sequence software vulnerabilities
vulnerabilities.aspcode.net
Searching sequence software vulnerabilities
A network intrusion detection system (IDS) does
detection
|
intrusion
|
network
|
system
|
A network intrusion detection system (IDS) does not properly handle packets with improper sequence numbers.
Ascom Timeplex router allows remote attackers t
unauthorized
|
information
|
activities
|
characters
|
attackers
|
sensitive
|
sequence
|
Timeplex
|
entering
|
through
|
conduct
|
router
|
allows
|
CTRL-D
|
obtain
|
remote
|
debug
|
Ascom
|
mode
|
Ascom Timeplex router allows remote attackers to obtain sensitive information or conduct unauthorized activities by entering debug mode through a sequence of CTRL-D characters.
Manual page reader (man) in FreeBSD 2.2 and ear
reader
|
Manual
|
page
|
Manual page reader (man) in FreeBSD 2.2 and earlier allows local users to gain privileges via a sequence of commands.
WinCE 3.0.9348 generates predictable TCP Initia
WinCE
|
WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
Cisco AP340 base station produces predictable T
predictable
|
produces
|
Sequence
|
Initial
|
Numbers
|
station
|
Cisco
|
AP340
|
base
|
TCP
|
Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
SonicWALL SOHO uses easily predictable TCP sequ
predictable
|
attackers
|
SonicWALL
|
sequence
|
sessions
|
numbers
|
allows
|
remote
|
hijack
|
easily
|
spoof
|
which
|
SOHO
|
uses
|
TCP
|
SonicWALL SOHO uses easily predictable TCP sequence numbers, which allows remote attackers to spoof or hijack sessions.
Vulnerability in a system call in BSDI 3.0 and
Vulnerability
|
service
|
allows
|
denial
|
system
|
cause
|
users
|
local
|
BSDI
|
call
|
Vulnerability in a system call in BSDI 3.0 and 3.1 allows local users to cause a denial of service (reboot) in the kernel via a particular sequence of instructions.
SQL injection vulnerability in Ruslan Bui
administrative
|
Builder
|
vulnerability
|
privileges
|
attackers
|
injection
|
password
|
username
|
sequence
|
allows
|
remote
|
Ruslan
|
"'--"
|
gain
|
SQL
|
via
|
SQL injection vulnerability in Ruslan Builder allows remote attackers to gain administrative privileges via a "'--" sequence in the username and password.
Directory traversal vulnerability in none.php f
vulnerability
|
Directory
|
traversal
|
iRunbook
|
nonephp
|
SunPS
|
Directory traversal vulnerability in none.php for SunPS iRunbook 2.5.2 allows remote attackers to read arbitrary files via a "..:" sequence (dot-dot variant) in the argument.
BRS WebWeaver Web Server 1.01 allows remote att
WebWeaver
|
Server
|
Web
|
BRS
|
BRS WebWeaver Web Server 1.01 allows remote attackers to bypass password protections for files and directories via an HTTP request containing a "/./" sequence.
Snowblind Web Server 1.0 allows remote attacker
attackers
|
Snowblind
|
service
|
denial
|
remote
|
Server
|
allows
|
cause
|
Web
|
Snowblind Web Server 1.0 allows remote attackers to cause a denial of service (crash) via a URL that ends in a "
WS_FTP 5.0.2 allows remote authenticated users
WS_FTP
|
WS_FTP 5.0.2 allows remote authenticated users to cause a denial of service (CPU consumption) via a CD command that contains an invalid path with a "../" sequence.
Cross-site scripting (XSS) vulnerability in Xer
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Xerver 4.17 allows remote attackers to inject arbitrary web script or HTML after a /%00/ sequence at the end of the URI.
A "programming error" in fast_ipsec in FreeBSD
"programming
|
Association
|
48-RELEASE
|
associated
|
fast_ipsec
|
attackers
|
61-STABLE
|
sequence
|
Security
|
properly
|
packets
|
capture
|
through
|
FreeBSD
|
attacks
|
conduct
|
checks
|
replay
|
remote
|
number
|
update
|
NetBSD
|
error"
|
allows
|
IPSec
|
which
|
does
|
pass
|
not
|
A "programming error" in fast_ipsec in FreeBSD 4.8-RELEASE through 6.1-STABLE and NetBSD 2 through 3 does not properly update the sequence number associated with a Security Association, which allows packets to pass sequence number checks and allows remote attackers to capture IPSec packets and conduct replay attacks.
Oreka before 0.5 allows remote attackers to cau
attackers
|
service
|
denial
|
remote
|
before
|
allows
|
Oreka
|
cause
|
Oreka before 0.5 allows remote attackers to cause a denial of service (application crash) via a "certain RTP sequence."
Websense, when configured to permit access to t
Uncategorized
|
configured
|
appending
|
sequence
|
blocking
|
intended
|
category
|
Websense
|
dynamic
|
content
|
permit
|
access
|
allows
|
bypass
|
local
|
users
|
URL
|
"/"
|
Websense, when configured to permit access to the dynamic content category, allows local users to bypass intended blocking of the Uncategorized category by appending a "/?" sequence to a URL.
Directory traversal vulnerability in qtofm.php
QTOFileManager
|
vulnerability
|
Directory
|
arbitrary
|
traversal
|
attackers
|
qtofmphp
|
modify
|
allows
|
remote
|
files
|
via
|
Directory traversal vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to modify arbitrary files via a .. (dot dot) sequence in the edit parameter.
Directory traversal vulnerability in Redirect.b
vulnerability
|
Redirectbat
|
Directory
|
traversal
|
Director
|
before
|
IBM
|
Directory traversal vulnerability in Redirect.bat in IBM Director before 5.10 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the file parameter.
Directory traversal vulnerability in general.ph
vulnerability
|
OpenSolution
|
QuickCmsLite
|
generalphp
|
arbitrary
|
attackers
|
traversal
|
Directory
|
include
|
allows
|
remote
|
files
|
via
|
Directory traversal vulnerability in general.php in OpenSolution Quick.Cms.Lite 0.3 allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the sLanguage Cookie parameter.
Directory traversal vulnerability in admin.php
vulnerability
|
Vikingboard
|
Directory
|
traversal
|
adminphp
|
Directory traversal vulnerability in admin.php in Vikingboard 0.1.2 allows remote authenticated administrators to include arbitrary files via a .. (dot dot) sequence in the act parameter.
Software vulnerabilities results 1 to 20 of 188
Page:
1
2
3
4
5
...
10
►