Songbird Media Player format string
Published:		01.12.2006
Source:		MILW0RM
SecurityVulns ID:		6875
Type:		remote
Level:		5/10
Description:		Format string vulnerability on M3U files parsing.

Affected:

SONGIBIRD : Songbird Media Player 0.2

Files:		0-day Songbird Media Player <= 0.2 Format String Denial Of Service PoC
Discuss:		Read or add your comments to this news (0 comments)

NetBSD and Mac OS X ftpd / tnftpd buffer overflow
Published:		01.12.2006
Source:		MILW0RM
SecurityVulns ID:		6877
Type:		remote
Level:		7/10
Description:		Buffer overflow in NLST FTP command file globbing.

Affected:		APPLE : MacOS X 10.3
		TNFTPD : tnftpd 20040810
		LUKEMFTPD : lukemftpd 20040810

Original document		Kevin Finisterre, Re: [Full-disclosure] NetBSD FTPD and ports ***REMOTE ROOOOOT HOLE*** (01.12.2006)
		kingcope_(at)_gmx.net, [Full-disclosure] NetBSD FTPD and ports ***REMOTE ROOOOOT HOLE*** (01.12.2006)

Files:		NetBSD ftpd and ports *Remote ROOOOOT $HOLE$*
Discuss:		Read or add your comments to this news (0 comments)

Novell Netware Client multiple security vulnerabilities updated since 29.11.2006
Published:		01.12.2006
Source:		BUGTRAQ
SecurityVulns ID:		6868
Type:		remote
Level:		6/10
Description:		Buffer overflow in EnumPrinters() and OpenPrinter() functions. Format string vulnerability in Novell Modular Authentication Services.

Affected:		NOVELL : NetWare Client 4.91
CVE:		CVE-2006-5854 (Multiple buffer overflows in the Spooler service (nwspool.dll) in Novell Netware Client 4.91 through 4.91 SP2 allow remote attackers to execute arbitrary code via a long argument to the (1) EnumPrinters and (2) OpenPrinter functions.)

Original document		Deral Heiland, [Full-disclosure] Layered Defense Advisory: Novell Client 4.91 Format String Vulnerability (01.12.2006)
		ZDI, ZDI-06-043: Novell Netware Client Print Provider Buffer Overflow Vulnerability (29.11.2006)

Files:		Citrix Metaframe Presentation Server / Javvin DiskAccess printer provider buffer overflow
Discuss:		Read or add your comments to this news (0 comments)

libgsf buffer overflow updated since 30.11.2006
Published:		01.12.2006
Source:		BUGTRAQ
SecurityVulns ID:		6874
Type:		library
Level:		5/10
Description:		ole_init_info() heap overflow.

Affected:		GNOME : libgsf 1.11
		GNOME : libgsf 1.14

Original document		IDEFENSE, iDefense Security Advisory 11.30.06: Multiple Vendor libgsf Heap Overflow Vulnerability (01.12.2006)
		DEBIAN, [Full-disclosure] [SECURITY] [DSA 1221-1] New libgsf packages fix arbitrary code execution (30.11.2006)

Discuss:

Read or add your comments to this news (0 comments)

Quintessential Player buffer overflow
Published:		01.12.2006
Source:		MILW0RM
SecurityVulns ID:		6876
Type:		client
Level:		5/10
Description:		.PLS, .M3U, M3u-8 playlists buffer overflow.

Affected:

QUINTESSENTIAL : Quintessential Player 4.50

Files:		0-day Quintessential Player <= 4.50.1.82 Playlist Denial Of Service PoC
Discuss:		Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		01.12.2006
Source:
SecurityVulns ID:		6879
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		WOLTLAB : Woltlab Burning Board 2.3
		INVISION : Invision Gallery 2.0
		SEDITIO : Seditio 1.10
		ALEXGUESTBOOK : @lex Guestbook 4.0
		INVISION : Invision Community Blog Mod 1.2
		LIFETYPE : Lifetype 1.1
		CLANPORTAL : Clanportal 1.3

Original document		Tim Weber, [Full-disclosure] deV!L`z Clanportal - Arbitrary File Upload [061124b] (01.12.2006)
		Tonu Samuel, [Full-disclosure] phpmyfaq exploit using PHP bug, CVE-2006-1490 (01.12.2006)
		infection_(at)_mail.kz, Invision Gallery 2.0.7 SQL Injection Vulnerability (01.12.2006)
		Jesper Jurcenoks, LifeType version 1.1.2 Multiple Path Disclosure Vulnerabilities (01.12.2006)
		blueshisha_(at)_safe-mail.net, Woltlab Burning Board 2.3.X XSS Vulnerability (0-Day) FIXED VERSION (01.12.2006)
		ajannhwt_(at)_hotmail.com, LDU <= 8.x (polls.php) Remote SQL Injection Vulnerability (01.12.2006)
		capt.nem0_(at)_gmx.de, contentserv 4.x (01.12.2006)
		infection_(at)_mail.kz, Invision Community Blog Mod 1.2.4 .PHP SQL Injection Vulnerability (01.12.2006)
		ajannhwt_(at)_hotmail.com, Seditio <= 1.10 (pollid) Remote SQL Injection Vulnerability (01.12.2006)
		Mr_KaLiMaN, @lex Guestbook 4.0.1 : Full Path Disclosure & XSS (01.12.2006)
		Mr_KaLiMaN, @lex Guestbook 4.0.1 : Full Path Disclosure & XSS (01.12.2006)

Discuss:

Read or add your comments to this news (0 comments)

MailEnable IMAP Server multiple security vulnerabilities updated since 01.12.2006
Published:		09.12.2006
Source:		BUGTRAQ
SecurityVulns ID:		6878
Type:		remote
Level:		6/10
Description:		Buffer overflow in EXAMINE, SELECT, DELETE commands.

Affected:

MAILENABLE : MailEnable Professional 2.32

Original document		SECUNIA, [SA23267] MailEnable IMAP Service Denial Of Service Vulnerability (09.12.2006)
		SECUNIA, [SA23201] MailEnable IMAP Service Buffer Overflow Vulnerability (09.12.2006)
		SECUNIA, Secunia Research: MailEnable IMAP Service Two Vulnerabilities (01.12.2006)

Discuss:

Read or add your comments to this news (0 comments)