Searching replay software vulnerabilities

Patrol management software allows a remote atta

administrator | management | attacker | password | software | conduct | attack | Patrol | allows | remote | replay | steal |

Patrol management software allows a remote attacker to conduct a replay attack to steal the administrator password.


Trend Micro OfficeScan allows remote attackers

administrative | configuration | OfficeScan | attackers | commands | clients | modify | remote | allows | replay | Trend | Micro |

Trend Micro OfficeScan allows remote attackers to replay administrative commands and modify the configuration of OfficeScan clients.


The SSH-1 protocol allows remote servers conduc

man-in-the-middle | corresponding | compromised | masquerade | challenge | target's | response | creating | protocol | attacker | Session | private | matches | compute | conduct | attacks | servers | replay | weaker | remote | allows | target | client | public | server | SSH-1 | which | than | pair | uses | key | but | use |

The SSH-1 protocol allows remote servers conduct man-in-the-middle attacks and replay a client challenge response to a target server by creating a Session ID that matches the Session ID of the target, but which uses a public key pair that is weaker than the target's public key, which allows the attacker to compute the corresponding private key and use the target's Session ID with the compromised key pair to masquerade as the target.


SSH before 2.0, when using RC4 and password aut

authentication | attackers | password | messages | remote | server | replay | before | allows | until | using | SSH | key | RC4 | new |

SSH before 2.0, when using RC4 and password authentication, allows remote attackers to replay messages until a new server key (VK) is generated.


mod_digest_apple for Apache 1.3.31 and 1.3.32 o

mod_digest_apple | Apache |

mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials.


Trend Micro Control Manager 3.0 Enterprise Edit

Enterprise | privileges | encrypted | attackers | password | username | Control | Edition | Manager | attack | replay | allows | remote | Trend | Micro | gain | via |

Trend Micro Control Manager 3.0 Enterprise Edition allows remote attackers to gain privileges via a replay attack of the encrypted username and password.


The __VIEWSTATE functionality in Microsoft ASP.

functionality | __VIEWSTATE | attackers | Microsoft | conduct | attacks | replay | ASPNET | allows | remote |

The __VIEWSTATE functionality in Microsoft ASP.NET 1.x allows remote attackers to conduct replay attacks to (1) apply a ViewState generated from one view to a different view, (2) reuse ViewState information after the application's state has changed, or (3) use the ViewState to conduct attacks or expose content to third parties.


eRoom does not set an expiration for Cookies, w

expiration | attackers | attacks | Cookies | conduct | capture | remote | allows | replay | eRoom | which | does | set | not |

eRoom does not set an expiration for Cookies, which allows remote attackers to capture cookies and conduct replay attacks.


A "programming error" in fast_ipsec in FreeBSD

"programming | Association | 48-RELEASE | associated | fast_ipsec | attackers | 61-STABLE | sequence | Security | properly | packets | capture | through | FreeBSD | attacks | conduct | checks | replay | remote | number | update | NetBSD | error" | allows | IPSec | which | does | pass | not |

A "programming error" in fast_ipsec in FreeBSD 4.8-RELEASE through 6.1-STABLE and NetBSD 2 through 3 does not properly update the sequence number associated with a Security Association, which allows packets to pass sequence number checks and allows remote attackers to capture IPSec packets and conduct replay attacks.


Cross-site scripting (XSS) vulnerability in ind

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in index.php in Warcraft III Replay Parser for PHP 1.8c allows remote attackers to inject arbitrary web script or HTML via the page parameter. NOTE: post-disclosure analysis by CVE suggests that the "page" parameter is not used in this product, and "id" might be the affected parameter.


Secure Elements Class 5 AVR (aka C5 EVM) client

Elements | Secure | Class | AVR |

Secure Elements Class 5 AVR (aka C5 EVM) client and server before 2.8.1 do not verify the integrity of a message digest, which allows remote attackers to modify and replay messages.


new_ticket.cgi in Hostflow 2.2.1-15 allows remo

authentication | new_ticketcgi | credentials | attackers | parameter | Hostflow | replay | allows | 221-15 | remote | steal | desc | tag | via | IMG |

new_ticket.cgi in Hostflow 2.2.1-15 allows remote attackers to steal and replay authentication credentials via an IMG tag in the desc parameter ("Ticket Description" field) that points to a URL that captures referer URLs, possibly due to a cross-site scripting (XSS) vulnerability or a leak of credentials in referer URLs.


Multiple unspecified vulnerabilities in SnapGea

vulnerabilities | unspecified | involving | attackers | Multiple | SnapGear | service | vectors | denial | remote | before | 314u1 | cause | allow | via |

Multiple unspecified vulnerabilities in SnapGear before 3.1.4u1 allow remote attackers to cause a denial of service via unspecified vectors involving (1) IPSec replay windows and (2) the use of vulnerable versions of ClamAV before 0.88.4. NOTE: it is possible that vector 2 is related to CVE-2006-4018.


Computer Associates (CA) eTrust Security Comman

Associates | Computer |

Computer Associates (CA) eTrust Security Command Center 1.0 and r8 up to SP1 CR2, and eTrust Audit 1.5 and r8, allows remote attackers to spoof alerts and conduct replay attacks by invoking eTSAPISend.exe with the desired arguments.


2X ThinClientServer Enterprise Edition before 4

ThinClientServer | Enterprise | Edition | before |

2X ThinClientServer Enterprise Edition before 4.0.2248 allows remote attackers to create multiple privileged accounts via a replay attack using the initial account creation request.


Novell BorderManager 3.8 SP4 generates the same

BorderManager | generates | attackers | cookies | conduct | attacks | service | remote | allows | replay | denial | number | source | ISAKMP | Novell | during | which | same | port | day | SP4 |

Novell BorderManager 3.8 SP4 generates the same ISAKMP cookies for the same source IP and port number during the same day, which allows remote attackers to conduct denial of service and replay attacks. NOTE: this issue might be related to CVE-2006-5286.


Unspecified vulnerability in the SIP module in

vulnerability | Unspecified | SIParator | Firewall | before | module | InGate | SIP |

Unspecified vulnerability in the SIP module in InGate Firewall and SIParator before 4.5.1 allows remote attackers to conduct replay attacks on the authentication mechanism via unknown vectors.


Buffer overflow in Live for Speed (LFS) S2 ALPH

overflow | Buffer | Speed | Live |

Buffer overflow in Live for Speed (LFS) S2 ALPHA PATCH 0.5x allows user-assisted remote attackers to execute arbitrary code via a .mpr file (replay file) that contains a long car name.


The Visionsoft Audit on Demand Service (VSAOD)

Visionsoft | Service | Demand | Audit |

The Visionsoft Audit on Demand Service (VSAOD) in Visionsoft Audit 12.4.0.0 allows remote attackers to conduct replay attacks by capturing and resending data from the DETAILS and PROCESS sections of a session that schedules an audit.


Multiple buffer overflows in Live for Speed (LF

overflows | Multiple | buffer | Speed | Live |

Multiple buffer overflows in Live for Speed (LFS) S1 and S2 allow user-assisted remote attackers to execute arbitrary code via (1) a .spr file (single player replay file) containing a long user name or (2) a .ply file containing a long number plate string, different vectors than CVE-2007-4140.


Software vulnerabilities results 1 to 20 of 24     
Page: 12