Search:Vulnerability:14.09.2005
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Mozilla Firefox cleartext password leak
updated since 20.07.2005
Published:
14.09.2005
Source:
3APA3A
SecurityVulns ID:
5019
Type:
m-i-t-m
Level:
5
/10
Description:
Weak authentication algorithm may be choosen by browser even if stronger one is supported by server.
Affected:
MOZILLA
:
Firefox 1.0
Original document
3APA3A
,
Mozilla / Mozilla Firefox authentication weakness
(
14.09.2005
)
3APA3A
,
Mozilla cleartext credentials leak bug report to excuse myself (Re[2]: NTLM HTTP Authentication is insecure by design - a new writeup by Amit Klein)
(
20.07.2005
)
Files:
Mozilla authentication weakness demonstration
Bugzilla Bug 281851 Wrong scheme used when server offers both Basic and Digest auth [rfc2617 obsoletes rfc2068]
Discuss:
Read or add your comments to this news (0 comments)
common-lisp-controller privilege escalation
Published:
14.09.2005
Source:
FULL-DISCLOSURE
SecurityVulns ID:
5207
Type:
local
Level:
5
/10
Description:
It's possible to inject code into the cache to be executed by another user on the first run of application.
Affected:
CLC
:
common-lisp-controller 4.15
Original document
DEBIAN
,
[Full-disclosure] [SECURITY] [DSA 811-1] New common-lisp-controller packages fix arbitrary code injection
(
14.09.2005
)
Discuss:
Read or add your comments to this news (0 comments)
Avira antivirus buffer overflow
Published:
14.09.2005
Source:
BUGTRAQ
SecurityVulns ID:
5208
Type:
client
Level:
6
/10
Description:
Buffer overflow on parsing ACE archives.
Affected:
AVIRA
:
AVIRA Desktop for Windows 1.0
Original document
SECUNIA
,
Secunia Research: AVIRA Antivirus ACE Archive Handling Buffer Overflow
(
14.09.2005
)
Discuss:
Read or add your comments to this news (0 comments)
Multiple Linksys WRT54G router vulnerabilities
Published:
14.09.2005
Source:
BUGTRAQ
SecurityVulns ID:
5206
Type:
remote
Level:
5
/10
Description:
Buffer overflow and possibility for unauthorized configuration / firmware modification, static HTTPs key, DoS.
Affected:
LINKSYS
:
WRT54G
Original document
IDEFENSE
,
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Router Remote Administration apply.cgi Buffer Overflow Vulnerability
(
14.09.2005
)
IDEFENSE
,
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G 'upgrade.cgi' Firmware Upload Design Error Vulnerability
(
14.09.2005
)
IDEFENSE
,
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Management Interface DoS Vulnerability
(
14.09.2005
)
IDEFENSE
,
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G 'restore.cgi' Configuration Modification Design Error Vulnerability
(
14.09.2005
)
IDEFENSE
,
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G Router Remote Administration Fixed Encryption Key Vulnerability
(
14.09.2005
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
