CGI bugs updated since 12.01.2004
Published:		17.01.2004
Source:
SecurityVulns ID:		3364
Type:		remote
Level:		5/10

Affected:		PHPSHOP : phpShop 0.6
		EZ : ezContents 3.5
		AMNUTS : PHP Manpage Lookup
		PHPDIG : PhpDig 1.6
		FISHCART : FishCart 3.0
		DESTINYD : Destinyd-Book 1.4
		METADOT : MetaDot Portal 5.6
		PENSACOLA : Photo Gallery 2.0

Original document		posidron_(at)_tripbit.org, Xtreme ASP Photo Gallery (17.01.2004)
		JeiAr, Multiple MetaDot Vulnerabilities [ All Versions ] (17.01.2004)
		JeiAr, phpShop Vulnerabilities (17.01.2004)
		Frontal Attack, XSS end execution commands in Destinyd 1.4 (16.01.2004)
		Michael Brennen, FishCart Integer Overflow / Rounding Error (16.01.2004)
		FraMe, PhpDig 1.6.x: remote command execution (16.01.2004)
		acz [iSecureLabs], PHP Manpage lookup directory transversal / file disclosing (12.01.2004)
		Zero-X ScriptKiddy, Remote Code Execution in ezContents (12.01.2004)

Discuss:

Read or add your comments to this news (0 comments)

OpenCA certificate spoofing
Published:		17.01.2004
Source:		BUGTRAQ
SecurityVulns ID:		3374
Type:		remote
Level:		5/10
Description:		A flaw could cause OpenCA to accept a signature from a certificate if the certificate's chain is trusted by the chain directory of OpenCA. This means that a certificate from another PKI can authorize operations on the used PKI if the chain of the used signature certifcate can establish a trust relationship to the actually used PKI.

Original document

OPENCA, [OpenCA Advisory] Vulnerability in signature verification (17.01.2004)

Discuss:

Read or add your comments to this news (0 comments)

Midnight Commander buffer overflow
Published:		17.01.2004
Source:		BUGTRAQ
SecurityVulns ID:		3375
Type:		client
Level:		5/10
Description:		Buffer overflow on archives processing.

Affected:

MC : Midnight Commander 4.5

Original document

DEBIAN, [SECURITY] [DSA 424-1] New mc packages fix buffer overflow (17.01.2004)

Discuss:

Read or add your comments to this news (0 comments)