Computer Security

Search:Vulnerability:18.12.2004
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CGI bugs
updated since 15.12.2004
Published:18.12.2004
Source:
SecurityVulns ID:4254
Type:remote
Level:5/10
Affected:PHPGROUPWARE : phpGroupWare 0.9
 PHPBB : phpBB 1.4
 IKONBOARD : Ikonboard 3.1
 SINGAPORE : singapore 0.9
 GADUGADU : Gadu-Gadu 6.0
 WORDPRESS : WordPress 1.2
 PHPMYADMIN : phpMyAdmin 2.6
 MONIWIKI : MoniWiki 1.0
 SUGARCRM : SugarSales 2.0
 PHPBB : phpBB Attachment Mod 2.3
 ASPCALENDAR : ASP Calendar
 USEMODEWIKI : UseModWiki 1.0
 ASP-RIDER : ASP-rider
 GNUBOARD : GNUBoard 3.39
 JSBOARD : JSBoard 1.3
 JSBOARD : jsboard 2.0
 INFOPOP : UBB.Thread 6.2
 INFOPOP : UBB.Thread 6.5
 PHPDIG : PhpDig 1.8
 WINMAIL : WinMail 4.0
 PHPLIVE : PHP Live! 2.8
 IWEBNEGAR : iWebNegar 1.0
 68DESIGNS : Froogle 1.0
Original documentdocumentSECUNIA, [SA13504] 68 Designs Froogle Installation Security Issue (18.12.2004)
 documentJaroslaw Sajko, Gadu-Gadu, another two bugs (18.12.2004)
 documentSECUNIA, [SA13485] iWebNegar "string" SQL Injection Vulnerability (17.12.2004)
 documentSECUNIA, [SA13420] PHP Live! Unspecified Vulnerability (17.12.2004)
 documentSECUNIA, [SA13438] Winmail Server Installation Path Disclosure Weakness (17.12.2004)
 documentSECUNIA, [SA13422] PhpDig Unspecified Vulnerability (17.12.2004)
 documentchewkeong_(at)_security.org.sg, [SIG^2 G-TEC] singapore Image Gallery Web Application v0.9.10 Multiple Vulnerabilities (17.12.2004)
 documentgp, [Full-Disclosure] Multiple XSS Vulnerabilities in several UBB.Thread Versions (17.12.2004)
 documentThomas Waldegger, Multiple XSS Vulnerabilities in Wordpress 1.2.1 (16.12.2004)
 documentAlexander Anisimov, [MaxPatrol] SQL-injection in Ikonboard 3.1.x (16.12.2004)
 documentSSR Team, STG Security Advisory: [SSA-20041215-17] Vulnerability of uploading files with multiple extensions in JSBoard (16.12.2004)
 documentSSR Team, STG Security Advisory: [SSA-20041215-15] Vulnerability of uploading files with multiple extensions in MoniWiki (16.12.2004)
 documentshervin khaleghjou, iwebnegar is vulnerable to all kind of sql injections (16.12.2004)
 documentSSR Team, STG Security Advisory: [SSA-20041214-14] GNUBoard PHP injection vulnerability (16.12.2004)
 documentJeiAr, Multiple phpGroupWare Vulnerabilities [ phpGroupWare 0.9.16.003 && Earlier ] (15.12.2004)
 documentshervin khaleghjou, ASP-rider is vulnerable to sql injection attack (15.12.2004)
 documentSSR Team, STG Security Advisory: [SSA-20041209-13] UseModWiki XSS vulnerability (15.12.2004)
 documentali reza AcTiOnSpIdEr, ASP Calendar Vulnerability <www.ashiyane.com> (15.12.2004)
 documentPaul Laudanski, phpBB Attachment Mod Directory Traversal HTTP POST Injection (15.12.2004)
 documentNicolas Gregoire, Multiple vulnerabilities in phpMyAdmin (15.12.2004)
 documentJaroslaw Sajko, Gadu-Gadu several vulnerabilities (15.12.2004)
 documentDaniel Fabian, SugarSales Multiple Vulnerabilities (15.12.2004)
Discuss:Read or add your comments to this news (0 comments)

NetBSD compat subsystems privilege escalation
Published:18.12.2004
Source:BUGTRAQ
SecurityVulns ID:4282
Type:local
Level:6/10
Description:Some emulated syscalls do insuficcient check for arguments.
Affected:NETBSD : NetBSD 1.6
Original documentdocumentEvgeny Demidov, NetBSD kernel local vulnerabilities (18.12.2004)
 documentNETBSD, NetBSD Security Advisory 2004-010: Insufficient argument validation in compat code (18.12.2004)
Discuss:Read or add your comments to this news (0 comments)

Windows XP SP2 protection bypass
Published:18.12.2004
Source:MICROSOFT
SecurityVulns ID:4283
Type:remote
Level:5/10
Description:For dialup connection whole network of dynamic IP class is treated as local segment.
Affected:MICROSOFT : Windows XP
Original documentdocumentMICROSOFT, Description of the critical update for Windows Firewall "My Network (subnet) only" scoping in Windows XP Service Pack 2 (18.12.2004)
Discuss:Read or add your comments to this news (0 comments)

Hitachi Cosminexus Web Contents Generator buffer overflow
Published:18.12.2004
Source:SECUNIA
SecurityVulns ID:4284
Type:remote
Level:5/10
Affected:HITACHI : Cosminexus Web Contents Generator RT-12443-1214
 HITACHI : Cosminexus Web Contents Generator RT-1V24-21111
 HITACHI : Cosminexus Web Contents Generator RT-1V24-31111
Original documentdocumentSECUNIA, [SA13518] Cosminexus Web Contents Generator Buffer Overflow Vulnerability (18.12.2004)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru