 |
|
|
|
| Multiple ISA server bugs | | Published: |  | 11.06.2004 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 3751 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | ISA SP2 closes few security holes: buffer overflow during redirect from denied resource, basic credentials may be sent over an External HTTP connection when SSL is required for published server, FTP bounce attack, handles leak in message screener, etc. |
| Multiple RealPlayer buffer overflows | | Published: | | 11.06.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3752 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Buffer overflow during displaying URLs in .ram, buffer overflow during constructing mem: URLs on error page. Buffer overflows during parsing different file formats. |
| NetBSD swapctl DoS | | Published: | | 11.06.2004 | | Source: | | FULL-DISCLOSURE | | SecurityVulns ID: | | 3753 | | Type: | | local | | Level: | | 5/10 |
| HP-UX FTP code execution | | Published: | | 11.06.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3754 | | Type: | | remote | | Level: | | 7/10 | | Description: | | It's possiblt to execute application on server by specifing '|' in filename. |
| Edimax 7205APL privilege escalation | | Published: | | 11.06.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3755 | | Type: | | local | | Level: | | 5/10 | | Description: | | User can retrieve configuration including cleartext administration password. |
| ksymoops symbolic links | | Published: | | 11.06.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3756 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Symlink problem during temporary files processing. |
CGI bugs
updated since 08.06.2004 | | Published: | | 11.06.2004 | | Source: | | | | SecurityVulns ID: | | 3740 | | Type: | | remote | | Level: | | 5/10 |
| Original document |  | Janek Vind, [Full-Disclosure] [waraxe-2004-SA#032 - Multiple security flaws in PhpNuke 6.x - 7.3] (11.06.2004) |
| | | Maarten Verbeek, Blackboard Learning System - Stealing documents out of the digital dropbox (11.06.2004) |
| | | JvdR, Multiple Vulnerabilities in Invision Power Board v1.3.1 Final. (10.06.2004) |
| | | Virtual Nova Web Hosting services virtualnova.net, Major Cpanel Expliot HTML Injection (10.06.2004) |
| | | Tom, [FULL DISCLOSURE] ASPDOTNETSTOREFRONT Improper Session Validation (10.06.2004) |
| | | Tom, [FULL DISCLOSURE] ASPDOTNETSTOREFRONT Cross-Site Scripting Vulnerability (10.06.2004) |
| | | Tom, ADVISORY: ASPDOTNETSTOREFRONT Improper Upload Validation (10.06.2004) |
| | | Kyle Maxwell, KM-2004-01: Cross-Site Scripting in Blosxom writeback (09.06.2004) |
| | | Kurt Lieber, [Full-Disclosure] [ GLSA 200406-04 ] Mailman: Member password disclosure vulnerability (09.06.2004) |
| | | Rob Brown, cPanel mod_php suEXEC Taint Vulnerability (08.06.2004) |
| | | k1LL3r B0y, Multiple vulnerabilities PHP-Nuke (08.06.2004) |
|
|
|
|
|
|
|
|
