Searching spoof software vulnerabilities

Denial of service in RPC portmapper allows atta

portmapper | unregister | attackers | register | services | address | service | spoofed | source | allows | Denial | spoof | using | such | RPC |

Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1.


Internet Explorer 5.0 allows window spoofing, a

information | legitimate | allowing | attacker | spoofing | Explorer | Internet | capture | client | window | allows | remote | spoof | site | web |

Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client.


The ARP protocol allows any host to spoof ARP r

spoofing | protocol | conduct | replies | service | address | denial | poison | allows | spoof | cache | host | ARP | any |

The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service.


WinCE 3.0.9348 generates predictable TCP Initia

WinCE |

WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.


Cisco AP340 base station produces predictable T

predictable | produces | Sequence | Initial | Numbers | station | Cisco | AP340 | base | TCP |

Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.


Yahoo! Messenger 5.0 allows remote attackers to

engineering | attackers | modifying | Messenger | username | service | spoofed | social | allows | remote | denial | spoof | Yahoo | other | using | users |

Yahoo! Messenger 5.0 allows remote attackers to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks.


Linux 2.4.x allows remote attackers to spoof th

Forwarding | addresses | attackers | packets | bridge | forged | target | allows | source | remote | whose | spoof | Linux | table | same | via | 24x |

Linux 2.4.x allows remote attackers to spoof the bridge Forwarding table via forged packets whose source addresses are the same as the target.


Mozilla Firefox 0.9.1 and 0.9.2 allows remote w

Firefox | Mozilla |

Mozilla Firefox 0.9.1 and 0.9.2 allows remote web sites to spoof certificates of trusted web sites via redirects and Javascript that uses the "onunload" method.


Apple Safari 1.0 through 1.2.3 allows remote at

through | Safari | Apple |

Apple Safari 1.0 through 1.2.3 allows remote attackers to spoof the URL displayed in the status bar via TABLE tags.


phpBB 2.0.8a and earlier trusts the IP address

X-Forwarded-For | attackers | addresses | address | earlier | header | allows | trusts | remote | phpBB | spoof | which | 208a | HTTP |

phpBB 2.0.8a and earlier trusts the IP address that is in the X-Forwarded-For in the HTTP header, which allows remote attackers to spoof IP addresses.


Cross-site scripting (XSS) vulnerability in ind

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in index.php in Jelsoft vBulletin allows remote attackers to spoof parts of a website via the loc parameter.


Yeemp 0.9.9 and earlier does properly encrypt i

Yeemp |

Yeemp 0.9.9 and earlier does properly encrypt inbound files, which allows remote attackers to spoof the identity of the sender.


resmgr in SUSE CORE 9 does not properly identif

terminals | properly | terminal | identify | resmgr | allows | local | spoof | users | types | login | names | which | CORE | does | SUSE | not |

resmgr in SUSE CORE 9 does not properly identify terminal names, which allows local users to spoof terminals and login types.


PHP-Post allows remote attackers to spoof the n

hex-encoded | registering | characters | containing | attackers | username | PHP-Post | remote | allows | names | spoof | users | other |

PHP-Post allows remote attackers to spoof the names of other users by registering with a username containing hex-encoded characters.


Microsoft Agent allows remote attackers to spoo

disguising | attackers | arbitrary | malicious | Microsoft | Internet | security | execute | prompts | trusted | content | remote | allows | Agent | spoof | page | code | Web |

Microsoft Agent allows remote attackers to spoof trusted Internet content and execute arbitrary code by disguising security prompts on a malicious Web page.


MyPHP Forum 1.0 allows remote attackers to spoo

attackers | modifying | username | remote | allows | MyPHP | Forum | spoof |

MyPHP Forum 1.0 allows remote attackers to spoof the username by modifying the (1) nbuser parameter to post.php or (2) sender parameter to privmsg.php.


Squid 2.5 STABLE9 and earlier, when the DNS cli

environment | unfiltered | attackers | spoofing | STABLE9 | prevent | lookups | earlier | allows | remote | client | spoof | Squid | port | does | DNS | not |

Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups.


Joomla! before 1.0.10 allows remote attackers t

before | Joomla |

Joomla! before 1.0.10 allows remote attackers to spoof the frontend submission forms, which has unknown impact and attack vectors.


The LLTD Mapper in Microsoft Windows Vista allo

relationships | nonexistent | attackers | Microsoft | topology | provided | network | differs | address | Bridge" | Windows | Source | Mapper | header | "Spoof | packet | attack | allows | remote | bridge | HELLO | field | using | spoof | hosts | Vista | LLTD | Real | BASE | into | map | MAC | aka |

The LLTD Mapper in Microsoft Windows Vista allows remote attackers to spoof hosts, and nonexistent bridge relationships, into the network topology map by using a MAC address that differs from the MAC address provided in the Real Source field of the LLTD BASE header of a HELLO packet, aka the "Spoof on Bridge" attack.


The LLTD Responder in Microsoft Windows Vista d

network-based | arbitrary | DISCOVERY | attackers | condition | Responder | Microsoft | response | spoofed | another | Windows | "Total | remote | allows | packet | Mapper | Spoof" | attack | hosts | Vista | spoof | first | which | LLTD | race | sent | host | send | does | via | has | not | aka |

The LLTD Responder in Microsoft Windows Vista does not send the Mapper a response to a DISCOVERY packet if another host has sent a spoofed response first, which allows remote attackers to spoof arbitrary hosts via a network-based race condition, aka the "Total Spoof" attack.


Software vulnerabilities results 1 to 20 of 183     
Page: 12345...10