Computer Security
[EN] securityvulns.ru no-pyccku


lighthttpd SSL DoS
Published:01.04.2008
Source:
SecurityVulns ID:8849
Type:remote
Threat Level:
4/10
Description:Termination of one SSL connection may cause another concurrent SSL connection to terminate.
Affected:LIGHTTPD : lighttpd 1.4
CVE:CVE-2008-1531 (lighttpd 1.4.19 and earlier allows remote attackers to cause a denial of service (active SSL connection loss) by triggering an SSL error, such as disconnecting before a download has finished, which causes all active SSL connections to be lost.)
Original documentdocumentRPATH, rPSA-2008-0132-1 lighttpd (01.04.2008)

2X ThinClientServer TFTP server directory traversal
Published:01.04.2008
Source:
SecurityVulns ID:8851
Type:remote
Threat Level:
5/10
Affected:2X : ThinClientServer 5.0
Original documentdocumentLuigi Auriemma, Directory traversal in 2X ThinClientServer v5.0_sp1-r3497 (01.04.2008)

Avast! antivirus memory corruption
Published:01.04.2008
Source:
SecurityVulns ID:8852
Type:local
Threat Level:
5/10
Description:Kernel memory corruption in aavmker4.sys on IOCTL processing.
Affected:AVAST : avast! 4.7
Original documentdocumenttk_(at)_trapkit.de, [TKADV2008-002] avast! 4.7 aavmker4.sys Kernel Memory Corruption (01.04.2008)

Macrovision InstallShield InstallScript One-Click Install ActiveX code exectuion
Published:01.04.2008
Source:
SecurityVulns ID:8853
Type:client
Threat Level:
6/10
Description:Control allows to download and execute dynamic library from remote site.
Affected:MACROVISION : FLEXnet InstallShield 12
CVE:CVE-2007-5661
Original documentdocumentIDEFENSE, iDefense Security Advisory 03.31.08: Macrovision InstallShield InstallScript One-Click Install Untrusted Library Loading Vulnerability (01.04.2008)

PowerDNS DNS cache poisoning attack
Published:01.04.2008
Source:
SecurityVulns ID:8854
Type:remote
Threat Level:
5/10
Description:Weak PRNG generator allows cache poisoning attack.
Affected:POWERDNS : Recursor 3.1
Original documentdocumentAmit Klein, Paper by Amit Klein (Trusteer): "PowerDNS Recursor DNS Cache Poisoning [pharming]" (01.04.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod