Computer Security

Search:Vulnerability:27.07.2005
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



ekg Gadu Gadu client / libgadu multiple vulnerabilities
updated since 05.07.2005
Published:27.07.2005
Source:FULL-DISCLOSURE
SecurityVulns ID:4959
Type:library
Level:5/10
Description:Symbolic links problem on temporary files creation. Unfiltered shell characters. Libgadu integer overflow. Multiple platform-specific problems.
Affected:KDE : KDE 3.3
 EKG : ekg 1.5
 CENTERICQ : centericq 4.20
 GNU : gadu 2.2
 KADU : Kadu 0.4
Original documentdocumentGENTOO, [ GLSA 200507-26 ] GNU Gadu, CenterICQ, Kadu, EKG, libgadu: Remote code execution in Gadu library (27.07.2005)
 documentWojtek Kaniewski, Multiple vulnerabilities in libgadu and ekg package (22.07.2005)
 documentDEBIAN, [SECURITY] [DSA 760-1] New ekg packages fix several vulnerabilities (19.07.2005)
 documentZATAZ.net, [Full-disclosure] ekg insecure temporary file creation and arbitrary code execution (05.07.2005)
Discuss:Read or add your comments to this news (0 comments)

Multiple Mozilla / Firefox / Funderbird browsers and mail agent vulnerabilities
updated since 13.07.2005
Published:27.07.2005
Source:SECUNIA
SecurityVulns ID:4992
Type:client
Level:8/10
Description:Multiple crossite scripting vulnerabilities, bypassing scripting protection, code execution.
Affected:MOZILLA : Mozilla 1.7
 MOZILLA : Firefox 1.0
 MOZILLA : Thunderbird 1.0
Original documentdocumentSECURITEAM, [NEWS] XBL Implementation Allows Script Execution (Gecko) (27.07.2005)
 documentSECUNIA, [SA16062] Mozilla Thunderbird XBL Controls Script Execution Vulnerability (15.07.2005)
 documentSECUNIA, [SA16043] Firefox Multiple Vulnerabilities (13.07.2005)
 documentSECUNIA, [SA16059] Mozilla Multiple Vulnerabilities (13.07.2005)
Files:Mozilla Suite/Firefox InstallVersion->compareTo() Code Execution exploit(metasploit)
 Mozilla Firefox URLs Script Injection Exploit
 Mozilla XBL Implementation Script Execution exploit
 Mozilla Firefox "Set As Wallpaper" Code Execution Exploit
Discuss:Read or add your comments to this news (0 comments)

FreeBSD IPSec authentication bypass
Published:27.07.2005
Source:BUGTRAQ
SecurityVulns ID:5048
Type:remote
Level:5/10
Description:Static key is used for AES-XCBC-MAC algorithm.
Affected:FREEBSD : FreeBSD 5.3
 FREEBSD : FreeBSD 5.4
Original documentdocumentFREEBSD, FreeBSD Security Advisory FreeBSD-SA-05:19.ipsec (27.07.2005)
Discuss:Read or add your comments to this news (0 comments)

MDaemon attachments directory traversal
Published:27.07.2005
Source:SECUNIA
SecurityVulns ID:5049
Type:remote
Level:7/10
Description:Directory traversal on attachment saving in content filtering option.
Affected:MDAEMON : MDaemon 8.1
Original documentdocumentSECUNIA, [SA16173] MDaemon Content Filter Directory Traversal Vulnerability (27.07.2005)
Discuss:Read or add your comments to this news (0 comments)

Microsoft Windows USB drivers buffer overflow
Published:27.07.2005
Source:SECUNIA
SecurityVulns ID:5050
Type:local
Level:5/10
Description:Buffer overflow on USB device response parsing.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
Original documentdocumentSECUNIA, [SA16210] Microsoft Windows Unspecified USB Device Driver Vulnerability (27.07.2005)
Discuss:Read or add your comments to this news (0 comments)

Multiple eMule vulnerabilities
Published:27.07.2005
Source:SECUNIA
SecurityVulns ID:5051
Type:remote
Level:5/10
Description:DoS on Kad protocol parsing. Vulnerable version of zlib protocol is used.
Affected:EMULE : eMule 0.46
Original documentdocumentSECUNIA, [SA16239] eMule Denial of Service and zlib Vulnerabilities (27.07.2005)
Discuss:Read or add your comments to this news (0 comments)

IBM Access information leak
Published:27.07.2005
Source:BUGTRAQ
SecurityVulns ID:5046
Type:local
Level:5/10
Description:Critical data is stored in shared memory segment, open for reading and writing.
Affected:IBM : IBM Access Connections 3.71
Original documentdocumentsylvain.roger_(at)_solucom.fr, Vulnerability in IBM access (27.07.2005)
Discuss:Read or add your comments to this news (0 comments)

SCO Unixware RPC request DoS
Published:27.07.2005
Source:BUGTRAQ
SecurityVulns ID:5047
Type:remote
Level:5/10
Description:Invalid bind request causes RPC portmapper service to hang.
Affected:SCO : UnixWare 7.1
Original documentdocumentJonglim Yun, [NILESA-20050701] UnixWare 7.x RPC portmapper Dos Vulnerability (27.07.2005)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru