Computer Security

Search:Vulnerability:17.05.2004
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Sun Management Console information leak
Published:17.05.2004
Source:SECURITEAM
SecurityVulns ID:3695
Type:remote
Level:4/10
Description:Because of directory traversal bug it's possible to check any system file existance.
Affected:SUN : Solaris 9
Original documentdocumentSECURITEAM, [UNIX] Sun Management Console Directory Traversal Vulnerability (17.05.2004)
Discuss:Read or add your comments to this news (0 comments)

lha multiple bugs
updated since 30.04.2004
Published:17.05.2004
Source:FULL-DISCLOSURE
SecurityVulns ID:3647
Type:local
Level:5/10
Description:Directory traversal, buffer overflows.
Affected:WINZIP : WinZip 9.0
 LHA : lha 1.14
 LHA : lha 1.17
 RARSOFT : WinRar 3.20
 STALKER : CGPMcAfee 3.2
Original documentdocumentlw_(at)_wszia.edu.pl, lha buffer overflow(s) again (17.05.2004)
 documentHärnhammar, Ulf, [Full-Disclosure] LHa repercussions: WinZip, WinRar, CommuniGate Pro McAfee plugin, blog (06.05.2004)
 documentHärnhammar, Ulf, [Full-Disclosure] LHa buffer overflows and directory traversal problems (02.05.2004)
 documentREDHAT, [Full-Disclosure] [RHSA-2004:179-01] An updated LHA package fixes security vulnerabilities (30.04.2004)
Files:LHA directory traversal overflow test 1
 LHA buffer overflow test
 LHA directory traversal overflow test 2
Discuss:Read or add your comments to this news (0 comments)

CGI bugs
updated since 17.05.2004
Published:22.05.2004
Source:
SecurityVulns ID:3694
Type:remote
Level:5/10
Affected:OSCOMMERCE : osCommerce 2.2
 P4DB : P4DB 2.01
 PHPNUKE : Php-Nuke 7.3
 TURBOTRAFFICTRAD : Turbo Traffic Trader C 1.0
 PHPMYFAQ : phpMyFAQ 1.3
 PHPMYFAQ : phpMyFAQ 1.4
 ZENCART : Zen Cart 1.1
 PHORUM : Phorum 4.3
 CPANEL : cPanel 9.3
 E107 : e107 0.615
Original documentdocumentChinchilla, e107 web portal Referers HTTP Injection (22.05.2004)
 documentMichael Curtis, Non-logged Brute Force Attack Vulnerability for Fantastico-Created Databases on cPanel Based Hosts (20.05.2004)
 documentKonstantin Gavrilenko, [Full-Disclosure] Ph0rum phorum_uriauth replay attack (19.05.2004)
 documentOliver Minack, Zen Cart login.php SQL Injection Vulnerability (19.05.2004)
 documentStefan Esser, Advisory 05/2004: phpMyFAQ local file inclusion vulnerability (19.05.2004)
 documentRene, oscommerce 2.2 file_manager.php file browsing (18.05.2004)
 documentKaloyan Georgiev, Multiple TTT-C XSS vulnerabilities (18.05.2004)
 documentJanek Vind, [waraxe-2004-SA#030 - Multiple vulnerabilities in PhpNuke 6.x - 7.3] (18.05.2004)
 documentJanek Vind, [waraxe-2004-SA#029 - Possible remote file inclusion in PhpNuke 6.x - 7.3] (18.05.2004)
 documentSECURITEAM, [UNIX] P4DB Multiple Vulnerabilities (17.05.2004)
Discuss:Read or add your comments to this news (0 comments)

MacOS X browsers files overwriting and scripts execution (multiple bugs)
updated since 17.05.2004
Published:25.05.2004
Source:BUGTRAQ
SecurityVulns ID:3693
Type:client
Level:7/10
Description:By using vulnerability in telnet: protocol handling it's possible to add -f option to telnet command line. help: protocol handler allows scripts execution via help: command.
Affected:APPLE : MacOS X 10.3
Original documentdocumentkang, [Full-Disclosure] SSH URI handler remote arbitrary code execution (25.05.2004)
 documentkang, Safari remote arbitrary code execution (18.05.2004)
 documentTroels Bay, [Full-Disclosure] Vuln. MacOSX/Safari: Remote help-call, execute scripts (17.05.2004)
 documentChristian Horchert, Re: [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability (17.05.2004)
Files:Opera multiple bugs
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru