|
315191
|
- |
|
terascript
|
wintango_application_server
|
Buffer overflow in WiTango Application Server and Tango 2000 allows remote attackers to execute arbitrary code via a long cookie to Witango_UserReference.
|
CWE-120
Classic Buffer Overflow
|
CVE-2003-0595
|
2024-02-9 12:18 |
2003-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315192
|
9.8 |
CRITICAL
Network
|
anybus
|
ipc\@chip_firmware
|
Beck IPC GmbH IPC@CHIP telnet service does not delay or disconnect users from the service when bad passwords are entered, which makes it easier for remote attackers to conduct brute force password gu…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2001-1339
|
2024-02-9 12:15 |
2001-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315193
|
9.8 |
CRITICAL
Network
|
cgi
|
script_center_news_update
|
CGI Script Center News Update 1.1 does not properly validate the original news administration password during a password change operation, which allows remote attackers to modify the password without…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2000-0944
|
2024-02-9 12:15 |
2000-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315194
|
9.8 |
CRITICAL
Network
|
hp
|
openvms_vax
|
VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable access to user accounts that exceed the break-in limit threshold for failed login attempts, which m…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-1999-1324
|
2024-02-9 12:15 |
1999-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315195
|
7.5 |
HIGH
Network
|
compaq
|
microcom_6000_firmware
|
Compaq/Microcom 6000 Access Integrator does not disconnect a client after a certain number of failed login attempts, which allows remote attackers to guess usernames or passwords via a brute force at…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-1999-1152
|
2024-02-9 12:15 |
1998-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315196
|
- |
|
pam-pgsql
|
pam-pgsql
|
SQL injection vulnerability in the libpam-pgsql library before 0.5.2 allows attackers to execute arbitrary SQL statements.
|
CWE-89
SQL Injection
|
CVE-2004-0366
|
2024-02-9 12:14 |
2004-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315197
|
- |
|
washington
|
pine
|
Integer signedness error in rfc2231_get_param from strings.c in PINE before 4.58 allows remote attackers to execute arbitrary code via an email that causes an out-of-bounds array access using a negat…
|
CWE-129
Improper Validation of Array Index
|
CVE-2003-0721
|
2024-02-9 12:14 |
2003-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315198
|
7.5 |
HIGH
Network
|
polycom
|
viewstation_512
viewstation_h.323
viewstation_sp_384
viewstation_mp
viewstation_128
viewstation_dcp
viewstation_v.35
viewstation_fx_vs4000
|
The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed login attempts, which makes it easier for remote attackers to guess usernames and passwords via a brute …
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2002-0628
|
2024-02-9 12:14 |
2003-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315199
|
9.8 |
CRITICAL
Network
|
3com
|
superstack_ii_ps_hub_40_firmware
|
The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the ser…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2001-1291
|
2024-02-9 12:14 |
2001-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315200
|
9.8 |
CRITICAL
Network
|
lightwavemo
|
consoleserver_3200_firmware
|
Lightwave ConsoleServer 3200 does not disconnect users after unsuccessful login attempts, which could allow remote attackers to conduct brute force password guessing.
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2001-0395
|
2024-02-9 12:14 |
2001-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
