 |
|
|
|
New Internet Explorer crossite scripting problems
updated since 08.06.2004 | | Published: |  | 14.06.2004 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 3738 | | Type: |  | client | | Level: |  | 7/10 | | Description: |  | Location: URL: HTTP header in conjuection with ms-its: handler allows to save file to known location. Crossite scripting with modal dialogs. |
| Original document |  | CERT, US-CERT Technical Cyber Security Alert TA04-163A -- Cross-Domain Redirect Vulnerability in Internet Explorer (14.06.2004) |
| | | jelmer, An analysis of the 180 Solutions Trojan (08.06.2004) |
Subversion/Chora buffer overflow
updated since 19.05.2004 | | Published: | | 14.06.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3701 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Stack overflow on parsing svn*:// IRIs, heap overflow on stack parsing. |
| Affected: |  | SUBVERSION : Subversion 1.0 | | | | CHORA : Chora 1.1 |
| Original document | | SECURITEAM, [UNIX] Chora CVS/SVN Viewer Remote Vulnerability (14.06.2004) |
| | | GENTOO, [Full-Disclosure] [ GLSA 200406-07 ] Subversion: Remote heap overflow (11.06.2004) |
| | | Stefan Esser, [Full-Disclosure] Advisory 08/2004: Subversion remote vulnerability (19.05.2004) |
CGI bugs
updated since 14.06.2004 | | Published: | | 18.06.2004 | | Source: | | | | SecurityVulns ID: | | 3757 | | Type: | | remote | | Level: | | 5/10 |
| Affected: | | SNITZ : Snitz Forums 2000 | | | | GALLERY : Gallery 1.4 | | | | INVISION : Invision Power Board 1.3 | | | | WEBMIN : Webmin 1.140 | | | | VPASP : VP-ASP 5.0 | | | | PIVOTLOG : Pivot 1.10 | | | | WEBMIN : Usermin 1.070 | | | | WEBWIZGUIDE : Web Wiz Forums 7.8 | | | | PHPMYCHAT : phpMyChat 0.14 | | | | SINGAPORE : singapore 0.9 | | | | MOINMOIN : MoinMoin 1.1 | | | | MOINMOIN : MoinMoin 1.2 |
| Original document | | SECURITEAM, [UNIX] MoinMoin Administrative Group Name Privilege Escalation Vulnerability (18.06.2004) |
| | | SECURITEAM, [UNIX] Pivot Remote Code Execution Vulnerability (18.06.2004) |
| | | SECURITEAM, [UNIX] Singapore MD5 Administrative Password Disclosure (18.06.2004) |
| | | Pete Foster, XSS in Snitz Forum 2000 (18.06.2004) |
| | | HEX, phpMyChat 0.14.5 (17.06.2004) |
| | | JeiAr, Problem With IP Logging In Invision Power Board? (17.06.2004) |
| | | GENTOO, [ GLSA 200406-10 ] Gallery: Privilege escalation vulnerability (16.06.2004) |
| | | Ferruh Mavituna, Web Wiz Forums Registration Rules XSS Vulnerability (16.06.2004) |
| | | SNS, [SNS Advisory No.75] Webmin/Usermin Account Lockout Bypass Vulnerability (16.06.2004) |
| | | Tom, [Full-Disclosure] VP-ASP Shopping Cart Multiple Vulnerabilities (14.06.2004) |
| | | SNS, [SNS Advisory No.74] Webmin Access Control Rule Bypass Vulnerability (14.06.2004) |
|
|
|
|
|
| |
|
| |
