Computer Security

Search:Vulnerability:23.06.2006
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:23.06.2006
Source:BUGTRAQ
SecurityVulns ID:6292
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:VLAB : vlBook 1.02
 WEBMIN : Webmin 1.270
Original documentdocumentSNS, [SNS Advisory No.88] Webmin Directory Traversal Vulnerability (23.06.2006)
 documentSECUNIA, [SA20774] BNBT EasyTracker Cross-Site Scripting Vulnerabilities (23.06.2006)
 documentSECUNIA, [SA20760] Project EROS bbsengine Multiple Vulnerabilities (23.06.2006)
 documentSECUNIA, [SA20777] Webmin Directory Traversal Vulnerability (23.06.2006)
 documentomnipresent_(at)_email.it, vlbook 1.2 XSS Attack (23.06.2006)
 documentomnipresent_(at)_email.it, vlbook 1.2 XSS Attack (23.06.2006)
 documentSam Thomas, [Full-disclosure] NDSD-06-001 (23.06.2006)
Files:yabbse exploit
Discuss:Read or add your comments to this news (0 comments)

Opera integer overflow
Published:23.06.2006
Source:BUGTRAQ
SecurityVulns ID:6289
Type:client
Level:6/10
Description:Integer overflow leads to buffer overflow on space allocation for JPEG image.
Affected:OPERA : Opera 8.54
Original documentdocumentVigilantMinds Advisories, VigilantMinds Advisory: Opera JPEG Processing Integer Overflow Vulnerability (VMSA-20060621-01) (23.06.2006)
Discuss:Read or add your comments to this news (0 comments)

Real Helix RTSP Server memory corruption
Published:23.06.2006
Source:FULL-DISCLOSURE
SecurityVulns ID:6291
Type:remote
Level:6/10
Description:Heap memory corruption on HTTP headers parsing.
Affected:REAL : Helix DNA Server 11.0
 REAL : Helix DNA Server 10.0
Original documentdocumentnoreply_(at)_musecurity.com, [Full-disclosure] [MU-200606-01] Real Helix RTSP Server Heap Corruption Vulnerabilities (23.06.2006)
Discuss:Read or add your comments to this news (0 comments)

Cisco Secure ACS weak authentication
Published:23.06.2006
Source:BUGTRAQ
SecurityVulns ID:6293
Type:remote
Level:5/10
Description:After authentication user is redirected to dynamic port. Authentication is perfomed only by target port and client IP address.
Affected:CISCO : Secure ACS for Windows 4.0
Original documentdocumentDarren Bounds, [Full-disclosure] Cisco Secure ACS Weak Session Management Vulnerability (23.06.2006)
Discuss:Read or add your comments to this news (0 comments)

Mozilla Network Security Services library memory leak
updated since 23.06.2006
Published:27.06.2006
Source:NETWORKSECURITY
SecurityVulns ID:6290
Type:library
Level:4/10
Description:256 bytes are leaked on every RSA cryptographic operation.
Affected:MOZILLA : Mozilla 1.7
 SUN : K-Meleon 0.9
 MOZILLA : Thunderbird 1.5
 NETSCAPE : Netscape 8.1
 MOZILLA : nss 3.10
 AOL : AOL Instant Messenger 5.0
Original documentdocumentJuha-Matti Laurio, Netscape NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, Mozilla Suite NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, Mozilla Thunderbird NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, K-Meleon NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, AOL Instant Messenger NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, Mozilla Firefox NSS Library Memory Leak Vulnerability (23.06.2006)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server