Searching reset software vulnerabilities

mod_sqlpw module in ProFTPD does not reset a ca

authenticated | privileges | mod_sqlpw | attackers | accounts | password | ProFTPD | command | change | allows | "user" | cached | module | users | other | reset | which | user | uses | does | gain | not |

mod_sqlpw module in ProFTPD does not reset a cached password when a user uses the "user" command to change accounts, which allows authenticated attackers to gain privileges of other users.


iptables-save in iptables before 1.2.4 records

iptables-save | iptables | before |

iptables-save in iptables before 1.2.4 records the "--reject-with icmp-host-prohibited" rule as "--reject-with tcp-reset," which causes iptables to generate different responses than specified by the administrator, possibly leading to an information leak.


pt_chmod in Solaris 8 does not call fdetach to

privileges | terminals | modifying | terminal | pt_chmod | fdetach | Solaris | users' | allows | which | other | write | local | reset | users | does | call | ACL | TTY | not | log | out |

pt_chmod in Solaris 8 does not call fdetach to reset terminal privileges when users log out of terminals, which allows local users to write to other users' terminals by modifying the ACL of a TTY.


The web management interface for Cisco Content

management | interface | Content | Service | Switch | Cisco | web |

The web management interface for Cisco Content Service Switch (CSS) 11000 switches allows remote attackers to cause a denial of service (soft reset) via (1) an HTTPS POST request, or (2) malformed XML data.


Administrative web interface for IC9 Pocket Pri

Administrative | interface | Firmware | Pocket | Server | Print | web | IC9 |

Administrative web interface for IC9 Pocket Print Server Firmware 7.1.30 and 7.1.36f allows remote attackers to cause a denial of service (reboot and reset) via a long password, possibly due to a buffer overflow.


Cisco ONS15454 and ONS15327 running ONS before

attackers | ONS15327 | ONS15454 | service | running | denial | allows | before | Cisco | cause | ONS |

Cisco ONS15454 and ONS15327 running ONS before 3.4 allows attackers to cause a denial of service (reset) via an HTTP request to the TCC, TCC+ or XTC, in which the request contains an invalid CORBA Interoperable Object Reference (IOR).


Cisco ONS15454 and ONS15327 running ONS before

attackers | ONS15327 | ONS15454 | service | running | denial | allows | before | Cisco | cause | ONS |

Cisco ONS15454 and ONS15327 running ONS before 3.4 allows attackers to cause a denial of service (reset to TCC, TCC+, TCCi or XTC) via a malformed HTTP request that does not contain a leading / (slash) character.


The RCA Digital Cable Modems DCM225 and DCM225E

attackers | DCM225E | service | Digital | remote | denial | DCM225 | Modems | allow | cause | Cable | RCA |

The RCA Digital Cable Modems DCM225 and DCM225E allow remote attackers to cause a denial of service (modem device reset) by connecting to port 80 on the 10.0.0.0/8 device.


Ecartis 1.0.0 (formerly listar) before snapshot

Ecartis |

Ecartis 1.0.0 (formerly listar) before snapshot Thursday, February 27, 2003 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page.


rc.M in Slackware 9.0 calls quotacheck with the

security-relevant | filesystem | quotacheck | remounted | Slackware | possibly | nosuid | option | noexec | causes | flags | nodev | mount | calls | which | reset | such | rcM |

rc.M in Slackware 9.0 calls quotacheck with the -M option, which causes the filesystem to be remounted and possibly reset security-relevant mount flags such as nosuid, nodev, and noexec.


password.asp in Snitz Forums 3.4.03 and earlier

passwordasp | Forums | Snitz |

password.asp in Snitz Forums 3.4.03 and earlier allows remote attackers to reset passwords and gain privileges as other users by via a direct request to password.asp with a modified member id.


UTStarcom iAN-02EX VoIP Analog Terminal Adaptor

UTStarcom | Terminal | iAN-02EX | Adaptor | Analog | VoIP |

UTStarcom iAN-02EX VoIP Analog Terminal Adaptor (ATA) allows local users to bypass ATA access restrictions by dialing "*#26845#" and causing a device reset.


BEA WebLogic Server and WebLogic Express 8.1 SP

connection | security | WebLogic | "shrink | Monitor | Express | allows | Server | pools" | reset | users | JDBC | role | BEA | SP2 | SP3 |

BEA WebLogic Server and WebLogic Express 8.1 SP2 and SP3 allows users with the Monitor security role to "shrink or reset JDBC connection pools."


The "reset password" feature in Macromedia Bree

Macromedia | passwords | attackers | plaintext | password" | database | instead | feature | access | allows | "reset | stores | Breeze | obtain | which | hash |

The "reset password" feature in Macromedia Breeze 5.0 stores passwords in plaintext in the database instead of the hash, which allows attackers with access to the database to obtain the passwords.


Google Talk before 1.0.0.76, with email notific

before | Google | Talk |

Google Talk before 1.0.0.76, with email notification enabled, allows remote attackers to cause a denial of service (connection reset) via email with a blank sender.


Soti Pocket Controller-Professional 5.0 allows

Controller-Professional | initialization | attackers | packets | command | reboot | series | allows | remote | Pocket | reset | port | sent | turn | Soti | hard | via | PDA | off |

Soti Pocket Controller-Professional 5.0 allows remote attackers to turn off, reboot, or hard reset a PDA via a series of initialization, command, and reset packets sent to port 5492.


Netgear FVG318 running firmware 1.0.40 allows r

firmware | running | Netgear | FVG318 |

Netgear FVG318 running firmware 1.0.40 allows remote attackers to cause a denial of service (router reset) via TCP packets with bad checksums.


Unspecified vulnerability in the Password Reset

vulnerability | Unspecified | Password | before | Reset | Tool |

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."


The isdn_ppp_ccp_reset_alloc_state function in

isdn_ppp_ccp_reset_alloc_state | drivers/isdn/isdn_pppc | init_timer | 2434-rc4 | function | unknown | vectors | results | kernel | system | before | attack | state | timer | which | Linux | crash | reset | does | call | ISDN | PPP | not | has | CCP |

The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel before 2.4.34-rc4 does not call the init_timer function for the ISDN PPP CCP reset state timer, which has unknown attack vectors and results in a system crash.


Unspecified vulnerability in ipmitool for Sun F

vulnerability | Unspecified | privileges | ipmitool | X2100M2 | X2200M2 | server | allows | reset | users | local | turn | gain | Fire | Sun | off |

Unspecified vulnerability in ipmitool for Sun Fire X2100M2 and X2200M2 allows local users to gain privileges and reset or turn off the server.


Software vulnerabilities results 1 to 20 of 66     
Page: 1234