 |
|
|
|
| Special devices access in Pirch | | Published: |  | 07.10.2002 | | Source: |  | JOK3R | | SecurityVulns ID: |  | 2330 | | Type: |  | client | | Level: |  | 5/10 | | Description: |  | During private autosave new file created with filename matching peername without chaking for special device access. |
| Affected: |  | PIRCH : Pirch 98 |
| Original document |  | JOK3R, Pirch/RusPirch bug (07.10.2002) |
| | | JOK3R, Pirch/RusPirch баг (07.10.2002) |
| PowerFTP buffer overflow | | Published: | | 07.10.2002 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2331 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Buffer overflow on oversized commands. |
| Original document | | Armand Morgan, Vulnerabilitie in PowerFTP server (07.10.2002) |
| Microsoft IIS .idc crossite scripting | | Published: | | 07.10.2002 | | Source: | | NTBUGTRAQ | | SecurityVulns ID: | | 2332 | | Type: | | remote | | Level: | | 5/10 | | Description: | | On oversized URL error message contains URL without modification. |
| Affected: | | MICROSOFT : Internet Information Server 5.0 |
| Original document | | Roberto, IIS 5.0 Cross Site Scripting vulnerability (07.10.2002) |
| Crossitescripting in Argosoft Mail Server Pro | | Published: | | 07.10.2002 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2334 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Crossite scripting in WebMail, cleartext passwords in cookie :) |
| Affected: | | ARGOSOFT : ArGoSoft Mail Server Pro 1.8 |
| Original document | | Z0rbaS, ArGoSoft Web-Mail security problem (07.10.2002) |
CGI bugs
updated since 07.10.2002 | | Published: | | 14.10.2002 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2333 | | Type: | | remote | | Level: | | 5/10 |
| Affected: | | PHPBB : phpBB 2.0 | | | | PHPSECUREPAGES : phpSecurePages 0.27 | | | | CGI : Killer Protection 1.0 | | | | CGI : SSGbook 1.0 | | | | VBZOOM : VBZooM 1.01 | | | | AUTHORIA : Authoria HR Suite | | | | PHPREACTOR : phpreactor 1.2 | | | | PHPBBMOD : phpBBmod 1.3 | | | | MONDOSOFT : MondoSearch 4.4 | | | | ZORUM : Zorum 2.4 | | | | PHPNUKE : PHPNuke 6.0 |
| Original document | | Bruno Morisson, Multiple XSS vulnerabilites in PHPNuke (14.10.2002) |
| | | SNS, [SNS Advisory No.56] TSAC Web package/IIS 5.1 connect.asp Cross-site Scripting Vulnerability (12.10.2002) |
| | | Arab VieruZ, XSS bug in PHPNuke 6.0 (12.10.2002) |
| | | Arab VieruZ, XSS bug in Zorum 2.4 (11.10.2002) |
| | | Priamus, phpBB2 Showing users ip adresses (11.10.2002) |
| | | thefastkid, MondoSearch show the source of all files (11.10.2002) |
| | | Roland Verlander, phpBBmod contains an open phpinfo (11.10.2002) |
| | | Arab VieruZ, XSS bug in php(Reactor) (11.10.2002) |
| | | Max, XSS in Authoria HR Suite (10.10.2002) |
| | | hish _ hish, upload malicious file in VBZooM forums (09.10.2002) |
| | | hish _ hish, Reset any user's password in VBZoom forums (09.10.2002) |
| | | frog frog, SSGbook (ASP) (08.10.2002) |
| | | frog frog, phpSecurePages & Killer Protection ( PHP ) (07.10.2002) |
|
|
|
|
|
| |
|
| |
