 |
|
|
|
| SurgeFTP FTP server DoS | | Published: |  | 27.02.2008 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 8722 | | Type: |  | remote | | Level: |  | 4/10 | | Description: |  | Administration web interface Content-Length memory consumption. |
| Cups multiple security vulnerabilities | | Published: | | 27.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8724 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Code execution on URI handling, multiple DoS conditions. |
| Affected: |  | CUPS : cups 1.1 | | | | CUPS : cups 1.2 | | CVE: |  | CVE-2008-0886 | | | | CVE-2008-0882 (Double free vulnerability in the process_browse_data function in CUPS 1.3.5 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via crafted UDP Browse packets to the cupsd port (631/udp), related to an unspecified manipulation of a remote printer. NOTE: some of these details are obtained from third party information.) | | | | CVE-2008-0597 | | | | CVE-2008-0596 | | | | CVE-2008-0047 | | | | CVE-2007-5848 (Buffer overflow in CUPS in Apple Mac OS X 10.4.11 allows local admin users to execute arbitrary code via a crafted URI to the CUPS service.) |
Ghostscript buffer overflow
updated since 27.02.2008 | | Published: | | 27.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8726 | | Type: | | local | | Level: | | 4/10 |
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: | | 27.02.2008 | | Source: | | | | SecurityVulns ID: | | 8721 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
|
| Nortel IP Phone DoS | | Published: | | 27.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8723 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Large fragmented ICMP packet causes device to crash. |
Mozilla Firefox / Opera information leak
updated since 16.02.2008 | | Published: | | 27.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8697 | | Type: | | client | | Level: | | 5/10 | | Description: | | Error on BMP files displaying allows to read content of heap memory. |
| Affected: | | MOZILLA : Firefox 2.0 | | | | MOZILLA : Thunderbird 2.0 | | | | MOZILLA : SeaMonkey 1.1 | | | | OPERA : Opera 9.50 | | CVE: | | CVE-2008-0420 (modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 does not properly perform certain calculations related to the mColors table, which allows remote attackers to read portions of memory uninitialized via a crafted 8-bit bitmap (BMP) file that triggers an out-of-bounds read within the heap, as demonstrated using a CANVAS element; or cause a denial of service (application crash) via a crafted 8-bit bitmap file that triggers an out-of-bounds read. NOTE: the initial public reports stated that this affected Firefox in Ubuntu 6.06 through 7.10.) |
| Symantec antiviral engine API multiple security vulnerabilities | | Published: | | 27.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8725 | | Type: | | library | | Level: | | 6/10 | | Description: | | Multiple DoS conditions and buffer overflow on RAR archives parsing. |
| Mozilla Thunderbird buffer overflow | | Published: | | 27.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8727 | | Type: | | client | | Level: | | 8/10 | | Description: | | Buffer overflow on external-body MIME type parsing. |
|
|
|
|
|
|
|
|
