Posts Tagged ‘bypass’
Neon NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
CVE: CVE-2009-2474 Remote: Yes Local: No Published: Aug 18 2009 12:00AM Updated: Sep 22 2009 12:30AM Credit: Joe Orton Vulnerable: Ubuntu Ubuntu Linux 9.04 sparc Ubuntu Ubuntu Linux 9.04 powerpc Ubuntu Ubuntu Linux 9.04 lpia Ubuntu Ubuntu Linux 9.04 i386 Ubuntu Ubuntu Linux 9.04 amd64 Ubuntu Ubuntu [...]
Perl IO::Socket::SSL ‘verify_hostname_of_cert()’ Security Bypass Vulnerability
CVE: CVE-2009-3024 Remote: Yes Local: No Published: Jul 03 2009 12:00AM Updated: Sep 15 2009 02:01PM Credit: Marc Lehmann Vulnerable: S.u.S.E. SLE 11 S.u.S.E. openSUSE 11.1 RedHat Fedora 11 RedHat Fedora 10 Pardus Linux 2009 0 Pardus Linux 2008 0 CPAN IO::Socket::SSL 1.25 Not [...]
Oracle Secure Backup Server 10.3.0.1.0 Auth Bypass/RCI Exploit
#!/bin/bash #Oracle Secure Backup Administration Server authentication bypass, plus command injection vulnerability #1-day exploit for CVE-2009-1977 and CVE-2009-1978 #PoC script successfully tested on: #Oracle Secure Backup Server 10.3.0.1.0_win32_release #MS Windows Professional XP SP3 #In August 2009, ZDI discloses a few details [...]
Mutt SSL Certificate Validation Security Bypass Vulnerability
Remote: Yes Local: No Published: Jul 01 2008 12:00AM Updated: Sep 09 2009 06:01PM Credit: gkloepfer Vulnerable: Mutt Mutt 1.5.19 Mutt Mutt 1.5.13 Mutt Mutt 1.5.12 Mutt Mutt 1.5.11 Mutt Mutt 1.5.10 Mutt Mutt 1.5.9 Mutt Mutt 1.5.6 Mutt Mutt 1.5.5 Mutt Mutt 1.5.4 Mutt Mutt 1.5.3 Mutt Mutt 1.5.9i Mutt Mutt [...]
Fetchmail NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
CVE: CVE-2009-2666 Remote: Yes Local: No Published: Aug 05 2009 12:00AM Updated: Sep 04 2009 08:22AM Credit: Matthias Andree Vulnerable: Ubuntu Ubuntu Linux 9.04 sparc Ubuntu Ubuntu Linux 9.04 powerpc Ubuntu Ubuntu Linux 9.04 lpia Ubuntu Ubuntu Linux 9.04 i386 Ubuntu Ubuntu Linux 9.04 amd64 Ubuntu [...]
Qt NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
CVE: CVE-2009-2700 Remote: Yes Local: No Published: Aug 28 2009 12:00AM Updated: Sep 03 2009 07:42AM Credit: The vendor Vulnerable: Trolltech Qt 4.5.2 Trolltech Qt 4.5.1 Trolltech Qt 4.3.3 Trolltech Qt 4.3.2 Trolltech Qt 4.3.1 Trolltech Qt 4.3 Trolltech Qt 4.2.3 Trolltech Qt 4.2.1 Trolltech Qt [...]
GreenSQL Firewall WHERE Clause Secuity Bypass Vulnerability
CVE: CVE-2008-6992 Remote: Yes Local: No Published: Sep 02 2008 12:00AM Updated: Sep 02 2009 04:22PM Credit: Johannes Dahse Vulnerable: GreenSQL GreenSQL 0.9.4 GreenSQL GreenSQL 0.9.2 GreenSQL Firewall is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain [...]
‘nfs-utils’ Package ‘hosts_ctl()’ Security Bypass Vulnerability
CVE: CVE-2008-4552 Remote: Yes Local: No Published: Aug 11 2008 12:00AM Updated: Sep 02 2009 11:02AM Credit: Michele Marcionelli Vulnerable: Ubuntu Ubuntu Linux 8.10 sparc Ubuntu Ubuntu Linux 8.10 powerpc Ubuntu Ubuntu Linux 8.10 lpia Ubuntu Ubuntu Linux 8.10 i386 Ubuntu Ubuntu Linux 8.10 amd64 Ubuntu [...]
Microsoft ATL/MFC ActiveX Security Bypass Vulnerability
Microsoft's Component Object Model (COM) was designed to allow interoperability between disjointed software components. Remote exploitation of a logic flaw vulnerability in Microsoft Corp.'s ATL/MFC ActiveX code, as included in various vendors' ActiveX controls, could allow attackers to bypass ActiveX security mechanisms. Credit: The [...]
Microsoft Windows Telnet NTLM Credential Reflection Authentication Bypass Vulnerability
CVE: CVE-2009-1930 Remote: Yes Local: No Published: Aug 11 2009 12:00AM Updated: Aug 31 2009 04:32PM Credit: DilDog of @stake and Beau Butler Vulnerable: Microsoft Windows XP Tablet PC Edition SP3 Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Tablet PC Edition SP1 Microsoft Windows XP [...]
![Joomla Component XOBBIX [prodid] SQL Injection Vulnerability](http://news.dreamings.org/wp-content/themes/news-magazine-theme-640/cropper.php?src=http://news.dreamings.org/wp-content/uploads/2010/02/Coffee-Time-150x150.png&h=50&w=50&zc=1&q=95)