replaying software vulnerabilities

Searching replaying software vulnerabilities

Excite for Web Servers (EWS) 1.1 allows local u

Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi.

SSH before 2.0, with RC4 encryption and the "di

SSH before 2.0, with RC4 encryption and the "disallow NULL passwords" option enabled, makes it easier for remote attackers to guess portions of user passwords by replaying user sessions with certain modifications, which trigger different messages depending on whether the guess is correct or not.

Vtun 2.5b1 allows remote attackers to inject da

Vtun 2.5b1 allows remote attackers to inject data into user sessions by sniffing and replaying packets.

x_news.php in X-News (x_news) 1.1 and earlier a

x_newsphp | X-News |

x_news.php in X-News (x_news) 1.1 and earlier allows remote attackers to gain administrative privileges by stealing and replaying the md5_password cookie.

Kerio Personal Firewall (KPF) 2.1.4 and earlier

Firewall | Personal | Kerio |

Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to execute administrator commands by sniffing packets from a valid session and replaying them against the remote administration server.

Snitz Forums 3.4.03 and earlier allows attacker

Forums | Snitz |

Snitz Forums 3.4.03 and earlier allows attackers to gain privileges as other users by stealing and replaying the encrypted password after obtaining a valid session ID.

Sygate Enforcer 4.0 earlier allows remote attac

Sygate Enforcer 4.0 earlier allows remote attackers to cause a denial of service (service hang) by replaying a malformed discovery packet to UDP port 39999.

Sygate Secure Enterprise (SSE) 3.5MR3 and earli

Enterprise | Secure | Sygate |

Sygate Secure Enterprise (SSE) 3.5MR3 and earlier does not change the key used to encrypt data, which allows remote attackers to cause a denial of service (resource exhaustion) by capturing a session and repeatedly replaying the session.

Postfix server for Apple Mac OS X 10.3.6, when

Postfix | server | Apple | Mac |

Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information.

Phorum allows remote attackers to hijack sessio

Phorum allows remote attackers to hijack sessions of other users by stealing and replaying the session hash in the phorum_uriauth parameter, as demonstrated using profile.php. NOTE: the affected version was reported to be 4.3.7, but this may be erroneous.

The web GUI for Novell iChain 2.2 and 2.3 SP2 a

The web GUI for Novell iChain 2.2 and 2.3 SP2 and SP3 allows attackers to hijack sessions and gain administrator privileges by (1) sniffing the connection on TCP port 51100 and replaying the authentication information or (2) obtaining and replaying the PCZQX02 authentication cookie from the browser.

Gamespy cd-key validation system allows remote

Gamespy cd-key validation system allows remote attackers to cause a denial of service (cd-key already in use) by capturing and replaying a cd-key authorization session.

The login protocol in RealChat 3.5.1b does not

The login protocol in RealChat 3.5.1b does not use authentication, which allows remote attackers to log on as other users by sniffing the beginning of a chat session and replaying it via a modified username.

The CAPTCHA functionality in php-Nuke 6.0 throu

The CAPTCHA functionality in php-Nuke 6.0 through 7.9 uses fixed challenge/response pairs that only vary once per day based on the User Agent (HTTP_USER_AGENT), which allows remote attackers to bypass CAPTCHA controls by fixing the User Agent, performing a valid challenge/response, then replaying that pair in the random_num and gfx_check parameters.

Software vulnerabilities results 1 to 18 of 18

Page: 1