Hummingbird FTP client weak encryption
Published:		17.08.2005
Source:		BUGTRAQ
SecurityVulns ID:		5109
Type:		local
Level:		4/10
Description:		Profiles are "encrypted" by XOR'ing with fixed byte value (0x7d).

Affected:

HUMMINGBIRD : Hummingbird FTP 2006

Original document

nnposter_(at)_users.sourceforge.net, Hummingbird FTP Weak Password Encryption (17.08.2005)

Discuss:

Read or add your comments to this news (0 comments)

World Poker Championship game buffer overflow
Published:		17.08.2005
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5113
Type:		remote
Level:		5/10
Description:		Buffer overflow on oversized player's name.

Affected:

MONEYMAKERGAMING : World Poker Championship 1.0

Original document

Luigi Auriemma, [Full-disclosure] Buffer-overflow in Chris Moneymaker's World Poker Championship 1.0 (17.08.2005)

Discuss:

Read or add your comments to this news (0 comments)

Multiple HP Ignite-UX deployment tool vulnerabilities
Published:		17.08.2005
Source:		BUGTRAQ
SecurityVulns ID:		5108
Type:		remote
Level:		5/10
Description:		/etc/passwd copy is available via TFTP, TFTP filesystem is world writable.

Affected:

HP : Ignite-UX C.6.2

Original document		HP, [security bulletin] SSRT4874 rev.0 - HP-UX Ignite-UX Remote Unauthorized Access (17.08.2005)
		advisories, Corsaire Security Advisory: HP Ignite-UX filesystem permissions issue (17.08.2005)

Discuss:

Read or add your comments to this news (0 comments)

ifenslave / iwconfig network device management utilities buffer overflow
Published:		17.08.2005
Source:		SECURITEAM
SecurityVulns ID:		5110
Type:		local
Level:		4/10
Description:		Buffer overflow on parsing command lines arguments.

Affected:

IFENSLAVE : ifenslave 2.4

Original document		SECURITEAM, [EXPL] Iwconfig Buffer Overflow (17.08.2005)
		SECURITEAM, [EXPL] Ifenslave Buffer Overflow (17.08.2005)

Files:		Iwconfig Buffer Overflow exploit
		Ifenslave Buffer Overflow exploit
		iwconfig Version 26 Localroot Exploit
Discuss:		Read or add your comments to this news (0 comments)

bluez-utils unauthorized bluethooth access updated since 17.08.2005
Published:		18.08.2005
Source:		BUGTRAQ
SecurityVulns ID:		5111
Type:		remote
Level:		5/10
Description:		Improper validation of bluetooth device name.

Affected:

BLUEZUTILS : bluez-utils 2.19

Original document		Kevin Finisterre, [Full-disclosure] Bluez hcid popen() explained. (18.08.2005)
		GENTOO, [Full-disclosure] [ GLSA 200508-09 ] bluez-utils: Bluetooth device name validation vulnerability (17.08.2005)

Discuss:

Read or add your comments to this news (0 comments)

Unauthorized Cisco Clean Access virus isolation solution API access updated since 17.08.2005
Published:		19.08.2005
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5112
Type:		local
Level:		5/10

Affected:		CISCO : Cisco Clean Access 3.3
		CISCO : Cisco Clean Access 3.4
		CISCO : Cisco Clean Access 3.5
CVE:		CVE-2005-4825 (Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service (disk consumption), or make unauthorized files accessible, by uploading files through requests to certain JSP scripts, a related issue to CVE-2005-4332.)
		CVE-2005-4825 (Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service (disk consumption), or make unauthorized files accessible, by uploading files through requests to certain JSP scripts, a related issue to CVE-2005-4332.)
		CVE-2005-4332 (Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service or upload files via direct requests to obsolete JSP files including (1) admin/uploadclient.jsp, (2) apply_firmware_action.jsp, and (3) file.jsp.)

Original document		llhansen-bugtraq_(at)_adams.edu, Cisco Clean Access Agent (Perfigo) bypass (19.08.2005)
		CISCO, [Full-disclosure] Cisco Security Advisory: Cisco Clean Access Unauthenticated API Access (17.08.2005)

Discuss:

Read or add your comments to this news (0 comments)