OpenSSL Security Advisory - A Null-pointer assignment during an SSL handshake can result in a denial of service. Versions 0.9.6c to 0.9.6k and 0.9.7a to 0.9.7c are affected by this issue. Versions 0.9.7a, 0.9.7b, and 0.9.7c are affected by another vulnerability in the handling of Kerberos ciphersuites that can cause OpenSSL to crash. Patches are attached to the advisory.
74e5edb8b95d18badf28cf2d243789474aa52058185bcdddde38d9e1318f98b5
S-Quadra Advisory #2004-03-15 - ModSecurity 1.7.4 for the Apache 2.x webserver series is vulnerable to a remote off-by-one overflow that allows for arbitrary code execution. Version 1.7.5 has been released to address this issue.
46914b1d1e2b2200f173555807ff77394e863e8d79257fe7862682dac2771be0
A vulnerability exists in the Crafty game versions 19.3 and below that allows a local user to escalate privileges via a buffer overflow.
d713ebffde11218f34d8b01dc14e79a08b13899fd42c6dc9b3f2f306677c6691
Multiple vendors suffer from a denial of service vulnerability in their SOAP servers. Products affected: Macromedia ColdFusion/MX 6.0 and 6.1, ColdFusion/MX 6.0 and 6.1 J2EE, all editions of Macromedia JRun 4.0, and Sun Java System Application Server 7 Update 2 Upgrade and prior releases.
edfd88863f29ed6adcb5fa19d6baa42407918c5ba0a3e4f0296be2a21ea83fbd
Macromedia Security Bulletin MPSB04-03 - Macintosh versions of the Macromedia installers and e-licensing client install a service whose file permissions allow other users to write to the file. This may allow one local user to obtain the permissions of another local user, resulting in privilege escalation.
06569fc73f56b134f1c6ccc379a1250b834fd97e8c4fbcb362ffbf3611186893
Novell has identified an issue with the default configuration of GroupWise 6 and 6.5 WebAccess that could allow unauthorized access to the WebAccess server. This issue affects only systems running GroupWise 6 or 6.5 WebAccess on NetWare using the Apache 1.3x web server and where Apache is loaded using the GWAPACHE.CONF file.
3af321a0b71da464f106be0cbfd62b884c6d174fcc11563a1739cc9ed3673c13
Oracle Security Alert 66 - Security vulnerabilities have been discovered in Oracle Application Server Web Cache 10g (9.0.4.0.0) and Oracle9i Application Server Web Cache.
2265276da46e246bf16627f4b8bd512ba4c18a873a847af0740783b7284199f8
WS_FTP Pro versions 8.02 and below suffer from a buffer overrun when ASCII mode directory data is passed to the client from the server. If the data exceeds 260 bytes without a terminating CR/LF, the application will crash. Arbitrary code execution is possible.
053fdbe09d3248b0bcb77193ec1300cfa9c274c9284e37fa1da31338c10879d8
Immunity Security Advisory - The Compaq Web Management system (HP HTTP) has a bug in its validation system that allows an anonymous user to upload trusted certificates.
abd992377e84fc44d38444954b8896715b7619fe2c505a46a3639e73084980f2
Immunity Security Advisory - Remotely exploitable stack overflows exist in Computer Associates Unicenter TNG Utilities awservices.exe. Successful exploitation elevates an attacker to SYSTEM privileges. All known versions of Unicenter TNG 2.4 are affected.
1625a608ed26cffca06238ca193f1bde9f9b610f98606c2b6088043899bef4c8
phpBB versions 2.0.6 and below suffer from a SQL injection vulnerability in the search.php file. Workaround included.
44c9e7e77f8b0035b663e5007df768b98d174db76143681916d252a11e5bef0a
OpenPKG Security Advisory - UUDeview versions 0.5.19 and below suffer from buffer overflows and insecure temporary file handling.
35b2899d2b0e07cb9d100c68b4cec7d29aa763fda2a6efb61170d8727b6a1d5d
Extcompose, a function of the metamail package, fails to properly verify a file exists prior to writing to it, and will accept symbolic links, leaving it open to being an attack vector.
ecb0d56a71d017b5a7e9ee58f1fd7f55abb82c34705174f94c74945fd4205bde
S-Quadra Advisory #2004-03-12 - The Dogpatch Software CFWebstore 5.0 shopping cart is vulnerable to both SQL injection and cross site scripting attacks in the index.cfm script.
1c7ff362dc7ffadb306a13d097aaf4be167f49df0e94f977e162345e13c85b23
Due to a lack of proper input validation, cross site scripting flaws exist in MyProxy version 20030629.
41078aa5f506cbca271a880e944289d5e7e8c02397ef7ddf52bcaf65a7a9f401
Various cross site scripting vulnerabilties exist in the hushmail.com site.
d73566f676dd22af7f5a456848424ab6e59187f352f2cd0df4f994f998c084bd
cPanel Security Advisory - CPANEL-2004:01-01 - When trying to change a user password in cPanel 8.x.x, it is possible to execute commands as root. cPanel suggests that administrators disable this feature until a fixed version is released.
de07214fb14cedfac34abe7008de692d19d39c9a9c15972e2b70d9b2a04ff003
Battle Mages versions 1.0 for Windows is vulnerable to a denial of service server freeze. It infinitely loops when trying to read an expected data block after being sent incomplete data.
a1218e65d7cbe334c606426ef75b9583a74defddc3520cbb77e1caccfb06cab3
Red Hat Security Advisory RHSA-2004:093-01 - Alan Cox discovered a vulnerability in the systat package where the post and trigger scripts insecurely created temporary filenames, allowing for a symlink attack using /tmp.
7f35413d7406806fe9f4889a2af2a17ef8d1c07ba68514c7a19b918b236d1707
The Unreal game engine for Windows, MacOS, and Linux has a format string bug that allows an attacker to remotely crash or execute malicious code on the server. Games affected: America's Army, DeusEx, Devastation, Magic Battlegrounds, Mobile Forces, Nerf Arena Blast, Postal 2, Rainbow Six: Raven Shield, Rune, Sephiroth: 3rd episode the Crusade, Star Trek: Klingon Honor Guard, Tactical Ops, TNN Pro Hunter, Unreal 1, Unreal II XMP, Unreal Tournament, Unreal Tournament 2003, Wheel of Time, X-com Enforcer, and XIII.
e0ba75525b76f3a8f0df41fe6ab0de28307f96f2564e4076dce7b1591c77c934
wMCam server version 2.1.348 is susceptible to a denial of service attack when in excess of 300 connections are made to it each supplying a small amount of non-standard data.
4655458b570f61dc784e7404370a9406fbf36e74b4e0c13b3c96c5752521fada
Microsoft Outlook contains a vulnerability which allows execution of arbitrary code when a victim user views a web page or an e-mail message created by an attacker. According to Microsoft the affected supported versions are Microsoft Office XP SP2 and Microsoft Outlook 2002 SP 2. Some earlier versions are vulnerable too, but not supported by the vendor.
a99f1c18ee04688594c6a52ed176afb519764b78f2f8e40fa19a9bee468e49b3
NGSSoftware Insight Security Research Advisory #NISR09032004 - IBM's DB2 version 8.1 Enterprise Edition on Windows has a remote command server that runs as db2admin, but can have commands executed by a guest account, allowing for privilege escalation.
10520a56141855f73494c0672207628263e7a584f82ffe7e004331c3851054d9
Chat Anywhere versions 2.72 and below allow a remote attacker to add %00 before their nickname which keeps an administrator from being able to ban or kick the user from a room.
14185128d96eeea5b3852b9a09a83448b0516fa5957d6054b51ca837a5bf1d46
GNU automake versions below 1.8.3 insecurely create temporary directories.
4fe8ec255d16150836017807977251cf7d3bd4e1d16ae0888f7192f69264f718