
|
catdoc
|
msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable temporary file names ("word$$.html").
The Web Database Manager in web-tools for SAP D
web-tools
|
Database
|
Manager
|
before
|
SAP
|
Web
|
The Web Database Manager in web-tools for SAP DB before 7.4.03.30 generates predictable session IDs, which allows remote attackers to conduct unauthorized activities.
Macromedia Flash Player before 7,0,19,0 stores
Macromedia
|
Player
|
before
|
Flash
|
Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names.
Outlook 2003, when replying to an e-mail messag
Outlook
|
Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img tag of the original message, which allows remote attackers to bypass zone restrictions and exploit other issues that rely on predictable locations, as demonstrated using a shell: URI.
main.c in cscope 15-4 and 15-5 creates temporar
predictable
|
temporary
|
filenames
|
arbitrary
|
overwrite
|
symlink
|
creates
|
cscope
|
allows
|
attack
|
users
|
mainc
|
files
|
which
|
local
|
15-5
|
15-4
|
via
|
main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.
The dcopidlng script in KDE 3.2.x and 3.3.x cre
predictable
|
temporary
|
filenames
|
arbitrary
|
overwrite
|
dcopidlng
|
symlink
|
creates
|
allows
|
script
|
attack
|
users
|
files
|
which
|
local
|
33x
|
via
|
KDE
|
32x
|
The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.
Wine 20050211 and earlier creates temp files wi
Wine
|
Wine Friday, February 11, 2005 and earlier creates temp files with world readable permissions and predictable file names, which allows local users to obtain sensitive information, such as passwords.
The log4sh_readProperties function in log4sh 1.
log4sh_readProperties
|
function
|
log4sh
|
The log4sh_readProperties function in log4sh 1.2.5 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable log4sh.$$ filenames.
langen2kvtml in KDE 3.0 to 3.4.2 creates insecu
langen2kvtml
|
KDE
|
langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in /tmp with predictable names, which allows local users to overwrite arbitrary files.
The handler code for backupninja 0.8 and earlie
backupninja
|
predictable
|
temporary
|
arbitrary
|
filenames
|
symlink
|
handler
|
earlier
|
creates
|
modify
|
allows
|
attack
|
users
|
files
|
which
|
local
|
code
|
via
|
The handler code for backupninja 0.8 and earlier creates temporary files with predictable filenames, which allows local users to modify arbitrary files via a symlink attack.
Unspecified vulnerability in PEAR Text_Password
Text_Password
|
vulnerability
|
"problematic
|
Unspecified
|
predictable
|
generator
|
seeding"
|
possibly
|
related
|
unknown
|
vectors
|
number
|
random
|
attack
|
impact
|
seeds
|
PEAR
|
has
|
Unspecified vulnerability in PEAR Text_Password 1.0 has unknown impact and attack vectors, related to "problematic seeding" of the random number generator, possibly predictable seeds.
Buy.php in Aweb Scripts Seller uses predictable
authentication
|
predictable
|
attackers
|
cookies
|
Scripts
|
allows
|
number
|
script
|
remote
|
Seller
|
bypass
|
Buyphp
|
which
|
based
|
Aweb
|
uses
|
time
|
Buy.php in Aweb Scripts Seller uses predictable cookies for authentication based on the time and the script number, which allows remote attackers to bypass authentication.
Software vulnerabilities results 1 to 20 of 78
Page:
1
2
3
4
►