Computer Security
[EN] securityvulns.ru no-pyccku


Asterisk Skinny (SIP) VoIP protocol DoS
Published:08.08.2007
Source:
SecurityVulns ID:8016
Type:remote
Threat Level:
5/10
Description:CAPABILITIES_RES_MESSAGE integer array overflow.
Affected:DIGIUM : Asterisk 1.4
 ASTERISK : Asterisk s800i
 ASTERISK : Asterisk 1,4
Original documentdocumentASTERISK, [Full-disclosure] ASA-2007-019: Remote crash vulnerability in Skinny channel driver (08.08.2007)

bochs IA-32 emulator privilege escalation
Published:08.08.2007
Source:
SecurityVulns ID:8017
Type:local
Threat Level:
5/10
Description:Buffer overflow in network adapter emulation.
Affected:BOCHS : bochs 2.1
CVE:CVE-2007-2893 (Heap-based buffer overflow in the bx_ne2k_c::rx_frame function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register values to exceed the device memory size, aka "RX Frame heap overflow.")
Original documentdocumentDEBIAN, [SECURITY] [DSA 1351-] New bochs packages fix privilege escalation (08.08.2007)

Apple Mac OS X Bonjour mDNSResponder buffer overflow
Published:08.08.2007
Source:
SecurityVulns ID:8018
Type:remote
Threat Level:
6/10
Description:Buffer overflow on malformed DNS request parsing.
Affected:APPLE : MacOS X 10.4
CVE:CVE-2007-3744 (Heap-based buffer overflow in the UPnP IGD (Internet Gateway Device Standardized Device Control Protocol) implementation in mDNSResponder on Apple Mac OS X 10.4.10 before 20070731 allows network-adjacent remote attackers to execute arbitrary code via a crafted packet.)
Original documentdocumentIDEFENSE, iDefense Security Advisory 08.07.07: Apple Mac OS X mDNSResponder HTTP Request Heap Overflow Vulnerability (08.08.2007)

HP-UX HP Controller for Cisco Local Director daemon buffer overflow
Published:08.08.2007
Source:
SecurityVulns ID:8019
Type:remote
Threat Level:
6/10
Description:Buffer overflow in ldconn on parsing TCP/17781 traffic.
Affected:HP : HP-UX 11.11
Original documentdocumentIDEFENSE, iDefense Security Advisory 08.07.07: Hewlett-Packard HP-UX Remote ldcconn Buffer Overflow Vulnerability (08.08.2007)

Cisco Unified MeetingPlace Web Conferencing crossite scripting
Published:08.08.2007
Source:
SecurityVulns ID:8020
Type:remote
Threat Level:
5/10
Affected:CISCO : Cisco Unified MeetingPlace 5.3
Original documentdocumentCISCO, RE: XSS vulnerability in Cisco MeetingPlace (08.08.2007)
 documentDisclosure, XSS vulnerability in Cisco MeetingPlace (08.08.2007)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 08.08.2007
Published:08.08.2007
Source:
SecurityVulns ID:8021
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:GUESTBOOKSCRIPT : Guestbook Script 1.9
Original documentdocumentMa$tEr-0F-De$a$t0r_(at)_hotmail.com, Guestbook Script 1.9 RFI (08.08.2007)
 documentmaster-of-desastor_(at)_hotmail.com, VietPHP Remote File Inclusion Vulnerbility (08.08.2007)

Cisco IOS SCPauthentication bypass
Published:08.08.2007
Source:
SecurityVulns ID:8022
Type:remote
Threat Level:
7/10
Description:Unprivileged user has full access to device, incpuding reading and writing it's configuration.
Affected:CISCO : IOS 12.2
Original documentdocumentCISCO, Cisco Security Advisory: Cisco IOS Secure Copy Authorization Bypass Vulnerability (08.08.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod