OpenSSL Security Advisory - A Null-pointer assignment during an SSL handshake can result in a denial of service. Versions 0.9.6c to 0.9.6k and 0.9.7a to 0.9.7c are affected by this issue. Versions 0.9.7a, 0.9.7b, and 0.9.7c are affected by another vulnerability in the handling of Kerberos ciphersuites that can cause OpenSSL to crash. Patches are attached to the advisory.
74e5edb8b95d18badf28cf2d243789474aa52058185bcdddde38d9e1318f98b5S-Quadra Advisory #2004-03-15 - ModSecurity 1.7.4 for the Apache 2.x webserver series is vulnerable to a remote off-by-one overflow that allows for arbitrary code execution. Version 1.7.5 has been released to address this issue.
46914b1d1e2b2200f173555807ff77394e863e8d79257fe7862682dac2771be0A vulnerability exists in the Crafty game versions 19.3 and below that allows a local user to escalate privileges via a buffer overflow.
d713ebffde11218f34d8b01dc14e79a08b13899fd42c6dc9b3f2f306677c6691Multiple vendors suffer from a denial of service vulnerability in their SOAP servers. Products affected: Macromedia ColdFusion/MX 6.0 and 6.1, ColdFusion/MX 6.0 and 6.1 J2EE, all editions of Macromedia JRun 4.0, and Sun Java System Application Server 7 Update 2 Upgrade and prior releases.
edfd88863f29ed6adcb5fa19d6baa42407918c5ba0a3e4f0296be2a21ea83fbdMacromedia Security Bulletin MPSB04-03 - Macintosh versions of the Macromedia installers and e-licensing client install a service whose file permissions allow other users to write to the file. This may allow one local user to obtain the permissions of another local user, resulting in privilege escalation.
06569fc73f56b134f1c6ccc379a1250b834fd97e8c4fbcb362ffbf3611186893Novell has identified an issue with the default configuration of GroupWise 6 and 6.5 WebAccess that could allow unauthorized access to the WebAccess server. This issue affects only systems running GroupWise 6 or 6.5 WebAccess on NetWare using the Apache 1.3x web server and where Apache is loaded using the GWAPACHE.CONF file.
3af321a0b71da464f106be0cbfd62b884c6d174fcc11563a1739cc9ed3673c13Oracle Security Alert 66 - Security vulnerabilities have been discovered in Oracle Application Server Web Cache 10g (9.0.4.0.0) and Oracle9i Application Server Web Cache.
2265276da46e246bf16627f4b8bd512ba4c18a873a847af0740783b7284199f8WS_FTP Pro versions 8.02 and below suffer from a buffer overrun when ASCII mode directory data is passed to the client from the server. If the data exceeds 260 bytes without a terminating CR/LF, the application will crash. Arbitrary code execution is possible.
053fdbe09d3248b0bcb77193ec1300cfa9c274c9284e37fa1da31338c10879d8Immunity Security Advisory - The Compaq Web Management system (HP HTTP) has a bug in its validation system that allows an anonymous user to upload trusted certificates.
abd992377e84fc44d38444954b8896715b7619fe2c505a46a3639e73084980f2Immunity Security Advisory - Remotely exploitable stack overflows exist in Computer Associates Unicenter TNG Utilities awservices.exe. Successful exploitation elevates an attacker to SYSTEM privileges. All known versions of Unicenter TNG 2.4 are affected.
1625a608ed26cffca06238ca193f1bde9f9b610f98606c2b6088043899bef4c8phpBB versions 2.0.6 and below suffer from a SQL injection vulnerability in the search.php file. Workaround included.
44c9e7e77f8b0035b663e5007df768b98d174db76143681916d252a11e5bef0aOpenPKG Security Advisory - UUDeview versions 0.5.19 and below suffer from buffer overflows and insecure temporary file handling.
35b2899d2b0e07cb9d100c68b4cec7d29aa763fda2a6efb61170d8727b6a1d5dExtcompose, a function of the metamail package, fails to properly verify a file exists prior to writing to it, and will accept symbolic links, leaving it open to being an attack vector.
ecb0d56a71d017b5a7e9ee58f1fd7f55abb82c34705174f94c74945fd4205bdeS-Quadra Advisory #2004-03-12 - The Dogpatch Software CFWebstore 5.0 shopping cart is vulnerable to both SQL injection and cross site scripting attacks in the index.cfm script.
1c7ff362dc7ffadb306a13d097aaf4be167f49df0e94f977e162345e13c85b23Due to a lack of proper input validation, cross site scripting flaws exist in MyProxy version 20030629.
41078aa5f506cbca271a880e944289d5e7e8c02397ef7ddf52bcaf65a7a9f401Various cross site scripting vulnerabilties exist in the hushmail.com site.
d73566f676dd22af7f5a456848424ab6e59187f352f2cd0df4f994f998c084bdcPanel Security Advisory - CPANEL-2004:01-01 - When trying to change a user password in cPanel 8.x.x, it is possible to execute commands as root. cPanel suggests that administrators disable this feature until a fixed version is released.
de07214fb14cedfac34abe7008de692d19d39c9a9c15972e2b70d9b2a04ff003Battle Mages versions 1.0 for Windows is vulnerable to a denial of service server freeze. It infinitely loops when trying to read an expected data block after being sent incomplete data.
a1218e65d7cbe334c606426ef75b9583a74defddc3520cbb77e1caccfb06cab3Red Hat Security Advisory RHSA-2004:093-01 - Alan Cox discovered a vulnerability in the systat package where the post and trigger scripts insecurely created temporary filenames, allowing for a symlink attack using /tmp.
7f35413d7406806fe9f4889a2af2a17ef8d1c07ba68514c7a19b918b236d1707The Unreal game engine for Windows, MacOS, and Linux has a format string bug that allows an attacker to remotely crash or execute malicious code on the server. Games affected: America's Army, DeusEx, Devastation, Magic Battlegrounds, Mobile Forces, Nerf Arena Blast, Postal 2, Rainbow Six: Raven Shield, Rune, Sephiroth: 3rd episode the Crusade, Star Trek: Klingon Honor Guard, Tactical Ops, TNN Pro Hunter, Unreal 1, Unreal II XMP, Unreal Tournament, Unreal Tournament 2003, Wheel of Time, X-com Enforcer, and XIII.
e0ba75525b76f3a8f0df41fe6ab0de28307f96f2564e4076dce7b1591c77c934wMCam server version 2.1.348 is susceptible to a denial of service attack when in excess of 300 connections are made to it each supplying a small amount of non-standard data.
4655458b570f61dc784e7404370a9406fbf36e74b4e0c13b3c96c5752521fadaMicrosoft Outlook contains a vulnerability which allows execution of arbitrary code when a victim user views a web page or an e-mail message created by an attacker. According to Microsoft the affected supported versions are Microsoft Office XP SP2 and Microsoft Outlook 2002 SP 2. Some earlier versions are vulnerable too, but not supported by the vendor.
a99f1c18ee04688594c6a52ed176afb519764b78f2f8e40fa19a9bee468e49b3NGSSoftware Insight Security Research Advisory #NISR09032004 - IBM's DB2 version 8.1 Enterprise Edition on Windows has a remote command server that runs as db2admin, but can have commands executed by a guest account, allowing for privilege escalation.
10520a56141855f73494c0672207628263e7a584f82ffe7e004331c3851054d9Chat Anywhere versions 2.72 and below allow a remote attacker to add %00 before their nickname which keeps an administrator from being able to ban or kick the user from a room.
14185128d96eeea5b3852b9a09a83448b0516fa5957d6054b51ca837a5bf1d46GNU automake versions below 1.8.3 insecurely create temporary directories.
4fe8ec255d16150836017807977251cf7d3bd4e1d16ae0888f7192f69264f718
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed