waiting software vulnerabilities
vulnerabilities.aspcode.net
Searching waiting software vulnerabilities
ZIP drive for Iomega ZIP-100 disks allows attac
protection
|
replacing
|
attackers
|
inserting
|
manually
|
physical
|
password
|
ZIP-100
|
waiting
|
target
|
Iomega
|
allows
|
access
|
bypass
|
drive
|
power
|
disks
|
known
|
using
|
disk
|
down
|
ZIP
|
ZIP drive for Iomega ZIP-100 disks allows attackers with physical access to the drive to bypass password protection by inserting a known disk with a known password, waiting for the ZIP drive to power down, manually replacing the known disk with the target disk, and using the known password to access the target disk.
The account lockout capability in Oblix NetPoin
capability
|
passwords
|
attackers
|
specified
|
guessing
|
password
|
NetPoint
|
lockout
|
conduct
|
account
|
without
|
waiting
|
earlier
|
remote
|
locked
|
easier
|
period
|
until
|
again
|
locks
|
being
|
Oblix
|
users
|
which
|
brute
|
makes
|
force
|
only
|
once
|
ends
|
then
|
out
|
The account lockout capability in Oblix NetPoint 5.2 and earlier only locks out users once for the specified lockout period, which makes it easier for remote attackers to conduct brute force password guessing by waiting until the lockout period ends, then guessing passwords without being locked out again.
Targem Battle Mages 1.0 allows remote attackers
attackers
|
service
|
remote
|
denial
|
Battle
|
Targem
|
allows
|
Mages
|
cause
|
Targem Battle Mages 1.0 allows remote attackers to cause a denial of service (infinite loop) via a UDP packet with incomplete data, which causes the server to enter an infinite loop while waiting to read the rest of the data that is not sent.
The fetchnews NNTP client in leafnode 1.11.2 an
fetchnews
|
leafnode
|
client
|
NNTP
|
The fetchnews NNTP client in leafnode 1.11.2 and earlier can hang while waiting for input that never arrives, which allows remote NNTP servers to cause a denial of service (news loss).
Cisco 7940/7960 Voice over IP (VoIP) phones do
7940/7960
|
Voice
|
Cisco
|
over
|
Cisco 7940/7960 Voice over IP (VoIP) phones do not properly check the Call-ID, branch, and tag values in a NOTIFY message to verify a subscription, which allows remote attackers to spoof messages such as the "Messages waiting" message.
Grandstream BudgeTone (BT) 100 Voice over IP (V
Grandstream
|
BudgeTone
|
Grandstream BudgeTone (BT) 100 Voice over IP (VoIP) phones do not properly check the Call-ID, branch, and tag values in a NOTIFY message to verify a subscription, which allows remote attackers to spoof messages such as the "Messages waiting" message.
The sysctl functionality (sysctl.c) in Linux ke
functionality
|
sysctl
|
The sysctl functionality (sysctl.c) in Linux kernel before 2.6.14.1 allows local users to cause a denial of service (kernel oops) and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unregistered, then obtaining and modifying function pointers in memory that was used for the ctl_table.
Race condition in Linux 2.6, when threads are s
condition
|
CLONE_VM
|
sharing
|
mapping
|
threads
|
memory
|
Linux
|
Race
|
via
|
Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as linuxthreads and vfork), might allow local users to cause a denial of service (deadlock) by triggering a core dump while waiting for a thread that has just performed an exec.
OpenSSH on FreeBSD 5.3 and 5.4, when used with
authentication
|
terminates
|
attackers
|
properly
|
process
|
service
|
OpenPAM
|
FreeBSD
|
OpenSSH
|
denial
|
remote
|
allows
|
during
|
forked
|
handle
|
cause
|
child
|
which
|
does
|
used
|
not
|
PAM
|
OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM authentication, which allows remote attackers to cause a denial of service (client connection refusal) by connecting multiple times to the SSH server, waiting for the password prompt, then disconnecting.
Unspecified vulnerability in perl.rte 5.8.0.10
vulnerability
|
Unspecified
|
perlrte
|
Unspecified vulnerability in perl.rte 5.8.0.10 through 5.8.0.95 on IBM AIX 5.2, and 5.8.2.10 through 5.8.2.50 on AIX 5.3, allows local users to gain privileges via unspecified vectors related to the installation and "waiting for a legitimate user to execute a binary that ships with Perl."
Software vulnerabilities results 1 to 11 of 11
Page:
1