The pre-login mode in the System Administrator interface of Lightwave ConsoleServer 3200 allows remote attackers to obtain sensitive information such as system status, configuration, and users. Date published : 2001-05-24 http://www.securityfocus.com/bid/2578 http://archives.neohapsis.com/archives/bugtraq/2001-04/0170.html
Lightwave ConsoleServer 3200 does not disconnect users after unsuccessful login attempts, which could allow remote attackers to conduct brute force password guessing. Date published : 2001-05-24 http://www.securityfocus.com/bid/2578 http://archives.neohapsis.com/archives/bugtraq/2001-04/0170.html
Navision Financials Server 2.0 allows remote attackers to cause a denial of service via a series of connections to the server without providing a username/password combination, which consumes the license limits. Date published :...
Navision Financials Server 2.60 and earlier allows remote attackers to cause a denial of service by sending a null character and a long string to the server port (2407), which causes the server to...
Xitami 2.5d4 and earlier allows remote attackers to crash the server via an HTTP request to the /aux directory. Date published : 2001-05-24 http://archives.neohapsis.com/archives/bugtraq/2001-04/0277.html
IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to cause a denial of service by directly calling the macro.d2w macro with a long string of %0a characters. Date published : 2001-05-24 http://www.securityfocus.com/bid/2588 http://www.securityfocus.com/archive/1/176100
IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument. Date published : 2001-05-24 http://www.securityfocus.com/bid/2587 http://www.securityfocus.com/archive/1/176100
GoAhead webserver 2.1 allows remote attackers to cause a denial of service via an HTTP request to the /aux directory. Date published : 2001-05-24 http://www.securityfocus.com/bid/2607 http://archives.neohapsis.com/archives/bugtraq/2001-04/0281.html
ppd in Reliant Sinix allows local users to corrupt arbitrary files via a symlink attack in the /tmp/ppd.trace file. Date published : 2001-05-24 http://www.securityfocus.com/bid/2606 http://www.securityfocus.com/archive/1/176709
Computer Associates CCCHarvest 5.0 for Windows NT/2000 uses weak encryption for passwords, which allows a remote attacker to gain privileges on the application. Date published : 2001-05-24 http://archives.neohapsis.com/archives/ntbugtraq/2001-q2/0001.html
The OpenPGP PGP standard allows an attacker to determine the private signature key via a cryptanalytic attack in which the attacker alters the encrypted private key file and captures a single message signed with...
Crosscom/Olicom XLT-F running XL 80 IM Version 5.5 Build Level 2 allows a remote attacker SNMP read and write access via a default, undocumented community string ‘ILMI’. Date published : 2001-05-24 http://archives.neohapsis.com/archives/bugtraq/2001-03/0364.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5718
SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 firmware using IPSEC with IKE pre-shared keys do not allow for the use of full 128 byte IKE pre-shared keys, which is the intended design of the...
The HTTP server in Compaq web-enabled management software for (1) Foundation Agents, (2) Survey, (3) Power Manager, (4) Availability Agents, (5) Intelligent Cluster Administrator, and (6) Insight Manager can be used as a generic...