Search:Vulnerability:23.08.2005 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Cisco Intrusion Prevention System privilege escalation
Published: 23.08.2005
Source: BUGTRAQ
SecurityVulns ID: 5136
Type: local
Level: 5/10
Description: Users with OPERATOR or VIEWER privileges can gain full administrative control.

Affected: CISCO : Cisco Intrusion Detection Systems 5.0

Original document CISCO, Cisco Security Advisory: Cisco Intrusion Prevention System Vulnerable to Privilege Escalation (23.08.2005)

Discuss: Read or add your comments to this news (0 comments)

slocate file search utility DoS
Published: 23.08.2005
Source: FULL-DISCLOSURE
SecurityVulns ID: 5137
Type: local
Level: 5/10
Description: updatedb fails to handle long directory paths.

Affected: SLOCATE : slocate 2.7

Original document MANDRIVA, [Full-disclosure] MDKSA-2005:147 - Updated slocate packages fix vulnerability (23.08.2005)

Discuss: Read or add your comments to this news (0 comments)

Multiple Computer Associates software vulnerabilities
updated since 22.08.2005
Published: 23.08.2005
Source: SECUNIA
SecurityVulns ID: 5130
Type: remote
Level: 7/10
Description: CA Message Queuing service buffer overflow, DoS and privilege escalation.

Affected: CA : Unicenter Remote Control 6.0
CA : Unicenter Performance Management for OpenVMS r2.4
CA : AdviseIT 2.4
CA : Advantage Data Transport 3.0
CA : BrightStor SAN Manager 1.1
CA : BrightStor SAN Manager 11.1
CA : BrightStor Portal 11.1
CA : CleverPath OLAP 5.1
CA : CleverPath ECM 3.5
CA : CleverPath Predictive Analysis Server 2.0
CA : CleverPath Predictive Analysis Server 3.0
CA : CleverPath Aion 10.0
CA : eTrust Admin 2.01
CA : eTrust Admin 2.04
CA : eTrust Admin 2.07
CA : eTrust Admin 2.09
CA : eTrust Admin 8.0
CA : eTrust Admin 8.1
CA : Unicenter Application Performance Monitor 3.0
CA : Unicenter Application Performance Monitor 3.5
CA : Unicenter Asset Management 3.1
CA : Unicenter Asset Management 3.2
CA : Unicenter Asset Management 4.0
CA : Unicenter Data Transport Option 2.0
CA : Unicenter Enterprise Job Manager 1.0
CA : Unicenter Jasmine 3.0
CA : Unicenter Management for WebSphere MQ 3.5
CA : Unicenter Management for Microsoft Exchange 4.0
CA : Unicenter Management for Microsoft Exchange 4.1
CA : Unicenter Management for Lotus Notes/Domino 4.0
CA : Unicenter Management for Web Servers 5.0
CA : Unicenter NSM 3.0
CA : Unicenter NSM 3.1
CA : Unicenter NSM Wireless Network Management Option 3.0
CA : Unicenter Service Level Management 3.0
CA : Unicenter Service Level Management 3.5
CA : Unicenter Software Delivery 3.0
CA : Unicenter Software Delivery 3.1
CA : Unicenter Software Delivery 4.0
CA : Unicenter TNG 2.1
CA : Unicenter TNG 2.2
CA : Unicenter TNG 2.4

Original document CA, 32919 - Computer Associates Message Queuing (CAM/CAFT) multiple vulnerabilities (23.08.2005)

SECUNIA, [SA16513] CA Various Products Message Queuing Vulnerabilities (22.08.2005)

Discuss: Read or add your comments to this news (0 comments)

Cisco Monitoring Center for Security / CiscoWorks Management Center SSL certificate spoofing
Published: 23.08.2005
Source: BUGTRAQ
SecurityVulns ID: 5135
Type: remote
Level: 5/10
Description: Bug in certificate validation allows to spoof IDS / IPS certificate.

Affected: CISCO : CiscoWorks Management Center for IDS Sensors 2.0
CISCO : CiscoWorks Management Center for IDS Sensors 2.1
CISCO : CiscoWorks Monitoring Center for Security 2.0
CISCO : CiscoWorks Monitoring Center for Security 2.1

Original document CISCO, Cisco Security Advisory: SSL Certificate Validation Vulnerability in IDS Management Software (23.08.2005)

Discuss: Read or add your comments to this news (0 comments)

Microsoft IS error pages information leak
Published: 23.08.2005
Source: BUGTRAQ
SecurityVulns ID: 5134
Type: remote
Level: 6/10
Description: Request variable SERVER_NAME controllable by client is used to validate server access.

Affected: MICROSOFT : Internet Information Server 5.0
MICROSOFT : Internet Information Server 5.1
MICROSOFT : Internet Information Server 6.0

Original document inge_eivind.henriksen_(at)_chello.no, Remote IIS 5.x and IIS 6.0 Server Name Spoof (23.08.2005)

Discuss: Read or add your comments to this news (0 comments)

mutt mail agent buffer overflow
updated since 18.08.2005
Published: 23.08.2005
Source: BUGTRAQ
SecurityVulns ID: 5119
Type: client
Level: 6/10
Description: Buffer overflow on parsing messages from mailbox.

Affected: MUTT : mutt 1.4
MUTT : Mutt 1.5

Original document SECUNIA, [SA16485] mutt Attachment Decoding Buffer Overflow Vulnerability (23.08.2005)

Peter Valchev, [Full-disclosure] mutt buffer overflow (18.08.2005)

Discuss: Read or add your comments to this news (0 comments)

test server