Search:Vulnerability:04.09.2002 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Firewall-1 usernames detection
Published: 04.09.2002
Source: BUGTRAQ
SecurityVulns ID: 2263
Type: remote
Level: 4/10
Description: PKI aggressive mode replies are different for existing and non-existing usernames.

Affected: CHECKPOINT : Firewall-1 4.1

Original document Roy Hills, SecuRemote usernames can be guessed or sniffed using IKE exchange (04.09.2002)

Discuss: Read or add your comments to this news (0 comments)

Crossite scripting in Aestiva's HTML/OS
Published: 04.09.2002
Source: BUGTRAQ
SecurityVulns ID: 2266
Type: remote
Level: 5/10

Affected: AESTIVA : HTML/OS

Original document eax_(at)_3xT.org, Cross-Site Scripting in Aestiva's HTML/OS (04.09.2002)

Discuss: Read or add your comments to this news (0 comments)

Crossite scripting in Internet Explorer and Konqueror
updated since 04.09.2002
Published: 07.09.2002
Source: BUGTRAQ
SecurityVulns ID: 2264
Type: client
Level: 6/10
Description: It's possible to spoof domain by using %sF in URL's username: http://secretcookie.com%2F@hacker.com/

Affected: MICROSOFT : Internet Explorer 6.0
KONQUEROR : Konqueror 3.0

Original document Piotr Pawłow, MSIEv6 % encoding - Konqueror 3.0.3 also vulnerable (07.09.2002)

Liu Die Yu, MSIEv6 % encoding causes a problem again (04.09.2002)

Discuss: Read or add your comments to this news (0 comments)

Multiple bugs in Cisco VPN 3000
updated since 04.09.2002
Published: 07.05.2003
Source: BUGTRAQ
SecurityVulns ID: 2265
Type: remote
Level: 6/10

Affected: CISCO : Cisco VPN 3005
CISCO : Cisco VPN 3015
CISCO : Cisco VPN 3030
CISCO : Cisco VPN 3060
CISCO : Cisco VPN 3080
CISCO : Cisco VPN 3002

Original document FX, Cisco VPN Concentrator 3000 ISAKMP DoS details (20.09.2002)

CISCO, Cisco Security Advisory: Cisco VPN 3000 Concentrator Multiple Vulnerabilities (04.09.2002)

Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin