Computer Security

Search:Vulnerability:20.06.2005
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Sun Java / BlackDown Java sandbox protection bypass
Published:20.06.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4908
Type:client
Level:6/10
Description:Applet can bypass sandbox limitation to exefute privileged functions.
Affected:SUN : JDK 1.4
 SUN : JRE 1.4
 BLACKDOWN : Blackdown JDK 1.4
 BLACKDOWN : Blackdown JRE 1.4
Original documentdocumentGENTOO, [Full-disclosure] [ GLSA 200506-14 ] Sun and Blackdown Java: Applet privilege escalation (20.06.2005)
Discuss:Read or add your comments to this news (2 comments)

OpenBSD ip_ctloutput() DoS
Published:20.06.2005
Source:SECUNIA
SecurityVulns ID:4909
Type:local
Level:5/10
Description:Error in the "ip_ctloutput()" function can be exploited by using the "getsockopt()" to retrieve IPsec credentials for a socket.
Affected:OPENBSD : OpenBSD 3.7
 OPENBSD : OpenBSD 3.8
Original documentdocumentSECUNIA, [SA15722] OpenBSD "ip_ctloutput()" Denial of Service (20.06.2005)
Discuss:Read or add your comments to this news (1 comments)

RealVNC / WinVNC terminalservice information leak
Published:20.06.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4910
Type:remote
Level:4/10
Description:Before authentication client receives information about operation system and platform.
Original documentdocumentclass 101, [Full-disclosure] RealVNC/WinVNC Multiple vulnerabilities (20.06.2005)
Discuss:Read or add your comments to this news (0 comments)

Cisco VPN 3000 groupname enumeration
Published:20.06.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4911
Type:remote
Level:5/10
Description:Different bahaviour for valid and invalid groupname in IKE aggressive mode.
Affected:CISCO : Cisco VPN 3005
 CISCO : Cisco VPN 3015
 CISCO : Cisco VPN 3030
 CISCO : Cisco VPN 3060
 CISCO : Cisco VPN 3080
 CISCO : Cisco VPN 3020
Original documentdocumentRoy Hills, [Full-disclosure] Cisco VPN Concentrator Groupname Enumeration Vulnerability (20.06.2005)
Discuss:Read or add your comments to this news (0 comments)

Sudo symbolic links race condition
Published:20.06.2005
Source:BUGTRAQ
SecurityVulns ID:4912
Type:local
Level:6/10
Description:If sudoers file contains specific records, race conditions exist to spoof command with symlink.
Affected:SUDO : sudo 1.6
Original documentdocumentTodd C. Miller, Sudo version 1.6.8p9 now available, fixes security issue. (20.06.2005)
Discuss:Read or add your comments to this news (0 comments)

Deep Freeze protection bypass
updated since 17.06.2005
Published:20.06.2005
Source:SECURITEAM
SecurityVulns ID:4902
Type:local
Level:5/10
Description:With debugging application it's possible to bypass system state protection.
Affected:FARONICS : Deep Freeze 3.32
Original documentdocumentSECURITEAM, [NT] Deep Freeze Unfreezer - Bypassing Deep Freeze Authentication (20.06.2005)
Discuss:Read or add your comments to this news (2 comments)

PHP, ASP, CGI web applications security vulnerabilities
updated since 20.06.2005
Published:25.06.2005
Source:
SecurityVulns ID:4907
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, etc.
Affected:EXTOPIA : WebStore
 PHPBB : phpBB 2.0
 UPB : Ultimate PHP Board 1.9
 MAMBOSERVER : Mambo Server 4.5
 DUWARE : DUpaypal 3.0
 MERCURYBOARD : MercuryBoard 1.1
 CLAROLINE : Claroline 1.5
 PHPNUKE : PHP-Nuke 7.6
 DUWARE : DuPortal 3.4
 EDGEWALL : Trac 0.8
 UAPPLICATYIONS : Ublog Reload 1.0
 BCP : i-Gallery 3.3
 FORTIBUS : Fortibus CMS 4.0
 NANOBLOGGER : NanoBlogger 3.2
 CACTI : Cacti 0.8
 CPANEL : cPanel 10.2
 WNAILER : W-Nailer 0.34
 DUWARE : DUamazon 3.1
 DUWARE : DUforum 3.1
 DUWARE : DUclassmate 1.2
 SIMPLEMACHINES : Simple Machine Forum 1.0
 FRB : Forum Russian Board 4.2
 WHOISCART : Whois.Cart 2.2
 UBB : UBB.threads 6.5
 ACTIVEWEBSOFTWAR : ActiveBuyAndSell 6.2
 LCM : Legal Case Management System 0.6
Original documentdocumentSECUNIA, [SA15743] Legal Case Management System Log File Disclosure (25.06.2005)
 documentJeiAr, Infopop UBB Threads Multiple Vulnerabilities (25.06.2005)
 documentfjlj_(at)_wvi.com, PHP nuke XSS vulnerability (25.06.2005)
 documentdedi dwianto, [ECHO_ADV_21$2005] MUltiple Vulnarable In ActiveBuyAndSell (25.06.2005)
 documentSECUNIA, [SA15805] UBB.threads Multiple Vulnerabilities (24.06.2005)
 documentSECUNIA, [SA15783] Whois.Cart Cross-Site Scripting and Local File Inclusion (24.06.2005)
 documentdedi dwianto, [ECHO_ADV_20$2005] Full path disclosure JAF CMS (24.06.2005)
 documentAlberto Trivero, Remote Command Execution Exploit for Cacti <= 0.8.6d (24.06.2005)
 documentSECURITEAM, [EXPL] MercuryBoard SQL Injection (User-Agent) (23.06.2005)
 documentSECURITEAM, [EXPL] phpBB Multiple User Registeration DoS (Exploit) (23.06.2005)
 documentSECURITEAM, [EXPL] FRB Remote Command Execution (Exploit) (23.06.2005)
 documentSECURITEAM, [EXPL] Simple Machine Forum SQL Injection (modify) (23.06.2005)
 documentdedi dwianto, [ECHO_ADV_19$2005] Multiple SQL INJECTION in DUWARE Products (22.06.2005)
 documentzodchiy, W-Nailer 0.34 (22.06.2005)
 documentSECUNIA, [SA15770] cPanel cpsrvd.pl Cross-Site Scripting Vulnerability (22.06.2005)
 documentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 06.22.05: Multiple Vendor Cacti Remote File Inclusion Vulnerability (22.06.2005)
 documentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 06.22.05: Multiple Vendor Cacti config_settings.php Remote Code Execution Vulnerability (22.06.2005)
 documentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 06.22.05: Multiple Vendor Cacti Multiple SQL Injection Vulnerabilities (22.06.2005)
 document4yka_(at)_ghc.ru, MercuryBoard 1.1.4 SQL Injection (22.06.2005)
 documentSECUNIA, [SA15754] NanoBlogger Plugins Shell Command Injection Vulnerability (22.06.2005)
 documentSECUNIA, [SA15762] Fortibus CMS "username" and "ID" SQL Injection Vulnerabilities (21.06.2005)
 documentHat-Squad Security Team, [Hat-Squad] i-Gallery directory traversal (21.06.2005)
 documentSECUNIA, [SA15747] Ublog Reload SQL Injection and Cross-Site Scripting (20.06.2005)
 documentStefan Esser, [Full-disclosure] Advisory 01/2005: Fileupload/download vulnerability in Trac (20.06.2005)
 documentSECURITEAM, [EXPL] eXtropia WebStore Remote Command Execution (web_store.cgi) (20.06.2005)
 documentSECURITEAM, [EXPL] Mambo Remote Password Hash Retrieval (Exploit) (20.06.2005)
 documentSECURITEAM, [EXPL] Claroline E-Learning Application Remote SQL Injection (Exploit 2) (20.06.2005)
 documentSECURITEAM, [EXPL] Claroline E-Learning Application Remote SQL Injection (20.06.2005)
 documentTaskFall, phpBB 2.0.* Discloses Path (20.06.2005)
Files:Mambo Remote Password Hash Retrieval Exploit
 Passwords Decrypter for UPB <= 1.9.6
 SMF Modify SQL Injection
 Claroline E-Learning Application Remote SQL Exploit
 phpBB Multiple User Registeration DoS
 MercuryBoard <=1.1.4, MySQL => 4.1 sql injection exploit
 Remote Command Execution Exploit for Cacti <= 0.8.6d
 Forum Russian Board 4.0 Full command execution exploit
 Claroline E-Learning Application Remote SQL Injection (Exploit 2)
 Remote Command Execution Vulnerability In Web_store.cgi
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru