secret software vulnerabilities
vulnerabilities.aspcode.net
Searching secret software vulnerabilities
The Lucent Closed Network protocol can allow re
transmitted
|
attackers
|
networks
|
protocol
|
'Network
|
Network
|
secret
|
access
|
shared
|
remote
|
Closed
|
Lucent
|
clear
|
Name'
|
which
|
allow
|
used
|
SSID
|
they
|
join
|
have
|
can
|
not
|
The Lucent Closed Network protocol can allow remote attackers to join Closed Network networks which they do not have access to. The 'Network Name' or SSID, which is used as a shared secret to join the network, is transmitted in the clear.
Buffer overflow in digest calculation function
implementations
|
calculation
|
arbitrary
|
attackers
|
overflow
|
possibly
|
function
|
multiple
|
execute
|
service
|
secret
|
shared
|
Buffer
|
allows
|
RADIUS
|
digest
|
denial
|
remote
|
cause
|
data
|
code
|
via
|
Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data.
The design of the Internet Key Exchange (IKE) p
Exchange
|
Internet
|
design
|
Key
|
The design of the Internet Key Exchange (IKE) protocol, when using Aggressive Mode for shared secret authentication, does not encrypt initiator or responder identities during negotiation, which may allow remote attackers to determine valid usernames by (1) monitoring responses before the password is supplied or (2) sniffing, as originally reported for FireWall-1 SecuRemote.
TFTP server in Longshine Wireless Access Point
Longshine
|
Wireless
|
Access
|
server
|
Point
|
TFTP
|
TFTP server in Longshine Wireless Access Point (WAP) LCS-883R-AC-B, and in D-Link DI-614+ 2.0 which is based on it, allows remote attackers to obtain the WEP secret and gain administrator privileges by downloading the configuration file (config.img) and other files without authentication.
FreeRADIUS before 1.0.1 allows remote attackers
FreeRADIUS
|
before
|
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (server crash) by sending an Ascend-Send-Secret attribute without the required leading packet.
Memory leak in FreeRADIUS before 1.0.1 allows r
FreeRADIUS
|
before
|
Memory
|
leak
|
Memory leak in FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (memory exhaustion) via a series of Access-Request packets with (1) Ascend-Send-Secret, (2) Ascend-Recv-Secret, or (3) Tunnel-Password attributes.
Kerio Winroute Firewall before 6.0.7, ServerFir
Firewall
|
Winroute
|
before
|
Kerio
|
Kerio Winroute Firewall before 6.0.7, ServerFirewall before 1.0.1, and MailServer before 6.0.5 use symmetric encryption for user passwords, which allows attackers to decrypt the user database and obtain the passwords by extracting the secret key from within the software.
login_radius on OpenBSD 3.2, 3.5, and possibly
authentication
|
login_radius
|
attackers
|
response
|
spoofing
|
possibly
|
versions
|
replies
|
OpenBSD
|
allows
|
server
|
bypass
|
remote
|
secret
|
shared
|
packet
|
RADIUS
|
verify
|
which
|
other
|
does
|
not
|
login_radius on OpenBSD 3.2, 3.5, and possibly other versions does not verify the shared secret in a response packet from a RADIUS server, which allows remote attackers to bypass authentication by spoofing server replies.
Soldner Secret Wars 30830 and earlier does not
Soldner
|
Secret
|
Wars
|
Soldner Secret Wars 30830 and earlier does not properly handle the "message too long" socket error, which allows remote attackers to cause a denial of service (socket termination) via a long UDP packet.
Format string vulnerability in Soldner Secret W
vulnerability
|
Soldner
|
Secret
|
string
|
Format
|
Wars
|
Format string vulnerability in Soldner Secret Wars 30830 and earlier allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifiers in a message.
Cross-site scripting (XSS) vulnerability in the
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in the web interface in Soldner Secret Wars 30830 allows remote attackers to inject arbitrary web script or HTML via a user message, which is not filtered or quoted when the administrator views the server logs.
Multiple games developed by FUN labs, including
Revolution
|
Adventure
|
including
|
attackers
|
Dangerous
|
developed
|
Off-road
|
Multiple
|
Service
|
arrived
|
Secret
|
remote
|
Wanted
|
denial
|
Shadow
|
packet
|
cannot
|
detect
|
socket
|
server
|
Hunter
|
empty
|
ioctl
|
using
|
which
|
cause
|
Force
|
Hunts
|
allow
|
games
|
Game
|
labs
|
Deer
|
Hunt
|
Most
|
4X4
|
via
|
FUN
|
has
|
Big
|
UDP
|
new
|
III
|
Multiple games developed by FUN labs, including 4X4 Off-road Adventure III, Big Game Hunter, Dangerous Hunts, Deer Hunt, Revolution, Secret Service, Shadow Force, and US Most Wanted, allow remote attackers to cause a denial of service via an empty UDP packet to the server, which cannot detect that a new packet has arrived using the socket ioctl.
Multiple games developed by FUN labs, including
Revolution
|
including
|
Adventure
|
Dangerous
|
attackers
|
developed
|
Multiple
|
Off-road
|
Service
|
Hunter
|
Shadow
|
denial
|
remote
|
Secret
|
Wanted
|
cause
|
allow
|
Force
|
Hunts
|
games
|
Most
|
labs
|
Hunt
|
Deer
|
Game
|
FUN
|
Big
|
III
|
4X4
|
Multiple games developed by FUN labs, including 4X4 Off-road Adventure III, Big Game Hunter, Dangerous Hunts, Deer Hunt, Revolution, Secret Service, Shadow Force, and US Most Wanted, allow remote attackers to cause a denial of service (crash from invalid memory access) via a malformed join packet with values that cause the server to copy more memory than was actually provided in the packet.
The SecureW2 3.0 TLS implementation uses weak r
implementation
|
generators
|
SecureW2
|
random
|
number
|
uses
|
weak
|
TLS
|
The SecureW2 3.0 TLS implementation uses weak random number generators (rand and srand from system time) during generation of the pre-master secret (PMS), which makes it easier for attackers to guess the secret and decrypt sensitive data.
WebEOC before 6.0.2 uses the same secret key fo
before
|
WebEOC
|
WebEOC before 6.0.2 uses the same secret key for all installations, which allows attackers with the key to decrypt data from any WebEOC installation.
The HTTP interface in the Motorola SURFboard SB
SURFboard
|
attackers
|
interface
|
Motorola
|
service
|
allows
|
remote
|
SB4200
|
denial
|
cause
|
Cable
|
Modem
|
HTTP
|
The HTTP interface in the Motorola SURFboard SB4200 Cable Modem allows remote attackers to cause a denial of service (device crash) via a request with MfcISAPICommand set to SecretProc and a long string in the Secret parameter.
Integer underflow in the SSLv2 support in Mozil
underflow
|
Security
|
Services
|
Network
|
Mozilla
|
Integer
|
support
|
SSLv2
|
Integer underflow in the SSLv2 support in Mozilla Network Security Services (NSS) before 3.11.5, as used by Firefox before 1.5.0.10 and 2.x before 2.0.0.2, SeaMonkey before 1.0.8, Thunderbird before 1.5.0.10, and certain Sun Java System server products before Monday, June 11, 2007, allows remote attackers to execute arbitrary code via a crafted SSLv2 server message containing a public key that is too short to encrypt the "Master Secret", which results in a heap-based overflow.
Cisco Clean Access (CCA) 3.6.x through 3.6.4.2
Access
|
Clean
|
Cisco
|
Cisco Clean Access (CCA) 3.6.x through 3.6.4.2 and 4.0.x through 4.0.3.2 does not properly configure or allow modification of a shared secret authentication key, which causes all devices to have the same shared sercet and allows remote attackers to gain unauthorized access.
** DISPUTED ** captcha.php in BellaBook (aka B
captchaphp
|
BellaBook
|
DISPUTED
|
** DISPUTED ** captcha.php in BellaBook (aka BellaBuffs) allows remote attackers to obtain administrative privileges by sending the admin's username (admin_name) in a pheap_login cookie. NOTE: the vendor disputes this vulnerability because authentication data is derived from the admin_pass and secret variables, in addition to the admin_name; and because the exploit code is designed for an unrelated application.
Software vulnerabilities results 1 to 20 of 20
Page:
1
2
►