all things security
Showing 1 - 25 of 145 RSS Feed

Files Date: 2004-12-30

KDE Security Advisory 2004-12-20.1
Posted Dec 30, 2004
Authored by KDE Desktop | Site kde.org

KDE Security Advisory: Two flaws in the Konqueror webbrowser make it possible to by pass the sandbox environment which is used to run Java-applets. One flaw allows access to restricted Java classes via JavaScript, making it possible to escalate the privileges of the Java-applet. The other problem is that Konqueror fails to correctly restrict access to certain Java classes from the Java-applet itself. All versions of KDE up to KDE 3.3.1 inclusive. KDE 3.3.2 is not affected.

tags | advisory, javascript
advisories | CVE-2004-1145
MD5 | 06097183c8b1a9e1d053061955ca4e44
tlen.txt
Posted Dec 30, 2004
Authored by Blazej Miga, Jaroslaw Sajko

Tlen.pl versions 5.23.4.1 and below suffer from a remote script execution vulnerability.

tags | advisory, remote
MD5 | d57733ca64397c04bd3e402f18efe4ca
dsa-612.txt
Posted Dec 30, 2004
Site debian.org

Debian Security Advisory 612-1 - Rudolf Polzer discovered a vulnerability in a2ps, a converter and pretty-printer for many formats to PostScript. The program did not escape shell meta characters properly which could lead to the execution of arbitrary commands as a privileged user if a2ps is installed as a printer filter.

tags | advisory, arbitrary, shell
systems | linux, debian
advisories | CVE-2004-1170
MD5 | dd4bd0d28639200edc8ee19f8362ae7a
lsmcode.txt
Posted Dec 30, 2004

Local root command execution exploit for lsmcode on AIX 5.1 to 5.3.

tags | exploit, local, root
systems | aix
MD5 | fcffe0184ed7b96001e095490c14c38c
paginit.c
Posted Dec 30, 2004
Authored by cees-bart

Local stack overflow exploit for /usr/bin/paginit on AIX versions 5.3/5.2/5.1.

tags | exploit, overflow, local
systems | aix
MD5 | 0bf35a7346b171510b2b1029835a75f3
SSRT4687.txt
Posted Dec 30, 2004
Site hp.com

HP Security Bulletin - A potential vulnerability has been identified with the HP-UX newgrp(1) command that may allow authorized users to elevate privileges. Affected versions are HP-UX B.11.00, B.11.04, B.11.11.

tags | advisory
systems | hpux
MD5 | 034da78b0a883d952e92b38d095fce9e
dsa-611.txt
Posted Dec 30, 2004
Site debian.org

Debian Security Advisory 611-1 - infamous41md discovered a buffer overflow in htget, a file grabber that will get files from HTTP servers. It is possible to overflow a buffer and execute arbitrary code by accessing a malicious URL.

tags | advisory, web, overflow, arbitrary
systems | linux, debian
advisories | CVE-2004-0852
MD5 | e67a52f0504004d7c1cc74d20a38c389
unrtf.txt
Posted Dec 30, 2004
Authored by Yosef Klein, Limin Wang

A buffer overflow in UnRTF version 0.19.3 may allow for system compromise.

tags | advisory, overflow
MD5 | 295256bfc6f864de8855ac59a2384636
yamt.txt
Posted Dec 30, 2004
Authored by Manigandan Radhakrishnan

A buffer overflow vulnerability in the YAMT 0.5 id3tag_sort() function can lead to a system compromise.

tags | advisory, overflow
MD5 | 4ebdbb7190804ed5347c9a9b69c01081
vilistextum.txt
Posted Dec 30, 2004
Authored by Ariel Berkman

Vilistextum version 2.6.6 is susceptible to a buffer overflow in the get_attr() function.

tags | advisory, overflow
MD5 | bf08708a98b0a42384791a1dce9df5fd
xlreader.txt
Posted Dec 30, 2004
Authored by Tom Palarz, Kris Kubicki

xlreader version 0.9.0 is susceptible to a buffer overflow condition in the book_format_sql() function.

tags | advisory, overflow
MD5 | 3d12a416c48f0834d6c769963b04f3f0
vb2c.txt
Posted Dec 30, 2004
Authored by Qiao Zhang

A buffer overflow in the vb2c 0.02 parse() function allows for system compromise.

tags | advisory, overflow
MD5 | e86c43e351f45c3ad96d9181336c899a
uml-utilites.txt
Posted Dec 30, 2004
Authored by Danny Lungstrom

uml-utilities version 20030903 is susceptible to a denial of service vulnerability via the uml-net utility running setuid root and being able to take down the system's ethernet connection.

tags | advisory, denial of service, root
MD5 | db4d432b0f456497f398b6080fdc7125
pcal.txt
Posted Dec 30, 2004
Authored by Danny Lungstrom

Buffer overflow vulnerabilities in the getline() and get_holiday() functions of Pcal version 4.7.1 may allow for system compromise.

tags | advisory, overflow, vulnerability
MD5 | cb6b2d027816ca5bd3dd0f51705f9c80
meshviewer.txt
Posted Dec 30, 2004
Authored by Danny Lungstrom, Mohammed Khan

MeshViewer 0.2.2 is susceptible to a buffer overflow vulnerability in the Mesh::type() function.

tags | advisory, overflow
MD5 | 41b28ab911efe4335b17fc5f62641333
napshare.txt
Posted Dec 30, 2004
Authored by Bartlomiej Sieka

NapShare version 1.2 is susceptible to a buffer overflow in the auto_filter_extern() function.

tags | advisory, overflow
MD5 | 8d807ed6b769988f8dbf85ee70b49017
ringtonetools.txt
Posted Dec 30, 2004
Authored by Qiao Zhang

Ringtone Tools version 2.22 is susceptible to a buffer overflow in the parse_emelody() function.

tags | advisory, overflow
MD5 | 49c072a2956cb35e4660bdb38e148aa6
linpopup.txt
Posted Dec 30, 2004
Authored by Stephen Dranger

LinPopUp version 1.2.0 has a buffer overflow in the strexpand() function.

tags | advisory, overflow
MD5 | e41c0dc897f18f92d9fe845bfa2390dd
o3read.txt
Posted Dec 30, 2004
Authored by Wiktor Kopec

o3read version 0.0.3 suffers from a buffer overflow condition in the parse_html() function used when parsing HTML content.

tags | advisory, overflow
MD5 | f97b5e158bf526756b06630df1c83f47
jpegtoavi.txt
Posted Dec 30, 2004
Authored by James Longstreet

jpegtoavi version 1.5 is susceptible to a buffer overflow in the get_file_list_stdin() function.

tags | advisory, overflow
MD5 | 203a91df9553efd35a52a0d8b05c4a84
elm-bolthole-filter.txt
Posted Dec 30, 2004
Authored by Ariel Berkman

Bolthole Filter 2.6.1 is susceptible to a buffer overflow in the save_embedded_address() function.

tags | advisory, overflow
MD5 | 2377c54dc55dee29004918a211eb4beb
junkie.txt
Posted Dec 30, 2004
Authored by Yosef Klein

Multiple input validation errors exist in Junkie version 0.3.1 that allow for command execution and directory traversal attacks.

tags | advisory
MD5 | 515671d678ea00a67f75ffee1d76995f
greed.txt
Posted Dec 30, 2004
Authored by Manigandan Radhakrishnan

An input validation error that allows for arbitrary command execution and a buffer overflow exist in Greed 0.81p.

tags | advisory, overflow, arbitrary
MD5 | 932b28c64ce93483e4d0ffb7d20e2b73
iglooftp2.txt
Posted Dec 30, 2004
Authored by Yosef Klein

IglooFTP version 0.6.1 suffers from an input validation error that allows for arbitrary file overwrite.

tags | advisory, arbitrary
MD5 | c76e011e24f02b27f737bf2a5e08ad5d
iglooftp.txt
Posted Dec 30, 2004
Authored by Manigandan Radhakrishnan

A weakness when uploading directories recursively can potentially be exploited by malicious, local users to substitute the uploaded files in IglooFTP version 0.6.1.

tags | advisory, local
MD5 | b192b57a18258e832ad9e898d7cb0787
Page 1 of 6
Back12345Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    15 Files
  • 19
    Oct 19th
    10 Files
  • 20
    Oct 20th
    7 Files
  • 21
    Oct 21st
    4 Files
  • 22
    Oct 22nd
    2 Files
  • 23
    Oct 23rd
    10 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close