Searching uses software vulnerabilities

ControlIT v4.5 and earlier uses weak encryption

encryption | ControlIT | usernames | passwords | earlier | address | store | weak | book | uses | v45 |

ControlIT v4.5 and earlier uses weak encryption to store usernames and passwords in an address book.


Denial of service in SMTP applications such as

applications | Sendmail | attacker | service | remote | Denial | SMTP | such |

Denial of service in SMTP applications such as Sendmail, when a remote attacker (e.g. spammer) uses many "RCPT TO" commands in the same connection.


IBM WebSphere ikeyman tool uses weak encryption

connections | encryption | WebSphere | password | database | ikeyman | store | tool | used | weak | uses | IBM | SSL | key |

IBM WebSphere ikeyman tool uses weak encryption to store a password for a key database that is used for SSL connections.


Netscape Navigator uses weak encryption for sto

encryption | Navigator | Netscape | password | storing | user's | uses | mail | weak |

Netscape Navigator uses weak encryption for storing a user's Netscape mail password.


MacOS uses weak encryption for passwords that a

encryption | passwords | stored | Groups | Users | MacOS | Data | File | uses | weak |

MacOS uses weak encryption for passwords that are stored in the Users & Groups Data File.


IMail POP3 daemon uses weak encryption, which a

encryption | daemon | allows | local | files | users | which | IMail | read | POP3 | weak | uses |

IMail POP3 daemon uses weak encryption, which allows local users to read files.


CuteFTP uses weak encryption to store password

information | encryption | password | treedat | CuteFTP | store | uses | file | weak | its |

CuteFTP uses weak encryption to store password information in its tree.dat file.


An installation of Red Hat uses DES password en

installation | encryption | password | uses | Red | Hat | DES |

An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5.


FTP Explorer uses weak encryption for storing t

encryption | password | username | Explorer | profile | storing | sites | uses | weak | FTP |

FTP Explorer uses weak encryption for storing the username, password, and profile of FTP sites.


The Citrix ICA (Independent Computing Architect

Citrix | ICA |

The Citrix ICA (Independent Computing Architecture) protocol uses weak encryption (XOR) for user authentication.


The crypt function in QNX uses weak encryption,

encryption | passwords | function | decrypt | allows | local | users | crypt | which | uses | weak | QNX |

The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords.


Omnis Studio 2.4 uses weak encryption (trivial

encryption | Studio | Omnis | weak | uses |

Omnis Studio 2.4 uses weak encryption (trivial encoding) for encrypting database fields.


The Razor configuration management tool uses we

configuration | encryption | privileges | management | password | allows | local | which | users | Razor | gain | uses | weak | file | tool | its |

The Razor configuration management tool uses weak encryption for its password file, which allows local users to gain privileges.


SawMill 5.0.21 uses weak encryption to store pa

SawMill |

SawMill 5.0.21 uses weak encryption to store passwords, which allows attackers to easily decrypt the password and modify the SawMill configuration.


NetZero 3.0 and earlier uses weak encryption fo

information | encryption | password | storing | NetZero | decrypt | earlier | allows | user's | local | login | which | uses | weak | user |

NetZero 3.0 and earlier uses weak encryption for storing a user's login information, which allows a local user to decrypt the password.


NAI Sniffer Agent uses base64 encoding for auth

authentication | usernames | passwords | attackers | encoding | Sniffer | decrypt | network | allows | base64 | easily | Agent | which | sniff | uses | NAI |

NAI Sniffer Agent uses base64 encoding for authentication, which allows attackers to sniff the network and easily decrypt usernames and passwords.


Microsys CyberPatrol uses weak encryption (triv

CyberPatrol | encryption | Microsys | weak | uses |

Microsys CyberPatrol uses weak encryption (trivial encoding) for credit card numbers and uses no encryption for the remainder of the information during registration, which could allow attackers to sniff network traffic and obtain this sensitive information.


SonicWALL SOHO uses easily predictable TCP sequ

predictable | attackers | SonicWALL | sequence | sessions | numbers | allows | remote | hijack | easily | spoof | which | SOHO | uses | TCP |

SonicWALL SOHO uses easily predictable TCP sequence numbers, which allows remote attackers to spoof or hijack sessions.


Microsoft Internet Explorer 6 allows remote att

historyback | facilitate | Javascript | attackers | NullyFake | Microsoft | phishing | Internet | previous | Explorer | modifies | Location | navigate | invalid | address | attacks | remote | allows | domain | field | spoof | uses | then | aka | bar | URI | via |

Microsoft Internet Explorer 6 allows remote attackers to spoof the address bar to facilitate phishing attacks via Javascript that uses an invalid URI, modifies the Location field, then uses history.back to navigate to the previous domain, aka NullyFake.


Apple Mac OS X kernel allows local users to cau

register | service | process | kernel | denial | kevent | parent | allows | Apple | event | queue | child | users | cause | local | fork | same | uses | then | via | Mac |

Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent.


Software vulnerabilities results 1 to 20 of 438     
Page: 12345...22