Searching privacy software vulnerabilities

pgp4pine Pine/PGP interface version 1.75-6 does

interface | obtaining | properly | Pine/PGP | pgp4pine | Privacy | expired | version | public | Guard | check | 175-6 | does | keys | Gnu | via | see | not | has | key |

pgp4pine Pine/PGP interface version 1.75-6 does not properly check to see if a public key has expired when obtaining the keys via Gnu Privacy Guard (GnuPG), which causes the message to be sent in cleartext.


Orinoco RG-1000 wireless Residential Gateway us

Residential | Equivalent | wireless | 'Network | default | Privacy | Orinoco | RG-1000 | Gateway | digits | Wired | Name' | uses | last | SSID |

Orinoco RG-1000 wireless Residential Gateway uses the last 5 digits of the 'Network Name' or SSID as the default Wired Equivalent Privacy (WEP) encryption key. Since the SSID occurs in the clear during communications, a remote attacker could determine the WEP key and decrypt RG-1000 traffic.


Compaq Intel PRO/Wireless 2011B LAN USB Device

PRO/Wireless | Device | Compaq | Driver | 2011B | Intel | LAN | USB |

Compaq Intel PRO/Wireless 2011B LAN USB Device Driver 1.5.16.0 through 1.5.18.0 stores the 128-bit WEP (Wired Equivalent Privacy) key in plaintext in a registry key with weak permissions, which allows local users to decrypt network traffic by reading the WEP key from the registry key.


Internet Explorer 5, 5.6, and 6 allows remote a

information | attackers | settings | sessions | Explorer | Internet | userData | browser | privacy | bypass | remote | allows | cookie | across | store | via |

Internet Explorer 5, 5.6, and 6 allows remote attackers to bypass cookie privacy settings and store information across browser sessions via the userData (storeuserData) feature.


Thunderbird 0.6 through 0.9 and Mozilla 1.7 thr

Thunderbird | Mozilla | through |

Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not obey the network.cookie.disableCookieForMailNews preference, which could allow remote attackers bypass the user's intended privacy and security policy by using cookies in e-mail messages.


Mail.app in Mac OS 10.4.2 and earlier, when pri

Mailapp | Mac |

Mail.app in Mac OS 10.4.2 and earlier, when printing or forwarding an HTML message, loads remote images even when the user's preferences state otherwise, which could result in a privacy leak.


Unspecified vulnerability in Reverse SSL Proxy

man-in-the-middle | vulnerability | Application | Unspecified | Enterprise | attackers | multiple | Standard | Edition | conduct | servers | Reverse | Plug-in | System | allows | Server | 2004Q2 | remote | 2005Q1 | Proxy | Java | used | SSL | ONE | Sun | web |

Unspecified vulnerability in Reverse SSL Proxy Plug-in for Sun Java System Application Server Standard Edition 7 2004Q2, Application Server Enterprise Edition 8.1 2005Q1, and Sun ONE Application Server 7 Standard Edition, as used in multiple web servers, allows remote attackers to conduct man-in-the-middle (MITM) attacks and "compromise data privacy."


MUTE 0.4 uses improper flood protection algorit

information | protection | algorithms | sensitive | attackers | improper | remote | allows | obtain | flood | which | MUTE | uses |

MUTE 0.4 uses improper flood protection algorithms, which allows remote attackers to obtain sensitive information (privacy leak and search result data) by controlling a drop chain neighbor that is near the end of a message chain.


Orbicule Undercover uses a third-party web serv

transmission | third-party | information | destination | unintended | Undercover | disclosure | accessing | potential | sensitive | determine | document | Orbicule | Internet | computer | privacy | through | address | remote | server | allow | might | which | leads | does | uses | leak | web | not | but |

Orbicule Undercover uses a third-party web server to determine the IP address through which the computer is accessing the Internet, but does not document this third-party disclosure, which leads to a potential privacy leak that might allow transmission of sensitive information to an unintended remote destination.


Privacy leak in install.php for Diesel PHP Job

credentials | information | installphp | developers | controlled | sensitive | product | address | Privacy | e-mail | Diesel | sends | leak | Site | such | user | Job | PHP |

Privacy leak in install.php for Diesel PHP Job Site sends sensitive information such as user credentials to an e-mail address controlled by the product developers.


Buffer overflow in McSubMgr ActiveX control (mc

McSubMgr | overflow | control | ActiveX | Buffer |

Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute arbitrary commands via long string parameters, which are later used in vsprintf.


The "Feed Preview" feature in Mozilla Firefox 2

Preview" | Mozilla | Firefox | feature | before | "Feed |

The "Feed Preview" feature in Mozilla Firefox 2.0 before 2.0.0.1 sends the URL of the feed when requesting favicon.ico icons, which results in a privacy leak that might allow feed viewing services to determine browsing habits.


Visual truncation vulnerability in Windows Priv

vulnerability | truncation | Privacy | Windows | Visual | Tray |

Visual truncation vulnerability in Windows Privacy Tray (WinPT) 1.2.0 allows user-assisted remote attackers to install a key listed under the wrong user ID, and possibly cause the user to encrypt a victim's correspondence with this attacker-supplied key, via a key ID composed of the attacker's user ID, space characters, an invalid WinPT message, additional space characters, and the victim's user ID.


Software vulnerabilities results 1 to 14 of 14     
Page: 1