 |
|
|
|
| Edonkey DoS | | Published: |  | 22.03.2003 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 2678 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | Resources consumption through multiple message dialogs. |
| Affected: |  | OVERNET : Overnet 0.45 | | | | EDONKEY : Edonkey2000 0.45 |
| Original document |  | Auriemma Luigi, Edonkey and Overnet resources consumption (22.03.2003) |
| ProtWare weak encryption | | Published: | | 22.03.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2679 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Position substitution is used. |
| Affected: | | PROTWARE : HTML Guardian 6.5 |
| Original document | | rain_song_(at)_hushmail.com, ProtWare "HTML Guardian" has pathetic "encryption" (22.03.2003) |
| Microsoft Active Sync DoS | | Published: | | 22.03.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2680 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Corrupted packet to TCP/5679 causes NULL reference. |
| Original document | | advisories_(at)_irmplc.com, IRM 004: ActiveSync Version 3.5 Denial of Service Vulnerability (22.03.2003) |
Open SSL timing attack
updated since 19.02.2003 | | Published: | | 22.03.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2604 | | Type: | | remote | | Level: | | 7/10 | | Description: | | Because of timing difference it's possible to distinguish between bad padding and a MAC verification error. It's also possible to recover RSA secret. |
| Affected: | | OPENSSL : OpenSSL 0.9 | | | | STUNNEL : stunnel 3.22 | | | | STUNNEL : stunnel 4.04 |
| Original document | | Brian Hatch, Stunnel: RSA timing attacks / key discovery (22.03.2003) |
| | | Ben Laurie, [ADVISORY] Timing Attack on OpenSSL (18.03.2003) |
| | | David Brumley, Vulnerability in OpenSSL (15.03.2003) |
| | | Jonas Eriksson, OpenSSL 0.9.7a and 0.9.6i released (19.02.2003) |
CGI bugs from DWClan
updated since 22.03.2003 | | Published: | | 24.03.2003 | | Source: | | DWCLAN | | SecurityVulns ID: | | 2677 | | Type: | | remote | | Level: | | 5/10 | | Description: | | 13 vulnerable CGI applications are reported by DWClan. |
| Affected: | | HOTTHINGS : SimpleChat! 1.3 | | | | ADVANCEDGUESTBOO : Advanced Guestbook 2.3 | | | | PROXY2 : Advanced Poll 2.02 | | | | AZDG : AzDGGuestbook 1.0 | | | | BLACKBOOK : BlackBook 1.0 | | | | PLANETMOON : Guestbook tr3.a | | | | DIAMONDBACK : HyperBook Guestbook 1.12 | | | | JHU : phpESP 1.11 | | | | SADRAVEN : Sad-Raven GuestBook 1.1 | | | | 2YD : WFGuestBook 1.1 | | | | 2YD : WFVote 0.2 | | | | HPE : HPE 4.0 | | | | VCHAT : vchat |
| Original document | | subj, vchat (24.03.2003) |
| | | subj, HPE - News Portal Engine (24.03.2003) |
| | | subj, WFVote (22.03.2003) |
| | | subj, WFGuestBook (22.03.2003) |
| | | subj, Sad-Raven GuestBook (22.03.2003) |
| | | subj, phpESP (php Easy Survey Package) (22.03.2003) |
| | | subj, HyperBook Guestbook (22.03.2003) |
| | | subj, Guestbook tr3.a (22.03.2003) |
| | | subj, BlackBook (22.03.2003) |
| | | subj, AzDGGuestbook (22.03.2003) |
| | | subj, Advanced Poll (22.03.2003) |
| | | subj, Advanced Guestbook (22.03.2003) |
| | | subj, SimpleChat (22.03.2003) |
|
|
|
|
|
| |
|
| |
