Zaep AntiSpam Cross Site Scripting Published: 14.04.2004 Source: SECURITEAM SecurityVulns ID: 3606 Type: remote Level: 5/10 Description: Crossite scripting in /?key= parameter. Affected: ZAEP : Zaep AntiSpam 2.0 Original document SECURITEAM , [NT] Zaep AntiSpam Cross Site Scripting (14.04.2004 )
Outlook/Outlook Express NULL character DoS Published: 14.04.2004 Source: NTBUGTRAQ SecurityVulns ID: 3607 Type: client Level: 5/10 Description: Client hangs on POP3 receiving if message contains NULL character. Affected: MICROSOFT : Outlook 2002 MICROSOFT : Internet Explorer 6.0 MICROSOFT : Outlook 2003 Original document Ben Rampling , NUL Character in message body locks up Outlook/Outlook Express (14.04.2004 )
Eudora nested MIME DoS Published: 14.04.2004 Source: NTBUGTRAQ SecurityVulns ID: 3608 Type: client Level: 5/10 Description: Crash on deeply nested MIME attachment. Affected: QUALCOMM : Eudora 6.0 QUALCOMM : Eudora 6.1 Original document Paul Szabo , Eudora 6.0.3 nested MIME DoS (14.04.2004 )
MS Internet Explorer CHM files and ms-its handler code execution Published: 14.04.2004 Source: CERT SecurityVulns ID: 3590 Type: client Level: 8/10 Description: HTTP redirection to ms-its (and few others) protocol exploiting directory traversal bug cause CHM file to be saved to known location. With another directory traversal bug HTML from CHM file can be executed in local zone. Affected: MICROSOFT : Internet Explorer 6.0 Original document MICROSOFT , Microsoft Security Bulletin MS04-013 (14.04.2004 ) CERT , US-CERT Technical Cyber Security Alert TA04-099A -- Vulnerability in Internet Explorer ITS Protocol Handler (09.04.2004 )
Microsoft Jet Database Engine buffer overflow Published: 14.04.2004 Source: MICROSOFT SecurityVulns ID: 3603 Type: library Level: 6/10 Description: Request to database can cause buffer overflow. Affected: MICROSOFT : Windows NT 4.0 Workstation MICROSOFT : Windows NT 4.0 Server MICROSOFT : Windows 2000 Server MICROSOFT : Windows 2000 Professional MICROSOFT : Windows XP MICROSOFT : Windows 2003 Server Original document MICROSOFT , Microsoft Security Bulletin MS04-014 (14.04.2004 )
ServerAlive weak encryption Published: 14.04.2004 Source: ROBILLARD SecurityVulns ID: 3604 Type: local Level: 5/10 Description: Passwords are stored in text file in base64 format. Affected: WOODSTONE : Server Alive 4.1 Original document Robillard, Nicolas , Server Alive week password encryption (14.04.2004 )
Windows NT/2000/XP/2003 RPC buffer overflow Published: 14.04.2004 Source: MICROSOFT SecurityVulns ID: 2988 Type: remote Level: 10/10 Description: Multiple buffer overflows during RPC request parsing via TCP/135 and another RPC ports. Affected: MICROSOFT : Windows NT 4.0 Workstation MICROSOFT : Windows NT 4.0 Server MICROSOFT : Windows 2000 Server MICROSOFT : Windows 2000 Professional MICROSOFT : Windows XP MICROSOFT : Windows 2003 Server Original document EEYE , [Full-Disclosure] EEYE: Microsoft DCOM RPC Memory Leak (14.04.2004 ) EEYE , [Full-Disclosure] EEYE: Microsoft DCOM RPC Race Condition (14.04.2004 ) MICROSOFT , Microsoft Security Bulletin MS04-012 (14.04.2004 ) CORE SECURITY TECHNOLOGIES ADVISORIES , [CORE-2003-12-05] DCE RPC Vulnerabilities New Attack Vectors Analysis (11.12.2003 ) 3APA3A , Bad news on RPC DCOM vulnerability (11.10.2003 ) flashsky fangxing , The Analysis of RPC Long Filename Heap Overflow AND a Way to Write Universal Heap Overflow of Windows (22.09.2003 ) EEYE , EEYE: Microsoft RPC Heap Corruption Vulnerability - Part II (11.09.2003 ) Elv1S , [Full-Disclosure] MS03-039 - Exploit ... (11.09.2003 ) NSFOCUS , NSFOCUS SA2003-06 : Microsoft Windows RPC DCOM Interface Heap Overflow Vulnerability (11.09.2003 ) X-FORCE , ISS Security Brief: Multiple Vulnerabilities in Microsoft RPC Service (11.09.2003 ) MICROSOFT , Microsoft Security Bulletin MS03-039: Buffer Overrun In RPCSS Service Could Allow Code Execution(824146) (11.09.2003 ) CERT , CERT Advisory CA-2003-23 RPCSS Vulnerabilities in Microsoft Windows (11.09.2003 ) LSD , [LSD] Critical security vulnerability in Microsoft Operating Systems (17.07.2003 ) MICROSOFT , Microsoft Security Bulletin MS03-026: Buffer Overrun In RPC Interface Could Allow Code Execution(Q823980) (17.07.2003 )
Multiple linux kernel bugs Published: 14.04.2004 Source: BUGTRAQ SecurityVulns ID: 3002 Type: remote Level: 7/10 Description: /proc/tty/driver/serial kestroke counting information leak, multiple execve() problems, multiple STP problems, UDP port spoofing, forwarding table records spoofing. ISO9660 file system buffer overflow. Affected: LINUX : kernel 2.4 Original document MANDRAKE , MDKSA-2004:050 - Updated kernel packages fix multiple vulnerabilities (24.05.2004 ) IDEFENSE , [Full-Disclosure] iDEFENSE Security Advisory 04.14.04: Buffer Overflow in ISO9660 File System Component of Linux Kernel (15.04.2004 ) DEBIAN , [Full-Disclosure] [SECURITY] [DSA 479-1] New Linux 2.4.18 packages fix local root exploit (source+alpha+i386+powerpc) (14.04.2004 ) REDHAT , [RHSA-2003:238-01] Updated 2.4 kernel fixes vulnerabilities (22.07.2003 )
neon format string bugs and heap overflow Published: 19.05.2004 Source: BUGTRAQ SecurityVulns ID: 3605 Type: library Level: 5/10 Description: Format string bugs in few functions. Affected: neon : neon 0.24 CADAVER : cadaver 0.22 SUBVERSION : subversion 0.27 SITECOPY : sitecopy 0.13 TLA : tla 1.2 OPENOFFICE : OpenOffice 1.0 OPENOFFICE : OpenOffice 1.1 Original document Stefan Esser , Advisory 06/2004: libneon date parsing vulnerability (19.05.2004 ) GENTOO , [ GLSA 200405-04 ] OpenOffice.org vulnerability when using DAV servers (12.05.2004 ) Thomas Wana , void.at - neon format string bugs (17.04.2004 ) OPENPKG , [Full-Disclosure] [OpenPKG-SA-2004.016] OpenPKG Security Advisory (neon) (17.04.2004 ) REDHAT , [Full-Disclosure] [RHSA-2004:159-01] Updated Subversion packages fix security vulnerability in neon (15.04.2004 ) REDHAT , [Full-Disclosure] [RHSA-2004:158-01] Updated cadaver package fixes security vulnerability in neon (14.04.2004 )
Windows multiple bugs Published: 01.04.2005 Source: MICROSOFT SecurityVulns ID: 3602 Type: remote Level: 10/10 Description: LSASSS buffer overflow, LDAP DoS, PCT buffer overflow, WinLogon buffer overflow, WMF/EMF parsing buffer overflow, HCP:// code execution, Utility Manager privilege escalation, WMI privilege escalation, LDT privilege escalation, H.323 buffer overflow, NTVDM privilege escalation, ASM.1 double free memory coruuption. Affected: MICROSOFT : Windows NT 4.0 Workstation MICROSOFT : Windows NT 4.0 Server MICROSOFT : Windows 2000 Server MICROSOFT : Windows 2000 Professional MICROSOFT : NetMeeting 3.01 MICROSOFT : Windows XP MICROSOFT : Windows 2003 Server Original document liquid_(at)_cyberspace.org , WindowsXP malformed .wmf files DoS (01.04.2005 ) MICROSOFT , Microsoft Security Bulletin MS04-019 Vulnerability in Utility Manager Could Allow Code Execution (842526) (14.07.2004 ) Vivek Rathod (Application Security, Inc.) , Microsoft Window Utility Manager Local Elevation of Privileges (14.07.2004 ) Vivek Rathod (Application Security, Inc.) , [VulnWatch] [SHATTER Team Security Alert] Microsoft Windows Utility Manager Vulnerability (15.04.2004 ) Brett Moore , [Full-Disclosure] Utility Manager - Failure to drop system privileges (15.04.2004 ) X-FORCE , ISS Security Brief: Microsoft SSL Library Remote Compromise Vulnerability (14.04.2004 ) EEYE , [Full-Disclosure] EEYE: Windows VDM TIB Local Privilege Escalation (14.04.2004 ) EEYE , [Full-Disclosure] EEYE: Windows Local Security Authority Service Remote Buffer Overflow (14.04.2004 ) EEYE , [Full-Disclosure] EEYE: Windows Expand-Down Data Segment Local Privilege Escalation (14.04.2004 ) Jouko Pynnonen , [Full-Disclosure] Microsoft Help and Support Center argument injection vulnerability (14.04.2004 ) CERT , US-CERT Technical Cyber Security Alert TA04-104A -- Multiple Vulnerabilities in Microsoft Products (14.04.2004 ) Nsfocus Security Team , [Full-Disclosure] NSFOCUS SA2004-01 : DoS Vulnerability in Microsoft Windows SPNEGO Protocol Decoding (14.04.2004 ) MICROSOFT , Microsoft Security Bulletin MS04-011 (14.04.2004 )
