Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Exchange Calendar code execution
updated since 09.05.2006
Published:10.05.2006
Source:
SecurityVulns ID:6117
Type:remote
Threat Level:
10/10
Description:Server doesn't properly handles iCal and vCal properties of MIME message.
Affected:MICROSOFT : Exchange 2000
 MICROSOFT : Exchange 2003
Original documentdocumentCERT, US-CERT Technical Cyber Security Alert TA06-129A -- Microsoft Windows and Exchange Server Vulnerabilities (10.05.2006)
 documentMICROSOFT, Microsoft Security Bulletin MS06-019 Vulnerability in Microsoft Exchange Could Allow Remote Code Execution (916803) (09.05.2006)
Files:Microsoft Security Bulletin MS06-019 Vulnerability in Microsoft Exchange Could Allow Remote Code Execution (916803)

Adobe Macromedia Dreamweaver Server SQL injection
Published:10.05.2006
Source:
SecurityVulns ID:6120
Type:library
Threat Level:
6/10
Description:Multiple vulnerabilities in generated code.
Affected:MACROMEDIA : Dreamweaver MX 2004
 MACROMEDIA : Dreamweaver 8.0
Original documentdocumentBrian Gallagher, Multiple SQL Injection Vulnerabilities in Dreamweaver Generated Code (10.05.2006)
 documentSECUNIA, [SA20054] Dreamweaver Server Behavior SQL Injection Vulnerability (10.05.2006)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:10.05.2006
Source:
SecurityVulns ID:6118
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:DUWARE : DUgallery 3.3
Original documentdocumentDj_ReMix_20_(at)_hotmail.com, # MHG Security Team --- OzzyWork Gallery Upload Vulnerabilities (10.05.2006)
 documentDj_ReMix_20_(at)_hotmail.com, # MHG Security Team --- DuGallery V2.x SQL Injection (10.05.2006)

3COM TippingPoint SMS Server weak permissions
Published:10.05.2006
Source:
SecurityVulns ID:6119
Type:remote
Threat Level:
5/10
Description:It's possible to access directories where sensitive information can be potentially stored through web interface.
Affected:3COM : TippingPoint SMS Server 2.2
Original documentdocumentZDI, ZDI-06-013: 3Com TippingPoint SMS Server Information Disclosure Vulnerability (10.05.2006)

Novell client fro Windows buffer overflow
updated since 10.05.2006
Published:15.05.2006
Source:
SecurityVulns ID:6121
Type:client
Threat Level:
5/10
Description:Buffer overflow in DPRPC library on XDR stream decoding.
Affected:NOVELL : Novell Client for Windows NT/2000/XP 4.91
Original documentdocumentRyan Smith, [Full-disclosure] Novell NDPS Remote Vulnerability (Server & Client) (15.05.2006)
 documentSECUNIA, [SA20048] Novell Client DPRPCW32.DLL Buffer Overflow Vulnerability (10.05.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod