Searching removes software vulnerabilities

"Multiple Users" Control Panel in Mac OS 9 allo

effectively | privileges | "Multiple | password | removing | without | Control | account | removes | Groups | Users" | Normal | allows | which | Owner | users | Panel | user | gain | Data | File | Mac | log |

"Multiple Users" Control Panel in Mac OS 9 allows Normal users to gain Owner privileges by removing the Users & Groups Data File, which effectively removes the Owner password and allows the Normal user to log in as the Owner account without a password.


Directory traversal vulnerability in GNU tar 1.

vulnerability | Directory | traversal | tar | GNU |

Directory traversal vulnerability in GNU tar 1.13.19 through 1.13.25, and possibly later versions, allows attackers to overwrite arbitrary files during archive extraction via a (1) "/.." or (2) "./.." string, which removes the leading slash but leaves the "..", a variant of CVE-2001-1267.


BEA WebLogic Server and WebLogic Express 7.0 th

SecurityRoleAssignmentMBeantoXML | security-role-assignment | principal-name | inadvertently | restrictions | weblogicxml | application | associated | WebLogic | intended | removes | through | Express | editing | Builder | remove | Server | method | access | using | which | does | tags | have | SP2 | SP5 | web | BEA | can | not | tag |

BEA WebLogic Server and WebLogic Express 7.0 through SP5 and 8.1 through SP2, when editing weblogic.xml using WebLogic Builder or the SecurityRoleAssignmentMBean.toXML method, inadvertently removes security-role-assignment tags when weblogic.xml does not have a principal-name tag, which can remove intended access restrictions for the associated web application.


The Change Permissions function in the Sophster

Permissions | Sophster | function | before | Change | suite |

The Change Permissions function in the Sophster suite before 0.9.6 28 May 2004 (aka 0.9.6-r5), possibly including Sophster, FreeSophster, and FreeSophsterPAM, removes the (1) setuid, (2) setgid, and (3) sticky bits when changing a file, which might allow attackers to gain privileges or conduct other unauthorized activities.


Squid 2.5, when processing the configuration fi

configuration | processing | Control | Access | parses | Squid | Lists | empty | file |

Squid 2.5, when processing the configuration file, parses empty Access Control Lists (ACLs), including proxy_auth ACLs without defined auth schemes, in a way that effectively removes arguments, which could allow remote attackers to bypass intended ACLs if the administrator ignores the parser warnings.


verifiedexecioctl in verified_exec.c in NetBSD

verifiedexecioctl | verified_execc | NetBSD |

verifiedexecioctl in verified_exec.c in NetBSD 2.0.2 calls NDINIT with UIO_USERSPACE rather than UID_SYSSPACE, which removes the functionality of the verified exec kernel subsystem and might allow local users to execute Trojan horse programs.


gnome screensaver before 2.14, when running on

screensaver | before | gnome |

gnome screensaver before 2.14, when running on an X server with AllowDeactivateGrabs and AllowClosedownGrabs enabled, allows attackers with physical access to cause the screensaver to crash and access the session via the Ctl+Alt+Keypad-Multiply keyboard sequence, which removes the grab from gnome.


The web interface on Cisco IOS 12.3(8)JA and 12

interface | Cisco | IOS | web |

The web interface on Cisco IOS 12.3(8)JA and 12.3(8)JA1, as used on the Cisco Wireless Access Point and Wireless Bridge, reconfigures itself when it is changed to use the "Local User List Only (Individual Passwords)" setting, which removes all security and password configurations and allows remote attackers to access the system.


OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and

OpenSSL | before |

OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents OpenSSL from correctly verifying X.509 and other certificates that use PKCS #1.


Multiple packages on Sun Solaris, including (1)

including | packages | Multiple | Solaris | Sun |

Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.2_12, and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents these products from correctly verifying X.509 and other certificates that use PKCS #1.


SSH Tectia Client/Server/Connector 5.1.0 and ea

Client/Server/Connector | Tectia | SSH |

SSH Tectia Client/Server/Connector 5.1.0 and earlier, Manager 2.2.0 and earlier, and other products, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents Tectia from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339.


The libike library, as used by in.iked, elfsign

CVE-2006-4339 | certificates | generating | verifying | correctly | attackers | signature | prevents | exponent | removes | elfsign | padding | library | Solaris | similar | iniked | remote | allows | PKCS-1 | libike | signed | before | other | issue | which | using | forge | X509 | used | kcfd | hash | PKCS | Sun | v15 | key | RSA | use |

The libike library, as used by in.iked, elfsign, and kcfd in Sun Solaris 9 and 10, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents libike from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339.


Software vulnerabilities results 1 to 13 of 13     
Page: 1