Computer Security
[EN] securityvulns.ru no-pyccku


ruby DoS
updated since 05.11.2006
Published:07.12.2006
Source:
SecurityVulns ID:6783
Type:remote
Threat Level:
5/10
Description:SPU axhaustion in CGI library on parsing HTTP request with invalid MIME booundaries.
Affected:RUBY : ruby 1.8
Original documentdocumentMANDRIVA, [ MDKSA-2006:225 ] - Updated ruby packages fix DoS vulnerability (07.12.2006)
 documentOPENPKG, [OpenPKG-SA-2006.030] OpenPKG Security Advisory (ruby) (05.11.2006)

2X ThinClientServer replay attacks
Published:07.12.2006
Source:
SecurityVulns ID:6897
Type:m-i-t-m
Threat Level:
5/10
Description:It's possible to create administrative account by replaying creation request with different username.
Affected:2X : ThinClientServer 3.0
Original documentdocumentSYMANTEC, SYMSA-2006-012: 2X ThinClientServer Create Admin Account Replay Vulnerability (07.12.2006)

Linksys WIP 330 VoIP wireless phone DoS
Published:07.12.2006
Source:
SecurityVulns ID:6898
Type:remote
Threat Level:
5/10
Description:nmap scan causes device to crash.
Affected:LINKSYS : Linksys WIP 330
Original documentdocumentShawn Merdinger, Linksys WIP 330 VoIP wireless phone crash from Nmap scan (07.12.2006)

GnuPG uninitialized memory problem
Published:07.12.2006
Source:
SecurityVulns ID:6895
Type:client
Threat Level:
8/10
Description:Using of uninitialized data allows attacked to overwrite stored function pointed and execute code.
Affected:GNU : GnuPG 1.4
 GNU : GnuPG 2.0
 GNU : Gpg4win 1.0
Original documentdocumentWerner Koch, GnuPG: remotely controllable function pointer [CVE-2006-6235] (07.12.2006)

Citrix Presentation Server client for Windows buffer overflow
Published:07.12.2006
Source:
SecurityVulns ID:6896
Type:client
Threat Level:
6/10
Description:Buffer overflow in Wfica.ocx ActiveX SendChannelData function.
Affected:CITRIX : Citrix Presentation Server Client for Windows 9.200
Original documentdocument3COM, TSRT-06-15: Citrix Presentation Server Client ActiveX Heap Overflow Vulnerability (07.12.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod