Searching rfc netbios software vulnerabilities

NETBIOS share information may be published thro

information | published | registry | through | NETBIOS | share | keys | SNMP | may |

NETBIOS share information may be published through SNMP registry keys in NT.


A NETBIOS/SMB share password is guessable.

NETBIOS/SMB | guessable | password | share |

A NETBIOS/SMB share password is guessable.


A NETBIOS/SMB share password is the default, nu

NETBIOS/SMB | password | missing | default | share | null |

A NETBIOS/SMB share password is the default, null, or missing.


A system-critical NETBIOS/SMB share has inappro

system-critical | inappropriate | NETBIOS/SMB | control | access | share | has |

A system-critical NETBIOS/SMB share has inappropriate access control.


A component service related to NETBIOS is runni

component | NETBIOS | running | service | related |

A component service related to NETBIOS is running.


Interactions between the CIFS Browser Protocol

Interactions | implemented | Microsoft | Protocol | Windows | between | Browser | NetBIOS | CIFS |

Interactions between the CIFS Browser Protocol and NetBIOS as implemented in Microsoft Windows 95, 98, NT, and 2000 allow remote attackers to modify dynamic NetBIOS name cache entries via a spoofed Browse Frame Request in a unicast or UDP broadcast datagram.


Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10)

Server | Gene6 | FTP |

Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection.


EFTP 2.0.7.337 allows remote attackers to obtai

EFTP |

EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection.


Microsoft Windows 2000 allows remote attackers

Microsoft | Windows |

Microsoft Windows 2000 allows remote attackers to cause a denial of service (memory consumption) by sending a flood of empty TCP/IP packets with the ACK and FIN bits set to the NetBIOS port (TCP/139), as demonstrated by stream3.


The NetBT Name Service (NBNS) for NetBIOS in Wi

Service | NetBT | Name |

The NetBT Name Service (NBNS) for NetBIOS in Windows NT 4.0, 2000, XP, and Server 2003 may include random memory in a response to a NBNS query, which could allow remote attackers to obtain sensitive information.


The default installation of SAP R/3 46C/D allow

installation | attackers | guessing | password | default | locking | account | instead | conduct | SAPGUI | allows | attack | bypass | remote | which | force | brute | using | 46C/D | like | does | lock | not | out | R/3 | SAP | API | RFC |

The default installation of SAP R/3 46C/D allows remote attackers to bypass account locking by using the RFC API instead of the SAPGUI to conduct a brute force password guessing attack, which does not lock out the account like the SAPGUI does.


ClamAV 0.80 and earlier allows remote attackers

ClamAV |

ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL.


Opera 7.54 and earlier does not properly valida

Opera |

Opera 7.54 and earlier does not properly validate base64 encoded binary data in a data: (RFC 2397) URL, which causes the URL to be obscured in a download dialog, which may allow remote attackers to trick users into executing arbitrary code.


Microsoft ISA Server 2000 allows remote attacke

Microsoft | Server | ISA |

Microsoft ISA Server 2000 allows remote attackers to connect to services utilizing the NetBIOS protocol via a NetBIOS connection with an ISA Server that uses the NetBIOS (all) predefined packet filter.


Mailman before 2.1.9rc1 allows remote attackers

"standards-breaking | unspecified | attackers | involving | service | Mailman | vectors | denial | allows | 219rc1 | before | remote | cause | RFC | via |

Mailman before 2.1.9rc1 allows remote attackers to cause a denial of service via unspecified vectors involving "standards-breaking RFC 2231 formatted headers".


SAP allows remote attackers to obtain potential

RFC_SYSTEM_INFO | RfcCallReceive | CVE-2003-0747 | vulnerability | information | potentially | different | operating | sensitive | attackers | version | request | allows | remote | system | obtain | than | such | SAP | via |

SAP allows remote attackers to obtain potentially sensitive information such as operating system and SAP version via an RFC_SYSTEM_INFO RfcCallReceive request, a different vulnerability than CVE-2003-0747.


The RFC_START_PROGRAM function in the SAP RFC L

RFC_START_PROGRAM | function | Library | RFC | SAP |

The RFC_START_PROGRAM function in the SAP RFC Library 6.40 and 7.00 before Monday, December 11, 2006 allows remote attackers to obtain sensitive information (external RFC server configuration data) via unspecified vectors, a different vulnerability than CVE-2006-6010. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.


Buffer overflow in the RFC_START_PROGRAM functi

RFC_START_PROGRAM | function | overflow | Library | Buffer | RFC | SAP |

Buffer overflow in the RFC_START_PROGRAM function in the SAP RFC Library 6.40 and 7.00 before Monday, December 11, 2006 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.


Buffer overflow in the RFC_START_GUI function i

RFC_START_GUI | function | overflow | Library | Buffer | RFC | SAP |

Buffer overflow in the RFC_START_GUI function in the SAP RFC Library 6.40 and 7.00 before Monday, December 11, 2006 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.


The RFC_SET_REG_SERVER_PROPERTY function in the

RFC_SET_REG_SERVER_PROPERTY | function | Library | RFC | SAP |

The RFC_SET_REG_SERVER_PROPERTY function in the SAP RFC Library 6.40 and 7.00 before Tuesday, January 09, 2007 implements an option for exclusive access to an RFC server, which allows remote attackers to cause a denial of service (client lockout) via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.


Software vulnerabilities results 1 to 20 of 29     
Page: 12