Multiple bugs in SolarWinds TFTP
Published:		25.10.2002
Source:		BUGTRAQ
SecurityVulns ID:		2366
Type:		remote
Level:		5/10
Description:		Directory traversal, invalid exception handling.

Affected:

SOLARWINDS : SolarWinds TFTP Server 5.0

Original document		D4rkGr3y, TFTP Server DoS (25.10.2002)
		IDEFENSE, iDEFENSE Security Advisory 10.24.02: Directory Traversal in SolarWinds TFTP Server (25.10.2002)

Discuss:

Read or add your comments to this news (0 comments)

File protection bypass in BRS WebWeaver
Published:		25.10.2002
Source:		BUGTRAQ
SecurityVulns ID:		2368
Type:		remote
Level:		5/10
Description:		URL like http://host/./secret/ allows access to password protected files.

Affected:

BRS : WebWeaver 1.01

Original document

Tamer Sahin, [SecurityOffice] BRS WebWeaver Web Server v1.01 Protected File Access Vulnerability (25.10.2002)

Discuss:

Read or add your comments to this news (0 comments)

Signed content spoofing in ECDSA
Published:		25.10.2002
Source:		A.V.KOMLIN
SecurityVulns ID:		2369
Type:		library
Level:		6/10
Description:		Standard allows to generate private key in a way it will produce same signature for 2 different documents.

Original document

A.V.KOMLIN, Подмена подписанного документа в ECDSA (25.10.2002)

Discuss:

Read or add your comments to this news (0 comments)

File protection bypass in LightServe updated since 25.10.2002
Published:		15.11.2002
Source:		BUGTRAQ
SecurityVulns ID:		2367
Type:		remote
Level:		5/10
Description:		It is possible to construct a web request which is capable of accessing the contents of password protected files/folders.

Affected:		PERCEPTION : Liteserve Web Server 2.0
		PERCEPTION : LiteServe 2.03

Original document		Matthew Murphy, Perception LiteServe HTTP CGI Disclosure Vulnerability (15.11.2002)
		Tamer Sahin, [SecurityOffice] Liteserve Web Server v2.0 Authorization Bypass Vulnerability (25.10.2002)

Files:		LiteServe 2.02 and prior - CGI Disclosure
Discuss:		Read or add your comments to this news (0 comments)