take software vulnerabilities
vulnerabilities.aspcode.net
Searching take software vulnerabilities
A Windows NT user has inappropriate rights or p
inappropriate
|
Unsolicited
|
Workstation
|
Environment
|
privileges
|
Permanent
|
Ownership
|
Generate
|
Pagefile
|
Priority
|
Shutdown
|
Security
|
Increase
|
Profile
|
Process
|
Replace
|
Windows
|
Restore
|
Driver
|
Memory
|
rights
|
Remote
|
Single
|
System
|
Change
|
Object
|
Backup
|
Create
|
Debug
|
Token
|
Input
|
Audit
|
Quota
|
user
|
Take
|
Time
|
Load
|
Lock
|
Name
|
Act
|
has
|
Add
|
A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory, Profile Single Process, Remote Shutdown, Replace Process Token, Restore, System Environment, Take Ownership, or Unsolicited Input.
Unknown vulnerability in the ARP component for
vulnerability
|
component
|
attackers
|
destined
|
packets
|
another
|
service
|
Unknown
|
remote
|
denial
|
allows
|
Tru64
|
cause
|
host"
|
"take
|
UNIX
|
over
|
ARP
|
50a
|
40g
|
40f
|
Unknown vulnerability in the ARP component for HP Tru64 UNIX 4.0f, 4.0g, and 5.0a allows remote attackers to "take over packets destined for another host" and cause a denial of service.
Unknown vulnerability in NewsBruiser 2.x before
vulnerability
|
NewsBruiser
|
Unknown
|
before
|
Unknown vulnerability in NewsBruiser 2.x before 2.6.1 allows remote attackers to "take actions on comments."
The tsearch2 module in PostgreSQL 7.4 through 8
PostgreSQL
|
tsearch2
|
declares
|
through
|
module
|
80x
|
The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments.
OpenSSH portable 4.1 on SUSE Linux, and possibl
configurations
|
discrepancies
|
demonstrated
|
attackers
|
determine
|
responses
|
usernames
|
platforms
|
portable
|
possibly
|
versions
|
OpenSSH
|
sshtime
|
invalid
|
limited
|
timing
|
allows
|
remote
|
longer
|
under
|
which
|
Linux
|
valid
|
other
|
ones
|
SUSE
|
take
|
than
|
via
|
OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies in which responses take longer for valid usernames than invalid ones, as demonstrated by sshtime. NOTE: as of Saturday, October 14, 2006, it appears that this issue is dependent on the use of manually-set passwords that causes delays when processing /etc/shadow due to an increased number of rounds.
Multiple unspecified vulnerabilities in web-app
vulnerabilities
|
unspecified
|
[security]
|
web-appnet
|
described
|
"[having]
|
Multiple
|
vectors
|
unknown
|
letting
|
account
|
WebAPP
|
issues
|
impact
|
attack
|
users
|
other
|
admin
|
your
|
over
|
take
|
have
|
too"
|
but
|
too
|
not
|
bad
|
Multiple unspecified vulnerabilities in web-app.net WebAPP have unknown impact and attack vectors, described as "[having] other [security] issues too, not as bad as letting users take over your admin account, but bad too."
xscreensaver in Sun Solaris 10 before 20070604,
xscreensaver
|
Solaris
|
before
|
Sun
|
xscreensaver in Sun Solaris 10 before Monday, June 04, 2007, when a GNOME session with Assistive Technology support is running, allows attackers with physical access to take control of the session after entering an Alt-Tab sequence.
ircu 2.10.12.03 and 2.10.12.04 does not associa
ircu
|
ircu 2.10.12.03 and 2.10.12.04 does not associate a timestamp with ops privilege on an unused channel (zannel), which allows remote attackers to (1) set or remove certain channel modes via a "netriding" attack or (2) take over a channel by joining an unlinked server with the A/Upass and then setting a new Apass.
ircu 2.10.12.05 and earlier ignores timestamps
ircu
|
ircu 2.10.12.05 and earlier ignores timestamps in bounces, which allows remote attackers to take over a channel during a netjoin by causing a bounce while a server with an older version of the channel is linking.
Software vulnerabilities results 1 to 10 of 10
Page:
1