Search:Vulnerability:24.03.2004 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Multiple ecartis bugs
updated since 14.08.2003
Published: 24.03.2004
Source: BUGTRAQ
SecurityVulns ID: 3057
Type: remote
Level: 6/10
Description: Buffer overflows, maillist password disclosure.

Affected: ECARTIS : ecartis 1.0

Original document DEBIAN, [SECURITY] [DSA 467-1] New ecartis packages fix several vulnerabilities (24.03.2004)

Timo Sirainen, Ecartis 1.0 multiple vulnerabilities (14.08.2003)

Discuss: Read or add your comments to this news (0 comments)

xweb directory traversal
Published: 24.03.2004
Source: BUGTRAQ
SecurityVulns ID: 3542
Type: remote
Level: 5/10

Affected: XWEB : xweb 1.0

Original document Donato Ferrante, directory traversal in xweb 1.0 (24.03.2004)

Discuss: Read or add your comments to this news (0 comments)

Solaris vfs_getvfssw() call directory traversal
Published: 24.03.2004
Source: BUGTRAQ
SecurityVulns ID: 3544
Type: local
Level: 7/10
Description: Vulnerability allow local user to load kernel module.

Affected: SUN : Solaris 8
SUN : Solaris 9
SUN : Solaris 10

Original document Dave Aitel, Immunity Advisory: Solaris local kernel root (24.03.2004)

Files: Solaris vfs_getvfssw() local kernel exploit
Discuss: Read or add your comments to this news (0 comments)

Apache mod_survey crossite scripting
Published: 24.03.2004
Source: BUGTRAQ
SecurityVulns ID: 3545
Type: remote
Level: 5/10

Affected: APACHE : Mod_Survey 3.0
APACHE : Mod_Survey 3.2

Original document Joel Palmius, Mod_Survey security advisory: Script injection bug (24.03.2004)

Discuss: Read or add your comments to this news (0 comments)

libREP buffer overflow
Published: 24.03.2004
Source: SECURITEAM
SecurityVulns ID: 3546
Type: library
Level: 5/10

Affected: REP : rep 0.15

Original document SECURITEAM, [UNIX] Local Buffer Overflow in REP (Long ARG) (24.03.2004)

Discuss: Read or add your comments to this news (0 comments)

TrendMicro Interscan VirusWall directory traversal
Published: 24.03.2004
Source: BUGTRAQ
SecurityVulns ID: 3547
Type: remote
Level: 6/10
Description: Directory traversal in HTTP proxy service.

Affected: TRENDMICRO : Interscan VirusWall 3.51

Original document trihuynh_(at)_zeeup.com, TrendMacro Interscan Viruswall Directory Traversal (24.03.2004)

Discuss: Read or add your comments to this news (0 comments)

CGI bugs
updated since 24.03.2004
Published: 28.03.2004
Source:
SecurityVulns ID: 3541
Type: remote
Level: 5/10

Affected: PHPBB : phpBB 2.0
CENTRINITY : FirstClass 7.1
INVISION : Invision Power Top Site List 1.1
PHPNUKE : Php-Nuke 7.1
E107 : e107 0.613
INVISION : Invision Gallery 1.0
EXPINION : Member Management System 2.1
EXPINION : News Manager Lite 2.5
PHPNUKE : MS Analysis 2.0
CPANEL : cPanel 9.1
XMB : XMB 1.9
BBLOG : BBlog 0.7
LKCC : Achims Guestbook

Original document 4��, �� Achims Guestbook (28.03.2004)

penfold_(at)_dlofnep.com, bblog 0.7.2 cross site scripting (27.03.2004)

Janek Vind, [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] (27.03.2004)

document Janek Vind, [waraxe-2004-SA#012 - Multiple vulnerabilities in XMB Forum 1.8 SP3 and 1.9 beta] (27.03.2004)

Ferruh Mavituna, [Full-Disclosure] Blogger XSS Vulnerability (26.03.2004)

Fable, More Cpanel Vuls (cross site scripting) (24.03.2004)

Janek Vind, [waraxe-2004-SA#008 - easy way to get superadmin rights in PhpNuke 6.x-7.1.0] (24.03.2004)

document Janek Vind, [waraxe-2004-SA#011 - Multiple vulnerabilities in MS Analysis v2.0 module for PhpNuke] (24.03.2004)

Janek Vind, [waraxe-2004-SA#009 - Non-critical Sql injection and XSS bug in PhpBB 2.0.6c] (24.03.2004)

Manuel López, Vulnerabilities in News Manager Lite 2.5 & News Manager Lite administration (24.03.2004)

document Manuel López, Vulnerabilities in Member Management System 2.1 (24.03.2004)

JeiAr, Invision Power Top Site List SQL Injection Vulnerability (24.03.2004)

JeiAr, Invision Gallery SQL Injection Vulnerabilities (24.03.2004)

JeiAr, Phpbb 2.0.7a And Earlier Secuity Issues (24.03.2004)

document Cheng Peng Su, phpBB profile.php Cross Site Scripting Vulnerability (24.03.2004)

JET (aka: adm1n), XSS in e107 forum (24.03.2004)

JET (aka: adm1n), XSS � �� (24.03.2004)

Richard Maudsley, Centrinity FirstClass HTTP Server Cross Site Scripting (24.03.2004)

Discuss: Read or add your comments to this news (1 comments)

dtlogin buffer overflow
updated since 24.03.2004
Published: 15.05.2004
Source: BUGTRAQ
SecurityVulns ID: 3543
Type: remote
Level: 7/10
Description: Buffer overflow during XDMCP parsing.

Affected: HP : HP-UX 11.00
SUN : Solaris 8
HP : HP-UX 11.11
HP : HP-UX 11.04
HP : HP-UX 11.22
HP : HP-UX 11.23

Original document HP, [security bulletin] SSRT4721 rev.0 HP-UX dtlogin unauthorized privileged access, DoS (15.05.2004)

Dave Aitel, Immunity Advisory: dtlogin remote root (24.03.2004)

Discuss: Read or add your comments to this news (0 comments)