Computer Security
[EN] securityvulns.ru no-pyccku


Clipcomm CPW-100E wireless VoIP phone backdoor
Published:17.01.2006
Source:
SecurityVulns ID:5649
Type:remote
Threat Level:
5/10
Description:Undocumented TCP/60023 shell access allows remote unauthorized phone control, including calls.
Affected:CLIPCOMM : Clipcomm CPW-100E
Original documentdocumentShawn Merdinger, [Full-disclosure] Clipcomm CP-100E VoIP wireless desktop phone open debug service TCP/60023 (17.01.2006)
 documentShawn Merdinger, [Full-disclosure] Clipcomm CPW-100E VoIP wireless handset phone open debug service TCP/60023 (17.01.2006)

ZyXel P2000W wireless VoIP phone information leak
Published:17.01.2006
Source:
SecurityVulns ID:5651
Type:remote
Threat Level:
5/10
Description:Undocumented TCP/9090 leaks information on phone configuration.
Affected:ZYXEL : ZyXel P2000W
Original documentdocumentShawn Merdinger, [Full-disclosure] ZyXel P2000W (Version 2) VoIP wireless phone undocumented port UDP/9090 (17.01.2006)

AntiWord symbolic links problem
Published:17.01.2006
Source:
SecurityVulns ID:5654
Type:remote
Threat Level:
5/10
Description:Word to Postscript document convertation insecure temporary file creation.
Affected:ANTIWORD : antiword 0.32
Original documentdocumentDEBIAN, [Full-disclosure] [SECURITY] [DSA 945-1] New antiword packages fix insecure temporary file creation (17.01.2006)

CMU SNMP snmptrapd format string vulnerability
Published:17.01.2006
Source:
SecurityVulns ID:5646
Type:remote
Threat Level:
7/10
Description:Format string vulnerability in snmp_input() function.
Affected:CMUSNMP : cmu-snmp 3.6
 CMUSNMP : cmu-snmp 3.7
Original documentdocumentinfo_(at)_digitalarmaments.com, Digital Armaments Security Advisory 01.16.2006: CMU SNMP utilities snmptrad Format String Vulnerability (17.01.2006)

Senao SI-7800H wireless VoIP phone multiple vulnerabilities
Published:17.01.2006
Source:
SecurityVulns ID:5648
Type:remote
Threat Level:
5/10
Description:VxWorks debugger (TCP/17185) access.
Affected:SENAO : Senao SI-7800H
Original documentdocumentShawn Merdinger, [Full-disclosure] Senao SI-7800H VoIP wireless phone wdbrpc debug service UDP/17185 (17.01.2006)

MPM HP-180W wireless VoIP phone information leak
Published:17.01.2006
Source:
SecurityVulns ID:5650
Type:remote
Threat Level:
5/10
Description:Undocumented TCP/9090 leaks information on phone configuration.
Affected:MPM : MPM HP-180W
Original documentdocumentShawn Merdinger, [Full-disclosure] MPM HP-180W VoIP wireless desktop phone undocumented port UDP/9090 (17.01.2006)

CounterPath eyeBeam software SIP IP Phone DoS
Published:17.01.2006
Source:
SecurityVulns ID:5645
Type:remote
Threat Level:
5/10
Description:Buffer overflow on oversized SIP packet header name.
Affected:COUNTERPATH : eyeBeam
Original documentdocumentzwell_(at)_sohu.com, CounterPath eyeBeam Handing SIP header Vulnerabilities (17.01.2006)
Files:eyeBeam handling SIP header DOS POC

ACT P202S wireless VoIP phone multiple vulnerabilities
Published:17.01.2006
Source:
SecurityVulns ID:5647
Type:remote
Threat Level:
5/10
Description:VxWorks debugger (TCP/17185) access, rlogin access.
Affected:ACT : ACT P202S
Original documentdocumentShawn Merdinger, [Full-disclosure] ACT P202S VoIP wireless phone multiple undocumented ports/services (17.01.2006)

Mozilla Thunderbird attachment spoofing
Published:17.01.2006
Source:
SecurityVulns ID:5652
Type:client
Threat Level:
4/10
Description:Filename can be spoofed by using large number of spaces, display icon - with Content-Type header.
Affected:MOZILLA : Firebird 1.0
Original documentdocumentSECUNIA, [SA15907] Mozilla Thunderbird Attachment Spoofing Vulnerability (17.01.2006)

AOL buffer overflow
Published:17.01.2006
Source:
SecurityVulns ID:5653
Type:client
Threat Level:
5/10
Description:Buffer overflow in You've Got Pictures ActiveX Control.
Affected:AOL : AOL 8.0
 AOL : AOL 9.0
Original documentdocumentSECUNIA, [SA18521] AOL You've Got Pictures ActiveX Control Buffer Overflow (17.01.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod