Computer Security

Search:Vulnerability:21.10.2005
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Symantec Norton AntiVirus and another Symantec security products for Macintosh privilege escalation
updated since 20.10.2005
Published:21.10.2005
Source:SECUNIA
SecurityVulns ID:5374
Type:local
Level:6/10
Description:Norton Antivirus DiskMountNotify suid utility executes external applications by relative name. LiveUpdate contains suid wrapper for Java interpreter without proper command line check.
Affected:SYMANTEC : Norton Utilities for Macintosh 8.0
 SYMANTEC : Norton AntiVirus for Macintosh 10.0
 SYMANTEC : Norton AntiVirus for Macintosh 9.0
 SYMANTEC : Norton Internet Security for Macintosh 3.0
 SYMANTEC : Norton Personal Firewall for Macintosh 3.0
 SYMANTEC : Norton SystemWorks for Macintosh 3.0
Original documentdocumentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 10.20.05: Symantec Norton AntiVirus DiskMountNotify Local Privilege Escalation (21.10.2005)
 documentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 10.20.05: Symantec Norton AntiVirus LiveUpdate Local Privilege Escalation (21.10.2005)
 documentSECUNIA, [SA17268] Symantec Norton AntiVirus / LiveUpdate for Macintosh Privilege Escalation (20.10.2005)
Discuss:Read or add your comments to this news (0 comments)

bmv integer overflow
Published:21.10.2005
Source:SECUNIA
SecurityVulns ID:5379
Type:local
Level:5/10
Description:Integer overflow on PostScript (PS) files processing.
Affected:BMV : bmv 1.2
Original documentdocumentSECUNIA, [SA17266] BMV PS File Page Handling Integer Overflow Vulnerability (21.10.2005)
Discuss:Read or add your comments to this news (0 comments)

Multiple Ethereal sniffer vulnerabilities
updated since 20.10.2005
Published:21.10.2005
Source:BUGTRAQ
SecurityVulns ID:5372
Type:remote
Level:6/10
Description:Multiple bugs of different nature while parsing different protocols. Vulnerable version of PCRE library is used in Windows Ethereal version.
Affected:ETHEREAL : Ethereal 0.10
Original documentdocumentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 10.20.05: Multiple Vendor Ethereal srvloc Buffer Overflow Vulnerability (21.10.2005)
 documentSECUNIA, [SA17254] Ethereal Multiple Protocol Dissector and PCRE Vulnerabilities (20.10.2005)
Discuss:Read or add your comments to this news (0 comments)

RSA SecurID Web Agent buffer overflow
updated since 06.05.2005
Published:21.10.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4775
Type:remote
Level:6/10
Description:Heap overflow on HTTP chunked encoding parsing. Stack overflow on oversized HTTP request Redirect: header.
Affected:RSA : SecurID Web Agent 5
 RSA : SecurID Web Agent 5.2
 RSA : SecurID Web Agent 5.3
Original documentdocumentGary O'leary-Steele, [Full-disclosure] [SEC-1 LTD] RSA SecurID Web Agent Heap Overflow (06.05.2005)
Files:IIS RSA WebAgent Redirect Overflow
Discuss:Read or add your comments to this news (0 comments)

eric Python IDE code execution
Published:21.10.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:5376
Type:local
Level:5/10
Description:Possible code execution on project file opening.
Affected:ERIC : eric 3.6
Original documentdocumentDEBIAN, [Full-disclosure] [SECURITY] [DSA 869-1] New eric packages fix arbitrary code execution (21.10.2005)
Discuss:Read or add your comments to this news (0 comments)

SCO Unixware ppp buffer overflow
updated since 21.10.2005
Published:25.10.2005
Source:BUGTRAQ
SecurityVulns ID:5377
Type:local
Level:5/10
Description:Buffer overflow in /usr/bin/ppptalk.
Affected:SCO : UnixWare 7.1
Original documentdocumentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 10.24.05: SCO Unixware Setuid ppp prompt Buffer Overflow Vulnerability (25.10.2005)
 documentSCO, [Full-disclosure] UnixWare 7.1.4 UnixWare 7.1.3 : ppp buffer overflow (21.10.2005)
Discuss:Read or add your comments to this news (0 comments)

SCO OpenServer authsh / backupsh buffer overflow
updated since 21.10.2005
Published:25.10.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:5378
Type:local
Level:5/10
Description:Buffer overflow in /usr/lib/sysadm/authsh, /usr/lib/sysadm/backupsh allow to gain egid backup.
Affected:SCO : OpenServer 5.0
Original documentdocumentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 10.24.05: SCO Openserver authsh 'Home' Buffer Overflow Vulnerability (25.10.2005)
 documentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 10.24.05: SCO Openserver backupsh 'Home' Buffer Overflow Vulnerability (25.10.2005)
 documentSCO, [Full-disclosure] OpenServer 5.0.7 : authsh and backupsh buffer overflow (21.10.2005)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server