Computer Security

Search:Vulnerability:27.06.2006
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



EnergyMech IRC bot DoS
Published:27.06.2006
Source:BUGTRAQ
SecurityVulns ID:6304
Type:remote
Level:5/10
Description:Crash on empty CTCP NOTICE message.
Affected:EMECH : EnergyMech 3.0
Original documentdocumentGENTOO, [ GLSA 200606-26 ] EnergyMech: Denial of Service (27.06.2006)
Discuss:Read or add your comments to this news (0 comments)

BitchX / epic IRC client integer overflow
Published:27.06.2006
Source:BUGTRAQ
SecurityVulns ID:6307
Type:client
Level:5/10
Description:Integer overflow on parsing server banner.
Affected:BITCHX : BitchX 1.1
Original documentdocumentSECURITEAM, [EXPL] BitchX and Epic Boundary Check Error DoS (Exploit) (27.06.2006)
Files: BitchX (epic) =<1.1-final | do_hook() Boundary Check Error Remote DoS
Discuss:Read or add your comments to this news (0 comments)

Mozilla Network Security Services library memory leak
updated since 23.06.2006
Published:27.06.2006
Source:NETWORKSECURITY
SecurityVulns ID:6290
Type:library
Level:4/10
Description:256 bytes are leaked on every RSA cryptographic operation.
Affected:MOZILLA : Mozilla 1.7
 SUN : K-Meleon 0.9
 MOZILLA : Thunderbird 1.5
 NETSCAPE : Netscape 8.1
 MOZILLA : nss 3.10
 AOL : AOL Instant Messenger 5.0
Original documentdocumentJuha-Matti Laurio, Netscape NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, Mozilla Suite NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, Mozilla Thunderbird NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, K-Meleon NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, AOL Instant Messenger NSS Library Memory Leak Vulnerability (27.06.2006)
 documentJuha-Matti Laurio, Mozilla Firefox NSS Library Memory Leak Vulnerability (23.06.2006)
Discuss:Read or add your comments to this news (0 comments)

PHP Safe Mode protection bypass
Published:27.06.2006
Source:BUGTRAQ
SecurityVulns ID:6300
Type:local
Level:5/10
Description:error_log allows restricted files access.
Affected:PHP : PHP 4.4
 PHP : PHP 5.1
Original documentdocumentMaksymilian Arciemowicz, error_log() Safe Mode Bypass PHP 5.1.4 and 4.4.2 (27.06.2006)
Discuss:Read or add your comments to this news (0 comments)

ARX PrivateWire security toolbox buffer overflow
Published:27.06.2006
Source:BUGTRAQ
SecurityVulns ID:6301
Type:remote
Level:5/10
Description:Online Registration Facility oversized GET request buffer overflow.
Affected:ARX : PrivateWire 3.7
Original documentdocumentMailinglists, ERNW Security Advisory 01/2006 (27.06.2006)
Discuss:Read or add your comments to this news (0 comments)

pinball privilege escalation
Published:27.06.2006
Source:BUGTRAQ
SecurityVulns ID:6302
Type:local
Level:4/10
Description:Shared library is loaded from current directory.
Affected:PINBALL : pinball 0.3
Original documentdocumentDEBIAN, [SECURITY] [DSA 1102-1] New pinball packages fix privilege escalation (27.06.2006)
Discuss:Read or add your comments to this news (0 comments)

HashCash antispam token generator array overflow
Published:27.06.2006
Source:BUGTRAQ
SecurityVulns ID:6303
Type:remote
Level:6/10
Description:Heap array overflow.
Affected:HASHCASH : hashcash 1.20
Original documentdocumentGENTOO, [ GLSA 200606-25 ] Hashcash: Possible heap overflow (27.06.2006)
Discuss:Read or add your comments to this news (0 comments)

GlobeTrotter Mobility Manager security protection bypass
Published:27.06.2006
Source:BUGTRAQ
SecurityVulns ID:6305
Type:local
Level:5/10
Description:It's possible to bypass keylogging protection by making screenshots.
CVE:CVE-2006-6953 (The virtual keyboard implementation in GlobeTrotter Mobility Manager changes the color of a key as it is pressed, which allows local users to capture arbitrary keystrokes, such as for passwords, by shoulder surfing or grabbing periodic screenshots.)
Original documentdocumentdzelek_(at)_gmail.com, GlobeTrotter Mobility Manager - security issue (27.06.2006)
Discuss:Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:27.06.2006
Source:
SecurityVulns ID:6299
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:CLAROLINE : Claroline 1.7
 LIMBOCMS : LimboCMS 1.0
 WINGED : Winged Gallery 1.0
 OPENGUESTBOOK : Open Guestbook 0.5
 MYMAIL : MyMail 1.0
 DELUXEBB : DeluxeBB 1.07
 CPANEL : CPanel 10
 JAWS : Jaws 0.6
 METALHEAD : Usenet Script 0.5
Original documentdocumentluny_(at)_youfucktard.com, Usenet Script v0.5 (27.06.2006)
 documentpreth00nker_(at)_gmail.com, XSS in Cpanel 10 (27.06.2006)
 documentalp_eren_(at)_ayyildiz.org, Planetnews Authecnication Admin ByPass (27.06.2006)
 documentHessam Salehi, DeluxeBB 1.07 Create admin Exploit (27.06.2006)
 documentbug_(at)_securitynews.ir, Claroline Cross-Site Scripting Vulnerabilities (27.06.2006)
 documentbotan_(at)_linuxmail.org, [Kurdish Security # 9] MyMail Directory Traversal And XSS Attacking Vulnerability (27.06.2006)
 documentluny_(at)_youfucktard.com, Winged Gallery v1.0 (27.06.2006)
 documenthazer.cft_(at)_gmail.com, Множественные уязвимости в Limbo <=1.0.4.2 (27.06.2006)
Files:DeluxeBB <= 1.07 Create Admin Exploit
 Exploits Jaws <= 0.6.2 'Search gadget' SQL injection / admin credentials disclosure
Discuss:Read or add your comments to this news (0 comments)

OpenLDAP slurpd buffer overflow
Published:27.06.2006
Source:BUGTRAQ
SecurityVulns ID:6306
Type:remote
Level:5/10
Description:Buffer overflow on oversized hostname during replication.
Affected:OPENLDAP : OpenLDAP 2.2
 OPENLDAP : OpenLDAP 2.1
Original documentdocumentUBUNTU, [USN-305-1] OpenLDAP vulnerability (27.06.2006)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server