Search:Vulnerability:16.09.2003 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

SCO Internet Manager privilege escalation
Published: 16.09.2003
Source: BUGTRAQ
SecurityVulns ID: 3116
Type: local
Level: 6/10
Description: It's possible to spoof authentication data lockally for suid CGI application.

Affected: SCO : OpenServer 5.0

Original document SCO, OpenServer 5.0.7 OpenServer 5.0.6 OpenServer 5.0.5 : SCO Internet Manager - local users can gain root level privileges. (16.09.2003)

Discuss: Read or add your comments to this news (0 comments)

IBM Rational Clearcase buffer overflow
Published: 16.09.2003
Source: SECURITEAM
SecurityVulns ID: 3117
Type: local
Level: 6/10
Description: Buffer overflows in few executables.

Affected: IBM : Rational Clearcase

Original document SECURITEAM, [EXPL] Rational Clearcase Exploit Code Released (16.09.2003)

Files: ClearCase Smack_Crack_And_Hack_Attack Version 1.0.1
Discuss: Read or add your comments to this news (0 comments)

WideChapter buffer overflow
Published: 16.09.2003
Source: BUGTRAQ
SecurityVulns ID: 3118
Type: client
Level: 5/10
Description: Buffer overflow on oversized URL.

Affected: WIDECHAPTER : WideChapter Browser 3.0

Original document Bahaa Naamneh, Buffer Overflow in WideChapter Browser (16.09.2003)

Discuss: Read or add your comments to this news (0 comments)

ChatZilla DoS
Published: 16.09.2003
Source: BUGTRAQ
SecurityVulns ID: 3119
Type: client
Level: 5/10
Description: Large CPU consumption on oversized server requests.

Affected: CHATZILLA : ChatZilla 0.8

Original document D4rkGr3y, ChatZilla <=v0.8.23 remote DoS vulnerability (16.09.2003)

Files: ChatZilla <=v0.8.23 remote DoS exploit
Discuss: Read or add your comments to this news (0 comments)

Multiple Nokia Electronic Documentation bugs
Published: 16.09.2003
Source: BUGTRAQ
SecurityVulns ID: 3120
Type: remote
Level: 5/10
Description: Crossite scripting, path disclosure, open proxy.

Affected: NOKIA : Nokia Electronic Documentation 5.0

Original document L0PHT, Nokia Electronic Documentation - Multiple Vulnerabilities (16.09.2003)

Discuss: Read or add your comments to this news (0 comments)

asterisk multiple bugs
updated since 08.09.2003
Published: 16.09.2003
Source: SECURITEAM
SecurityVulns ID: 3096
Type: remote
Level: 6/10
Description: Buffer overflow during SIP negotiation, SQL injection.

Affected: ASTERISK : asterisk 0.4

Original document SECURITEAM, [UNIX] Asterisk CallerID CDR SQL Injection (16.09.2003)

SECURITEAM, [NEWS] Asterisk SIP Implementation Issue (08.09.2003)

Discuss: Read or add your comments to this news (0 comments)

Unauthorized Solaris sadmind access
updated since 16.09.2003
Published: 19.09.2003
Source: SECURITEAM
SecurityVulns ID: 3122
Type: remote
Level: 8/10
Description: It's possible to bypass authentication process by sequence of specially crafted RPC calls.

Original document H D Moore, Solaris SADMIND Exploitation (19.09.2003)

SECURITEAM, [UNIX] Remote Root Exploitation of Default Solaris sadmind Setting (16.09.2003)

Files: Remote command executiong via sadmind
Discuss: Read or add your comments to this news (0 comments)