shutdown software vulnerabilities
vulnerabilities.aspcode.net
Searching shutdown software vulnerabilities
A Windows NT system's user audit policy does no
Management
|
Shutdown
|
Tracking
|
Security
|
system's
|
success
|
failure
|
Changes
|
Restart
|
Process
|
Windows
|
Access
|
Rights
|
policy
|
Object
|
System
|
Logoff
|
audit
|
event
|
Logon
|
Group
|
does
|
File
|
user
|
not
|
Use
|
log
|
A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking.
A Windows NT system does not clear the system p
information
|
sensitive
|
shutdown
|
recorded
|
Windows
|
during
|
system
|
might
|
allow
|
which
|
clear
|
does
|
file
|
page
|
not
|
A Windows NT system does not clear the system page file during shutdown, which might allow sensitive information to be recorded.
Linuxconf on Red Hat Linux 6.0 and earlier does
PAM-based
|
Linuxconf
|
properly
|
shutdown
|
disable
|
command
|
service
|
earlier
|
denial
|
access
|
local
|
allow
|
cause
|
users
|
could
|
Linux
|
which
|
does
|
Red
|
Hat
|
not
|
Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service.
Vulnerability in AIX 4.1.4 and HP-UX 10.01 and
Vulnerability
|
AIX
|
Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost.
Alcatel 4400 installs the /chetc/shutdown comma
Alcatel
|
Alcatel 4400 installs the /chetc/shutdown command with setgid privileges, which allows many different local users to shut down the system.
The Remote Desktop Sharing (RDS) Screen Saver P
Sharing
|
Desktop
|
Remote
|
The Remote Desktop Sharing (RDS) Screen Saver Protection capability for Microsoft NetMeeting 3.01 through SP2 (4.4.3396) allows attackers with physical access to hijack remote sessions by entering certain logoff or shutdown sequences (such as CTRL-ALT-DEL) and canceling out of the resulting user confirmation prompts, such as when the remote user is editing a document.
Microsoft NetMeeting 3.01 2000 before SP4 allow
NetMeeting
|
Microsoft
|
Microsoft NetMeeting 3.01 2000 before SP4 allows remote attackers to cause a denial of service (shutdown of NetMeeting conference) via malformed packets, as demonstrated via the chat conversation.
Unknown vulnerability in Windows File Sharing f
vulnerability
|
Sharing
|
Windows
|
Unknown
|
File
|
Mac
|
Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has unknown impact and attack vectors.
Flash Messaging clients can ignore disconnectin
disconnecting
|
"shutdown"
|
Messaging
|
commands
|
clients
|
Server
|
ignore
|
Flash
|
520g
|
such
|
can
|
Flash Messaging clients can ignore disconnecting commands such as "shutdown" from the Flash Messaging Server 5.2.0g (rev 1.1.2), which could allow remote attackers to stay connected.
The Quake 3 engine, as used in multiple game pa
attackers
|
multiple
|
packages
|
service
|
remote
|
denial
|
allows
|
engine
|
cause
|
Quake
|
used
|
game
|
The Quake 3 engine, as used in multiple game packages, allows remote attackers to cause a denial of service (shutdown game server) and possibly crash the server via a long infostring, possibly triggering a buffer overflow.
Remote Desktop in Windows XP SP1 does not verif
TSShutdnexe
|
attackers
|
executing
|
shutdown
|
system"
|
setting
|
Windows
|
Desktop
|
allows
|
Remote
|
system
|
"Force
|
verify
|
which
|
down
|
does
|
shut
|
SP1
|
not
|
Remote Desktop in Windows XP SP1 does not verify the "Force shutdown from a remote system" setting, which allows remote attackers to shut down the system by executing TSShutdn.exe.
Unknown vulnerability in Incoming Remote Comman
vulnerability
|
Incoming
|
Command
|
Unknown
|
Remote
|
Unknown vulnerability in Incoming Remote Command (iSeries Access for Windows Remote Command service) in IBM OS/400 R510, R520, and R530 allows attackers to cause a denial of service (IRC shutdown) via certain inputs.
Raysoft/Raybase Video Cam Server 1.0.0 beta all
Raysoft/Raybase
|
Server
|
Video
|
Cam
|
Raysoft/Raybase Video Cam Server 1.0.0 beta allows remote attackers to conduct administrator operations and cause a denial of service (server or camera shutdown) via a direct request to admin.html.
DList (dlist.exe) in DMail 3.1a allows remote a
DList
|
DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog command with an incorrect password hash, which is not properly handled by the _cmd_sendlog function.
Multiple format string vulnerabilities in ProFT
vulnerabilities
|
information
|
sensitive
|
attackers
|
Multiple
|
service
|
ProFTPD
|
obtain
|
denial
|
string
|
format
|
130rc2
|
before
|
allow
|
cause
|
via
|
Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via (1) certain inputs to the shutdown message from ftpshut, or (2) the SQLShowInfo mod_sql directive.
The web interface for American Power Conversion
Conversion
|
interface
|
American
|
Power
|
web
|
The web interface for American Power Conversion (APC) PowerChute Network Shutdown performs all communication in cleartext (base64-encoded), which allows remote attackers to sniff authentication credentials.
The configuration of VMware ESX Server 2.x, 2.0
configuration
|
service
|
denial
|
allows
|
VMware
|
Server
|
local
|
cause
|
users
|
20x
|
ESX
|
25x
|
21x
|
The configuration of VMware ESX Server 2.x, 2.0.x, 2.1.x, and 2.5.x allows local users to cause a denial of service (shutdown) via the (1) halt, (2) poweroff, and (3) reboot scripts executed at the service console.
BomberClone 0.11.6 and earlier allows remote at
BomberClone
|
BomberClone 0.11.6 and earlier allows remote attackers to cause a denial of service (daemon crash) via (1) a certain malformed PKGF_ackreq packet, which triggers a crash in the rscache_add() function in pkgcache.c; and (2) an error packet, which is intended to be received by clients and force client shutdown, but also triggers server shutdown.
AstroCam before 2.6.6 allows remote attackers t
AstroCam
|
before
|
AstroCam before 2.6.6 allows remote attackers to cause a denial of service (daemon shutdown) via certain requests to the web interface.
backend/session.c in KDM in KDE 3.3.0 through 3
backend/sessionc
|
KDE
|
KDM
|
backend/session.c in KDM in KDE 3.3.0 through 3.5.7, when autologin is configured and "shutdown with password" is enabled, allows remote attackers to bypass the password requirement and login to arbitrary accounts via unspecified vectors.
Software vulnerabilities results 1 to 20 of 33
Page:
1
2
►