Computer Security

Search:Vulnerability:24.02.2003
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



eject file information leakage
Published:24.02.2003
Source:BUGTRAQ
SecurityVulns ID:2611
Type:local
Level:4/10
Description:File existance in non-readable directory may be checked.
Affected:EJECT : eject 2.0
Original documentdocumentnordi, eject 2.0.10 vulnerability (24.02.2003)
Discuss:Read or add your comments to this news (0 comments)

Telindus weak password encryption
updated since 30.12.2002
Published:24.02.2003
Source:BUGTRAQ
SecurityVulns ID:2504
Type:m-i-t-m
Level:5/10
Description:During configuration trnsmition password is sent on wire in weak encryption.
Affected:TELINDUS : Telindus 1120
 ARESCOM : Arescom NetDSL 1000
Original documentdocumentElia Florio, Weak Encryption Scheme in Telindus 112x (24.02.2003)
 documentElia Florio, Telindus 112x ADSL Router - Weak Password Encryption (30.12.2002)
Discuss:Read or add your comments to this news (0 comments)

CGI bugs
updated since 18.02.2003
Published:24.02.2003
Source:BUGTRAQ
SecurityVulns ID:2602
Type:remote
Level:5/10
Affected:PHPBB : phpBB 2.0
 PHPNUKE : PHPNuke 6.0
 MYPHPNUKE : myPHPNuke 1.8
 PHPBOARD : PHP-Board
 DOTBR : DotBr 0.1
 DFORUM : D-FORUM 1.11
 KIETU : Kietu 2.3
 CPANEL : Cpanel 5
 SAGE : Sage 1.0
 PHPNUKE : PHPNuke 5.6
 PHPBB : phpBB 2.01
 PHPBB : phpBB 2.02
 NUKEDCLAN : Nuked-Klan 1.3
 TEFONLINE : Myguestbook 3.0
 WWWBOARD : WWWboard 2.0
Original documentdocumentGrégory Le Bras | Security Corporation, [SCSA-007] Cross Site Scripting Vulnerabilities in WWWBoard (24.02.2003)
 documentfrog frog, Myguestbook (PHP) (22.02.2003)
 documentGrégory Le Bras | Security Corporation, [SCSA-006] XSS & Function Execution Vulnerabilities in Nuked-Klan (22.02.2003)
 documenteuronymous, XSS and Path Disclosure in Sage (21.02.2003)
 documentLucas Armstrong, phpBB Security Bugs (21.02.2003)
 documentLucas Armstrong, PHPNuke SQL Injection (21.02.2003)
 documentTacettin Karadeniz, myphpnuke xss (20.02.2003)
 documenteuronymous, XSS and Path Disclosure in Sage (20.02.2003)
 documentpokleyzz, Cpanel 5 and below remote command execution and local root vulnerabilities (19.02.2003)
 documentfrog frog, Kietu ( PHP ) (19.02.2003)
 documentfrog frog, D-Forum (PHP) (18.02.2003)
 documentfrog frog, DotBr (PHP) (18.02.2003)
 documentfrog frog, php-Board (php) (18.02.2003)
Files:exploit for Cpanel 5 remote command execution.
Discuss:Read or add your comments to this news (0 comments)

zlib gzprintf() buffer overflow
Published:24.02.2003
Source:BUGTRAQ
SecurityVulns ID:2610
Type:library
Level:6/10
Description:Buffer overflow if resulting string exceeds 4K buffer.
Affected:ZLIB : zlib 1.1
Discuss:Read or add your comments to this news (0 comments)

eSafe gateway and Check Point FW-1 protection bypass
updated since 07.02.2003
Published:24.02.2003
Source:BUGTRAQ
SecurityVulns ID:2572
Type:remote
Level:4/10
Description:Archives packed with lates RA version are not checked.
Affected:CHECKPOINT : Firewall-1 NG
 ALADDIN : eSafe gateway 3.5
Original documentdocumentOfer Elzam, Vendor Response to - eSafe gateway and Check Point FW-1 protection bypass (24.02.2003)
 documentIgor U.Miturin, Checkpoint Firewall fails on CVP scanning for large files (07.02.2003)
 documentIgor U.Miturin, eSafe gateway fails to catch virii if used in CVP (07.02.2003)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru