Computer Security

Search:Vulnerability:12.06.2005
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Pico Server web server multiple vulnerabilities
updated since 16.05.2005
Published:12.06.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4797
Type:remote
Level:5/10
Description:Information leak, directory traversal.
Affected:PSERVER : Pico Server 3.2
 PSERVER : Pico Server 3.3
Original documentdocumentRaphaël Rigo, Multiple vulnerabilities in Pico Server (pServ) v3.3 (12.06.2005)
 documentClaus R. F. Overbeck, [Full-disclosure] Pico Server (pServ) Local Information Disclosure (16.05.2005)
 documentClaus R. F. Overbeck, [Full-disclosure] Pico Server (pServ) Information Disclosure Of CGI Sources (16.05.2005)
 documentClaus R. F. Overbeck, [Full-disclosure] Pico Server (pServ) Remote Command Injection (16.05.2005)
Discuss:Read or add your comments to this news (0 comments)

shtool shell tools set synbolic links problem
updated since 26.05.2005
Published:12.06.2005
Source:BUGTRAQ
SecurityVulns ID:4828
Type:local
Level:5/10
Description:gen_tmpfile symbolic links problem.
Affected:GNU : shtool 2.0
 OCAML : ocaml-mysql 1.0
Original documentdocumentGENTOO, [ GLSA 200506-08 ] GNU shtool, ocaml-mysql: Insecure temporary file creation (12.06.2005)
 documentZATAZ.net, shtool insecure temporary file creation (26.05.2005)
Discuss:Read or add your comments to this news (0 comments)

PHP, ASP, CGI web applications security vulnerabilities
updated since 07.06.2005
Published:12.06.2005
Source:
SecurityVulns ID:4861
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, etc.
Affected:OSCOMMERCE : osCommerce 2.2
 INVISION : Invision Power Board 2.0
 INVISION : Invision Power Board 1.3
 MOZILLA : Camino 0.8
 FLATNUKE : Flatnuke 2.5
 PORTAILPHP : PortailPHP 1.3
 PORTAILPHP : Portail PHP 1.2
 YAPIG : YaPiG 0.94
 LPANEL : Lpanel 1.59
 WWWEB : WWWeb Concepts Events System 1.
 MEDIAWIKI : MediaWiki 1.4
 SAWMILL : Sawmill 7.1
 loki : Loki download manager 2.0
 INVISION : Invision Blog 1.1
 INVISION : Invision Gallery 1.3
 CERBERUS : Cerberus Helpdesk 2.6
 SITEFRAME : Siteframe 3.0
 OVIDENTIA : Ovidentia FX
 AWSD : WebHints 1.03
 KMELEON : K-Meleon 0.8
 SUN : K-Meleon 0.9
 EPING : ePing 1.02
Original documentdocumentSECURITEAM, [EXPL] Invision Power Board SQL Injection (Cookie, Exploit 2) (12.06.2005)
 documentblahplok_(at)_yahoo.com, Webhints v1.03 Remote Command Execution (12.06.2005)
 documentJeiAr, osCommere HTTP Response Splitting (12.06.2005)
 documentSECUNIA, [SA15658] Ovidentia FX "babInstallPath" File Inclusion Vulnerability (10.06.2005)
 documentSECUNIA, [SA15657] Siteframe "LOCAL_PATH" File Inclusion Vulnerability (10.06.2005)
 documentSECUNIA, [SA15641] Cerberus Helpdesk "errorcode" Cross-Site Scripting (10.06.2005)
 documentJeiAr, Invision Gallery Vulnerabilities (10.06.2005)
 documentJeiAr, Invision Community Blog Vulnerabilities (10.06.2005)
 documenty0int_(at)_yahoo.it, Arbitrary code execution in eping plugin (10.06.2005)
 documenthack_912_(at)_hotmail.com, 2 SQL injection in Loki download manager v2.0 (09.06.2005)
 documentSECUNIA, [SA15499] Sawmill Security Bypass and Cross-Site Scripting Vulnerabilities (07.06.2005)
 documentSECUNIA, [SA15590] MediaWiki HTML Attributes Cross-Site Scripting Vulnerability (07.06.2005)
 documentSECUNIA, [SA15595] WWWeb Concepts Events System "password" SQL Injection (07.06.2005)
 documentSECUNIA, [SA15602] Camino Frame Injection Vulnerability (07.06.2005)
 documentSECUNIA, [SA15603] FlatNuke Multiple Vulnerabilities (07.06.2005)
 documentSECUNIA, [SA15589] Lpanel Multiple Vulnerabilities (07.06.2005)
 documentSECUNIA, [SA15600] YaPiG Multiple Vulnerabilities (07.06.2005)
 documentAlberto Trivero, SQL Injection Exploit for Portail PHP < 1.3 (07.06.2005)
Discuss:Read or add your comments to this news (0 comments)

Symantec PcAnywhere privilege escalation
Published:12.06.2005
Source:SECUNIA
SecurityVulns ID:4882
Type:local
Level:5/10
Description:By using "Caller Properties" it's possible to execute application with Local System privileges.
Affected:SYMANTEC : pcAnywhere 11.4
Original documentdocumentSECUNIA, [SA15673] Symantec pcAnywhere Privilege Escalation Vulnerability (12.06.2005)
Discuss:Read or add your comments to this news (0 comments)

Cisco switches protected Voice VLANs protection bypass
Published:12.06.2005
Source:BUGTRAQ
SecurityVulns ID:4880
Type:remote
Level:5/10
Description:Malformed CDP (Cisco discovery protocol) message opens access to voice VLAN from data VLAN.
Original documentdocumentFishNet Security CSIRT, Voice VLAN Access/Abuse Possible on Cisco voice-enabled, 802.1x-secured Interfaces (12.06.2005)
Discuss:Read or add your comments to this news (0 comments)

Adobe License Manager privilege escalation
Published:12.06.2005
Source:SECUNIA
SecurityVulns ID:4881
Type:local
Level:5/10
Description:It's possible to obtain Local System privileges.
Affected:ADOBE : Adobe Photoshop CS
 ADOBE : Adobe Creative Suite 1.0
 ADOBE : Adobe Premiere Pro 1.5
Original documentdocumentSECUNIA, [SA15659] Adobe License Management Service Vulnerability (12.06.2005)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru