Computer Security
[EN] securityvulns.ru no-pyccku


Juniper Netscreen information leak
Published:27.04.2009
Source:
SecurityVulns ID:9871
Type:remote
Threat Level:
3/10
Description:/about.html page shows device version information.
Affected:JUNIPER : ScreenOS 5.4
 JUNIPER : ScreenOS 6.2
 JUNIPER : ScreenOS 6.1
Original documentdocumentsecurity_(at)_procheckup.com, Juniper Advisory (27.04.2009)

Samsung cellular phones unauthorized access
Published:27.04.2009
Source:
SecurityVulns ID:9872
Type:remote
Threat Level:
7/10
Description:SMS Provisioning messages are not authenticated, allowing device configuration, including PIN codes change.
Affected:SAMSUNG : Samsung M8800 Innov8
 SAMSUNG : Samsung SGH-J750
Original documentdocumentMobile Security Lab, MSL-2009-001 - Samsung Missing Provisioning Authentication (27.04.2009)

Aruba Mobility Controller unauthorized access
Published:27.04.2009
Source:
SecurityVulns ID:9873
Type:remote
Threat Level:
7/10
Description:Vulnerability in SSH key check allows unauthenticated SSH access to device.
Affected:ARUBA : ArubaOS 3.2
 ARUBANETWORKS : ArubaOS 3.3
 ARUBA : ArubaOS RN 1.0
 ARUBA : ArubaOS RN 2.0
Original documentdocumentARUBA, Aruba Advisory ID: AID-42309 Management User Authentication Bypass Vulnerability When Using Public Key Based SSH Authentication (27.04.2009)

iodinet DoS
Published:27.04.2009
Source:
SecurityVulns ID:9875
Type:remote
Threat Level:
5/10
Description:DoS on receiving malformed packet.
Affected:IODINETD : iodinetd 0.4
Original documentdocumentAlbert Sellarès, Remote iodinetd DoS vulnerability on Debian Lenny (27.04.2009)
Files:iodined <= 0.4.2 DoS exploit

Browsers and search systems URL spoofing
updated since 27.04.2009
Published:03.05.2009
Source:
SecurityVulns ID:9874
Type:remote
Threat Level:
5/10
Description:By using %xx in host name it's possible to spoof URL origin.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 MICROSOFT : Windows Vista
 MOZILLA : Firefox 1.7
Original documentdocumentMustLive, URL Spoofing vulnerabilities in browsers and search engines (03.05.2009)
 documentMustLive, URL Spoofing vulnerability in GoogleBot, Yahoo! Slurp, Mozilla and Internet Explorer #2 (01.05.2009)
 documentMustLive, URL Spoofing vulnerability in GoogleBot, Yahoo! Slurp, Mozilla and Internet Explorer (27.04.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod