Computer Security
[EN] securityvulns.ru no-pyccku


MySQL DoS
Published:01.09.2006
Source:
SecurityVulns ID:6563
Type:local
Threat Level:
5/10
Description:Query with multiupdate and subselects can cause database server to crash.
Affected:MYSQL : MySQL 4.1
Original documentdocumentMANDRIVA, [ MDKSA-2006:158 ] - Updated MySQL packages fix DoS vuln, initscript bug (01.09.2006)

Compression Plus library buffer overflow
Published:01.09.2006
Source:
SecurityVulns ID:6564
Type:library
Threat Level:
5/10
Description:Buffer overflow on Zoo archives parsing.
Affected:BECUBED : Compression Plus 5.0
 VCOM : PowerDesk Pro 6
 CANYON : Power File 1.12
 CANYON : Drag And Zip 3.5
Original documentdocumentMichael Hale Ligh, Compression Plus and Tumbleweed EMF Stack Overflow Security Advisory (01.09.2006)

capi4hylafax code execution
Published:01.09.2006
Source:
SecurityVulns ID:6565
Type:remote
Threat Level:
5/10
Affected:CAPI4HYLAFAX : capi4hylafax 0.1
Original documentdocumentDEBIAN, [Full-disclosure] [SECURITY] [DSA 1165-1] New capi4hylafax packages fix arbitrary command execution (01.09.2006)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:01.09.2006
Source:
SecurityVulns ID:6566
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:MEMBERPASS : Membrepass 1.5
 WEBMIN : Webmin 1.295
 USERMIN : Usermin 1.225
 CERBERUS : Cerberus Helpdesk 3.2
Original documentdocumentSECUNIA, [SA21706] Cerberus Helpdesk "ticket" Parameter Arbitrary Ticket Access (01.09.2006)
 documentSECUNIA, [SA21690] Webmin / Usermin Cross-Site Scripting and Source Code Disclosure (01.09.2006)
 documentamir.scorpino_(at)_yahoo.com, ModuleBased CMS alfa 1 Multiple Remote File Inclusion (01.09.2006)
 documentSHiKaA-_(at)_hotmail.com, Pheap CMS<= (lpref) Remote File Inclusion Exploit (01.09.2006)
 documentgmdarkfig_(at)_gmail.com, Membrepass v1.5 Php code execution, Xss, Sql Injection (01.09.2006)
 documentexe_crack_(at)_hotmail.com, XXS in learncenter.asp (01.09.2006)

ISS BlackICE PC Protection DoS
updated since 01.09.2006
Published:02.09.2006
Source:
SecurityVulns ID:6567
Type:local
Threat Level:
4/10
Description:Invalid NtOpenSection() hook causes sytem to crash if 3rd paramter is NULL.
Affected:ISS : BlackICE PC Protection 3.6
Original documentdocumentDavid Matousek, ISS BlackICE PC Protection Insufficient validation of arguments of NtOpenSection Vulnerability (02.09.2006)
 documentSECUNIA, [SA21710] BlackICE PC Protection "NtOpenSection()" Denial of Service (01.09.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod