Search:Vulnerability:22.04.2006 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

SolarWinds free Windows TFTP server directory traversal
Published: 22.04.2006
Source: BUGTRAQ
SecurityVulns ID: 6037
Type: remote
Level: 5/10
Description: Directory traversal with requests like get NUL/....//....//WINNT/win.ini

Affected: SOLARWINDS : SolarWinds TFTP Server 8.1

Original document Rapid 7 Security Advisories, Rapid7 Advisory R7-0019: Directory traversal vulnerability in SolarWinds TFTP Server for Windows (22.04.2006)

Discuss: Read or add your comments to this news (0 comments)

Multiple Symantec Scan Engine network content filtering server security vulnerabilities
Published: 22.04.2006
Source: BUGTRAQ
SecurityVulns ID: 6035
Type: remote
Level: 6/10
Description: Administrative interface passwords are checked on client side, fixed encryption key is used, critical information leak.

Affected: SYMANTEC : Symantec Scan Engine 5.0

Original document Rapid 7 Security Advisories, Rapid7 Advisory R7-0023: Symantec Scan Engine File Disclosure Vulnerability (22.04.2006)

Rapid 7 Security Advisories, Rapid7 Advisory R7-0022: Symantec Scan Engine Known Immutable DSA Private Key (22.04.2006)

Rapid 7 Security Advisories, Rapid7 Advisory R7-0021: Symantec Scan Engine Authentication Fundamental Design Error (22.04.2006)

document SYMANTEC, [Symantec Security Advisor] Symantec Scan Engine Multiple Vulnerabilities (22.04.2006)

Files: Remotely change the administrator password (or password hash) of Symantec Scan Engine
Discuss: Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published: 22.04.2006
Source:
SecurityVulns ID: 6036
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: CORENEWS : CoreNews 2.0
LOGMETHODS : logMethods 0.9
DFORUM : dForum 1.5
MKPORTAL : MKPortal 1.1
SIMPLOG : Simplog 0.93

Original document Mustafa Can Bjorn IPEKCI, [Full-disclosure] Advisory: CoreNews <= 2.0.1 Multiple Remote Vulnerabilities. (22.04.2006)

Mustafa Can Bjorn IPEKCI, [Full-disclosure] Advisory: Simplog <= 0.93 Multiple Remote Vulnerabilities. (22.04.2006)

Mustafa Can Bjorn IPEKCI, [Full-disclosure] vBulletin <= 3.5.4 with MKPortal 1.1 Remote SQL Injection Vulnerability. (22.04.2006)

document Mustafa Can Bjorn IPEKCI, [Full-disclosure] dForum <= 1.5 Multiple Remote File Inclusion Vulnerabilities. (22.04.2006)

simo64_(at)_gmail.com, Scry Gallery Directory Traversal & Full Path Disclosure Vulnerabilites (22.04.2006)

r0t, logMethods XSS vuln. (22.04.2006)

Files: CoreNews <= 2.0.1 Remote SQL Injection Exploit
Simplog <= 0.93 Remote SQL Injection Exploit
Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server