prevents software vulnerabilities
vulnerabilities.aspcode.net
Searching prevents software vulnerabilities
Marconi ForeThought 7.1 allows remote attackers
ForeThought
|
attackers
|
sessions
|
service
|
unusual
|
causing
|
Marconi
|
telnet
|
allows
|
locked
|
denial
|
remote
|
input
|
cause
|
both
|
via
|
Marconi ForeThought 7.1 allows remote attackers to cause a denial of service by causing both telnet sessions to be locked via unusual input (e.g., from a port scanner), which prevents others from logging into the device.
The License Manager (mathlm) for Mathematica 4.
Manager
|
License
|
The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by connecting to port 16286 and not disconnecting, which prevents users from making license requests.
Etype Eserv 2.97 allows remote attackers to cau
Eserv
|
Etype
|
Etype Eserv 2.97 allows remote attackers to cause a denial of service (resource exhaustion) via a large number of PASV commands that consume ports 1024 through 5000, which prevents the server from accepting valid PASV.
vsftpd FTP daemon in Red Hat Linux 9 is not com
wrappers
|
compiled
|
against
|
vsftpd
|
daemon
|
Linux
|
TCP
|
FTP
|
Red
|
not
|
Hat
|
vsftpd FTP daemon in Red Hat Linux 9 is not compiled against TCP wrappers (tcp_wrappers) but is installed as a standalone service, which inadvertently prevents vsftpd from restricting access as intended.
chatbox.php in e107 0.554 and 0.603 allows remo
chatboxphp
|
e107
|
chatbox.php in e107 0.554 and 0.603 allows remote attackers to cause a denial of service (pages fail to load) via HTML in the Name field, which prevents the main.php form from being loaded.
RSniff 1.0 allows remote attackers to cause a d
attackers
|
service
|
denial
|
RSniff
|
allows
|
remote
|
cause
|
RSniff 1.0 allows remote attackers to cause a denial of service (connection exhaustion) via a large number of connections with a command other than AUTHENTICATE, or without any data, which prevents the socket from being closed properly.
Red-M Red-Alert 2.7.5 with software 3.1 build 2
Red-Alert
|
Red-M
|
Red-M Red-Alert 2.7.5 with software 3.1 build 24 converts multiple spaces in a Service Set Identifier (SSID) to a single space, which prevents Red-Alert from correctly identifying the SSID.
Spooler in Apache Foundation James 2.2.0 allows
Foundation
|
Spooler
|
Apache
|
James
|
Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock from being released and causes a memory leak.
Unknown vulnerability in HTTP Anti Virus Proxy
vulnerability
|
Unknown
|
Virus
|
Proxy
|
HTTP
|
Anti
|
Unknown vulnerability in HTTP Anti Virus Proxy (HAVP) before 0.51 prevents viruses from being properly detected in certain files such as (1) .CAB or (2) .ZIP files.
WebcamXP PRO v2.16.468 and earlier allows remot
attackers
|
properly
|
prevents
|
WebcamXP
|
rendered
|
service
|
v216468
|
earlier
|
display
|
remote
|
allows
|
denial
|
takes
|
space
|
which
|
being
|
frame
|
cause
|
chat
|
long
|
name
|
much
|
PRO
|
via
|
too
|
WebcamXP PRO v2.16.468 and earlier allows remote attackers to cause a denial of service via a long chat name, which takes up too much display space and prevents the chat frame from being properly rendered.
Gibraltar Firewall 2.2 and earlier, when using
Gibraltar
|
Firewall
|
earlier
|
update
|
ClamAV
|
using
|
Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses from being detected.
The XMLRPC server in utils.rb for the ruby libr
utilsrb
|
library
|
XMLRPC
|
server
|
ruby
|
The XMLRPC server in utils.rb for the ruby library (libruby) 1.8 sets an invalid default value that prevents "security protection" using handlers, which allows remote attackers to execute arbitrary commands.
The ClamAV Mail fILTER (clamav-milter) 0.84 thr
fILTER
|
ClamAV
|
Mail
|
The ClamAV Mail fILTER (clamav-milter) 0.84 through 0.85d, when used in Sendmail using long timeouts, allows remote attackers to cause a denial of service by keeping an open connection, which prevents ClamAV from reloading.
class.xmail.php in PhpXmail 0.7 through 1.1 doe
authentication
|
classxmailphp
|
unauthorized
|
attackers
|
passwords
|
prevents
|
PhpXmail
|
returned
|
properly
|
message
|
through
|
allows
|
remote
|
bypass
|
access
|
handle
|
which
|
large
|
being
|
error
|
does
|
gain
|
not
|
class.xmail.php in PhpXmail 0.7 through 1.1 does not properly handle large passwords, which prevents an error message from being returned and allows remote attackers to bypass authentication and gain unauthorized access.
Frisk F-Prot Antivirus allows remote attackers
decompressing
|
protection
|
attackers
|
analyzing
|
Antivirus
|
prevents
|
version
|
greater
|
header
|
allows
|
remote
|
bypass
|
F-Prot
|
which
|
Frisk
|
file
|
than
|
via
|
ZIP
|
Frisk F-Prot Antivirus allows remote attackers to bypass protection via a ZIP file with a version header greater than 15, which prevents F-Prot from decompressing and analyzing the file.
Orbicule Undercover allows attackers with physi
/private/etc/ucapp/Contents/MacOS/uc
|
LaunchDaemon
|
permissions
|
protection
|
Undercover
|
attackers
|
prevents
|
Orbicule
|
physical
|
command
|
service
|
disable
|
started
|
access
|
change
|
allows
|
being
|
chmod
|
using
|
which
|
root
|
file
|
Orbicule Undercover allows attackers with physical or root access to disable the protection by using the chmod command to change the permissions of the /private/etc/uc.app/Contents/MacOS/uc file, which prevents the service from being started in LaunchDaemon.
Vavoom 1.19.1 and earlier allows remote attacke
Vavoom
|
Vavoom 1.19.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via (1) a packet with no data or (2) a large packet, which prevents Vavoom from discarding the packet from the socket.
Unspecified vulnerability in the WebLogic Serve
Administration
|
vulnerability
|
Unspecified
|
correctly
|
attackers
|
prevents
|
policies
|
WebLogic
|
intended
|
security
|
Console
|
setting
|
bypass
|
custom
|
Server
|
allow
|
which
|
could
|
JDBC
|
BEA
|
Unspecified vulnerability in the WebLogic Server Administration Console for BEA WebLogic Server 9.0 prevents the console from setting custom JDBC security policies correctly, which could allow attackers to bypass intended policies.
The fbgs framebuffer Postscript/PDF viewer in f
Postscript/PDF
|
framebuffer
|
before
|
viewer
|
fbgs
|
fbi
|
The fbgs framebuffer Postscript/PDF viewer in fbi before 2.01 has a typo that prevents a filter from working correctly, which allows user-assisted attackers to bypass the filter and execute malicious Postscript commands.
Buffer overflow in PowerDNS Recursor 3.1.3 and
PowerDNS
|
Recursor
|
overflow
|
Buffer
|
Buffer overflow in PowerDNS Recursor 3.1.3 and earlier might allow remote attackers to execute arbitrary code via a malformed TCP DNS query that prevents Recursor from properly calculating the TCP DNS query length.
Software vulnerabilities results 1 to 20 of 100
Page:
1
2
3
4
5
6
►