 |
|
|
|
Apple Safari for Windows buffer overflow and content spoofing
updated since 22.03.2008 | | Published: |  | 23.03.2008 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 8819 | | Type: |  | client | | Level: |  | 5/10 | | Description: |  | Buffer overflow on oversized download filename. |
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: | | 23.03.2008 | | Source: | | | | SecurityVulns ID: | | 8824 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
|
| Mitsubishi GB-50A unauthorized access | | Published: | | 23.03.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8823 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Access authentication is not implemented. |
unzip / bzip2 DoS
updated since 23.03.2008 | | Published: | | 30.03.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8822 | | Type: | | remote | | Level: | | 5/10 |
| Affected: |  | BZIP : bzip2 1.0 | | | | ANALOG : analog 6.0 | | CVE: |  | CVE-2008-1372 (bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats.) | | | | CVE-2008-0888 (The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data.) |
|
|
|
|
|
|
|
|
