|
347611
|
- |
|
freebsd
|
freebsd
|
The TCP MSS (maximum segment size) functionality in netinet allows remote attackers to cause a denial of service (resource exhaustion) via (1) a low MTU, which causes a large number of small packets …
|
NVD-CWE-Other
|
CVE-2004-0002
|
2008-09-11 04:24 |
2004-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347612
|
- |
|
beasts
|
vsftpd
|
vsftpd 1.1.3 generates different error messages depending on whether or not a valid username exists, which allows remote attackers to identify valid usernames.
|
NVD-CWE-Other
|
CVE-2004-0042
|
2008-09-11 04:24 |
2004-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347613
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server proxy plugin for BEA Weblogic Express and Server 6.1 through 8.1 SP 1 allows remote attackers to cause a denial of service (proxy plugin crash) via a malformed URL.
|
NVD-CWE-Other
|
CVE-2003-1220
|
2008-09-11 04:22 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347614
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Express and Server 7.0 through 8.1 SP 1, under certain circumstances when a request to use T3 over SSL (t3s) is made to the insecure T3 port, may use a non-SSL connection for the communi…
|
NVD-CWE-Other
|
CVE-2003-1221
|
2008-09-11 04:22 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347615
|
- |
|
bea
|
weblogic_server
|
BEA Weblogic Express and Server 8.0 through 8.1 SP 1, when using a foreign Java Message Service (JMS) provider, echoes the password for the foreign provider to the console and stores it in cleartext …
|
NVD-CWE-Other
|
CVE-2003-1222
|
2008-09-11 04:22 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347616
|
- |
|
bea
|
weblogic_server
|
The Node Manager for BEA WebLogic Express and Server 6.1 through 8.1 SP 1 allows remote attackers to cause a denial of service (Node Manager crash) via malformed data to the Node Manager's port, as d…
|
NVD-CWE-Other
|
CVE-2003-1223
|
2008-09-11 04:22 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347617
|
- |
|
bea
|
weblogic_server
|
Weblogic.admin for BEA WebLogic Server and Express 7.0 and 7.0.0.1 displays the JDBCConnectionPoolRuntimeMBean password to the screen in cleartext, which allows attackers to read a user's password by…
|
NVD-CWE-Other
|
CVE-2003-1224
|
2008-09-11 04:22 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347618
|
- |
|
bea
|
weblogic_server
|
The default CredentialMapper for BEA WebLogic Server and Express 7.0 and 7.0.0.1 stores passwords in cleartext on disk, which allows local users to extract passwords.
|
NVD-CWE-Other
|
CVE-2003-1225
|
2008-09-11 04:22 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347619
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and Express 7.0 and 7.0.0.1 stores certain secrets concerning password encryption insecurely in config.xml, filerealm.properties, and weblogic-rar.xml, which allows local users to…
|
NVD-CWE-Other
|
CVE-2003-1226
|
2008-09-11 04:22 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347620
|
- |
|
cisco
|
80-7111-01_for_the_unity-svrx255-1a
80-7112-01_for_the_unity-svrx255-2a
|
Cisco Unity on IBM servers is shipped with default settings that should have been disabled by the manufacturer, which allows local or remote attackers to conduct unauthorized activities via (1) a "bu…
|
NVD-CWE-Other
|
CVE-2003-0983
|
2008-09-11 04:21 |
2004-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
