 |
|
|
|
| cdrecord privilege escalation | | Published: |  | 08.09.2004 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 3986 | | Type: |  | local | | Level: |  | 5/10 | | Description: |  | Privileges are not dropped on user specified program invocation. |
| star privilege escalation | | Published: | | 08.09.2004 | | Source: | | FULL-DISCLOSURE | | SecurityVulns ID: | | 3987 | | Type: | | local | | Level: | | 5/10 |
| multi-gnome-terminal information leak | | Published: | | 08.09.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3988 | | Type: | | local | | Level: | | 5/10 | | Description: | | Keystrokes are logged to user's home in debugging mode. |
| Usermin crossite scripting | | Published: | | 08.09.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3989 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Crossite scripting with HTML messages. |
| Serverview weak permissions | | Published: | | 08.09.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3990 | | Type: | | local | | Level: | | 5/10 | | Description: | | Weak permissions for configuration file allow to change SNMP MIBs structure. |
| Net-Acct symbolic links problem | | Published: | | 08.09.2004 | | Source: | | SECUNIA | | SecurityVulns ID: | | 3991 | | Type: | | local | | Level: | | 5/10 | | Description: | | Symbolic links problem on temporary files creation in "write_list()" and "dump_curr_list()" functions |
| Multiple Safari bugs | | Published: | | 08.09.2004 | | Source: | | SECUNIA | | SecurityVulns ID: | | 3992 | | Type: | | client | | Level: | | 6/10 | | Description: | | Security Bypass, Cross Site Scripting, Manipulation of data, Exposure of system information, Exposure of sensitive information, Privilege escalation, DoS, System access. |
Qt/imlib buffer overflow
updated since 22.08.2004 | | Published: | | 08.09.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3929 | | Type: | | library | | Level: | | 7/10 | | Description: | | Buffer overflow on BMP files paring. |
RKDetect - behaviour based rootkit detection utility
updated since 12.05.2004 | | Published: | | 08.09.2004 | | Source: | | offtopic1 | | SecurityVulns ID: | | 3682 | | Description: | | Rkdetect is a little anomaly detection tool which can find services hidden by generic Windows
rootkits like Hacker Defender.
Tool very simply. It enumerates services on remote computer through WMI (user level) and
Services Control Manager (kernel level), compare result and display difference. In this way we
can find hidden services which usual used to start rootkit.
Similar approach can be used to enumerate processes, files, registry keys and anything that
rootkits can to hide.
Rkdetect available here:
Updated on 08.09.2004: Support for localized systems added.
http://www.security.nnov.ru/files/rkdetect.zip
|
mpg123 buffer overflow
updated since 14.01.2003 | | Published: | | 08.09.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2540 | | Type: | | client | | Level: | | 5/10 | | Description: | | Stack overflow on mp3 frame processing in sync_stream() function. |
|
|
|
|
|
|
|
|
