Computer Security
[EN] securityvulns.ru no-pyccku



31.03.2004
Detailed
6!clamav shell characters
document Shell characters problem in filename if %f option is used.
 tcpdump DoS
document ISAKMP procession DoS.
 oftpd DoS
document DoS on PORT command with number > 255
  


30.03.2004
Detailed
7!courier-imap buffer overflow
document Buffer overflow during character codepage conversions.
7!Multiple ISS products ICQ analisys buffer overflow
updated since 19.03.2004
document Few stack overflows.
 DoS and information leak in FreeBSD IPv6
document setsockopt() implementation error.
  


28.03.2004
Detailed
 CGI bugs
updated since 24.03.2004
   
  


27.03.2004
Detailed
 Kerio Mailserver buffer overflow
document SPAM filter buffer overflow.
 nstxd DoS
document NULL pointer reference on unexpected DNS traffic.
  


26.03.2004
Detailed
 NetSupport School weak encryption
document Password is stored in reversable encryption.
 Check Point Smartview Tracker buffer overflow
document Buffer overflow in GUI during viewing oversized column.
 ESignal buffer overflow
document Stack overflow on oversized TCP/80 request.
 Multiple Apache vulnerabilities
document mod_ssl memory leak, logfile terminal escape sequences injection.
 mysqlbug symbolic links problem
document Symbolic links problem during bugreport saving.
  


25.03.2004
Detailed
 NexGen FTP Server directory traversal
   
 Multiple HP WebJet Admin bugs
document Directory traversal, file uploading and execution.
 emil multiple bugs
document Buffer overflows, format string bugs.
 PicoPhone buffer overflow
document Buffer overflow during logging.
 Weak DameWare encryption
document Weak PRNG is used for symmetric key generation, key is self is sent in cleartext among data.
  


24.03.2004
Detailed
7!Solaris vfs_getvfssw() call directory traversal
document Vulnerability allow local user to load kernel module.
6!TrendMicro Interscan VirusWall directory traversal
document Directory traversal in HTTP proxy service.
6!Multiple ecartis bugs
updated since 14.08.2003
document Buffer overflows, maillist password disclosure.
 libREP buffer overflow
   
 Apache mod_survey crossite scripting
   
 xweb directory traversal
   
  


22.03.2004
Detailed
 Apache mod_disk_cache information leak
document Full headers, including authentication ifnormation, are stored in file.
 Reget directory traversal
document Directory is traversed with %2F.. in filename.
  


20.03.2004
Detailed
 Samba symbolic links problem
document Smbprint symbolic links problem.
 Borland Interbase weak permissions
document File /opt/interbase/admin.ib is world writable.
 IPswitch WS_FTP buffer overflows
updated since 29.03.2003
document Buffer overflow on oversized filename then building local files list. Buffer overflow on oversized server banner.
  


19.03.2004
Detailed
6!Norton Antispam buffer overflow
document Buffer overflow in SymSpamHelper and WrapNISUM ActiveX.
 RealNetworks Helix buffer overflow
document Buffer overflow during POST request paring.
 Multiple OpenSSL DoS bugs
updated since 17.03.2004
document Few bugs patched during product audit.
 CGI bugs
updated since 15.03.2004
   
  


16.03.2004
Detailed
6!Multiple VocalTec bugs
document Directory traversal, authentication bypass.
6!mod_security buffer overflow
document off-by-one buffer overflow during POST processing.
 Multiple Vendor SOAP server array DoS
   
  


15.03.2004
Detailed
 CA Unicenter TNG buffer overflow
document Few network services are vulnerable to stack overflow.
 mathopd buffer overflow
document Buffer overflow on oversized path in request.
  


13.03.2004
Detailed
 Metamail symlink problem
document Symlink problem in extcompose script.
 Compaq Web Managment spoofed certificate unauthorized access
document User can upload his certificate to server for getting unauthorized access.
 Multiple uudeview bugs
document Buffer overflow, symbolic links problem.
 CGI bugs
updated since 09.03.2004
   
  


12.03.2004
Detailed
 xitalk privilege escalation
document It's possible to obtain utmp group privileges.
  


11.03.2004
Detailed
 MyProxy crossite scripting
document Crossite scripting via URL.
 Multiple Pegasi Web Server bugs
document Directory tracersal, crossite scripting.
 gdk-pixbuf DoS
document Bug during BMP files processing.
 wMCam DoS
document Connection flood causes server to crash.
  


10.03.2004
Detailed
7!MSN Messenger unauthorized access
document Any file from client computer can be retrieved.
6!Microsoft Outlook shell characters problem
document Shell characters problem allow javacript execution in local zone.
 Python buffer overflow
document getaddrinfo() buffer overflow on oversized address (IPv6 for example).
 Directory traversal in multiple browsers cookie path
document It's possible to access cookie from the document with different path
 Windows Media Services DoS
document Specially crafted TCP packets sequence causes service to hang.
  


09.03.2004
Detailed
6!DB2 RPC privilege escalation
document It's possible to attach to a process with administrator privileges.
6!Sun Solaris passwd priviledge escalation
   
 Multiple SLMail bugs
document Buffer overflows in webmail and Supervisor Report Center interface.
 Norton Antivirus protection bypass
document Files with special characters in path are not checked.
 multiple wu-ftpd bugs
document Local user can bypass root directory protection, buffer overflow on S/Key authentication.
 GWEB/PWebServer directory traversal
updated since 04.03.2004
   
 Multiple SLMail/SLWebMail bugs
updated since 07.05.2003
document Multiple buffer overflows, file access, etc.
 Symbolic links problem during automake compilation
   
  


05.03.2004
Detailed
 Cisco CSS UDP DoS
document DoS on malformed packets to UDP/5002.
 GNU Anubis multiple bugs
document Buffer overflows, format string bugs.
  


04.03.2004
Detailed
6!Adobe Acrobat Reader .xfdf buffer overflow
document Buffer overflow on parsing XML Forms Data Format.
 FreeBSD TCP DoS
document By sending large number of non-sequential packets it's possible to cause memory exhaustion.
 NetScreen-SA crossite scripting
document Crossite scripting in delhomepage.cgi
 SonicWall ARP traffic amplification
document 3x traffic ammplification from external to internal network.
 CGI bugs
updated since 01.03.2004
   
  


03.03.2004
Detailed
7!ProFTPD buffer overflow
updated since 23.09.2003
document Buffer overflow on ASCII-files uploading.
 Nortel AP2200 DoS
document Oversized string to any port causes AP to crash.
  


02.03.2004
Detailed
9!linux kernel mremap privilege escalation
updated since 05.01.2004
document It's possible to map memory page of zero size causing memory corruption in kernel.
 Motorola T720 DoS
document Any network flood leads to DoS.
  


01.03.2004
Detailed
6!Multiple WFTPD bugs
document Buffer overflows, DoS conditions.
 InnoMedia VideoPhone protection bypass
   
 602Pro LAN Suite multiple bugs
updated since 29.09.2003
document Information leak, directory traversal, crossite scripting.
  

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod