Computer Security
[EN] securityvulns.ru no-pyccku


Netcool NeuSecure Security information management platform multiple security vulnerabilities
updated since 17.02.2006
Published:08.03.2006
Source:
SecurityVulns ID:5791
Type:local
Threat Level:
5/10
Description:Weak file permissions, cleartext passwords, passwords logging.
Affected:NETCOOL : NeuSecure 3.0
Original documentdocumentD.Snezhkov, [Full-disclosure] Remote access to NeuSecure/Netcool backend database via web interface credentials leakage (08.03.2006)
 documentD.Snezhkov, [Full-disclosure] Password disclosure and remote access in Netcool/NeuSecure Security information management platform (17.02.2006)

capi4hylafax hylafax addon symbolic links problem
Published:08.03.2006
Source:
SecurityVulns ID:5870
Type:local
Threat Level:
5/10
Description:Symbolic links problem on creation of debug and log files.
Affected:CAPI4HYLAFAX : capi4hylafax 01.03.00
Original documentdocumentJavor Ninov, [Full-disclosure] capi4hylafax insecure manipulation with tmp files (08.03.2006)

Linux kernel die_if_kernel() DoS
Published:08.03.2006
Source:
SecurityVulns ID:5871
Type:local
Threat Level:
5/10
Description:DoS on Itanium platform.
Affected:LINUX : kernel 2.6
Original documentdocumentSECUNIA, [SA19078] Linux Kernel "die_if_kernel()" Potential Denial of Service (08.03.2006)

RevilloC MailServer POP3 server buffer overflow
Published:08.03.2006
Source:
SecurityVulns ID:5873
Type:remote
Threat Level:
5/10
Description:Buffer overflow on oversized USER command.
Affected:REVILLOC : RevilloC Mailserver 1.21
Original documentdocumentsecurma massine, [Full-disclosure] RevilloC mail server USER command heap overflow (08.03.2006)
 documentSECUNIA, [SA19119] RevilloC MailServer USER Command Buffer Overflow (08.03.2006)
Files:revilloC mail server PoC exploit ( for xp sp1)

Multiple Xerox CopyCentre / Xerox WorkCentre Pro security vulnerabilities
Published:08.03.2006
Source:
SecurityVulns ID:5874
Type:remote
Threat Level:
5/10
Description:Buffer overflow and DoS on PostScript parsing, memory corruption in built-in Web server.
Affected:XEROX : WorkCentre 65
 XEROX : WorkCentre 75
 XEROX : WorkCentre 90
 XEROX : CopyCentre C65
 XEROX : CopyCentre C75
 XEROX : CopyCentre C90
Original documentdocumentSECUNIA, [SA19146] Xerox CopyCentre / WorkCentre Pro Multiple Denial of Service Vulnerabilities (08.03.2006)

Multiple Symantec Ghost security vulnerabilities
Published:08.03.2006
Source:
SecurityVulns ID:5875
Type:remote
Threat Level:
5/10
Description:Default username/password for application and Sybase database engine. dbisqlc.exe Shatter attacks.
Affected:SYMANTEC : ghost 8.0
 SYMANTEC : Ghost 8.2
 SYMANTEC : Ghost Solutions Suite 1.1
Original documentdocumentSECUNIA, [SA19171] Symantec Ghost Multiple Vulnerabilities (08.03.2006)

Novell Bordermanager proxy server DoS
Published:08.03.2006
Source:
SecurityVulns ID:5876
Type:remote
Threat Level:
5/10
Affected:NOVEL : BorderManager 3.8
Original documentdocumentSECUNIA, [SA19163] Novell BorderManager Proxy Potential Denial of Service (08.03.2006)

Multiple nCipher products cryptographic problems
updated since 08.03.2006
Published:09.03.2006
Source:
SecurityVulns ID:5872
Type:remote
Threat Level:
5/10
Description:Weak pseudo-random numbers generation, vulnerabilities in network protocol.
Affected:NCIPHER : nForce
 NCIPHER : nShield
 NCIPHER : netHSM
 NCIPHER : payShield
 NCIPHER : SecureDB
 NCIPHER : DSE200
 NCIPHER : Time Source Master Clock
Original documentdocumentNCIPHER, nCipher Advisory #14: Presence of flaws in firmware security (09.03.2006)
 documentNCIPHER, nCipher Advisory #13: CBC-MAC IV misleading programming interface (09.03.2006)
 documentNCIPHER, nCipher Advisory #12: Insecure Generation of Diffie-Hellman keys (09.03.2006)
 documentSECUNIA, [SA19137] nCipher Products Multiple Vulnerabilities (08.03.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod