Computer Security
[EN] securityvulns.ru no-pyccku


Opera integer overflow
Published:23.06.2006
Source:
SecurityVulns ID:6289
Type:client
Threat Level:
6/10
Description:Integer overflow leads to buffer overflow on space allocation for JPEG image.
Affected:OPERA : Opera 8.54
Original documentdocumentVigilantMinds Advisories, VigilantMinds Advisory: Opera JPEG Processing Integer Overflow Vulnerability (VMSA-20060621-01) (23.06.2006)

Real Helix RTSP Server memory corruption
Published:23.06.2006
Source:
SecurityVulns ID:6291
Type:remote
Threat Level:
6/10
Description:Heap memory corruption on HTTP headers parsing.
Affected:REAL : Helix DNA Server 11.0
 REAL : Helix DNA Server 10.0
Original documentdocumentnoreply_(at)_musecurity.com, [Full-disclosure] [MU-200606-01] Real Helix RTSP Server Heap Corruption Vulnerabilities (23.06.2006)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:23.06.2006
Source:
SecurityVulns ID:6292
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:VLAB : vlBook 1.02
 WEBMIN : Webmin 1.270
Original documentdocumentSNS, [SNS Advisory No.88] Webmin Directory Traversal Vulnerability (23.06.2006)
 documentSECUNIA, [SA20774] BNBT EasyTracker Cross-Site Scripting Vulnerabilities (23.06.2006)
 documentSECUNIA, [SA20760] Project EROS bbsengine Multiple Vulnerabilities (23.06.2006)
 documentSECUNIA, [SA20777] Webmin Directory Traversal Vulnerability (23.06.2006)
 documentomnipresent_(at)_email.it, vlbook 1.2 XSS Attack (23.06.2006)
 documentomnipresent_(at)_email.it, vlbook 1.2 XSS Attack (23.06.2006)
 documentSam Thomas, [Full-disclosure] NDSD-06-001 (23.06.2006)
Files:yabbse exploit

Cisco Secure ACS weak authentication
Published:23.06.2006
Source:
SecurityVulns ID:6293
Type:remote
Threat Level:
5/10
Description:After authentication user is redirected to dynamic port. Authentication is perfomed only by target port and client IP address.
Affected:CISCO : Secure ACS for Windows 4.0
Original documentdocumentDarren Bounds, [Full-disclosure] Cisco Secure ACS Weak Session Management Vulnerability (23.06.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod