Computer Security
[EN] securityvulns.ru no-pyccku


Multiple MacOS X security vulnerabilities
updated since 02.10.2006
Published:03.10.2006
Source:
SecurityVulns ID:6668
Type:remote
Threat Level:
8/10
Description:Multiple local and client vulneragbilities in different subcomponents.
Affected:APPLE : Mac OS X 10.4
Original documentdocumentCERT, US-CERT Technical Cyber Security Alert TA06-275A -- Multiple Vulnerabilities in Apple and Adobe Products (03.10.2006)
 documentadvisories_(at)_matasano.com, Matasano Advisory: MacOS X Mach Exception Server Privilege Escalation (02.10.2006)
 documentSECUNIA, [SA22187] Mac OS X Security Update Fixes Multiple Vulnerabilities (02.10.2006)
Files:Exploits Mac OS X Mach Exception Handling

Kerio Personal Firewall privilege escalation
Published:03.10.2006
Source:
SecurityVulns ID:6675
Type:local
Threat Level:
5/10
Description:Insufficient hooked SSDT calls arguments validation.
Affected:KERIO : Kerio Personal Firewall 4.2
 KERIO : Kerio Personal Firewall 4.3
Original documentdocumentDavid Matousek, Kerio Multiple insufficient argument validation of hooked SSDT function Vulnerability (03.10.2006)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:03.10.2006
Source:
SecurityVulns ID:6676
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:JAFCMS : JAF CMS 4.0
 PEBBLE : Pebble 2.0
 DAYFOX : Dayfox Blog 2.0
 DIGISHOP : digishop 4.0
Original documentdocumentMILW0RM, BBaCE <= 3.5 (includes/functions.php) Remote File Include Vulnerability (03.10.2006)
 documentmeto5757_(at)_hotmail.com, digishop v 4.0.0 Xss Vuln. (03.10.2006)
 documentDj_ReMix_20_(at)_hotmail.com, Dayfox Blog v2.0 Remote file include (03.10.2006)
 documentPaolo Perego, Pebble 2.0.0 RC[1,2] XSS vulnerability (03.10.2006)
Files:JAF CMS <= 4.0 RC1 Remote File Include Exploit

Novell GroupWise Messenger DoS
Published:03.10.2006
Source:
SecurityVulns ID:6677
Type:remote
Threat Level:
5/10
Description:nmma.exe service crash on malformed HTTP POST val parameter.
Affected:NOVELL : Novell GroupWise Messenger 2
Original documentdocumentIDEFENSE, iDefense Security Advisory 10.02.06: Novell GroupWise Messenger nmma.exe DoS Vulnerability (03.10.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod