Computer Security

Search:Vulnerability:11.06.2004
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CGI bugs
updated since 08.06.2004
Published:11.06.2004
Source:
SecurityVulns ID:3740
Type:remote
Level:5/10
Affected:MAILMAN : Mailman 2.1
 INVISION : Invision Power Board 1.3
 PHPNUKE : PHP-Nuke 7.2
 PHPNUKE : Php-Nuke 7.3
 CPANEL : cPanel 9.3
 BLOSXOM : Blosxom writeback 2.0
 DISCOVERY : AspDotNetStorefront 3.3
 BLACKBOARD : Blackboard Learning System 6
Original documentdocumentJanek Vind, [Full-Disclosure] [waraxe-2004-SA#032 - Multiple security flaws in PhpNuke 6.x - 7.3] (11.06.2004)
 documentMaarten Verbeek, Blackboard Learning System - Stealing documents out of the digital dropbox (11.06.2004)
 documentJvdR, Multiple Vulnerabilities in Invision Power Board v1.3.1 Final. (10.06.2004)
 documentVirtual Nova Web Hosting services virtualnova.net, Major Cpanel Expliot HTML Injection (10.06.2004)
 documentTom, [FULL DISCLOSURE] ASPDOTNETSTOREFRONT Improper Session Validation (10.06.2004)
 documentTom, [FULL DISCLOSURE] ASPDOTNETSTOREFRONT Cross-Site Scripting Vulnerability (10.06.2004)
 documentTom, ADVISORY: ASPDOTNETSTOREFRONT Improper Upload Validation (10.06.2004)
 documentKyle Maxwell, KM-2004-01: Cross-Site Scripting in Blosxom writeback (09.06.2004)
 documentKurt Lieber, [Full-Disclosure] [ GLSA 200406-04 ] Mailman: Member password disclosure vulnerability (09.06.2004)
 documentRob Brown, cPanel mod_php suEXEC Taint Vulnerability (08.06.2004)
 documentk1LL3r B0y, Multiple vulnerabilities PHP-Nuke (08.06.2004)
Discuss:Read or add your comments to this news (0 comments)

Multiple ISA server bugs
Published:11.06.2004
Source:BUGTRAQ
SecurityVulns ID:3751
Type:remote
Level:5/10
Description:ISA SP2 closes few security holes: buffer overflow during redirect from denied resource, basic credentials may be sent over an External HTTP connection when SSL is required for published server, FTP bounce attack, handles leak in message screener, etc.
Affected:MICROSOFT : ISA Server 2000
Original documentdocumentMICROSOFT, ISA Server 2000 Service Pack 2 Release Notes (11.06.2004)
Discuss:Read or add your comments to this news (0 comments)

Multiple RealPlayer buffer overflows
Published:11.06.2004
Source:BUGTRAQ
SecurityVulns ID:3752
Type:remote
Level:6/10
Description:Buffer overflow during displaying URLs in .ram, buffer overflow during constructing mem: URLs on error page. Buffer overflows during parsing different file formats.
Affected:REAL : RealPlayer 8
 REAL : RealONE 6.0
 REAL : RealPlayer 10
Original documentdocumentNGSSoftware Insight Security Research, [VulnWatch] Multiple vulnerabilities in RealPlayer (#NISR11062004) (11.06.2004)
 documentEEYE, EEYE: RealPlayer embd3260.dll Error Response Heap Overflow (11.06.2004)
 documentIDEFENSE, [Full-Disclosure] iDEFENSE Security Advisory 06.10.04: Real Networks RealPlayer URL Parsing Buffer Overflow Vulnerability (11.06.2004)
Discuss:Read or add your comments to this news (0 comments)

NetBSD swapctl DoS
Published:11.06.2004
Source:FULL-DISCLOSURE
SecurityVulns ID:3753
Type:local
Level:5/10
Affected:NETBSD : NetBSD 1.6
Original documentdocumentEvgeny Demidov, [Full-Disclosure] NetBSD kernel swapctl(2) vulnerability (11.06.2004)
Discuss:Read or add your comments to this news (0 comments)

HP-UX FTP code execution
Published:11.06.2004
Source:BUGTRAQ
SecurityVulns ID:3754
Type:remote
Level:7/10
Description:It's possiblt to execute application on server by specifing '|' in filename.
Affected:HP : HP-UX 11.00
 HP : HP-UX 11.11
 HP : HP-UX 11.22
Original documentdocumentHP, [security bulletin] SSRT3456 HP-UX ftp remote unauthorized access (11.06.2004)
Discuss:Read or add your comments to this news (0 comments)

Edimax 7205APL privilege escalation
Published:11.06.2004
Source:BUGTRAQ
SecurityVulns ID:3755
Type:local
Level:5/10
Description:User can retrieve configuration including cleartext administration password.
Affected:EDIMAX : 7205APL
Original documentdocumentmsl_(at)_velmans-industries.nl, Edimax 7205APL (11.06.2004)
Discuss:Read or add your comments to this news (0 comments)

ksymoops symbolic links
Published:11.06.2004
Source:BUGTRAQ
SecurityVulns ID:3756
Type:remote
Level:5/10
Description:Symlink problem during temporary files processing.
Affected:KSYMOOPS : ksymoops 2.4
Original documentdocumentMANDRAKE, MDKSA-2004:060 - Updated ksymoops packages fix symlink vulnerability (11.06.2004)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru