Computer Security
[EN] securityvulns.ru no-pyccku


IPSwitch What's Up administration authentication bypass
Published:17.05.2006
Source:
SecurityVulns ID:6150
Type:remote
Threat Level:
6/10
Description:It's possible to bypass authentication by adding User-Application: NmConsole header.
Affected:IPSWITCH : WhatsUp Professional 2006
Original documentdocument'ken'@FTU , [Full-disclosure] What's Up Professional Spoofing Authentication Bypass (17.05.2006)

FreeSSHd / FreeFTPd / wodSSHServer / FortressSSH SSH servers buffer overflow
updated since 14.05.2006
Published:17.05.2006
Source:
SecurityVulns ID:6141
Type:remote
Threat Level:
5/10
Description:Buffer overflow on cryptographic keys exchange.
Affected:FREEFTPD : FreeFTPd 1.0
 FREESSHD : FreeSSHd 1.0
 WEONLYDO : wodSSHServer 1.2
 WEONLYDO : wodSSHServer 1.3
 PRAGMA : FortressSSH 4.0
Original documentdocumentSECUNIA, [SA20136] FreeFTPd SFTP Key Exchange Algorithm String Buffer Overflow (17.05.2006)
 documentSECUNIA, [SA20114] FortressSSH SSH_MSG_KEXINIT Logging Buffer Overflow (16.05.2006)
 documentSECUNIA, [SA19845] wodSSHServer Key Exchange Algorithm String Buffer Overflow (14.05.2006)
 documentSECUNIA, [SA19846] FreeSSHd Key Exchange Algorithm String Buffer Overflow (14.05.2006)
Files:POC exploit for freeSSHd version 1.0.9

SAP Web Application Server crossite scripting
Published:17.05.2006
Source:
SecurityVulns ID:6148
Type:remote
Threat Level:
5/10
Description:Crossite scripting with error messages.
Affected:SAP : SAP WebAS 7.0
Original documentdocumentarnold.grossmann_(at)_gmail.com, vulnerability details (17.05.2006)

Caucho Resin application server directory traversal
Published:17.05.2006
Source:
SecurityVulns ID:6149
Type:remote
Threat Level:
6/10
Description:There are few way to access content behind web root directory.
Affected:CAUCHO : Resin 3.0
Original documentdocumentRapid 7 Security Advisories, Caucho Resin Windows Directory Traversal Vulnerability (17.05.2006)
 documentJoseph Pierini, ScanAlert Security Advisory (17.05.2006)

LiveData ICCP server DoS
Published:17.05.2006
Source:
SecurityVulns ID:6151
Type:remote
Threat Level:
5/10
Description:Buffer overflow on parsing ISO Transport Service packet.
Affected:LIVEDATE : LiveData ICCP Server 5.0
Original documentdocumentSECUNIA, [SA20146] LiveData ICCP Server Buffer Overflow Vulnerability (17.05.2006)

Unauthorized Sun Directory Server console acces
Published:17.05.2006
Source:
SecurityVulns ID:6152
Type:local
Threat Level:
5/10
Affected:SUN : Directory Server 5.2
Original documentdocumentSECUNIA, [SA20144] Sun Java System Directory Server Authentication Bypass (17.05.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod