Computer Security

Search:Vulnerability:11.11.2004
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Cisco IOS DHCP DoS
Published:11.11.2004
Source:BUGTRAQ
SecurityVulns ID:4179
Type:remote
Level:6/10
Description:Malcrafted packet blocks input queue.
Affected:CISCO : IOS 12.2
Original documentdocumentCISCO, Cisco Security Advisory: Cisco IOS DHCP Blocked Interface Denial-of-Service (11.11.2004)
Discuss:Read or add your comments to this news (0 comments)

ez-ipupdate format string bug
Published:11.11.2004
Source:FULL-DISCLOSURE
SecurityVulns ID:4180
Type:client
Level:5/10
Affected:EZIPUPDATE : ez-ipupdate 3.0
Original documentdocumentHärnhammar, Ulf, [Full-Disclosure] ez-ipupdate format string bug (11.11.2004)
 documentMANDRAKE, [Full-Disclosure] MDKSA-2004:129 - Updated ez-ipupdate packages fix format string vulnerability (11.11.2004)
Discuss:Read or add your comments to this news (0 comments)

CCProxy buffer overflow
Published:11.11.2004
Source:SECURITEAM
SecurityVulns ID:4181
Type:remote
Level:5/10
Description:Buffer overflow on oversized URL.
Affected:YOUNGZSOFT : CCProxy 6.0
Original documentdocumentSECURITEAM, [EXPL] CCProxy Log Stack Overflow (11.11.2004)
Files:CCProxy Log Stack Overflow Exploit!
Discuss:Read or add your comments to this news (0 comments)

Samhain privilege escalation
Published:11.11.2004
Source:SECUNIA
SecurityVulns ID:4182
Type:remote
Level:5/10
Description:Privilege escalation if "-t update" option is used.
Affected:LASAMHNA : Samhain 2.0
 LASAMHNA : Samhain 1.8
Original documentdocumentSECUNIA, [SA13130] Samhain Database Update Code Buffer Overflow Vulnerability (11.11.2004)
Discuss:Read or add your comments to this news (0 comments)

SQLGrey SQL injection
Published:11.11.2004
Source:SECUNIA
SecurityVulns ID:4183
Type:remote
Level:5/10
Description:SQL injectiuon with sender/recepient e-mails.
Original documentdocumentSECUNIA, [SA13135] SQLgrey Postfix greylisting service Unspecified SQL Injection (11.11.2004)
Discuss:Read or add your comments to this news (0 comments)

Sun ONE Messaging Server session hijacking
Published:11.11.2004
Source:SECUNIA
SecurityVulns ID:4185
Type:remote
Level:5/10
Description:Webmail sessions hijacking.
Affected:SUN : Sun ONE Messaging Server 5.2
 SUN : Sun Java System Messaging Server 6.1
Original documentdocumentSECUNIA, [SA12937] Sun ONE Messaging Server Webmail Session Hijacking Vulnerability (11.11.2004)
Discuss:Read or add your comments to this news (0 comments)

RealVNC DoS
updated since 30.08.2004
Published:11.11.2004
Source:BUGTRAQ
SecurityVulns ID:3946
Type:remote
Level:5/10
Description:More than 60 concurrent TCP connections causes server to crash.
Affected:REALVNC : RealVNC 4.0
Original documentdocumentAllan Zhang, RealVNC 4.0 DoS (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Multiple MIT Kerberos bugs
updated since 01.09.2004
Published:11.11.2004
Source:BUGTRAQ
SecurityVulns ID:3965
Type:remote
Level:8/10
Description:Multiple double free() problems, DoS.
Affected:CISCO : Cisco VPN 3000
 MIT : krb5 1.3
 MIT : krb5 1.2
 IBM : IBM Network Authentication Service 1.3
 IBM : IBM Network Authentication Service 1.4
 SUN : Seam 1.0
 IBM : Tivoli Access Manager 5.1
Original documentdocumentSECUNIA, [SA13119] IBM Tivoli Access Manager for e-business Kerberos Vulnerabilities (11.11.2004)
 documentSECUNIA, [SA12694] AIX Network Authentication Service Multiple Vulnerabilities (02.10.2004)
 documentCERT, US-CERT Technical Cyber Security Alert TA04-247A -- Vulnerabilities in MIT Kerberos 5 (04.09.2004)
 documentMIT, MITKRB5-SA-2004-002: double-free vulnerabilities (02.09.2004)
 documentCISCO, Cisco Security Advisory: Vulnerabilities in Kerberos 5 Implementation (01.09.2004)
 documentTom Yu, MITKRB5-SA-2004-003: ASN.1 decoder denial-of-service (01.09.2004)
 documentDEBIAN, [SECURITY] [DSA 543-1] New krb5 packages fix several vulnerabilities (01.09.2004)
Discuss:Read or add your comments to this news (0 comments)

04WebServer multiple bugs
updated since 11.11.2004
Published:11.11.2004
Source:BUGTRAQ
SecurityVulns ID:4174
Type:remote
Level:5/10
Description:Crossite scripting, DOS device access.
Affected:SOFT3304 : 04WebServer 1.42
Original documentdocumentJérôme ATHIAS, 04WebServer Three Vulnerabilities (11.11.2004)
Discuss:Read or add your comments to this news (0 comments)

HP PSC 2510 unauthorized access
Published:11.11.2004
Source:BUGTRAQ
SecurityVulns ID:4175
Type:remote
Level:5/10
Description:Device can be anonymously accessed via FTP.
Affected:HP : PSC2510
Original documentdocumentJustin Rush, Unsecure Ftpd on HP PSC 2510 Printer (11.11.2004)
Discuss:Read or add your comments to this news (0 comments)

Nortel Contivity VPN information leak
Published:11.11.2004
Source:BUGTRAQ
SecurityVulns ID:4176
Type:remote
Level:5/10
Description:Messages for wrong username and wrong password are different.
Affected:NORTEL : Contivity VPN Client 5.01
Original documentdocumentNetwork Intelligence India Pvt. Ltd., Nortel Networks Contivity VPN Client information leakage vulnerability (11.11.2004)
Discuss:Read or add your comments to this news (0 comments)

BNC buffer overflow
Published:11.11.2004
Source:BUGTRAQ
SecurityVulns ID:4177
Type:client
Level:5/10
Description:Buffer overflow on server response parsing.
Affected:BNC : bnc 2.8
Original documentdocumentLSS Security, BNC 2.8.9 remote buffer overflow (11.11.2004)
Discuss:Read or add your comments to this news (0 comments)

SlimFTPD buffer overflow
updated since 11.11.2004
Published:03.09.2005
Source:BUGTRAQ
SecurityVulns ID:4178
Type:remote
Level:5/10
Description:Buffer overflows in different FTP commands.
Affected:SLIMFTPD : SlimFTPd 3.15
 SLIMFTPD : SlimFTPd 3.16
 SLIMFTPD : Slim FTPd 3.17
Original documentdocumentSECUNIA, SlimFTPd Denial of Service Vulnerability (03.09.2005)
 documentRaphaël Rigo, Arbitrary code execution in SlimFTPd v3.16 (22.07.2005)
 documentclass 101, [Full-Disclosure] [Advisory + Exploit] SlimFTPd <= 3.15 (11.11.2004)
Files:PoC exploit for SlimFTPd Server version 3.16
 SlimFTPd <= 3.15, Remote Buffer Overflow Exploit v0.1
Discuss:Read or add your comments to this news (0 comments)

Linux kernel privilege escalation
updated since 11.11.2004
Published:18.02.2007
Source:BUGTRAQ
SecurityVulns ID:4173
Type:remote
Level:5/10
Description:Invalid exception conditions handling leads to multiple reace conditions with privileged memory access.
Affected:LINUX : kernel 2.4
 LINUX : kernel 2.6
CVE:CVE-2007-0958 (Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable binaries by using the interpreter (PT_INTERP) functionality and triggering a core dump, a variant of CVE-2004-1073.)
 CVE-2004-1073 (The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality.)
Original documentdocumentKatrina Tsipenyuk, Unchecked returns from kernel_read() in linux-2.6.10-rc2 kernel (18.12.2004)
 documentPaul Starzetz, Linux ELF loader vulnerabilities (11.11.2004)
Files:ChangeLog-2.6.20
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru