31.07.2003 Detailed

MacOS X screensaver protection bypass updated since 04.07.2003   Sending oversized string from keyboard can cause buffer overflow.

30.07.2003 Detailed

7! Linux kernel signed/unsigned conversion bug   Signed/unsigned conversion bug during processing of NFSv3 XDR data leads to buffer overflow. 7! Sun Solaris Runtime Linker buffer overflow   Buffer overflow on LD_PRELOAD environment variable parsing. 6! Multiple Half-Life bugs   Multiple buffer overflows.

mod_mylo buffer overflow   Buffer overflow in logging function.

sup symbolic links   Insecure temporary files creation.

Authentication data leak in Congueror   Referer: field may contain URL with authentication data.

Multiple Cisco AP bugs   Oversized HTTP GET request DoS. Valid account disclosure.

Multiple man-db problems   Multiple buffer overflows.

26.07.2003 Detailed

7! Windows DirectX MIDI integer overflow updated since 24.07.2003   Integer overflow during MIDI processing leads to heap corruption allowing code execution.   CGI bugs updated since 21.07.2003         Outlook Express plaintext HTML injection   Message content type is determinetd automatically bypassing MIME settings.

25.07.2003 Detailed

8! Windows 2000 RPC DoS and privilege escalation updated since 22.07.2003   Malformed DCOM __RemoteGetClassObject request causes RPC mapper service to crash. After RPC crashes, it's possible for local attacker to hijack epmapper pipe and impersonate local system. 6! Oracle E-Business Suite multiple bugs   Buffer overflow in FNDWRR CGI. Unauthorized access to configuration data. 6! Multiple SNMP problems updated since 13.02.2002   Multiple problems in different SNMP implementation can lead to DoS, remote code execution, etc.

24.07.2003 Detailed

6! Multiple bugs in Microsoft SQL Server   Buffer overflow in LPC request, DoS via RPC request, named pipe impersonalization. 6! Netware Web Server buffer overflow updated since 23.07.2003   Buffer overflow on oversized request to perl handler.   WMVare privilege escalation updated since 24.07.2003   By manipulation environment variables it's possible to start application with root privileges then during virtual machine startup.

Windows NT file function DoS   It may be possible to crash application using one of system APi function with oversized filename.

23.07.2003 Detailed

MS IIS web administration multiple bugs   Crossite scripting, unauthorized access to few configuration pages.

22.07.2003 Detailed

GNU GNATS buffer overflows   Multiple buffer overflows

21.07.2003 Detailed

MSN Messenger DoS   DoS on downloading incomplete image.   perl cgi.pm crossite scripting   Crossite scripting on start_form() function.

18.07.2003 Detailed

9! DoS against many Cisco routers updated since 17.07.2003   A device receiving specifically crafted IPv4 packets will force the inbound interface to stop processing traffic.   Moby's Netsuite Directory Traversal   Directory traversal with escape sequences.   Hummingbird Exceed X buffer overflow   Buffer overflow on oversized font name.

WiTango buffer overflow   Buffer overflow on oversized Witango_UserReference cookie.

Watchguard ServerLock protection bypass   With DLL injection technique and symlinks to /DEVICE it's possible to bypass kernel drive loading protection.

PHP4 crossite scripting   Crossite scripting in transparent session ID feature.

CGI bugs updated since 14.07.2003

17.07.2003 Detailed

Microsoft IDS Server crossite scripting   Crossite scripting in error message.   Multiple bru bugs   Buffer overflows, format string bugs.   Buffer overflow in explorer.exe updated since 18.05.2003   Buffer overflow on desktop.ini parsing.

16.07.2003 Detailed

6! Multiple U2 Universe bugs   Problems with creating hard links, buffer overflow, changing files ownership, etc.   xfstt array out of boundary   Large req->num_ranges causes out of array boundary memory access.   Multiple Citadel bugs   Weak PRNG, buffer overflows, DoS.

15.07.2003 Detailed

6! Netscape Client Detection Tool buffer overflow   Buffer overflow on application/x-cdt files processing. 6! nfs-utils buffer overflow   Malformed RPC request causes off-by-one overflow. 6! Internet Explorer buffer overflow updated since 24.06.2003   Buffer overflow on copying HR tag with oversized align to clipboard.

Twilight WebServer buffer overflow   Buffer overflow on few oversized GET requests.

StarSiege: Tribes DoS   Invalid UDP packet causes game server to crash.

ImageMagic format string bug   Format string bug in filename.

Asus AAM6000EV unauthorized web access   It's possible to obtain configuration files though web interface.

14.07.2003 Detailed

7! Multiple bugs in Internet Explorer/Outlook Express updated since 25.04.2003   New cumulative patch announced. 6! gopherd multiple bugs updated since 14.07.2003   Multiple buffer overflows.   NeoModus Direct Connect DoS   It's possible to cause client into opening any number of sockets.

Polycom MGC 25 DoS   Large amount of data to control port cause control service to hang.

13.07.2003 Detailed

CGI bugs updated since 30.06.2003

11.07.2003 Detailed

Gattaca multiple problems updated since 08.07.2003   Crossite scripting, directory traversal, DoS.

10.07.2003 Detailed

7! Windows 2000 multiple bugs updated since 08.07.2003   Windows 2000 Internet Key Exchange Selects Incorrect Certificate, Update to Help Prevent Cross-Forest Certificate Enrollment, Update to Verify cbDestLength in the Imaadpcm Component, Zones Removed from the Registry When You Start the DNS Service, Account Replication Latency Causes Certificate Enrollment to Fail, Potential Denial of Service Vulnerability Exists in SAM, Call to USBH_IoctlGetNodeConnectionDriverKeyName May Return Uninitialized Data, Update to Use MAX_PATH Variable in Port Name Buffers, The MyGetSidFromDomain Function Calls DsGetDCName to Obtain the Domain Security ID, ModifyDN Request May Cause an Infinite Loop When the New Parent Is Specified by a Distinguished Name, User May Impersonate a Named Pipe Client in a Terminal Services Session and Gain Access to the System Account, CDP and AIA URLs Are Not Displayed in the Certification Authority Snap-in If the URL Contains "%%20" Characters, Update Helps to Prevent Two Client-Supplied Authorization Data Entries from Being Included in a Kerberos Ticket, Server Can Gain Access to Your Computer by Using an RPC Connection When You Download and Install Drivers in Internet Explorer, A Socket Handle Memory Leak Condition May Occur in Cryptnet.dll, Vulnerability in Terminal Services Licensing May Permit a Malicious User to Generate Additional Client Licenses in Terminal Services Licensing   Cisco Catalist DoS   After receiving few TCP packets with non-standard flags switch fails to establish new TCP connections.   IglooFTP buffer overflow   Buffer overflow during server banner parsing.

liece symbolic link

skk/ddskk symbolic links problem

Knoppix symbolic links problem

Apache DoS   Infinite loop during Type-Map file parsing.

Coda DoS   DoS on invalid RPC packet.

TerminatorX buffer overflows   Buffer overflow during environment variables parsing.

zkfingerd format string bug updated since 17.12.2002   Format string on syslog() call.

08.07.2003 Detailed

Trillian DoS updated since 08.07.2003   Program crashes on request of unknown type.   Cannon GP 300 DoS   Device crashes on incomplete HTTP request.   Symbolic link problem in semi/wemi   Insecure temporary files handling.

CGI bugs

ICQ 2003a protection bypass   By making Contact List windos active via Windows API it's possible to access contact list without password.

04.07.2003 Detailed

10! Microsoft XBox integer overflow   Dashboard buffer overflow during fonts parsing allows load and execute any code.   Essentia multiple bugs updated since 24.02.2002   Buffer overflow, directory traversal.

03.07.2003 Detailed

6! Windows 2000 Active Directory buffer overflow   Stack overflow on LDAP search request with more than 1000 "AND" statements. 6! Windows 2000 ShellExecute() buffer overflow   Buffer overflow in 3rd argument.   Microsoft NetMeeting directory traversal   Directory traversal during file receiving.

02.07.2003 Detailed

6! ezbounce format string bug   Format string bug in "sessions" command.   Adobe Acrobat Reader buffer overflow   Buffer overflow on oversized URL clicking.   Caché weak permissions   Weak permissions for executable files and directories.