Exploit the possiblities
Showing 1 - 25 of 282 RSS Feed

Files

Gentoo Linux Security Advisory 200504-30
Posted Jun 24, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200504-30 - The phpMyAdmin installation process leaves the SQL install script with insecure permissions. Versions less than 2.6.2-r1 are affected.

tags | advisory
systems | linux, gentoo
MD5 | b0239400f3f7ac89cbb6e8a815973a59
Gentoo Linux Security Advisory 200504-29
Posted Jun 24, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200504-29 - Steven Van Acker has discovered a buffer overflow vulnerability in the add_port() function in Pound. Versions less than 1.8.3 are affected.

tags | advisory, overflow
systems | linux, gentoo
MD5 | 8f62feaa342c218bf76d8c457898e0ff
Gentoo Linux Security Advisory 200504-28
Posted Jun 24, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200504-28 - Buffer overflow vulnerabilities in the slc_add_reply() and env_opt_add() functions have been discovered by Gael Delalleau in the telnet client in Heimdal. Versions less than 0.6.4 are affected.

tags | advisory, overflow, vulnerability
systems | linux, gentoo
advisories | CVE-2005-0468, CVE-2005-0469
MD5 | 5cc160cf60ddc9411478b10a8b0a5125
phpBBsqlAll.txt
Posted Jun 23, 2005
Authored by James Bercegay | Site gulftech.org

phpBB suffers from SQL injection vulnerabilities.

tags | advisory, vulnerability, sql injection
MD5 | f94f31e4857c21006d283dbc672fb405
phox.txt
Posted Jun 21, 2005
Authored by Phox

myPHP version 3 suffers from some authentication flaws.

tags | advisory
MD5 | 51193ee739824833703a2b986a8817e0
2005_04_26_NetFtpd.txt
Posted Jun 16, 2005
Authored by Sergio Alvarez

NetTerm 5.1.1 is susceptible to a buffer overflow vulnerability.

tags | advisory, overflow
MD5 | 871993e40cbe7717651a3eeef6b383bd
iDEFENSE Security Advisory 2005-04-26.3
Posted Jun 16, 2005
Authored by iDefense Labs | Site idefense.com

iDEFENSE Security Advisory 04.25.06-3 - Remote exploitation of a buffer overflow vulnerability in Citrix Systems Inc.'s Program Neighborhood Agent allows attackers to execute arbitrary code under the privileges of the client user. The problem specifically exists in the client code responsible for handling the caching of information received from the server.

tags | advisory, remote, overflow, arbitrary
MD5 | b1ebd127344fc773fafe8263a2d2ea35
iDEFENSE Security Advisory 2005-04-26.2
Posted Jun 16, 2005
Authored by iDefense Labs | Site idefense.com

iDEFENSE Security Advisory 04.25.06-2 - Remote exploitation of a design error in Citrix Systems Inc.'s Program Neighborhood Agent allows attackers to create arbitrary shortcuts under the privileges of the client user. Citrix Program Neighborhood Agent is a part of the Citrix Presentation Server Client and facilitates access to Citrix published applications. The problem specifically exists in that an attacker who has established a malicious server can create arbitrary shortcuts to the client user's Startup folder.

tags | advisory, remote, arbitrary
MD5 | 5cf2c24878d2230b2501e768ff255977
iDEFENSE Security Advisory 2005-04-26.1
Posted Jun 16, 2005
Authored by iDefense Labs | Site idefense.com

iDEFENSE Security Advisory 04.25.06-1 - Remote exploitation of a stack-based buffer overflow vulnerability in MySQL MaxDB could allow attackers to execute arbitrary code. The vulnerabiltiy specifically exists because of a lack of bounds checking in the WebDAV functionality of the web tool. When an attacker issues an HTTP request with the unlock method, along with a long 'If' parameter string, a stack-based overflow occurs.

tags | advisory, remote, web, overflow, arbitrary
MD5 | ebb72484262e3a832a2e188fb0efe36b
iDEFENSE Security Advisory 2005-04-25.2
Posted Jun 16, 2005
Authored by iDefense Labs | Site idefense.com

iDEFENSE Security Advisory 04.25.05-2 - Remote exploitation of a stack-based buffer overflow vulnerability in MySQL MaxDB could allow attackers to execute arbitrary code. The vulnerability specifically exists due to a lack of bounds checking in the WebDAV functionality of the web tool. When an attacker issues an HTTP request with the unlock method, along with a long Lock-Token string, a stack-based overflow occurs.

tags | advisory, remote, web, overflow, arbitrary
MD5 | 610932a650687a50ec0b632f46263c2c
iDEFENSE Security Advisory 2005-04-25.1
Posted Jun 16, 2005
Authored by iDefense Labs | Site idefense.com

iDEFENSE Security Advisory 04.25.05-1 - Remote exploitation of a stack-based buffer overflow vulnerability in MySQL MaxDB could allow attackers to execute arbitrary code. The vulnerability specifically exists due to improper handling of HTTP GET queries containing a percent sign (%).

tags | advisory, remote, web, overflow, arbitrary
MD5 | 886f10fd1646de93ce805ff98e4f9c57
sqwebmail.txt
Posted Jun 16, 2005
Site hackerscenter.com

Sqwebmail is susceptible to a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 750f7b9ce22148f3a9cff55cdeef7d07
Trustix Secure Linux Security Advisory 2005.0
Posted Jun 16, 2005
Authored by Xpl017Elz | Site x82.inetcop.org

Snmppd is susceptible to a format string vulnerability.

tags | advisory
MD5 | 02c8e09228f0fb818c6d1a9f32266bd7
Gentoo Linux Security Advisory 200504-25
Posted Jun 16, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200504-25 - Rootkit Hunter is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.

tags | advisory, arbitrary, local
systems | linux, gentoo
MD5 | 5c7857e3c50c338208b42e8ba8c0f6da
Gentoo Linux Security Advisory 200504-24
Posted Jun 16, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200504-24 - Multiple SQL injection and cross-site scripting vulnerabilities have been found in several eGroupWare modules. Versions less than 1.0.0.007 are affected.

tags | advisory, vulnerability, xss, sql injection
systems | linux, gentoo
MD5 | 4a08bb68e1552f515019d30e3f811b8f
mailenableadv.txt
Posted Jun 1, 2005
Authored by CorryL | Site x0n3-h4ck.org

MailEnable HTTPMail Enterprise <= 1.04 Professional <= 1.54 is vulnerable to a buffer overflow on a header field definition which would allow an attacker to execute arbitrary code.

tags | advisory, overflow, arbitrary
MD5 | d95a941b1cefa11eb1ce0eeafa95781f
H2005-06.txt
Posted Jun 1, 2005
Authored by Robert Fly | Site hyperdose.com

A local file detection flaw has been found in the Adobe Reader ActiveX control. Adobe Reader versions 7.0 and below are affected.

tags | advisory, local, activex
MD5 | 5b4ccb8870b3d09850ce5abc3fc04a3f
ss-22042005-04.txt
Posted Jun 1, 2005
Authored by ShineShadow

Argosoft mail server pro 1.8.7.6 (maybe others) are vulnerable to a cross-site scripting attack due to the mail server not filtering out some HTML tags in email messages.

tags | advisory, xss
MD5 | c66efd8ea1f31601c087170cc16d2c30
FreeBSD-SA-05-05.cvs.txt
Posted Jun 1, 2005
Site freebsd.org

FreeBSD Security Advisory FreeBSD-SA-05:05 - Multiple programming errors were found in CVS. In one case, variable length strings are copied into a fixed length buffer without adequate checks being made; other errors include NULL pointer dereferences, possible use of uninitialized variables, and memory leaks.

tags | advisory, memory leak
systems | freebsd
MD5 | 44252ecef15f29844438c004f4675f0c
KDE Security Advisory 2005-04-21.1
Posted Jun 1, 2005
Authored by KDE Desktop | Site kde.org

KDE Security Advisory: kimgio contains a PCX image file format reader that does not properly perform input validation. A source code audit performed by the KDE security team discovered several vulnerabilities in the PCX and other image file format readers, some of them exploitable to execute arbitrary code.

tags | advisory, arbitrary, vulnerability
advisories | CVE-2005-1046
MD5 | 7bb96ff48b232106a11fc4577e281669
KDE Security Advisory 2005-04-20.1
Posted Jun 1, 2005
Authored by KDE Desktop | Site kde.org

KDE Security Advisory: Kommander executes without user confirmation data files from possibly untrusted locations. As they contain scripts, the user might accidentally run arbitrary code.

tags | advisory, arbitrary
advisories | CVE-2005-0754
MD5 | abf1b939e8330ae965e85355160a55e7
Macromedia_Coldfusion_7.0.txt
Posted Jun 1, 2005
Authored by Dr. Insane

A vulnerability exists in Macromedia ColdFusion 7.0 which allows a remote attacker to execute arbitrary HTML and script code to a users browser session.

tags | advisory, remote, arbitrary
MD5 | ecd6a01f7d9d413720465930e122bbe4
XSA-2004-8.txt
Posted Jun 1, 2005

By a user receiving data from a malicious network streaming server, an attacker can overrun a heap buffer, which can, on some systems, lead to or help in executing attacker-chosen malicious code with the permissions of the user running a xine-lib based media application.

tags | advisory, overflow
MD5 | 8ecf72409c9bdc9b76a55417a1c6f5cc
IBM_websphere_6.txt
Posted Jun 1, 2005
Authored by Dr. Insane

WebSphere Application Server version 6.0 suffers from a cross site scripting flaw.

tags | advisory, xss
MD5 | ebccfe1d822bcdf0e3938fc2c16a3824
dsa-713.txt
Posted Jun 1, 2005
Site security.debian.org

Debian Security Advisory DSA 713-1 - Several bugs have been found in junkbuster, a HTTP proxy and filter.

tags | advisory, web
systems | linux, debian
advisories | CVE-2005-1108, CVE-2005-1109
MD5 | 89f33879ab3729f17a10b9d60a1004e7
Page 1 of 12
Back12345Next

Top Authors In Last 30 Days

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close