Computer Security

Search:Vulnerability:17.02.2005
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



SHA family hash functions cryptographic weakness
Published:17.02.2005
Source:SCHNEIER
SecurityVulns ID:4489
Type:library
Level:8/10
Description:Cryptographic weakness found making real strength against coliisions: collisions in the the full SHA-1 in 2**69 hash operations, much less than the brute-force attack of 2**80 operations based on the hash length. Collisions in SHA-0 in 2**39 operations. Collisions in 58-round SHA-1 in 2**33 operations.
Original documentdocumentSCHNEIER, SHA-1 Broken (16.02.2005)
Discuss:Read or add your comments to this news (0 comments)

KDE fliccd (INDI support) buffer overflows
Published:17.02.2005
Source:BUGTRAQ
SecurityVulns ID:4490
Type:local
Level:5/10
Description:Setuid root application buffer overflows.
Affected:KDE : KDE 3.3
Original documentdocumentKDE, [KDE Security Advisory] Buffer overflow in fliccd of kdeedu/kstars/indi (16.02.2005)
Discuss:Read or add your comments to this news (0 comments)

wpa_supplicant (WPA/WPA2 IEEE 802.11i support) buffer overflow
Published:17.02.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4491
Type:remote
Level:5/10
Description:Buffer overflow on EAPOL-Key frames parsing.
Affected:WPASUPPLICANT : wpa_supplicant 0.2
Original documentdocumentGENTOO, [Full-Disclosure] [gentoo-announce] [ GLSA 200502-22 ] wpa_supplicant: Buffer overflow vulnerability (16.02.2005)
Discuss:Read or add your comments to this news (0 comments)

Multiple Linux kernel security vulnerabilities
Published:17.02.2005
Source:SECUNIA
SecurityVulns ID:4494
Type:local
Level:6/10
Description:Arbitrary process memory control, race conditions, buffer overflow, DoS, IP filtering bypass.
Affected:LINUX : kernel 2.6
Original documentdocumentSECUNIA, [SA14295] Linux Kernel Multiple Vulnerabilities (16.02.2005)
Files:exploit to Linux Vulnerability Allows Non-Privileged Users to Read Kernel Memory
Discuss:Read or add your comments to this news (0 comments)

typespeed keyboard touch-typist trainer format string bug
Published:17.02.2005
Source:BUGTRAQ
SecurityVulns ID:4496
Type:remote
Level:4/10
Description:Format string bug in setgid games application.
Affected:TYPESPEED : typespeed 0.4
Original documentdocumentDEBIAN, [SECURITY] [DSA 684-1] New typespeed packages fix arbitrary group games code execution (17.02.2005)
Discuss:Read or add your comments to this news (0 comments)

MacOS X with HFS+ filesystem multiple web servers information disclosure
Published:17.02.2005
Source:BUGTRAQ
SecurityVulns ID:4497
Type:remote
Level:5/10
Description:By accessing named file streams it's possible to access protected file data.
Affected:APPLE : MaxOS X 10.2
Original documentdocumentTAC, NetSec Security Advisory: Multiple Vulnerabilities Resulting From Use Of Apple OSX HFS+ (17.02.2005)
Discuss:Read or add your comments to this news (0 comments)

Sun Solaris arp flood DoS
Published:17.02.2005
Source:SECUNIA
SecurityVulns ID:4498
Type:remote
Level:5/10
Description:ARP flood causes system to hang.
Affected:ORACLE : Solaris 8
 SUN : Solaris 7
 ORACLE : Solaris 9
Original documentdocumentSECUNIA, [SA14286] Sun Solaris ARP Flooding Denial of Service Vulnerability (17.02.2005)
Discuss:Read or add your comments to this news (0 comments)

Sun Solaris FTP server system wide DoS
Published:17.02.2005
Source:SECUNIA
SecurityVulns ID:4499
Type:remote
Level:5/10
Description:By issuing PASV command it's possible to consume all available TCP ports.
Affected:ORACLE : Solaris 8
 SUN : Solaris 7
 ORACLE : Solaris 9
Original documentdocumentSECUNIA, [SA14285] Sun Solaris FTP Server PASV Commands Denial of Service (17.02.2005)
Discuss:Read or add your comments to this news (0 comments)

Sami HTTP Server multipel vulnerabilities
Published:17.02.2005
Source:SECUNIA
SecurityVulns ID:4500
Type:remote
Level:5/10
Description:Directory traversal, DoS.
Affected:KARJA : Sami HTTP Server 1.0
Original documentdocumentSECUNIA, [SA14283] Sami HTTP Server Denial of Service and Directory Traversal (17.02.2005)
Discuss:Read or add your comments to this news (0 comments)

Multiple HP/Compaq products Web interface buffer overflow
Published:17.02.2005
Source:SEDUNIA
SecurityVulns ID:4495
Type:remote
Level:6/10
Affected:HP : HP HTTP Server 5.96
 HP : Systems Management Homepage 2.0
Original documentdocumentSECUNIA, [SA14311] HP Web-Enabled Management Software HTTP Server Buffer Overflow (17.02.2005)
Discuss:Read or add your comments to this news (0 comments)

lighttpd script source code leak
Published:17.02.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4493
Type:remote
Level:5/10
Description:It's possible to retrieve CGI script source code.
Affected:LIGHTTPD : lighttpd 1.3
Original documentdocumentGENTOO, [Full-Disclosure] [ GLSA 200502-21 ] lighttpd: Script source disclosure (16.02.2005)
Discuss:Read or add your comments to this news (0 comments)

osh restricted shell buffer overflow
updated since 17.02.2005
Published:18.08.2005
Source:SECURITEAM
SecurityVulns ID:4492
Type:remote
Level:5/10
Description:Buffer overflow during command parsing.
Affected:OSH : osh 1.7
Original documentdocumentCharles 'core' Stevenson, [Full-disclosure] Operator Shell (osh) Stack-based Buffer Overflow (18.08.2005)
 documentSECURITEAM, [UNIX] Buffer Overflow in OSH (16.02.2005)
Files:OSH 1.7 Exploit
 OSH 1.7 Exploit #2
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server