 |
|
|
|
| Linux Madwifi wireless drivers DoS | | Published: |  | 15.10.2007 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 8252 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | Assert on oversized "extended supported rates" beacon frame. |
| Affected: |  | MADWIFI : Madwifi 0.9 |
| Original document |  | Daniel Fabian, SEC Consult SA-20071012-0 :: Madwifi xrates element remote DOS (15.10.2007) |
| VImpX ActiveX buffer overflow | | Published: | | 15.10.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8254 | | Type: | | client | | Level: | | 5/10 | | Description: | | Buffer overflow with oversized RejectRecordFile paramater. |
| Original document | | saw_xyz_(at)_yahoo.com, VImpX ActiveX (VImpX.ocx v. 4.7.3.0) Remote (15.10.2007) |
| Microsoft Internet Explorer executable files download filter protection bypass | | Published: | | 15.10.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8255 | | Type: | | client | | Level: | | 4/10 | | Description: | | It's possible to upload file to temporary internet files folder by adding GET parameters to filename, e.g. http://example.com/program.exe?1.cda/ |
| Affected: | | MICROSOFT : Windows 2000 Server | | | | MICROSOFT : Windows 2000 Professional | | | | MICROSOFT : Windows XP | | | | MICROSOFT : Windows 2003 Server |
| Original document | | laurent.gaffie_(at)_gmail.com, playing for fun with <=IE7 (15.10.2007) |
| Opal library / Ekiga memory corruption | | Published: | | 15.10.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8259 | | Type: | | library | | Level: | | 6/10 | | Description: | | Insufficient SIP Content-Length validation allows to overwrite single byte of memory. |
| Affected: | | EKIGA : Ekiga 2.0 | | | | OPAL : OPAL 2.2 |
| Original document | | labs_(at)_s21sec.com, S21SEC-037-en: OPAL SIP Protocol Remote Denial of Service (15.10.2007) |
| Apache Tomcat WebDav directory traversal | | Published: | | 15.10.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8260 | | Type: | | remote | | Level: | | 6/10 | | Description: | | It's possible to retrieve file by aboslute path with LOCK DAV request. |
| Original document | | SECURITEAM, [EXPL] Apache Tomcat File Disclosure (Exploit) (15.10.2007) |
| Netgear SSL312 crossite scripting | | Published: | | 15.10.2007 | | Source: | | FULL-DISCLOSURE | | SecurityVulns ID: | | 8261 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Crossite scripting with Web interface. |
| Affected: | | NETGEAR : Netgear SSL312 |
| Original document | | SkyOut, [Full-disclosure] Netgear SSL312 XSS vulnerability (15.10.2007) |
| Cisco CallManager / OpenSer authentication relaying attacks | | Published: | | 15.10.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8262 | | Type: | | m-i-t-m | | Level: | | 5/10 | | Description: | | Insufficient Digest authentication validation allows active man-in-the-middle to access resources unrequested by client. |
| Affected: | | CISCO : CallManager 5.1 |
| Original document | | Radu State, [Full-disclosure] CallManager and OpeSer toll fraud and authentication forward attack (15.10.2007) |
| TK graphics library buffer overflow | | Published: | | 15.10.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8258 | | Type: | | library | | Level: | | 6/10 | | Description: | | Buffer overflow on GIF images parsing |
| CVE: |  | CVE-2007-5137 (Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl (Tcl/Tk) before 8.4.16 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first.) |
| Original document | | UBUNTU, [USN-529-1] Tk vulnerability (15.10.2007) |
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: | | 15.10.2007 | | Source: | | | | SecurityVulns ID: | | 8253 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
| |
|
| |
