 |
|
|
|
| OTSTurntables buffer overflow | | Published: |  | 18.01.2009 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 9600 | | Type: |  | client | | Level: |  | 3/10 | | Description: |  | Buffer overflow on .ofl files processing. |
| Excel Viewer ActiveX buffer overflow | | Published: | | 18.01.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9595 | | Type: | | client | | Level: | | 5/10 | | Description: | | Buffer overflow in Open method. |
| Avira Antivir multiple security vulnerabilities | | Published: | | 18.01.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9597 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Multiple DoS conditions and privilege escalations. |
| VirtualBox symbolic links vulnerability | | Published: | | 18.01.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9598 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Insecure temporary files creation. |
| Affected: |  | SUN : VirtualBox 2.0 | | CVE: |  | CVE-2008-5256 (The AcquireDaemonLock function in ipcdUnix.cpp in Sun Innotek VirtualBox before 2.0.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.vbox-$USER-ipc/lock temporary file.) |
| TFTPUtil GUI TFTP Server multiple security vulnerabilities | | Published: | | 18.01.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9599 | | Type: | | remote | | Level: | | 5/10 | | Description: | | DoS, directory traversal. |
| Cusci IronPort Encryption Appliance / PostX multiple security vulnerabilities | | Published: | | 18.01.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9601 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Unauthorized access to encrypted messages, unauthorized access to administration interface. |
| Affected: | | CISCO : PostX 6.2 | | | | CISCO : IronPort Encryption Appliance 6.3 | | | | CISCO : IronPort Encryption Appliance 6.5 | | CVE: | | CVE-2009-0054 (PXE Encryption in Cisco IronPort Encryption Appliance 6.2.4 before 6.2.4.1.1, 6.2.5, 6.2.6, 6.2.7 before 6.2.7.7, 6.3 before 6.3.0.4, and 6.5 before 6.5.0.2; and Cisco IronPort PostX 6.2.1 before 6.2.1.1 and 6.2.2 before 6.2.2.3; allows remote attackers to capture credentials by tricking a user into reading a modified or crafted e-mail message.) | | | | CVE-2009-0053 (PXE Encryption in Cisco IronPort Encryption Appliance 6.2.4 before 6.2.4.1.1, 6.2.5, 6.2.6, 6.2.7 before 6.2.7.7, 6.3 before 6.3.0.4, and 6.5 before 6.5.0.2; and Cisco IronPort PostX 6.2.1 before 6.2.1.1 and 6.2.2 before 6.2.2.3; allows remote attackers to obtain the decryption key via unspecified vectors, related to a "logic error.") |
| Cisco ONS TCP DoS | | Published: | | 18.01.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9602 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Crash on TCP connection establishing. |
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: | | 18.01.2009 | | Source: | | | | SecurityVulns ID: | | 9603 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
|
Sagem F@ST 2404 router DoS
updated since 09.09.2008 | | Published: | | 18.01.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9275 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Device crash on oversized Web interface URL string. Unauthorized access to router reset Web page. |
netatalk shell characters vulnerabilities
updated since 18.01.2009 | | Published: | | 01.02.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 9596 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Shell characters vulnerability on PostScript print jobs processing. |
| Affected: | | NETATALK : netatalk 2.0 | | CVE: | | CVE-2008-5718 (The papd daemon in Netatalk before 2.0.4-beta2, when using certain variables in a pipe command for the print file, allows remote attackers to execute arbitrary commands via shell metacharacters in a print request, as demonstrated using a crafted Title.) |
|
|
|
|
|
|
|
|
