properly software vulnerabilities
vulnerabilities.aspcode.net
Searching properly software vulnerabilities
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly handle packets that are sent out of order, allowing an attacker to escape detection.
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly handle packets with improper sequence numbers.
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly handle data within TCP handshake packets.
dbmlparser.exe CGI guestbook program does not p
dbmlparserexe
|
operation
|
attackers
|
arbitrary
|
guestbook
|
properly
|
program
|
perform
|
allows
|
remote
|
chroot
|
files
|
which
|
does
|
read
|
not
|
CGI
|
dbmlparser.exe CGI guestbook program does not perform a chroot operation properly, which allows remote attackers to read arbitrary files.
Bitvise WinSSHD before 2002-03-16 allows remote
2002-03-16
|
attackers
|
service
|
Bitvise
|
WinSSHD
|
denial
|
allows
|
before
|
remote
|
cause
|
Bitvise WinSSHD before 2002-03-16 allows remote attackers to cause a denial of service (resource exhaustion) via a large number of incomplete connections that are not properly terminated, which are not properly freed by SSHd.
The VerifyLogin function in ezContents 1.41 and
VerifyLogin
|
ezContents
|
function
|
The VerifyLogin function in ezContents 1.41 and earlier does not properly halt program execution if a user fails to log in properly, which allows remote attackers to modify and view restricted information via HTTP POST requests.
tcpdump does not properly drop privileges to th
privileges
|
properly
|
starting
|
tcpdump
|
pcap
|
user
|
does
|
drop
|
not
|
tcpdump does not properly drop privileges to the pcap user when starting up.
The tvb_get_nstringz0 function in Ethereal 0.9.
tvb_get_nstringz0
|
Ethereal
|
function
|
The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length buffer size, with unknown consequences.
sup 1.8 and earlier does not properly create te
temporary
|
overwrite
|
arbitrary
|
properly
|
earlier
|
allows
|
create
|
local
|
users
|
files
|
which
|
does
|
sup
|
not
|
sup 1.8 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.
mindi 0.58 and earlier does not properly create
mindi
|
mindi 0.58 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.
mod_digest for Apache before 1.3.31 does not pr
mod_digest
|
before
|
Apache
|
mod_digest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret.
AppleFileServer (AFS) in Apple Mac OS X 10.2.8
AppleFileServer
|
AppleFileServer (AFS) in Apple Mac OS X 10.2.8 and 10.3.2 does not properly handle certain malformed requests, with unknown impact.
The Xserver for HP-UX 11.22 was not properly bu
Xserver
|
HP-UX
|
The Xserver for HP-UX 11.22 was not properly built, which introduced a vulnerability that allows local users to gain privileges.
KAME IKE daemon (racoon) does not properly hand
daemon
|
KAME
|
IKE
|
KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message that is not properly handled in isakmp_inf.c.
The framebuffer driver in Linux kernel 2.6.x do
fb_copy_cmap
|
framebuffer
|
properly
|
function
|
unknown
|
kernel
|
driver
|
impact
|
Linux
|
does
|
26x
|
not
|
use
|
The framebuffer driver in Linux kernel 2.6.x does not properly use the fb_copy_cmap function, with unknown impact.
ifconfig "-arp" in SGI IRIX 6.5 through 6.5.22m
requests
|
properly
|
received
|
ifconfig
|
disable
|
through
|
"-arp"
|
being
|
6522m
|
IRIX
|
sent
|
does
|
SGI
|
not
|
ARP
|
ifconfig "-arp" in SGI IRIX 6.5 through 6.5.22m does not properly disable ARP requests from being sent or received.
The data-overwrite capability of ButtUglySoftwa
ButtUglySoftware
|
data-overwrite
|
CleanCache
|
capability
|
The data-overwrite capability of ButtUglySoftware CleanCache 2.19 does not properly overwrite data in files, which allows attackers to recover the data.
Yeemp 0.9.9 and earlier does properly encrypt i
Yeemp
|
Yeemp 0.9.9 and earlier does properly encrypt inbound files, which allows remote attackers to spoof the identity of the sender.
bsmtpd 2.3 and earlier does not properly saniti
addresses
|
attackers
|
arbitrary
|
sanitize
|
properly
|
commands
|
execute
|
earlier
|
remote
|
allows
|
e-mail
|
bsmtpd
|
which
|
does
|
not
|
bsmtpd 2.3 and earlier does not properly sanitize e-mail addresses, which allows remote attackers to execute arbitrary commands.
PROMS 0.11 does not properly handle "certain co
PROMS
|
PROMS 0.11 does not properly handle "certain combinations of rights," which gives more rights to users than intended.
Software vulnerabilities results 1 to 20 of 1167
Page:
1
2
3
4
5
...
59
►