IPSwitch Imail password decryption
Published:		19.08.2004
Source:		BUGTRAQ
SecurityVulns ID:		3916
Type:		local
Level:		3/10
Description:		Password are stored with reversable encryption as required for secure authentication.

Affected:

IPSWITCH : IMail 8.1

Original document

Adik, IpSwitch IMail Server <= ver 8.1 User Password Decryption (19.08.2004)

Files:		IpSwitch IMail Server <= ver 8.1 User Password Decryption
Discuss:		Read or add your comments to this news (0 comments)

aGsm buffer overflow
Published:		19.08.2004
Source:		RDM
SecurityVulns ID:		3917
Type:		client
Level:		5/10
Description:		Bufer overflow during Half-Life server reply analisys.

Affected:

AGSM : aGsm 2.35

Original document

Dmitriy 'Dimetrius' Baranov, Ошибка переполнения буффера в aGsm версии 2.35c и в последней developer-версии (beta)... (19.08.2004)

Files:		aGsm HL server reply parsing PoC
Discuss:		Read or add your comments to this news (0 comments)

Courier-imap debugging format string
Published:		19.08.2004
Source:		FULL-DISCLOSURE
SecurityVulns ID:		3919
Type:		remote
Level:		4/10
Description:		Pre-authentication format string bug in debugging function.

Affected:

COURIER : Courier-IMAP 2.2

Original document

IDEFENSE, [Full-Disclosure] iDEFENSE Security Advisory 08.18.04: Courier-IMAP Remote Format String Vulnerability (19.08.2004)

Files:		courier-imap <= 3.0.2-r1 Remote Format String Vulnerability exploit
Discuss:		Read or add your comments to this news (0 comments)

CVS information leak
Published:		19.08.2004
Source:		FULL-DISCLOSURE
SecurityVulns ID:		3920
Type:		remote
Level:		5/10
Description:		By using undocumented -X key for 'cvs history' command it's possible to check existance of system files.

Affected:		CVS : cvs 1.11
		CVS : CVS 1.12

Original document

IDEFENSE, [Full-Disclosure] iDEFENSE Security Advisory 08.16.04: CVS Undocumented Flag Information Disclosure Vulnerability (19.08.2004)

Discuss:

Read or add your comments to this news (0 comments)

glibc LD_DEBUG privilege escalation
Published:		19.08.2004
Source:		BUGTRAQ
SecurityVulns ID:		3921
Type:		library
Level:		8/10
Description:		glibc allows LD_DEBUG to be applied to suid binaries.

Affected:

GLIBC : glibc 2.3

Original document

GENTOO, [ GLSA 200408-16 ] glibc: Information leak with LD_DEBUG (19.08.2004)

Discuss:

Read or add your comments to this news (0 comments)

IPD NULL pointer DoS
Published:		19.08.2004
Source:		BUGTRAQ
SecurityVulns ID:		3922
Type:		local
Level:		4/10
Description:		ZwOpenSection hook NULL pointer dereference problem.

Affected:

PEDESTALSOFTWARE : IPD 1.4

Original document

NGSEC Research Team, [NGSEC-2004-6] IPD, local system denial of service. (19.08.2004)

Discuss:

Read or add your comments to this news (0 comments)

Cisco IOS OSPF DoS
Published:		19.08.2004
Source:		BUGTRAQ
SecurityVulns ID:		3925
Type:		remote
Level:		6/10
Description:		Malformed OSPF packet causes router to reboot.

Affected:		CISCO : IOS 12.0
		CISCO : IOS 12.2
		CISCO : IOS 12.3

Original document

CISCO, Cisco Security Advisory: Cisco IOS Malformed OSPF Packet Causes Reload (19.08.2004)

Discuss:

Read or add your comments to this news (0 comments)

HP-UX network applications DoS
Published:		19.08.2004
Source:		BUGTRAQ
SecurityVulns ID:		3926
Type:		remote
Level:		5/10

Affected:		HP : HP-UX 11.00
		HP : HP-UX 11.11
		HP : HP-UX 11.04
		HP : HP-UX 11.22

Original document

HP, [security bulletin] SSRT3460 rev.3 HP-UX Network traffic can cause programs to fail (19.08.2004)

Discuss:

Read or add your comments to this news (0 comments)

Heimdal ftpd/tnftpd/lukemftpd signal handling race conditions updated since 19.08.2004
Published:		30.08.2004
Source:		BUGTRAQ
SecurityVulns ID:		3918
Type:		remote
Level:		6/10
Description:		Problem with OOB data processing.

Affected:		NETBSD : NetBSD 1.6
		NETBSD : NetBSD 2.0
		HEIMDAL : Heimdal ftpd 0.6
		TNFTPD : tnftpd

Original document		Przemyslaw Frasunek, multiple vulnerabilities in lukemftpd/tnftpd (30.08.2004)
		NETBSD, NetBSD Security Advisory 2004-009: ftpd root escalation (22.08.2004)
		SECUNIA, [SA12226] tnftpd Signal Handling Privilege Escalation Vulnerabilities (19.08.2004)
		SECUNIA, [SA12320] Heimdal ftpd Signal Handling Vulnerabilities (19.08.2004)

Discuss:

Read or add your comments to this news (0 comments)

xine-lib buffer overflows updated since 19.08.2004
Published:		30.12.2004
Source:		BUGTRAQ
SecurityVulns ID:		3923
Type:		library
Level:		6/10
Description:		buffer overflow in the PNM, VCD and DVD handling code.

Affected:		XINELIB : xine-lib 1.0
		XINE : xine 0.99
		XINE : xine 1.0

Original document		Michael Roitzsch, XSA-2004-7: stack overflow in AIFF demultiplexer (30.12.2004)
		IDEFENSE, iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler PNA_TAG Heap Overflow Vulnerability (22.12.2004)
		IDEFENSE, iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler Negative Read Length Heap Overflow Vulnerability (22.12.2004)
		XINE, XSA-2004-4: multiple string overflows (17.09.2004)
		XINE, XSA-2004-5: heap overflow in DVD subpicture decoder (17.09.2004)
		c0ntex_(at)_open-security.org, Open Security Group Advisory #6 (19.08.2004)
		GENTOO, [ GLSA 200408-18 ] xine-lib: VCD MRL buffer overflow (19.08.2004)

Files:		Xines_Mine - Remote proof of concept example
Discuss:		Read or add your comments to this news (0 comments)

MySQL symbolic links problem updated since 19.08.2004
Published:		17.05.2005
Source:		BUGTRAQ
SecurityVulns ID:		3924
Type:		local
Level:		5/10
Description:		mysqlhotcopy, mysqlaccess unsafe temporary files creation.

Affected:		MYSQL : MySQL 3.23
		MYSQL : MySQL 4.1
		ORACLE : MySQL 5.0

Original document		ZATAZ.net, [Full-disclosure] MySQL < 4.0.12 && MySQL <= 5.0.4 : Insecure tmp file handling (17.05.2005)
		SECUNIA, [SA13867] MySQL mysqlaccess Script Insecure Temporary File Creation (17.01.2005)
		DEBIAN, [SECURITY] [DSA 540-1] New mysql packages fix insecure temporary file creation (19.08.2004)

Discuss:

Read or add your comments to this news (0 comments)