qualified software vulnerabilities
vulnerabilities.aspcode.net
Searching qualified software vulnerabilities
CMG WAP gateway does not verify the fully quali
man-in-the-middle
|
certificates
|
authorities
|
certificate
|
qualified
|
attackers
|
gateway
|
allows
|
remote
|
verify
|
attack
|
domain
|
spoof
|
fully
|
which
|
name
|
does
|
X509
|
root
|
via
|
CMG
|
SSL
|
URL
|
WAP
|
not
|
CMG WAP gateway does not verify the fully qualified domain name URL with X.509 certificates from root certificate authorities, which allows remote attackers to spoof SSL certificates via a man-in-the-middle attack.
Openwave WAP gateway does not verify the fully
man-in-the-middle
|
certificates
|
certificate
|
authorities
|
attackers
|
qualified
|
Openwave
|
gateway
|
remote
|
allows
|
verify
|
domain
|
attack
|
which
|
spoof
|
fully
|
name
|
does
|
X509
|
root
|
via
|
not
|
URL
|
WAP
|
SSL
|
Openwave WAP gateway does not verify the fully qualified domain name URL with X.509 certificates from root certificate authorities, which allows remote attackers to spoof SSL certificates via a man-in-the-middle attack.
Finjan Software SurfinGate 6.0 and 6.0 1 allows
restrictions
|
SurfinGate
|
qualified
|
attackers
|
Software
|
hostname
|
portion
|
Finjan
|
domain
|
bypass
|
remote
|
allows
|
access
|
fully
|
whose
|
name
|
uses
|
URL
|
via
|
Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL whose hostname portion uses a fully qualified domain name (FQDN) that ends in a "." (dot).
Microsoft Windows 2000, when running in a domai
Microsoft
|
Windows
|
Microsoft Windows 2000, when running in a domain whose Fully Qualified Domain Name (FQDN) is exactly 8 characters long, does not prevent users with expired passwords from logging on to the domain.
The cert_TestHostName function in Mozilla befor
cert_TestHostName
|
Thunderbird
|
certificate
|
qualified
|
hostname
|
function
|
portion
|
Mozilla
|
Firefox
|
domain
|
before
|
checks
|
fully
|
only
|
name
|
URI
|
not
|
The cert_TestHostName function in Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, only checks the hostname portion of a certificate when the hostname portion of the URI is not a fully qualified domain name (FQDN), which allows remote attackers to spoof trusted certificates.
Squid 2.5.STABLE8 and earlier allows remote att
25STABLE8
|
attackers
|
earlier
|
service
|
denial
|
allows
|
remote
|
Squid
|
cause
|
Squid 2.5.STABLE8 and earlier allows remote attackers to cause a denial of service (crash) via certain DNS responses regarding (1) Fully Qualified Domain Names (FQDN) in fqdncache.c or (2) IP addresses in ipcache.c, which trigger an assertion failure.
Multiple buffer overflows in the (1) SIP, (2) C
overflows
|
Multiple
|
buffer
|
Multiple buffer overflows in the (1) SIP, (2) CMIP, (3) CMP, (4) CMS, (5) CRMF, (6) ESS, (7) OCSP, (8) X.509, (9) ISIS, (10) DISTCC, (11) FCELS, (12) Q.931, (13) NCP, (14) TCAP, (15) ISUP, (16) MEGACO, (17) PKIX1Explitit, (18) PKIX_Qualified, (19) Presentation dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code.
Microsoft Windows 2000 before Update Rollup 1 f
Microsoft
|
Windows
|
Microsoft Windows 2000 before Update Rollup 1 for SP4 allows users to log on to the domain, even when their password has expired, if the fully qualified domain name (FQDN) is 8 characters long.
Xerox WorkCentre and WorkCentre Pro before 12.0
WorkCentre
|
before
|
Xerox
|
Pro
|
Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 do not check the Fully Qualified Domain Name (FQDN) during a "Validate Repository SSL Certificate" scan, which has unknown impact and attack vectors, possibly related to spoofed certificates.
Software vulnerabilities results 1 to 10 of 10
Page:
1