RSS   Vulnerabilities for 'Samhain'   RSS

2010-04-23
 
CVE-2009-4810

CWE-20
 

 
The Secure Remote Password (SRP) implementation in Samhain before 2.5.4 does not check for a certain zero value where required by the protocol, which allows remote attackers to bypass authentication via crafted input.

 
2004-12-31
 
CVE-2004-2410

 

 
Unknown vulnerability in sh_hash_compdata for Samhain 1.8.9 through 2.0.1 might allow attackers to cause a denial of service (null pointer dereference).

 
 
CVE-2004-2409

 

 
Buffer overflow in the sh_hash_compdata function for Samhain 1.8.9 through 2.0.1, when running in update mode ("-t update"), might allow attackers to execute arbitrary code.

 

 >>> Vendor: Samhain labs 2 Products
Hsftp
Samhain


Copyright 2024, cxsecurity.com

 

Back to Top