Computer Security

Search:Vulnerability:13.10.2005
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Kerio Firewall DoS
Published:13.10.2005
Source:BUGTRAQ
SecurityVulns ID:5339
Type:local
Level:5/10
Description:DoS on executable application's PEB parsing.
Affected:KERIO : Kerio Personal Firewall 4.2
 KERIO : Kerio Server Firewall 1.1
Discuss:Read or add your comments to this news (0 comments)

Multiple BeaWeblogic vulnerabilities
Published:13.10.2005
Source:SECUNIA
SecurityVulns ID:5341
Type:remote
Level:6/10
Description:24 different vulnerabilities.
Affected:BEA : WebLogic 6.1
 BEA : Weblogic 7.0
 BEA : Weblogic 8.1
Original documentdocumentSECUNIA, [SA17138] BEA WebLogic 24 Vulnerabilities and Security Issues (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

W3C libwww library buffer overflow
Published:13.10.2005
Source:SECUNIA
SecurityVulns ID:5345
Type:library
Level:6/10
Description:Buffer overflow on MIME headers parsing.
Affected:W3C : libwww 5.4
Original documentdocumentSECUNIA, [SA17119] W3C Libwww Multipart MIME Data Handling Vulnerability (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

Microsoft Design Tools COM object uninitialized memory reference
updated since 12.10.2005
Published:13.10.2005
Source:BUGTRAQ
SecurityVulns ID:5325
Type:client
Level:7/10
Description:CPolyCtrl class destructor attempts to call a function by the pointer from uninitialized dynamic memory region.
Affected:MICROSOFT : Internet Explorer 5.5
 MICROSOFT : Internet Explorer 6.0
Original documentdocumentMICROSOFT, Microsoft Security Bulletin MS05-052 umulative Security Update for Internet Explorer (896688) (13.10.2005)
 documentEEYE, [EEYEB20050915] - MDT2DD.DLL COM Object Uninitialized Heap Memory Vulnerability (12.10.2005)
Files:Microsoft Security Bulletin MS05-052 umulative Security Update for Internet Explorer (896688)
Discuss:Read or add your comments to this news (0 comments)

AhnLab V3 antivirus buffer overflow
Published:13.10.2005
Source:BUGTRAQ
SecurityVulns ID:5342
Type:remote
Level:5/10
Description:Buffer overflow on different file formats.
Affected:AHNLAB : V3Pro 2004
 AHNLAB : V3Net 6.0
Original documentdocumentSECUNIA, [SA16851] AhnLab V3 Antivirus ALZ/UUE/XXE Archive Handling Buffer Overflow (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

XMail sendmail buffer overflow
Published:13.10.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:5346
Type:local
Level:5/10
Description:Buffer overflow on message headers parsing in sendmail -t.
Affected:XMAIL : XMail 1.21
Original documentdocumentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 10.13.05: Multiple Vendor XMail 'sendmail' Recipient Buffer Overflow Vulnerability (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

Multiple Microsoft Distributed Transaction Controller DoS conditions
updated since 12.10.2005
Published:13.10.2005
Source:BUGTRAQ
SecurityVulns ID:5328
Type:remote
Level:5/10
Description:Problems with TIP protocols handling, bounce attack is possible.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
Original documentdocumentMICROSOFT, Microsoft Security Bulletin MS05-051 Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) (13.10.2005)
 documentIDEFENSE, iDEFENSE Security Advisory 10.11.05: Microsoft Distributed Transaction Controller Packet Relay DoS Vulnerability (12.10.2005)
 documentIDEFENSE, iDEFENSE Security Advisory 10.11.05: Microsoft Distributed Transaction Controller TIP DoS Vulnerability (12.10.2005)
Files:MSDTC remote PoC exploit
 http://www.microsoft.com/technet/security/Bulletin/MS05-051.mspx
Discuss:Read or add your comments to this news (0 comments)

Microsoft Windows Microsoft Collaboration Data Objects buffer overflow
updated since 12.10.2005
Published:13.10.2005
Source:MICROSOFT
SecurityVulns ID:5333
Type:remote
Level:7/10
Description:Buffer overflow on parsing mail messages with Microsoft SMTP service.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Exchange 2000
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
Original documentdocumentGary O'leary-Steele, [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability (13.10.2005)
 documentMICROSOFT, Microsoft Security Bulletin MS05-048 Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) (12.10.2005)
Files:Microsoft CDO Proof of Concept Exploit by Gary O'leary-Steele
 Microsoft Security Bulletin MS05-048 Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245)
Discuss:Read or add your comments to this news (0 comments)

Novell NetMail mail server buffer overflow
Published:13.10.2005
Source:BUGTRAQ
SecurityVulns ID:5335
Type:remote
Level:6/10
Description:Buffer overflow on oversized NMAP (Network Messaging Application Protocol) protocol USER command.
Affected:NOVELL : NetMail 3.52
Original documentdocumentSECUNIA, Secunia Research: Novell NetMail NMAP Agent "USER" Buffer Overflow Vulnerability (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

GFI MailSecurity content filter buffer overflow
Published:13.10.2005
Source:BUGTRAQ
SecurityVulns ID:5336
Type:remote
Level:6/10
Description:Buffer overflow in Web administration interface.
Affected:GFI : MailSecurity 8.1
Original documentdocumentGary O'leary-Steele, [SEC-1 Advisory] GFI MailSecurity 8.1 Web Module Buffer Overflow (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

Linux kernel memory leaks
Published:13.10.2005
Source:SECUNIA
SecurityVulns ID:5337
Type:local
Level:5/10
Description:Memory leaks may potentially lead to DoS conditions.
Affected:LINUX : kernel 2.6
Original documentdocumentSECUNIA, [SA17114] Linux Kernel Two Potential Denial of Service Vulnerabilities (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

Symantec Veritas NetBackup network backup system buffer overflow
Published:13.10.2005
Source:BUGTRAQ
SecurityVulns ID:5338
Type:remote
Level:6/10
Description:Java User Interface bpjava-msvc daemon (TCP/13722) buffer overflow on COMMAND_LOGON_TO_MSERVER request.
Affected:SYMANTEC : VERITAS NetBackup 4.5
 SYMANTEC : Veritas NetBackup 5.0
Original documentdocumentSYMANTEC, VERITAS NetBackup: Java User-Interface, format string vulnerability (13.10.2005)
 document3COM, ZDI-05-001: VERITAS NetBackup Remote Code Execution (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

Microsoft Distributed Transaction Coordinator service memory corruption
updated since 12.10.2005
Published:13.10.2005
Source:BUGTRAQ
SecurityVulns ID:5326
Type:remote
Level:7/10
Description:Memory corruption as a result of integer overflow with anonymous remote access (Windows 2000) and authenticated access under Windows XP/2003.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
Original documentdocumentEEYE, [EEYEB20050708] Microsoft Distributed Transaction Coordinator Memory Modification Vulnerability (12.10.2005)
Files:[EXPL] MSDTC Arbitrary Opposite Memory Write Flaw Exploit
 http://www.microsoft.com/technet/security/Bulletin/MS05-051.mspx
Discuss:Read or add your comments to this news (0 comments)

Symantec Brightmail Antispam SPAM filter DoS
Published:13.10.2005
Source:SECUNIA
SecurityVulns ID:5343
Type:remote
Level:5/10
Description:MIME headers parsing DoS.
Affected:SYMANTEC : Brightmail AntiSpam 6.0
Original documentdocumentSECUNIA, [SA17170] Symantec Brightmail AntiSpam MIME Processing Denial of Service (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

Sun Java System Application Server (Sun ONE) JSP source code disclosure
Published:13.10.2005
Source:SECUNIA
SecurityVulns ID:5344
Type:remote
Level:5/10
Affected:SUN : Sun Java System Application Server 7
Original documentdocumentSECUNIA, [SA17164] Sun Java System Application Server JSP Source Code Disclosure (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)

Ethernet frame padding information leakage
updated since 08.01.2003
Published:13.10.2005
Source:VULNWATCH
SecurityVulns ID:2523
Type:m-i-t-m
Level:5/10
Description:Incorrect memory managment causes ethernet fame padding bytes may contain sensitive information.
Affected:LINUX : kernel 2.4
 LINUX : kernel 2.6
CVE:CVE-2003-0001 (Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.)
Original documentdocumentMeder Kydyraliev, Linux Orinoco drivers information leakage (13.10.2005)
 documentSGI, [Full-Disclosure] IRIX Update Some Network Drivers May Leak Data (03.04.2004)
 documentNGSSoftware Insight Security Research, Etherleak information leak in Windows Server 2003 drivers (09.06.2003)
 documentREDHAT, [RHSA-2003:025-20] Updated 2.4 kernel fixes various vulnerabilities (05.02.2003)
 documentOfir Arkin, More information regarding Etherleak (11.01.2003)
 documentL0PHT, Etherleak: Ethernet frame padding information leakage (A010603-1) (08.01.2003)
Files:etherleak, code that has been 5 years coming.
Discuss:Read or add your comments to this news (0 comments)

Computer Associates iGateway buffer overflow
updated since 13.10.2005
Published:14.10.2005
Source:BUGTRAQ
SecurityVulns ID:5340
Type:remote
Level:5/10
Description:Buffer overflow on HTTP request parsing if debug mode is enabled.
Affected:CA : iGateway 4.0
 CA : iGateway 3.0
Original documentdocumentCA, [Full-disclosure] CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability (14.10.2005)
 documentSECUNIA, [SA17085] CA iGateway Debug Mode HTTP GET Request Buffer Overflow (13.10.2005)
Files:Computer Associates iGateway Debug Mode Buffer Overflow Exploit
Discuss:Read or add your comments to this news (0 comments)

wget / curl buffer overflow
updated since 13.10.2005
Published:26.12.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:5347
Type:library
Level:6/10
Description:Buffer overflow on client NTLM authentication.
Affected:OPENOFFICE : OpenOffice 1.0
 OPENOFFICE : OpenOffice 1.1
 GNU : wget 1.10
 CURL : curl 7.13
 LIBCURL : libcurl 7.13
 ELECTRICSHEEP : Electric Sheep 2.6
 OPENOFFICE : OpenOffice.org 2.0
Original documentdocumentMichaelAiello_(at)_MichaelAiello.com, Multiple Network-related Vulnerabilities in Electric Sheep (26.12.2005)
 documentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 10.13.05: Multiple Vendor wget/curl NTLM Username Buffer Overflow Vulnerability (13.10.2005)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server