 |
|
|
|
Internet explorer HTML embedded .exe file code execution
updated since 26.02.2003 | | Published: |  | 10.11.2003 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 2621 | | Type: |  | client | | Level: |  | 8/10 | | Description: |  | By combining Content-Location: file:///xxx.exe with codebase property of <object> tag it's possible to execute .exe file embedded into HTML. |
| Affected: |  | MICROSOFT : Internet Explorer 5.5 | | | | MICROSOFT : Internet Explorer 6.0 |
| Original document |  | http-equiv@excite.com, POS#1 Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part III (10.11.2003) |
| | | http-equiv_(at)_excite.com, Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part II (26.02.2003) |
| TelCondex SimpleWebserver directory traversal | | Published: | | 10.11.2003 | | Source: | | nimber | | SecurityVulns ID: | | 3236 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Directory traversal with .../ |
| Affected: | | TELCONDEX : SimpleWebserver 2.13 |
| Original document | | nimber, Directory traversal in The TelCondex SimpleWebserver 2.13.31027 Build 3289. (10.11.2003) |
| Oracle SQL injection | | Published: | | 10.11.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3237 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Multiple SQL injection bugs in differenc components. |
| Affected: | | ORACLE : Oracle 9i | | | | ORACLE : Oracle9i |
| Original document | | NGSSoftware Insight Security Research, Multiple SQL Injection Vulnerabilities in Oracle Application Server 9i and RDBMS (#NISR05112003) (10.11.2003) |
| gandlia DoS | | Published: | | 10.11.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3239 | | Type: | | remote | | Level: | | 5/10 | | Description: | | DoS on packet parsing. |
| Affected: | | GANDLIA : gmond 2.5 |
| Original document | | Jim Prewett, DoS for Ganglia (10.11.2003) |
| libXcursor buffer overflow | | Published: | | 10.11.2003 | | Source: | | VULN-DEV | | SecurityVulns ID: | | 3240 | | Type: | | library | | Level: | | 5/10 | | Description: | | Buffer overflow on HOME environment parsing. |
| Affected: | | XFREE : XFree86 4.3 |
| Original document | | gr00vy, Bug in libXcursor , is it exploitable? (10.11.2003) |
| Multiple Ethereal bugs | | Published: | | 10.11.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3241 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Multiple bugs including remote buffer overflow. |
| Affected: | | ETHEREAL : Ethereal 0.9 |
| Original document | | SCO, OpenLinux: Multiple vulnerabilities have reported in Ethereal 0.9.12 (10.11.2003) |
CGI bugs
updated since 10.11.2003 | | Published: | | 15.11.2003 | | Source: | | | | SecurityVulns ID: | | 3238 | | Type: | | remote | | Level: | | 5/10 |
| Affected: | | PHPBB : phpBB 2.0 | | | | WEBWIZFORUMS : Web Wiz Forums 7.01 | | | | PHPKIT : PHPKIT | | | | POWERPORTAL : PowerPortal 1.1 | | | | JONROIG : OpenAutoClassifieds 1.0 | | | | Tuxedo 8.1 | | | | FLIPPERPOLL : Flipper Poll 1.1 | | | | PHONZE : Phonze 2.0 | | | | ONLINEARTS : DailyDose 1.1 | | | | PHPCOOLFILE : PHP-Coolfile 1.4 | | | | PHPBB : phpBB 2.2 | | | | PHPLIST : PHPlist 2.6 |
| Original document | | Michiel Dethmers, PHPlist, file injection vulnerability (15.11.2003) |
| | | HellMind, XSS in & path disclosure phpBB forums (15.11.2003) |
| | | Oliver Karow, Webwasher Classic Error-Message XSS Vulnerability (14.11.2003) |
| | | HEX, Web Wiz Forums ver. 7.01 (14.11.2003) |
| | | r00t_(at)_rsteam.ru, PHP-Coolfile version 1.4 unauthorized access (13.11.2003) |
| | | admin, DailyDose v 1.1 (13.11.2003) |
| | | vLad aka vlbag, Новые уязвимости. (10.11.2003) |
| | | SECURITEAM, [NT] BEA Tuxedo Administration CGI Multiple Argument Issues (10.11.2003) |
| | | jocanor jocanor, sql injection in phpbb (10.11.2003) |
| | | David Ferreira, OpenAutoClassifieds XSS attack (10.11.2003) |
| | | David Ferreira, PowerPortal v1.1b Cross-Site Scripting Vulnerability (10.11.2003) |
| | | badwebmasters_(at)_online.de, [bWM#017] Cross-Site-Scripting @ PHPKIT (10.11.2003) |
|
|
|
|
|
| |
|
| |
