if ($origmsg && $delete == "yes")
mysql_query("DELETE FROM messages WHERE id=$origmsg") or sqlerr();
-----------------------------[source code end]---------------------------------
2. Weak password generation algorithm in "account-recover.php"
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Reasons:
1. generated password is weak and can be easily bruteforced
Preconditions:
By sending a malicious packet to the client, client will send back lots
information including Password Hash resulting in a loss of
confidentiality.
What is more, EMC Dantz Retrospect 7 backup server's authentication module
using weak password hash arithmetic,
By buteforce it attacker can gain full control of client's machine
-- Vendor Response:
EMC has issued an update to correct this vulnerability:
http://<device IP address>/cgi/maker/tools.cgi?telnet=1
The page spawns a Telnet daemon listening on TCP port 23. The Telnet daemon
does not require any authentication.
d) Weak password encryption
User passwords are stored in "/server/usr.ini", and are simply encoded in
base64 form.
e) Configuration encoding
Users can backup the configuration of the device through the web
Due to the high number of requests, I have decided to release a fully
usable version of HTTPBruteForcer, the free and easy to use web-based
login forms' bruteforcer for Windows.
HTTP BruteForcer is a tool designed for webmasters, programmers and
websites administrators, or pentesters, to perfom a password strength
check against a simple web login form.
The old demo version was limited to a limited built-in wordlist.
The new public version let you use a custom wordlist. (
https://www.securinfos.info/wordlists-dictionnaires.php or default
>
> Due to the high number of requests, I have decided to release a fully
> usable version of HTTPBruteForcer, the free and easy to use web-based
> login forms' bruteforcer for Windows.
> HTTP BruteForcer is a tool designed for webmasters, programmers and
> websites administrators, or pentesters, to perfom a password strength
> check against a simple web login form.
>
> The old demo version was limited to a limited built-in wordlist.
> The new public version let you use a custom wordlist. (
> https://www.securinfos.info/wordlists-dictionnaires.php or default
FGA-2008-16: EMC Dantz Retrospect 7 backup Server Authentication Module
Weak Password Hash Arithmetic Vulnerability
http://www.fortiguardcenter.com/advisory/FGA-2008-16.html
July 20, 2008
-- Affected Vendors:
EMC
-- Affected Products:
EMC Dantz Retrospect Backup Server 7.5.508
http://www.debian.org/security/ Thijs Kinkhorst
November 7, 2011 http://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : postgresql-8.3, postgresql-8.4, postgresql-9.0
Vulnerability : weak password hashing
Problem type : remote
Debian-specific: no
CVE ID : CVE-2011-2483
Debian Bug : 631285
Risk
If the WKSYS schema exists then the risk is still present without
application of the patch. The CVSS score is 3.0 which is low but the
risk increases if the schema is accessible due to a weak password or an
additional attack vector that allows code to run as WKSYS. Access to the
schema, either directly or indirectly are required to expliot this issue.
Workaround
Symantec Vulnerability Research
http://www.symantec.com/research
Security Advisory
Advisory ID: SYMSA-2007-010
Advisory Title: Microsoft ActiveSync 4.x Weak Password Obfuscation
Author: Ollie Whitehouse / ollie_whitehouse@symantec.com
Release Date: 15-10-2006
Application: ActiveSync 4.x
Platform: Microsoft Windows
Severity: Information Disclosure
R7-0035: VxWorks Authentication Library Weak Password Hashing
August 2, 2010
-- Vulnerability Details:
This vulnerability allows remote attackers to bypass the authentication
process for the Telnet and FTP services of the VxWorks operating system.
This flaw occurs due to an insecure password hashing implementation in
the authentication library (loginLib) of the VxWorks operating system.
Regardless of what password is set for a particular account, there are a
only small number (~210k) of possible hash outputs. Typical passwords
