Search:Vulnerability:01.10.2005 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

backupninka symbolic links problem
Published: 01.10.2005
Source: BUGTRAQ
SecurityVulns ID: 5281
Type: local
Level: 5/10
Description: Symbolic links problem on temporary file creation.

Affected: BACKUPNINJA : backupninja 0.5

Original document DEBIAN, [SECURITY] [DSA 827-1] New backupninja packages fix insecure temporary file (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)

BlenderPlayer buffer overflow
Published: 01.10.2005
Source: SECURITEAM
SecurityVulns ID: 5283
Type: local
Level: 5/10
Description: Buffer overflow on oversized .blen file.

Affected: BLENDER3D : BlenderPlayer 2.37

Original document SECURITEAM, [EXPL] BlenderPlayer Local Buffer Overflow (Exploit) (01.10.2005)

Files: BlenderPlayer 2.37 local bufferoverflow exploit
Discuss: Read or add your comments to this news (0 comments)

Macromedia Breeze information leak
Published: 01.10.2005
Source: SECUNIA
SecurityVulns ID: 5285
Type: local
Level: 5/10
Description: "reset password" feature stores password in clear text.

Affected: MACROMEDIA : Breeze 5.0

Original document SECUNIA, [SA17009] Macromedia Breeze Password Reset Security Issue (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)

apachetop utility symbolic links problem
Published: 01.10.2005
Source: BUGTRAQ
SecurityVulns ID: 5275
Type: local
Level: 5/10
Description: Symbolic links problem on temporary filescreation.

Affected: APACHETOP : apachetop 0.12

Original document ZATAZ.net, apachetop insecure temporary file creation (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)

Virtools Web Player game platform multiple vulnerabilities
Published: 01.10.2005
Source: BUGTRAQ
SecurityVulns ID: 5278
Type: remote
Level: 5/10
Description: Buffer overflows and directory traversal on archive extraction.

Affected: VIRTOOLS : Virtools Web Player 3.0

Original document Luigi Auriemma, Buffer-overflow and directory traversal bugs in Virtools Web Player 3.0.0.100 (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)

MySQL buffer overflow
Published: 01.10.2005
Source: BUGTRAQ
SecurityVulns ID: 5280
Type: local
Level: 6/10
Description: init_syms function stack-based buffer overflow.

Affected: MYSQL : MySQL 3.23
MYSQL : MySQL 4.0
MYSQL : MySQL 4.1
ORACLE : MySQL 5.0

Original document DEBIAN, [SECURITY] [DSA 829-1] New mysql packages fix arbitrary code execution (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)

Cisco routers weak password encryption
Published: 01.10.2005
Source: FULL-DISCLOSURE
SecurityVulns ID: 5282
Type: m-i-t-m
Level: 5/10
Description: Password is encrypted with substitution table.

Files: Cisco passwords decriptor
Discuss: Read or add your comments to this news (0 comments)

sblim-sfcb DoS
Published: 01.10.2005
Source: SECUNIA
SecurityVulns ID: 5284
Type: remote
Level: 5/10
Description: Resource exhaustion on large number of HTTP requests with oversized headers.

Affected: SBLIMSFCB : sblim-sfcb 0.9

Original document SECUNIA, [SA16975] sblim-sfcb Multiple Requests Denial of Service Vulnerability (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)

MCCS Multi Computer Control System DoS
updated since 21.09.2005
Published: 01.10.2005
Source: SECUNIA
SecurityVulns ID: 5244
Type: remote
Level: 5/10
Description: DoS on internal UDP-based control protocol parsing.

Affected: MCCS : Multi-Computer Control System 1.1

Original document SECUNIA, Multi-Computer Control System (MCCS) Denial of Service Vulnerability (21.09.2005)

Files: MCCS Command DOS Exploit
Discuss: Read or add your comments to this news (0 comments)

Citrix Metaframe Presentation Server protection bypass
Published: 01.10.2005
Source: BUGTRAQ
SecurityVulns ID: 5277
Type: remote
Level: 5/10
Description: Restrictions policy is based upon paramters controlled by client.

Affected: CITRIX : MetaFrame Presentation Server 3.0
CITRIX : Metaframe Presentation Server 4.0

Original document gustavog_(at)_grupoitpro.com.ar, Citrix Metaframe Presentation Server bypassing policies (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)

ntlmaps NTLM proxy weak file permissions
Published: 01.10.2005
Source: BUGTRAQ
SecurityVulns ID: 5279
Type: local
Level: 5/10
Description: Configuration file with Windows account password is world readable.

Affected: NTLMAPS : ntlmaps 0.9

Original document DEBIAN, [SECURITY] [DSA 830-1] New ntlmaps packages fix information leak (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)

storeBackup symbolic links problem
Published: 01.10.2005
Source: SECUNIA
SecurityVulns ID: 5286
Type: local
Level: 5/10
Description: Symbolic links problem on temporary files creaction.

Affected: STOREBACKUP : storeBackup 1.18

Original document SECUNIA, [SA17025] storeBackup Insecure Temporary File Creation and Insecure Backup Root Permissions (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)

Multiple Merak Mail Server / Icewarp Web Mail vulnerabilities
updated since 01.10.2005
Published: 28.12.2005
Source: BUGTRAQ
SecurityVulns ID: 5276
Type: remote
Level: 6/10
Description: Unauthorized access, crossite scripting, unauthorized files deletion, information leak.

Affected: MERAK : Merak Mail Server 8.2
ICEWARP : Icewarp Web Mail 5.5
VISNETIC : Visnetic Mail Server 8.3
MERAK : Merak Mail Server 8.3

Original document SECUNIA, Secunia Research: IceWarp Web Mail Multiple File Inclusion Vulnerabilities (28.12.2005)

ShineShadow, Multiple vulnerabilities in Merak Mail Server 8.2.4r with Icewarp Web Mail 5.5.1 (01.10.2005)

Discuss: Read or add your comments to this news (0 comments)