Search:Vulnerability:17.11.2005
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Microsoft Windows Plug and Play Service UMPNPMGR buffer overflow
updated since 12.10.2005
Published:
17.11.2005
Source:
BUGTRAQ
SecurityVulns ID:
5324
Type:
remote
Level:
7
/10
Description:
Buffer overflow on PNP_GetDeviceList and PNP_GetDeviceListSize calls for anonymous user on Windows 2000 and authenticated user on Windows 2003 / XP. There is another one similar vulnerability, leading to memory leak with DoS conditions.
Affected:
MICROSOFT
:
Windows 2000 Server
MICROSOFT
:
Windows 2000 Professional
MICROSOFT
:
Windows XP
MICROSOFT
:
Windows 2003 Server
Original document
MICROSOFT
,
Microsoft Security Bulletin MS05-047 Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749)
(
12.10.2005
)
EEYE
,
[EEYEB20050803] - Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability
(
12.10.2005
)
Files:
Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability PoC
Denial of Service attack for MS UMPNPMGR PNP_GetDeviceList
memory leak and eventual DOS when calling UPNP getdevicelist on windows 2000 server
Microsoft Security Bulletin MS05-047 Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749)
Discuss:
Read or add your comments to this news (0 comments)
Multiple Hitachi Wi-Fi VoIP phones vulnerabilities
Published:
17.11.2005
Source:
FULL-DISCLOSURE
SecurityVulns ID:
5457
Type:
remote
Level:
5
/10
Description:
Information leak, SNMP access, built-in hardware password, unauthenticated Web access (TCP/8080) and shell access (TCP/3390).
Affected:
HITACHI
:
Hitachi IP5000
Original document
Shawn Merdinger
,
[Full-disclosure] Hitachi IP5000 VoIP Wifi phone multiple vulnerabilities
(
17.11.2005
)
Discuss:
Read or add your comments to this news (0 comments)
Multiple UTstarcom F1000 wirieless Wi-Fi VoIP phones vulnerabilities
Published:
17.11.2005
Source:
FULL-DISCLOSURE
SecurityVulns ID:
5458
Type:
remote
Level:
5
/10
Description:
SNMP access, unauthenticated telnet (TCP/21) and rlogin (TCP/513) access.
Affected:
UTSTAR
:
UTStarcom F1000
Original document
Shawn Merdinger
,
[Full-disclosure] UTstarcom F1000 VoIP Wifi phone multiple vulnerabilities
(
17.11.2005
)
Discuss:
Read or add your comments to this news (0 comments)
Multiple Zyxel P2000W wirieless Wi-Fi VoIP phones vulnerabilities
Published:
17.11.2005
Source:
FULL-DISCLOSURE
SecurityVulns ID:
5459
Type:
remote
Level:
5
/10
Description:
Information leak, external DNS servers access.
Affected:
ZYXEL
:
ZyXel P2000W
Original document
Shawn Merdinger
,
[Full-disclosure] Zyxel P2000W (Version1) VoIP Wifi phone multiple vulnerabilties
(
17.11.2005
)
Discuss:
Read or add your comments to this news (0 comments)
FTGate mail server buffer overflow
Published:
17.11.2005
Source:
BUGTRAQ
SecurityVulns ID:
5455
Type:
remote
Level:
5
/10
Description:
IMAP server oversized EXAMINE command buffer overflow.
Affected:
FLOOSIETEK
:
FTGate 4.1
Original document
Luca Ercoli
,
Buffer Overrun in FTGate4 Groupware Mail server
(
17.11.2005
)
Files:
FTGate Imapd BufferOverrun exploit
Discuss:
Read or add your comments to this news (0 comments)
Multiple Cisco 7920 wireless IP Phones vulnerabilities
Published:
17.11.2005
Source:
BUGTRAQ
SecurityVulns ID:
5456
Type:
remote
Level:
5
/10
Description:
Fixed SNMP read/write community is available, VxWorks debugger is available via UDP/7920 port.
Affected:
CISCO
:
Cisco 7920
Original document
CISCO
,
Cisco Security Advisory: Fixed SNMP Communities and Open UDP Port in Cisco 7920 Wireless IP Phone
(
17.11.2005
)
Discuss:
Read or add your comments to this news (0 comments)
PasswordSafe weak cryptography
Published:
17.11.2005
Source:
BUGTRAQ
SecurityVulns ID:
5454
Type:
local
Level:
4
/10
Description:
Key derived from user password with fast algorythm is used as a key for block cypher, making it easy to bruteforce user password.
Affected:
SCHNEIER
:
Password Safe 1.7
SCHNEIER
:
PasswordSafe 2.13
Original document
ELCOMSOFT
,
Schneier's PasswordSafe password validation flaw
(
17.11.2005
)
Discuss:
Read or add your comments to this news (0 comments)
Senao SI-680H wirieless Wi-Fi VoIP phones unauthorized access
Published:
17.11.2005
Source:
FULL-DISCLOSURE
SecurityVulns ID:
5460
Type:
remote
Level:
5
/10
Description:
VxWorks debugger is available with UDP/17185.
Affected:
SENAO
:
SI-680H
Original document
Shawn Merdinger
,
[Full-disclosure] Senao SI-680H VoIP Wifi phone undocumented open port
(
17.11.2005
)
Discuss:
Read or add your comments to this news (0 comments)
FreeFTP FTP Server buffer overflow
updated since 17.11.2005
Published:
26.11.2005
Source:
BUGTRAQ
SecurityVulns ID:
5461
Type:
remote
Level:
5
/10
Description:
Buffer overflow in USER command.
Affected:
FREEFTPD
:
FreeFTPd 1.0
Original document
Steve
,
freeFTPd 1.0.10 (Dos,Exploit)
(
26.11.2005
)
SECUNIA
,
[SA17583] Freeftpd USER Command Buffer Overflow Vulnerability
(
17.11.2005
)
Files:
freeFTPd (1.0.10) DoS Exploit
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
