Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:23.01.2006
Source:
SecurityVulns ID:5679
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:ZOPH : Zoph 0.5
 AZBB : AZ Bulletin Board 1.1
Original documentdocumentSECUNIA, [SA18565] AZ Bulletin Board Cross-Site Scripting Vulnerabilities (23.01.2006)
 documentSECUNIA, [SA18563] Zoph SQL Injection Vulnerabilities (23.01.2006)

tor hidden services information disclosure
Published:23.01.2006
Source:
SecurityVulns ID:5680
Type:client
Threat Level:
5/10
Description:It's possible to discover location of hidden service by setting up malicious tor server, accessing hidden service repeatedly and tracking who builds circuits.
Affected:TOR : tor 0.1
Original documentdocumentSECUNIA, [SA18576] Tor Hidden Service Disclosure Weakness (23.01.2006)

lsh SSH server file descriptor leak
Published:23.01.2006
Source:
SecurityVulns ID:5683
Type:local
Threat Level:
5/10
Description:Random generator's seed file is not closed before executing command processor.
Affected:LSH : lsh 2.0
Original documentdocumentSECUNIA, [SA18564] LSH lshd Seed-file File Descriptor Leak Vulnerability (23.01.2006)

libTIFF TIFF library NULL pointer dereference
Published:23.01.2006
Source:
SecurityVulns ID:5682
Type:library
Threat Level:
5/10
Description:tif_dir.c NULL pointer dereference.
Affected:LIBTIFF : libtiff 3.8
Original documentdocumentSECUNIA, [SA18587] LibTIFF TIFFVSetField Denial of Service Vulnerability (23.01.2006)

FetchMail mail processor DoS
updated since 23.01.2006
Published:24.01.2006
Source:
SecurityVulns ID:5681
Type:remote
Threat Level:
5/10
Description:Error on bounce message generation cause uninitialized memory reference.
Affected:FETCHMAIL : fetchmail 6.3
Original documentdocumentma+nomail_(at)_dt.e-technik.uni-dortmund.de, [VulnWatch] fetchmail security announcement fetchmail-SA-2006-01 (CVE-2006-0321) (24.01.2006)
 documentSECUNIA, [SA18571] Fetchmail Bounced Message Denial of Service Vulnerability (23.01.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod