Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:17.02.2006
Source:
SecurityVulns ID:5787
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:PHPKIT : PHPKIT 1.6
 SMEGBHOST : SmE GB Host 1.21
 SOFTCOMPLEX : PHP Event Calendar 1.5
 BIRTHSYS : BirthSys 3.1
Original documentdocumentAliaksandr Hartsuyeu, [eVuln] Scriptme products BBCode 'url' XSS Vulnerability (17.02.2006)
 documentSECUNIA, [SA18893] BirthSys show.php SQL Injection Vulnerability (17.02.2006)
 documentrgod_(at)_autistici.org, PHPKIT >= 1.6.1r2 arbitrary local/remote inclusion (unproperly patched in previous versions) (17.02.2006)
 documentAliaksandr Hartsuyeu, [eVuln] PHP Event Calendar XSS & User's Data Corruption Vulnerabilities (17.02.2006)

BomberClone BomberMan clon game buffer overflow
Published:17.02.2006
Source:
SecurityVulns ID:5788
Type:remote
Threat Level:
5/10
Description:Buffer overflow on oversized error message.
Affected:BOMBERCLONE : bomberclone 0.11
Original documentdocumentGENTOO, [ GLSA 200602-09 ] BomberClone: Remote execution of arbitrary code (17.02.2006)
Files:bomberclone < 0.11.6.2 remote exploit

D-Link DWL-G700AP wireless access point DoS
Published:17.02.2006
Source:
SecurityVulns ID:5789
Type:remote
Threat Level:
5/10
Description:Device crashes on HTTP "GET \n\n" request via web interface.
Affected:DLINK : D-Link DWL-G700AP
Original documentdocumentl0om, D-Link DWL-G700AP httpd DoS (17.02.2006)
Files:Exploits D-Link DWL-G700AP httpd DoS

PunkBuster anti-cheat server format string vulnerability
Published:17.02.2006
Source:
SecurityVulns ID:5790
Type:remote
Threat Level:
5/10
Description:Format string bug with "reason" parameter if used with Soldier of Fortune II game.
Affected:PUNKBUSTER : PunkBuster 1.180
Original documentdocumentLuigi Auriemma, [Full-disclosure] Soldier of Fortune II format string through PunkBuster 1.180 (17.02.2006)

Blue Coat ProxyAV buffer overflow
Published:17.02.2006
Source:
SecurityVulns ID:5792
Type:remote
Threat Level:
5/10
Description:Oversized Host: header buffer overflow.
Affected:BLUECOAT : ProxyAV 2.4
Original documentdocumentSECUNIA, [SA18909] Blue Coat ProxyAV Host Header Buffer Overflow Vulnerability (17.02.2006)

Netcool NeuSecure Security information management platform multiple security vulnerabilities
updated since 17.02.2006
Published:08.03.2006
Source:
SecurityVulns ID:5791
Type:local
Threat Level:
5/10
Description:Weak file permissions, cleartext passwords, passwords logging.
Affected:NETCOOL : NeuSecure 3.0
Original documentdocumentD.Snezhkov, [Full-disclosure] Remote access to NeuSecure/Netcool backend database via web interface credentials leakage (08.03.2006)
 documentD.Snezhkov, [Full-disclosure] Password disclosure and remote access in Netcool/NeuSecure Security information management platform (17.02.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod