 |
|
|
|
Multiple bugs in hostingcontroller
updated since 28.01.2002 | | Published: |  | 21.05.2002 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 1725 | | Type: |  | remote | | Level: |  | 6/10 | | Description: |  | Different error message on wrong user name and password makes it possible to check account existance. Directory traversal allows to access files outside web root. |
| Affected: |  | HOSTINGCONTROLLE : Hosting Controller 1.4 |
| Original document |  | Bao Dai Nhan, Another vulnerability in hosting controller (21.05.2002) |
| | | hdlkha_(at)_yahoo.com, Hosting Controller still have dangerous bugs! (17.05.2002) |
| | | Phuong Nguyen, Hosting Directory Traversal madness... (19.03.2002) |
| | | Ahmet Sabri ALPER, [ARL02-A01] Vulnerability in Hosting Controller (28.01.2002) |
Дырка в IMail (buffer overflow)
updated since 25.04.2001 | | Published: | | 21.05.2002 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 1160 | | Type: | | remote | | Level: | | 7/10 | | Описание: | | Переполнение буфера при обработке письма посланного в список рассылки. |
| Affected: | | IPSWITCH : IMail 6.06 |
| Original document | | EEYE, IPSwitch IMail 6.06 SMTP Remote System Access Vulnerability (25.04.2001) |
Six new bugs in Internet Explorer
updated since 16.05.2002 | | Published: | | 21.05.2002 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 2012 | | Type: | | client | | Level: | | 7/10 | | Description: | | Crossite scripting, local files disclosure, security zone spoofing, etc. |
| Affected: | | MICROSOFT : Internet Explorer 5.01 | | | | MICROSOFT : Internet Explorer 5.5 | | | | MICROSOFT : Internet Explorer 6.0 |
| Original document | | Andreas Sandblad, IE dot bug - Sandblad advisory #7 (21.05.2002) |
| | | Thor Larholm, RE: Update and comments on the MS02-023 patch, holes still remain (17.05.2002) |
| | | snsadv_(at)_lac.co.jp, [SNS Advisory No.48] Microsoft Internet Explorer Still Download And Execute ANY Program Automatically (16.05.2002) |
| | | Thor Larholm, Update and comments on the MS02-023 patch, holes still remain (16.05.2002) |
| | | GreyMagic Software, MS02-023 does not patch actual issue! (16.05.2002) |
| | | MICROSOFT, Security Bulletin MS02-023: 15 May 2002 Cumulative Patch for Internet Explorer (Q321232) (16.05.2002) |
| Multiple bugs in bzip2 | | Published: | | 21.05.2002 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2025 | | Type: | | local | | Level: | | 4/10 | | Description: | | Silent file overwritting, invalid symbolic link permissions inside archieves, etc. |
| |
|
| |
