The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x
before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and
SeaMonkey before 2.0.9 does not properly set the minimum key length
for Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for
remote attackers to defeat cryptographic protection mechanisms via
a brute-force attack (CVE-2010-3173).
Unspecified vulnerability in the browser engine in Mozilla Firefox
3.5.x before 3.5.14, Thunderbird before 3.0.9, and SeaMonkey before
2.0.9 allows remote attackers to cause a denial of service (memory
corruption and application crash) or possibly execute arbitrary code
Communication to the web interface can be sniffed by the attacker.
#2 System doesn't force administrator to change default password upon first login
Many administrators leave it unchanged.
#3 Brute-force attack on admin account
Login attempts are not limited at all.
#4 Login and password stored in cookie
Admisnitrator's login and password are stored in a cookie in plain text.
xcrc ..//..//..//..//a.txt 1 2
xcrc ..//..//..//..//a.txt 1 3
...
xcrc ..//..//..//..//a.txt 1 <filesize>
when automated allows for an easy brute force attack on the crc's
Status: Submitted to Vendor 6/14/10 fixed 6/15/10
8.7. *Other Information Disclosures (CVE-2009-2335, CVE-2009-2336, BID
35584)*
WordPress discriminates bad password from bad user logins, this reduces
the complexity of a brute force attack on WordPress blogs login
(CVE-2009-2335, BID 35584). The same user information disclosure happens
when users use the forgotten mail interface to request a new password
(CVE-2009-2336, same BID 35584). These information disclosures seem to
be previously reported [6] but the WordPress team is refusing to modify
them alleging *user convenience*.
#3 System doesn't force administrator to change default password upon
first login
Many administrators leave it unchanged.
#4 Brute-force attack on admin account
Login attempts are not limited at all.
#5 Denial of Service
It's trivial to conduct a successful SYN flood attack from WAN and LAN.
CVE-2010-3173
NSS does not properly set the minimum key length for
Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for
remote attackers to defeat cryptographic protection mechanisms
via a brute-force attack.
For the stable distribution (lenny), these problems have been fixed in
version 3.12.3.1-0lenny2.
For the unstable distribution (sid) and the upcoming stable
The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x
before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and
SeaMonkey before 2.0.9 does not properly set the minimum key length
for Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for
remote attackers to defeat cryptographic protection mechanisms via
a brute-force attack (CVE-2010-3173).
Unspecified vulnerability in the browser engine in Mozilla Firefox
3.5.x before 3.5.14, Thunderbird before 3.0.9, and SeaMonkey before
2.0.9 allows remote attackers to cause a denial of service (memory
corruption and application crash) or possibly execute arbitrary code
target server, it may be possible to escalate database privileges or
run arbitrary system commands.
For example, icesurfer's excellent sqlninja tool (>= 0.1.3) can be used
to detemine various information about the server hosting the
CallManager install, launch a brute-force attack against the database
"sa" account password, and run arbitrary commands on the server if the
"sa" attack succeeds.
http://sqlninja.sourceforge.net/
sufficient entropy for a unique session id, as the session id is the only
unique identifier for the user session it is possible for an attacker to brute
force the space of possible id values and attach an existing connection.
This vulnerability also allows Denial Of Service attacks as it is possible to
exhaust the available session ids when performing a brute force attack and,
depending on the configured AjaxTerm child command, system resources.
Affected version:
AjaxTerm <= 0.10
Versions :
Users who autenticate with login et passwd without OTP systems
* 2.2 branch < 2.2.8.84
* 2.3 branch < 2.3.2.14
-------------------
Vulnerability : Brute force attack
Description :
The IPDiva Mediation server suffer of cookie exploitation
vulnerability. A mecanism of limitation after a number of bad login/
passwd exist based on a cookie. When the cookie is null, the account
