 |
|
|
|
| Netcharts XBRL Server information leakage | | Published: |  | 18.02.2003 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 2603 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | Information leakage from process memory on chunked encoding. |
| Affected: |  | VISUALMINING : Netcharts XBRL Server 4.0 |
| Original document |  | Tamer Sahin, [SecurityOffice] Netcharts XBRL Server v4.0.0 Information Leakage Vulnerability (18.02.2003) |
| PHP CGI unauthorized access | | Published: | | 18.02.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2598 | | Type: | | remote | | Level: | | 7/10 | | Description: | | --enable-force-cgi-redirect option doesn't work. It allows remote file access and custom PHP code execution. |
| Affected: | | PHP : PHP 4.3 |
| Original document | | PHP, PHP Security Advisory: CGI vulnerability in PHP version 4.3.0 (18.02.2003) |
Multiple serious bugs in Lotus Domino
updated since 18.02.2003 | | Published: | | 18.02.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2599 | | Type: | | remote | | Level: | | 9/10 | | Description: | | Bugs in server and client components, including remote buffer overflows. |
| Affected: | | LOTUS : Domino 6.0 |
| Original document | | NGSSoftware Insight Security Research, Domino Advisories UPDATE (18.02.2003) |
| | | NGSSoftware Insight Security Research, Lotus iNotes Client ActiveX Control Buffer Overrun (#NISR17022003c) (18.02.2003) |
| | | NGSSoftware Insight Security Research, Lotus Domino Web Server iNotes Overflow (#NISR17022003b) (18.02.2003) |
| | | NGSSoftware Insight Security Research, Lotus Domino Web Server Host/Location Buffer Overflow Vulnerability (#NISR17022003a) (18.02.2003) |
Apache mod_dav format string bug
updated since 18.02.2003 | | Published: | | 19.02.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2600 | | Type: | | remote | | Level: | | 5/10 | | Description: | | ap_log_rerror() format string bug. |
| Affected: | | APACHE : mod_dav 1.0 |
| Original document | | APACHE, Re: CSSA-2003-007.0 Advisory withdrawn. (19.02.2003) |
| | | CALDERA, Security Update: [CSSA-2003-007.0] Linux: Apache mod_dav module format string vulnerability (18.02.2003) |
CGI bugs
updated since 18.02.2003 | | Published: | | 24.02.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2602 | | Type: | | remote | | Level: | | 5/10 |
| Affected: | | PHPBB : phpBB 2.0 | | | | PHPNUKE : PHPNuke 6.0 | | | | MYPHPNUKE : myPHPNuke 1.8 | | | | PHPBOARD : PHP-Board | | | | DOTBR : DotBr 0.1 | | | | DFORUM : D-FORUM 1.11 | | | | KIETU : Kietu 2.3 | | | | CPANEL : Cpanel 5 | | | | SAGE : Sage 1.0 | | | | PHPNUKE : PHPNuke 5.6 | | | | PHPBB : phpBB 2.01 | | | | PHPBB : phpBB 2.02 | | | | NUKEDCLAN : Nuked-Klan 1.3 | | | | TEFONLINE : Myguestbook 3.0 | | | | WWWBOARD : WWWboard 2.0 |
| Original document | | Grégory Le Bras | Security Corporation, [SCSA-007] Cross Site Scripting Vulnerabilities in WWWBoard (24.02.2003) |
| | | frog frog, Myguestbook (PHP) (22.02.2003) |
| | | Grégory Le Bras | Security Corporation, [SCSA-006] XSS & Function Execution Vulnerabilities in Nuked-Klan (22.02.2003) |
| | | euronymous, XSS and Path Disclosure in Sage (21.02.2003) |
| | | Lucas Armstrong, phpBB Security Bugs (21.02.2003) |
| | | Lucas Armstrong, PHPNuke SQL Injection (21.02.2003) |
| | | Tacettin Karadeniz, myphpnuke xss (20.02.2003) |
| | | euronymous, XSS and Path Disclosure in Sage (20.02.2003) |
| | | pokleyzz, Cpanel 5 and below remote command execution and local root vulnerabilities (19.02.2003) |
| | | frog frog, Kietu ( PHP ) (19.02.2003) |
| | | frog frog, D-Forum (PHP) (18.02.2003) |
| | | frog frog, DotBr (PHP) (18.02.2003) |
| | | frog frog, php-Board (php) (18.02.2003) |
BitchX DoS
updated since 18.02.2003 | | Published: | | 11.05.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2601 | | Type: | | client | | Level: | | 5/10 | | Description: | | RPL_NAMREPLY with value of 353 causes program to crash. |
|
|
|
|
|
| |
|
| |
