Computer Security

Search:Vulnerability:17.05.2005
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



FreeRADIUS RADIUS server multiple vulnerabilities
Published:17.05.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4799
Type:remote
Level:6/10
Description:Buffer overflow, SQL injection if SQL is used for authentication or accounting.
Affected:FREERADIUS : FreeRADIUS 1.0
Original documentdocumentGENTOO, [Full-disclosure] [ GLSA 200505-13 ] FreeRADIUS: Buffer overflow and SQL injection vulnerability (17.05.2005)
Discuss:Read or add your comments to this news (0 comments)

Linux kernel pktcdvd privilege escalation
Published:17.05.2005
Source:SECURITEAM
SecurityVulns ID:4800
Type:local
Level:6/10
Description:Rawdevice ioctl handler parameters are not checked.
Affected:LINUX : kernel 2.6
Original documentdocumentSECURITEAM, [UNIX] Linux Kernel pktcdvd and rawdevice ioctl Race Condition (17.05.2005)
Files:pktcdvd and rawdevice Race Condition proof-of-concept
Discuss:Read or add your comments to this news (0 comments)

War Times game DoS
Published:17.05.2005
Source:BUGTRAQ
SecurityVulns ID:4801
Type:remote
Level:5/10
Affected:WARTIMES : War Times 1.03
Original documentdocumentSECUNIA, [SA15363] War Times Nickname Handling Denial of Service Vulnerability (17.05.2005)
Discuss:Read or add your comments to this news (0 comments)

Fastream NETFile Web / FTP server ftp bounce attack
Published:17.05.2005
Source:BUGTRAQ
SecurityVulns ID:4802
Type:remote
Level:5/10
Description:It's possible to use FTP to bounce data to third party.
Affected:FASTREAM : NETFile 7.4
Original documentdocumentSECUNIA, [SA15394] Fastream NETFile FTP/Web Server FTP Bounce Vulnerability (17.05.2005)
Discuss:Read or add your comments to this news (0 comments)

Multiple Apple MacOS X vulnerabilities
updated since 04.05.2005
Published:17.05.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4763
Type:local
Level:8/10
Description:NeST buffer overflow. Выполнение javascript in local context with Help Viewer, insufficient input balidation in URL Protocol Messaging, insufficient input validation in x-man-path:, insufficient input validation in terminal emulators. Multiple bluetooth vulnerabilities. vpnd buffer overflow.
Affected:APPLE : MacOS X 10.2
 APPLE : MacOS X 10.3
Original documentdocumentCERT, US-CERT Technical Cyber Security Alert TA05-136A -- Apple Mac OS X is affected by multiple vulnerabilities (17.05.2005)
 documentMarkus Wörle, Mac OS 10.4: new-account-wizzard in Mail 2.0 sends clear-text passwords (06.05.2005)
 documentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 05.04.05: Apple Mac OS X vpnd Server_id Buffer Overflow Vulnerability (05.05.2005)
 documentPieter de Boer, [Full-disclosure] Local root vuln in VPN daemon on MacOS X (04.05.2005)
 documentKevin Finisterre, [Full-disclosure] DMA[2005-0502a] - 'Apple OSX multiple Bluetooth vulnerabilities' (04.05.2005)
 documentDavid Remahl, [Full-disclosure] Advisories for 4 vulnerabilities addressed by Apple SU 2005-005 (04.05.2005)
 documentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 05.03.05: Mac OS X Server NeST -target Buffer Overflow Vulnerability (04.05.2005)
Discuss:Read or add your comments to this news (0 comments)

MySQL symbolic links problem
updated since 19.08.2004
Published:17.05.2005
Source:BUGTRAQ
SecurityVulns ID:3924
Type:local
Level:5/10
Description:mysqlhotcopy, mysqlaccess unsafe temporary files creation.
Affected:MYSQL : MySQL 3.23
 MYSQL : MySQL 4.1
 MYSQL : MySQL 5.0
Original documentdocumentZATAZ.net, [Full-disclosure] MySQL < 4.0.12 && MySQL <= 5.0.4 : Insecure tmp file handling (17.05.2005)
 documentSECUNIA, [SA13867] MySQL mysqlaccess Script Insecure Temporary File Creation (17.01.2005)
 documentDEBIAN, [SECURITY] [DSA 540-1] New mysql packages fix insecure temporary file creation (19.08.2004)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru