Computer Security

Search:Vulnerability:06.02.2004
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



BSD smat privilege escalation
Published:06.02.2004
Source:BUGTRAQ
SecurityVulns ID:3421
Type:remote
Level:6/10
Description:It's possible to access unallocated page of phisical memory.
Affected:FREEBSD : FreeBSD 5.0
 NETBSD : NetBSD 1.5
 OPENBSD : OpenBSD 3.1
 NETBSD : NetBSD 1.6
 OPENBSD : OpenBSD 3.2
 FREEBSD : FreeBSD 5.1
 FREEBSD : FreeBSD 5.2
Original documentdocumentFREEBSD, FreeBSD Security Advisory FreeBSD-SA-04:02.shmat (06.02.2004)
 documentJoost Pol, [PINE-CERT-20040201] reference count overflow in shmat() (06.02.2004)
Discuss:Read or add your comments to this news (0 comments)

Multiple IBM cloudscape bugs
Published:06.02.2004
Source:BUGTRAQ
SecurityVulns ID:3422
Type:remote
Level:5/10
Description:Code injection, DoS, information leakage
Affected:IBM : Cloudscape 5.1
Original documentdocumentMarc Schönefeld, IBM cloudscape SQL Database (DB2J) vulnerable to remote command injection (06.02.2004)
Discuss:Read or add your comments to this news (0 comments)

Multiple RealPlayer/RealOne buffer overflows
Published:06.02.2004
Source:BUGTRAQ
SecurityVulns ID:3423
Type:client
Level:6/10
Description:Buffer overflows on parsing different file types.
Affected:REAL : RealPlayer 8
 REAL : RealPlayer 10
Original documentdocumentMark Litchfield, Multiple File Format Vulnerabilities (Overruns) in REALOne & RealPlayer (06.02.2004)
Discuss:Read or add your comments to this news (0 comments)

CGI bugs
updated since 03.02.2004
Published:06.02.2004
Source:BUGTRAQ
SecurityVulns ID:3406
Type:remote
Level:5/10
Affected:PHPMYADMIN : phpMyAdmin 2.5
 BLOG : Web Blog 1.1
 STEELID : thePHOTOtool
 APROX : Aprox PHP Portal
 PHOTOPOST : PhotoPost 4.6
 GBOOK : GBook for Php-Nuke 1.0
 QUALITEAM : X-Cart 3.4
 PHPX : PHPX 3.2
 REVIEWPOST : ReviewPost
 DISCUZ : Discuz! Board 3.0
 CACTUSOFT : CactuShop 5.0
Original documentdocumentS-Quadra Security Research, [Full-Disclosure] CactuSoft CactuShop 5.0 Lite shopping cart software backdoor (06.02.2004)
 documentCheng Peng Su, Possible Cross Site Scripting in Discuz! Board (06.02.2004)
 documentZetaLabs, ZH2004-04SA (security advisory): Multiple Sql Injection Vulnerabilities in ReviewPost PHP Pro (05.02.2004)
 documentHimeur Nourredine, Les Commentaires (PHP) Include file (04.02.2004)
 documentmantra_(at)_lkm-zx.net, Multiple Vulnerabilities in PHPX (04.02.2004)
 documentPhilip, X-Cart vulnerability (03.02.2004)
 documentCedric Cochin, Arbitrary File Disclosure Vulnerability in phpMyAdmin 2.5.5-pl1 and prior (03.02.2004)
 documentJanek Vind, [waraxe-2004-SA#001] - Script injection in GBook for Php-Nuke ver. 1.0 (03.02.2004)
 documentZetaLabs, ZH2004-03SA (security advisory): Photopost PHP Pro 4.6 Sql Injection Vulnerability (03.02.2004)
 documentZero-X ScriptKiddy, Directory Traversal in Aprox PHP Portal. (03.02.2004)
 documentActualMInd, Web Blog 1.1 Remote Execute Commands Bug (03.02.2004)
 documentMr Serbia, Advisory ! (03.02.2004)
Discuss:Read or add your comments to this news (0 comments)

Multiple bugs in Orcale
updated since 17.02.2003
Published:06.02.2004
Source:BUGTRAQ
SecurityVulns ID:2597
Type:remote
Level:9/10
Description:Multiple bugs including remote buffer overflow in authentication process.
Affected:ORACLE : Oracle 9i
 ORACLE : Oracle 8i
Original documentdocumentc c, [Full-Disclosure] Oracle Database 9ir2 Interval Conversion Functions Buffer Overflow (06.02.2004)
 documentNGSSoftware Insight Security Research, Oracle Extproc Buffer Overflow (#NISR25072003) (25.07.2003)
 documentNGSSoftware Insight Security Research, Oracle Database Server Buffer Overflow Vulnerability (#NISR29042003) (30.04.2003)
 documentCERT, CERT Advisory CA-2003-05 Multiple Vulnerabilities in Oracle Servers (20.02.2003)
 documentNGSSoftware Insight Security Research, Oracle bfilename function buffer overflow vulnerability (#NISR16022003e) (18.02.2003)
 documentNGSSoftware Insight Security Research, Oracle TZ_OFFSET Remote System Buffer Overrun (#NISR16022003c) (17.02.2003)
 documentNGSSoftware Insight Security Research, Oracle TO_TIMESTAMP_TZ Remote System Buffer Overrun (#NISR16022003b) (17.02.2003)
 documentNGSSoftware Insight Security Research, Oracle unauthenticated remote system compromise (#NISR16022003a) (17.02.2003)
 documentNGSSoftware Insight Security Research, Oracle9i Application Server Format String Vulnerability (#NISR16022003d) (17.02.2003)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server