 |
|
|
|
| Artofdefence Hyperguard Web Application Firewall DoS | | Published: |  | 03.07.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10030 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | Denial of service via memory exhaustion. |
| phion airlock Web Application Firewall multiple security vulnerabilities | | Published: |  | 03.07.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10031 | | Type: |  | remote | | Level: |  | 6/10 | | Description: |  | DoS, code execution. |
| ModSecurity multiple security vulnerabilities | | Published: |  | 03.07.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10033 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | Few denial of service conditions. |
| CVE: |  | CVE-2009-1903 (The PDF XSS protection feature in ModSecurity before 2.5.8 allows remote attackers to cause a denial of service (Apache httpd crash) via a request for a PDF file that does not use the GET method.) | | |  | CVE-2009-1902 (The multipart processor in ModSecurity before 2.5.9 allows remote attackers to cause a denial of service (crash) via a multipart form datapost request with a missing part header name, which triggers a NULL pointer dereference.) |
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: |  | 03.07.2009 | | Source: |  | | | SecurityVulns ID: |  | 10034 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
| Affected: |  | FCKEDITOR : FCKeditor 2.6 | | |  | JOOMLA : Joomla! 1.5 | | |  | NAGIOS : Nagios 3.1 | | CVE: |  | CVE-2009-2288 (statuswml.cgi in Nagios before 3.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) ping or (2) Traceroute parameters.) | | |  | CVE-2009-2265 (Multiple directory traversal vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to create executable files in arbitrary directories via directory traversal sequences in the input to unspecified connector modules, as exploited in the wild for remote code execution in July 2009, related to the file browser and the editor/filemanager/connectors/ directory.) |
| HP-UX nfs utilities DoS | | Published: |  | 03.07.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10038 | | Type: |  | local | | Level: |  | 5/10 |
FreeBSD multiple security vulnerabilities updated since 07.09.2008 | | Published: |  | 03.07.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 9267 | | Type: |  | remote | | Level: |  | 7/10 | | Description: |  | mount / nmount syscall implementcation buffer overflow. amd64 CPU registers privilege escalation. DoS через ICMPv6. |
| Soulseek buffer overflow | | Published: |  | 03.07.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10039 | | Type: |  | remote | | Level: |  | 6/10 | | Description: |  | Buffer overflow on file search functionality. |
| Multiple Axesstel MV 410R wireless router security vulnerabilities | | Published: |  | 03.07.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10032 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | Crossite scripting, devica access from WAN, default account. |
| Sourcefire 3D Sensor / Sourcefire Defense Center privilege escalation | | Published: |  | 03.07.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10037 | | Type: |  | local | | Level: |  | 5/10 | | Description: |  | Web interface privilege escalation. |
perl DoS updated since 03.07.2009 | | Published: |  | 20.08.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10035 | | Type: |  | library | | Level: |  | 5/10 | | Description: |  | Crash on processing zlib stream via Compress::Raw::Zlib and bzip2 stream in Compress-Raw-Bzip2. |
CamlImages library integer overflows updated since 03.07.2009 | | Published: |  | 26.10.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 10036 | | Type: |  | library | | Level: |  | 6/10 | | Description: |  | Multiple overflows on PNG, TIFF, GIF, JPEG processing. |
| Affected: |  | CAMLIMAGES : CamlImages 2.2 | | |  | ADVI : advi 1.6 | | CVE: |  | CVE-2009-3296 | | |  | CVE-2009-2660 (Multiple integer overflows in CamlImages 2.2 might allow context-dependent attackers to execute arbitrary code via images containing large width and height values that trigger a heap-based buffer overflow, related to (1) crafted GIF files (gifread.c) and (2) crafted JPEG files (jpegread.c), a different vulnerability than CVE-2009-2295.) | | |  | CVE-2009-2295 (Multiple integer overflows in CamlImages 2.2 and earlier might allow context-dependent attackers to execute arbitrary code via a crafted PNG image with large width and height values that trigger a heap-based buffer overflow in the (1) read_png_file or (2) read_png_file_as_rgb24 function.) |
|
|
|
|
|
|
|
|