Computer Security
[EN] securityvulns.ru no-pyccku


Wireshark multiple security vulnerabilities
Published:02.03.2008
Source:
SecurityVulns ID:8738
Type:remote
Threat Level:
5/10
Description:Multiple DoS conditions.
Affected:WIRESHARK : wireshark 0.99
 TSHARK : tshark 0.99
CVE:CVE-2008-1072 (The TFTP dissector in Wireshark (formerly Ethereal) 0.6.0 through 0.99.7, when running on Ubuntu 7.10, allows remote attackers to cause a denial of service (crash or memory consumption) via a malformed packet, possibly related to a Cairo library bug.)
 CVE-2008-1071 (The SNMP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.7 allows remote attackers to cause a denial of service (crash) via a malformed packet.)
 CVE-2008-1070 (The SCTP dissector in Wireshark (formerly Ethereal) 0.99.5 through 0.99.7 allows remote attackers to cause a denial of service (crash) via a malformed packet.)
Original documentdocumentRPATH, rPSA-2008-0092-1 tshark wireshark (02.03.2008)

Livebox routers format string vulnerability
Published:02.03.2008
Source:
SecurityVulns ID:8739
Type:remote
Threat Level:
5/10
Description:Format string vulnerability in built-in ADI Convergence Galaxy FTP Server.
Affected:ADI : ADI Convergence Galaxy FTP server 0.1
Original documentdocument0in.email_(at)_gmail.com, Livebox Router vulnerability to REMOTE BUFFER OVERFLOW DoS (FTPD)_ (02.03.2008)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:02.03.2008
Source:
SecurityVulns ID:8737
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:DREAM4 : Koobi CMS 4.2
 NETOFFICEDWINS : netOffice Dwins 1.3
 DREAM4 : Koobi CMS 4.3
Original documentdocumentturkish-warriorr_(at)_hotmail.com, PHP-Nuke Copyright 2005 SQL (02.03.2008)
 documentjoseph.giron13_(at)_gmail.com, h2desk helpdesk path disclosure vulnerability (02.03.2008)
 documentJose Luis Góngora Fernández, Koobi CMS 4.3.0 - 4.2.3 (categ) Remote SQL Injection Vulnerability (02.03.2008)
 documentno-reply_(at)_aria-security.net, Mambo com_Musica "id" Remote SQL Injection (02.03.2008)
 documentdb_(at)_rawsecurity.org, netOffice Dwins 1.3 Remote code execution. (02.03.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod