 |
|
|
|
| Mailtraq privilege escalation | | Published: |  | 22.11.2004 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 4201 | | Type: |  | local | | Level: |  | 5/10 | | Description: |  | It's possible to execute external application with LocalSystem account. |
| Altiris AClient privilege escalation | | Published: | | 22.11.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 4202 | | Type: | | local | | Level: | | 5/10 | | Description: | | It's possible to execute external application with local system privileges. |
| Danware NetOp information leak | | Published: | | 22.11.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 4203 | | Type: | | remote | | Level: | | 4/10 | | Description: | | System information leak. |
| TC-IDE unfiltered shell characters problem | | Published: | | 22.11.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 4204 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Shell characters filtering problem on external program execution in multiple utilities. |
| Sacred DoS | | Published: | | 22.11.2004 | | Source: | | FULL-DISCLOSURE | | SecurityVulns ID: | | 4206 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Server doesn't have connection timeout and doesn't support more than 17 connections. |
Timbuktu DoS
updated since 21.01.2002 | | Published: | | 22.11.2004 | | Source: | | VULN-DEV | | SecurityVulns ID: | | 1700 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Large number of connections causes service to crash. |
CGI bugs
updated since 22.11.2004 | | Published: | | 27.11.2004 | | Source: | | | | SecurityVulns ID: | | 4205 | | Type: | | remote | | Level: | | 5/10 |
| Original document |  | zee_(at)_psybnc.it, Phpbb id: 10701 update and Attachmodule add-on Directory Traversal (27.11.2004) |
| | | John Cobb, PnTresMailer code browser 6.03 Vulnerabilities (27.11.2004) |
| | | Cyrille Barthelemy, phpCMS <= 1.2.1 Xss Vulnerability, Information disclosure (27.11.2004) |
| | | Zero-X ScriptKiddy, EZshopper is still vulnerable against Directory Traversal. (27.11.2004) |
| | | SECUNIA, [SA13285] JSPWiki "query" Parameter Cross-Site Scripting Vulnerability (24.11.2004) |
| | | SECUNIA, [SA13300] PHPNews "mid" Parameter SQL Injection Vulnerability (24.11.2004) |
| | | SECUNIA, [SA13287] SugarCRM Unspecified Security Issues (24.11.2004) |
| | | SECUNIA, [SA13261] SecretSanta Security Bypass Vulnerability (24.11.2004) |
| | | GENTOO, [Full-Disclosure] [ GLSA 200411-33 ] TWiki: Arbitrary command execution (24.11.2004) |
| | | SSR Team, [Full-Disclosure] STG Security Advisory: [SSA-20041122-12] Zwiki XSS vulnerability (24.11.2004) |
| | | SSR Team, [Full-Disclosure] STG Security Advisory: [SSA-20041122-10] KorWeblog directory traversal vulnerability (24.11.2004) |
| | | Steve, PHPKIT SQL Injection, XSS (23.11.2004) |
| | | axl daivy, IpbProArace 2.5.x SQL injection. (22.11.2004) |
|
|
|
|
|
|
|
|
