PHP strip_tags() bypass vulnerability may allow for Cross-site scripting attacks launched via websites that run PHP and depend on strip_tags() for security. The attack requires a vulnerable browser such as IE, Safari, or Mozilla in order to work.
d66c97661142fe3d557417694547c784d192d272603cbc2f590fd731fd0ddf21
The HtmlHelp application (hh.exe) in Microsoft windows read a value from a .CHM file to set a length parameter. By setting this to a large value, it is possible to overwrite sections of the heap with attacker supplied values. Affected software includes: Microsoft Windows 98, 98SE, ME, Microsoft Windows NT 4.0, Microsoft Windows 2000 Service Pack 4, Microsoft Windows XP, Microsoft Windows XP Service Pack 1, Microsoft Windows Server 2003.
ac7c55f929b9e971cc8376ae4bda17d5f164652d10bf394f6db55a9ddb4eacb6
A local elevation of privileges exists in the Windows Utility Manager which allows any user to take complete control over the operating system. This vulnerability affects the Windows 2000 operating system family.
06783ccb4127e8dc09bf4a647613438415e9c60af8c3a29e7ebdd29c4ff3750f
Atstake Security Advisory A071304-1 - 4D WebSTAR versions 5.3.2 and below suffer from numerous vulnerabilities that allow for an attacker to escalate privileges or obtain access to protected resources. These include a remotely exploitable pre-authentication FTP overflow, directory indexing of any directory on the host, file disclosure of PHP.INI, and local privilege escalation and file overwrite via symbolic links.
3687cf4f4805ebd7619c3a629f029fcea5cc0d6baf1031b38b9528d9e63c3d7c
Aterm version 0.4.2 has a tty permission weakness that allows the world to write to a terminal.
f60187f4e1ea1f4d37e926cb178bb4659cd176a856814c8fbdfc5c6d8186f4ec
Bugzilla Advisory: Multiple security issues in Bugzilla have been discovered. These include information gathering issues (for example, database passwords may be revealed in webserver error messages), Cross Site Scripting issues, and design flaws which may make "confidential" data "protected" by Bugzilla available to all users.
c3e1dd3ee84db1b712d6183a8cb294ebae02d3b9ad75ec77b82cb213a5e1aff7
Moodle 1.3.2 and Moodle 1.4 dev is susceptible to a cross site scripting flaw.
ce88b872a79cb18b143203cdcc44b3f05d440d67941b9e8d4abe53c2fbcf2484
Technical Cyber Security Alert TA04-196A - Multitudes of vulnerabilities have been discovered amongst the Microsoft product line. Flaws that exist include Outlook Express failing to properly validate malformed e-mail headers, the Utility Manager allowing code execution, POSIX allowing code execution, IIS having a buffer overflow, the Task Scheduler having a buffer overflow, the HTML Help component failing to properly validate input data, and the Windows Shell allowing remote code execution.
1821f11a0fd592a922c98d1ad695e3b418762020d34a0f3cea361eefef4c0a68
Tatsuo Sekine has reported a vulnerability in Fedora, which can be exploited locally to increase privileges via a file race condition.
b37540bb077cfdff9b2923cb16f524415a038f569af71f7ffcf0548e53efad9c
Mozilla and Firefox are susceptible to a couple of flaws that allow for remote code execution under the guise of the local zone.
91aed3631daa564efb231ee3fd4a66218ac72fd75cfc8bcf98ec0c7ca75996bb
iDEFENSE Security Advisory 07.08.04: Exploitation of a buffer overflow vulnerability in Adobe Reader 6.0 could allow remote attackers to execute arbitrary code.
383f49d320c1476f969425a1c81ec1d0967ef361ec302931087af4274d7646eb
iDEFENSE Security Advisory 07.09.04: The wv library has been found to contain a buffer overflow condition that can be exploited through a specially crafted document.
8e6f42ccaddef8a6b4007bf499d26f516872c7ced4979868d2e3839a3fa4ce4d
Arun Sharma has discovered a vulnerability that affects Linux ia64 kernels. When the psr.mfh bit is checked without checking the identity of the FPH owner, another process may be able to see the first process's registers.
7e63b0d22a6886171fcbc995871136e9f5eb57f8cec14c4fe69851519273f6f5
The Microsoft Java Virtual Machine suffers from a cross-site communication vulnerability that allows Java applets originating from different domains to communicate.
1ac451abafed1ae8f6d56e153fc9d3e676e21a33c0eeff20a26841bdf18887e3
Ability Mail Server 1.x is susceptible to a cross site scripting flaw and a denial of service vulnerability.
1f7f8a8d03be95cfa388c5d59de178d57af5d4318ec74a2eddbfaedf6efac7e8
A malformed packet to a Half-Life engine will cause a denial of service when a write to a read-only memory zone occurs. Both Windows and Linux releases are affected.
0aadb5786ecf985cde4b3895881ce8c7ae018bc807c214246e981dfe8b706fc5
Microsoft Outlook Express is susceptible to a vulnerability which will allow javascript to be execute in the message window. Tested against Microsoft Outlook Express version 6.0.2800.1123 on Microsoft Windows XP SP2.
154f9ceed006b384227ef5e980324be03cdb572bf6e83c732153c6d9bca688df
A flaw exists in Windows Media Player that allows a malicious asx file to be executed running javascript in a local zone. Tested against MSDXM.DLL file version 6.4.09.1128 on Microsoft Windows 2000.
4f558821d20390a8682b804e4d30cbba5b5a8295e1f45ed01601ec06dbd27d24
A flaw in Microsoft Internet Explorer allows malicious remote users the ability to manipulate access controls in popup.show() resulting in executable mouse click actions.
478d2ec0688e6a3727f322bebdb3a65d2f80c8b71d4207953847cde3ef686b65
MSIE suffers from a file spoofing vulnerability that tricks the browser into opening a file as something it is not. Tested against: IEXPLORE.EXE file version 6.0.2800.1106, MSHTML.DLL file version 6.00.2800.1400, Microsoft Windows XP SP2.
78bd7580033ce5f26217a1ea1b16f2a3d2c5b54744f10ad739d696ee11b98ded
Mozilla has a flaw that allows for a remote attacker to trick a user into launching an executable via the SHELL: directive.
fd7d9b4c544c63f7beb0438f89709b6c5360fb586f6c3dd818704e9f0530c84a
Symantec Norton AntiVirus 2003 Professional Edition and Symantec Norton AntiVirus 2002 suffer from a denial of service condition when scanning files deeply embedded in directories.
98ca88296b853b3c220b0bb40bb8a43ab6781054eab9c20398d4b1984888d3d0
A vulnerability exists in the way that Shorewall handles temporary files and directories. The vulnerability can allow a non-root user to cause arbitrary files on the system to be overwritten.
6bbcf5bce92926266ba6aa58e3adb70e229a5eb9bfe6b537a38b1e8a69b62d57
iDEFENSE Security Advisory 07.08.04: SSLtelnet contains a format string vulnerability that could allow remote code execution. The problem specifically exists within telnetd.c, on line 530 where an argument deficient call is made to syslog().
4e543388d663cd33875f49d23593b699a5be1be2e1f2f992845ce28c404f7be4
Mozilla Security Advisory - Windows versions of Mozilla products pass URIs using the shell: scheme to the OS for handling. The effects depend on the version of windows, but on Windows XP it is possible to launch executables in known locations or the default handlers for file extensions. It could be possible to combine this effect with a known buffer overrun in one of these programs to create a remote execution exploit, although at this time we have confirmed only denial-of-service type attacks. Versions affected: Mozilla (Suite), Mozilla Firefox, Mozilla Thunderbird.
57a70625f36b6696077650b535747f47f76c4268befe5b019d687be4e6f7857d