WU-FTPd SKEY authentication buffer overflow
Published:		27.10.2003
Source:		SECURITEAM
SecurityVulns ID:		3203
Type:		remote
Level:		5/10
Description:		Buffer overflow on oversized key.

Affected:

WU : WU-FTPD 2.6

Original document

SECURITEAM, [UNIX] Wu-FTPd SKEY Stack Overflow Vulnerability (27.10.2003)

Discuss:

Read or add your comments to this news (0 comments)

iwconfig buffer overflow
Published:		27.10.2003
Source:		SECURITEAM
SecurityVulns ID:		3205
Type:		local
Level:		5/10
Description:		Buffer overflow on oversized command line.

Affected:

WIRELESSTOOLS : Wireless Tools 26

Original document

SECURITEAM, [EXPL] iwconfig Buffer Overflow Vulnerability (27.10.2003)

Files:		/sbin/iwconfig proof of concept exploit
Discuss:		Read or add your comments to this news (0 comments)

sh-httpd shell characters
Published:		27.10.2003
Source:		FULL-DISCLOSURE
SecurityVulns ID:		3206
Type:		remote
Level:		5/10
Description:		wildcard (*) metacharacter allows to access any file.

Affected:

SHHTTPD : sh-httpd 0.4

Original document

dong-h0un U, [Full-Disclosure] sh-httpd `wildcard character' vulnerability (27.10.2003)

Discuss:

Read or add your comments to this news (0 comments)

Microsoft internet explorer local files access updated since 27.10.2003
Published:		03.11.2003
Source:		BUGTRAQ
SecurityVulns ID:		3204
Type:		client
Level:		6/10
Description:		Redirection with Location: file:/// allows to open local file in known location. Macromedia flash allows to store HTML text in known file.

Affected:		MICROSOFT : Internet Explorer 6.0
		MACROMEDIA : Flash Player 6.0

Original document		Liu Die Yu, Redirection and refresh parses local file (03.11.2003)
		Mind Warper, Internet Explorer Vulnerability: Content-Location works with both triple and double slash (03.11.2003)
		Thor Larholm, Re: Internet Explorer and Opera local zone restriction bypass (27.10.2003)
		Mind Warper, Internet Explorer and Opera local zone restriction bypass (27.10.2003)

Discuss:

Read or add your comments to this news (0 comments)