Searching protection software vulnerabilities

Norton AntiVirus 5.00.01C with the Novell Netwa

auto-protection | AntiVirus | properly | restart | service | Netware | 50001C | Norton | system | logged | client | Novell | first | after | does | user | not | off | has |

Norton AntiVirus 5.00.01C with the Novell Netware client does not properly restart the auto-protection service after the first user has logged off of the system.


Unknown vulnerability in the file system protec

vulnerability | unauthorized | privileges | additional | restricted | operations | protection | specified | subsystem | Software | Unknown | conduct | beyond | system | allows | Secure | local | users | Linux | files | rules | which | file | user | some |

Unknown vulnerability in the file system protection subsystem in HP Secure OS Software for Linux 1.0 allows additional user privileges on some files beyond what is specified in the file system protection rules, which allows local users to conduct unauthorized operations on restricted files.


The Install Wizard for nCipher MSCAPI CSP 5.50

nCipher | Install | MSCAPI | Wizard | CSP |

The Install Wizard for nCipher MSCAPI CSP 5.50 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protection level than specified by the user (module protection only).


domesticinstall.exe for nCipher MSCAPI CSP 5.50

domesticinstallexe | nCipher | MSCAPI | CSP |

domesticinstall.exe for nCipher MSCAPI CSP 5.50 and 5.54 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protection level than specified by the user (module protection only).


MAILsweeper for SMTP 4.3 allows remote attacker

MAILsweeper | protection | attachment | malformed | attackers | exploited | variants | certain | message | MIMAIL | remote | bypass | allows | virus | mail | SMTP | via | zip |

MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip attachment, as exploited by certain MIMAIL virus variants.


BlackICE PC Protection and Server Protection in

Protection | installs | BlackICE | Server |

BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a denial of service (crash) or modify configuration, as demonstrated by modifying firewall.ini to contain a large firewall rule.


The ZwOpenSection function in Integrity Protect

ZwOpenSection | Protection | Integrity | function | Driver |

The ZwOpenSection function in Integrity Protection Driver (IPD) 1.4 and earlier allows local users to cause a denial of service (crash) via an invalid pointer in the "oa" argument.


blocker.php in Protector System 1.15b1 allows r

URL-encoded | protection | characters | blockerphp | attackers | Protector | injection | commands | limited | execute | allows | System | bypass | remote | 115b1 | "'" | SQL | via |

blocker.php in Protector System 1.15b1 allows remote attackers to bypass SQL injection protection and execute limited SQL commands via URL-encoded "'" characters ("%27").


Buffer overflow in blackd.exe for BlackICE PC P

packetLogfileprefix | application | Protection | privileges | modifying | blackdexe | overflow | BlackICE | versions | contain | system | allows | before | Buffer | users | local | other | value | 36ccb | long | gain | file | off | INI |

Buffer overflow in blackd.exe for BlackICE PC Protection 3.6 and other versions before 3.6.ccb, with application protection off, allows local users to gain system privileges by modifying the .INI file to contain a long packetLog.fileprefix value.


ripMIME 1.3.2.3 and earlier allows remote attac

ripMIME |

ripMIME 1.3.2.3 and earlier allows remote attackers to bypass e-mail protection via a base64 MIME encoded attachment containing invalid characters that are not properly extracted.


Pixel-Apes SafeHTML before 1.2.1 allows remote

Pixel-Apes | SafeHTML | before |

Pixel-Apes SafeHTML before 1.2.1 allows remote attackers to bypass cross-site scripting (XSS) protection via "hexadecimal HTML entities."


Prevx Pro 2005 1.0 allows local users to bypass

Prevx | Pro |

Prevx Pro 2005 1.0 allows local users to bypass file protection and modify files by using MapViewOfFile to perform memory mapping on the file.


Webroot Desktop Firewall before 1.3.0build52 al

DeviceIoControl | 130build52 | protection | password | commands | Firewall | certain | enabled | disable | Desktop | Webroot | before | allows | users | local | even | via |

Webroot Desktop Firewall before 1.3.0build52 allows local users to disable the firewall, even when password protection is enabled, via certain DeviceIoControl commands.


The DM Primer (dmprimer.exe) in the DM Deployme

Primer |

The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not handled, leading to a thread exit.


The DM Primer in the DM Deployment Common Compo

Deployment | Associates | Component | Computer | Primer | Common |

The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified "unrecognized network messages" that are not properly handled.


Unspecified vulnerability in Adobe Flash Player

vulnerability | Unspecified | Player | before | Adobe | Flash |

Unspecified vulnerability in Adobe Flash Player before 9.0.16.0 allows user-assisted remote attackers to bypass the allowScriptAccess protection via unspecified vectors.


Mozilla Firefox 2.0 before 2.0.0.1 allows remot

Firefox | Mozilla | before |

Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass Cross-Site Scripting (XSS) protection via vectors related to a Function.prototype regression error.


ISS BlackICE PC Protection 3.6 cpj and cpu, and

ZwDeleteFile | information | filelocktxt | Protection | protected | versions | critical | BlackICE | possibly | function | earlier | stores | delete | bypass | allows | scheme | using | which | local | files | users | file | ISS | API | cpu | cpj |

ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier versions, allows local users to bypass the protection scheme by using the ZwDeleteFile API function to delete the critical filelock.txt file, which stores information about protected files.


CerbNG for FreeBSD 4.8 does not properly implem

protection | attempting | "incorrect | implement | properly | related | unknown | wrapper | prevent | FreeBSD | allows | impact | CerbNG | system | pages" | write | users | which | races | local | call | have | does | not |

CerbNG for FreeBSD 4.8 does not properly implement VM protection when attempting to prevent system call wrapper races, which allows local users to have an unknown impact related to an "incorrect write protection of pages".


Unspecified vulnerability in PassphraseRequeste

PassphraseRequester | vulnerability | SSHKeychain | Unspecified | before |

Unspecified vulnerability in PassphraseRequester in SSHKeychain before 0.8.2 beta allows attackers to obtain sensitive information (passwords) via unknown vectors, related to "poor protection."


Software vulnerabilities results 1 to 20 of 180     
Page: 12345...10