NGSSoftware Security Advisory - Microsoft's SQL Server 2000's BULK INSERT query contains a buffer overflow which allows remote code execution as LOCAL SYSTEM. To be able to use the 'BULK INSERT' query one must have the privileges of the database owner or dbo. Microsoft Security bulletin available here..
beed091eb087b240ade24c710d5e6642ca80b3f180a2cb4baf37c543862b35d4Westpoint Security Advisory wp-02-0012 - The Carello shopping cart v1.3 uses hidden fields to specify names of executables on the server, allowing an attacker to run arbitrary commands.
9887d380b7d1e54dae208b58a265e0fcad7f19f519c4c30e79789a422c384c4cWestpoint Security Advisory wp-02-0008 - Apache Tomcat v4.0.3 is vulnerable to cross site scripting attacks by using the /servlet/ mapping. Linux and Win32 versions of Tomcat are vulnerable.
7c8753a353b10b9fcac8e6d4fcd9c7fd8be17eae6139f7796cc2b8b8fa6dea83Westpoint Security Advisory wp-02-0001 - The GoAhead Web Server v2.1 for Windows NT/98/95/CE, Embedded Linux, Netware, and others contains directory traversal and cross site scripting vulnerabilities. Exploit URL's included.
3e2b101f0ae13c006aead327c7e7c21f64f42fc6791980b2cd6bb6c96186df8dThe Bea Weblogic server v5.1.x - 7.0 on on Windows 2000 and NT s vulnerable to a data/connection flooding vulnerability that will result in the web service crashing with a report of an error in NTDLL.DLL.
dd160476ade9f37a3ffeb6de0034fa4f92660fc33d0466f882498e45e0c25e92Watchguard Firebox Dynamic VPN Configuration Protocol Denial of Service - Malicious users can crash the Dynamic VPN Configuration Protocol service (DVCP) by sending a malformed packet to the listener service on TCP port 4110. Watchguard Firebox firmware v5.x.x is vulnerable.
f7fefdb893755ef161385dc353bea35abe34c677710fe9ef1b8f81eb0e3212b7The Sun iPlanet Web Server iWS 4.1 and 6.0 contains a remotely exploitable buffer overflow if the search feature is enabled.
569fc6dbae95b454b1cb7139d2f9325513c3521f10923c0642d0afb59f288e672fax prior to v2.02 for Linux and Windows contains a locally exploitable buffer overflow.
14214e7f949c470b58c600c51e76ebc4d256a68496c77854fa8efd95dc259861Squid Proxy Cache security advisory SQUID-2002:3 - Several vulnerabilities found in Squid can be used to remotely execute code on systems running this software. All versions prior to squid-2.4.STABLE7 are affected. The user executing the attack must be allowed to use the proxy for any potential attack to be successful.
74819bb3cc70f2c8058a9215528fef9dc6eebee2059635d21306734aace9596eNGSSoftware Security Advisory - Microsoft's Commerce Server 2000 and 2002 contains several remotely exploitable buffer overruns in the Profile Service and a CGI executable that allows the execution of arbitrary commands.
5f49c7b4916d833e0dce23ac8eb20f45b61dfa9a25d2ab7df12e6438d85ed78cAn off-by-one overflow in Apache mod_ssl v2.4.9 and below can be used to by local users to execute code with the privileges of the web server.
bc874d50af7de42b9e7892022426567f87b4cec80e88a6470ac08c1097e61b27Sharity Cifslogin Buffer Overflow - Several command line options can be made to crash /opt/cifsclient/bin/cifslogin, local root is possible.
8f90a70db1881faaf91f285d05768df02e91bbfd9008ee9584cc954887ea8e03AngryPacket Security Advisory - A vulnerability found in the Cisco VPN client for Linux can allow local users to gain root level privileges. This vulnerability affects VPN client v3.5.1 and below.
3f0616261733901823c963b777907ca611ed3bca722aab3941413458f07acfc2Apache Advisory - A vulnerability found in the chucked encoding implementation of the Apache 1.3.24 and 2.0.36 and below servers can under some conditions be used to remotely execute code on systems running this software.
3576dbeaf81b78b50b61214cbe4d286dbbfd04b6af6a433d492bc3bd471c2dfcISS reported a vulnerability found in the chucked encoding implementation of the Apache 1.3.24 and 2.0.36 and below servers that under some conditions can be used to remotely execute code on systems running this software. Note that the by ISS supplied patch, which is included in this advisory, does not fix this vulnerability.
eda6ad9d37711b41b271339dd3102eebcf86b868e4acbe53efdd0b47ba875df1Cgiemail has an open relaying bug which allows an attacker to send spam via the web because the developers did not filter out %0a's that are passed to sendmail -t.
0385591b8975110385385d7d239933f23c045c3d5ffef248f5f3557d97865354Westpoint Security Advisory - SQLXML allows XML data to be transferred to and from SQL Server, returning database queries as XML. SQLXML has two vulnerabilities - a buffer overflow in the SQLXML ISAPI filter and a cross site scripting vulnerability. These bugs are discussed in MS02-030.
11b451a50a7794ab52be537a852add9ac09a0ab37b6dff3b1edbf49c061125b0Gobbles Security Advisory - IrcIT v3.1 and below contains remotely exploitable buffer overflows.
97ee352d2d7fd9fa4acd8cc8a695704a73bac3426eeff5e2abf032545734f145The Oracle 9iAS Reports Server contains a remotely exploitable buffer overrun vulnerability in one of its CGI's. By supplying an overly long database name parameter to the rwcgi60 with the setauth method, an attacker can run code with the privileges of the web server, or SYSTEM on windows.
36a7f0df817729ef91da8556ccad29083ab8e3a5fd0b1f644b31ce787342fffaThe Oracle TNS Listener version 9i contains a buffer overflow vulnerability which can be exploited over tcp port 1521 to gain remote SYSTEM / root access. By supplying an overly long SERVICE_NAME parameter an attacker can execute code before any logging is done.
09848a3033d275f59cf4d5ef91914e928a9a4fc43a64f46b30fa0e2a771e35d4The BlackICE Agent v3.1 for Windows 2000 laptop can be bypassed. Fix available here.
29b2801570bed5f11b3e08f1b8cf265e4a34f19dc275214fdca91d363501156fNullsoft's SHOUTcast v1.8.9 contains a buffer overflow which can be exploited by a DJ to gain shell access to the system. Windows, Linux, and FreeBSD are known to be vulnerable.
7158bd00e24e44b040e478a07b40240d2a892aa29113f26ce162fe843ee4f733A directory traversal vulnerability found in Shambala v4.5 can lead to the disclosure of files that are stored outside the served directories. More info on this bug available here.
792ce8a4307b49251659094a08eb30bb916bc5d232a44e48c27fb7fa5360260fConectiva Security Advisory CLA-2002:490 - Several vulnerabilities were found in the Mozilla package v1.0rc1 which allows hostile web sites to read and list local files. The vulnerability was related to the XMLHTTP, a component that is primarily used for retrieving XML documents from a web server. Fixed packages have now been released for Conectiva Linux 6.0, 7.0, and 8.
c7bcc06f713f54cc826c79b1c5b09093f8a35b0ee1fae86fccaad9566107e1f1Yahoo! Instant Messenger (YIM) vulnerabilities. Affects Yahoo! Messenger v(5, 0, 0, 1061) for all Windows versions. Includes buffer overflow information and how to hijack another IM client.
560f2f1480e78404b85ae116917fa30a3d36064a7073a97a2a19d1fc7fcd8d6c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed