Computer Security

Search:Vulnerability:27.11.2004
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Buffer overflow in multiple RADIUS implementations
updated since 06.07.2001
Published:27.11.2004
Source:X-FORCE
SecurityVulns ID:1308
Type:remote
Level:7/10
Description:Multiple buffer overflows
Affected:LUCENT : Lucent RADIUS 2.1
 MERIT : Merit RADIUS 3.6
 YARDRADIUS : yardradius 1.0
Original documentdocumentDEBIAN, [SECURITY] [DSA 598-1] New yardradius packages fix arbitrary code execution (27.11.2004)
 documentX-FORCE, ISS Security Advisory: Remote Buffer Overflow in Multiple RADIUS Implementations (06.07.2001)
Discuss:Read or add your comments to this news (0 comments)

CGI bugs
updated since 22.11.2004
Published:27.11.2004
Source:
SecurityVulns ID:4205
Type:remote
Level:5/10
Affected:PHPBB : phpBB 2.0
 IPB : IpbProArace 2.5
 PHPKIT : PHP KIT 1.6
 KORWEBLOG : KorWeblog
 ZWIKI : zwiki 0.36
 TWIKI : twiki 20040902
 WESMO : SecretSanta 1.0
 SUGARCRM : SugarCRM 2.0
 PHPNEWS : PHPNews 1.2
 JSPWIKI : JSPWiki 2.1
 PHPCMS : phpCMS 1.2
 PNTRESMAILER : PnTresMailer 6.03
Original documentdocumentzee_(at)_psybnc.it, Phpbb id: 10701 update and Attachmodule add-on Directory Traversal (27.11.2004)
 documentJohn Cobb, PnTresMailer code browser 6.03 Vulnerabilities (27.11.2004)
 documentCyrille Barthelemy, phpCMS <= 1.2.1 Xss Vulnerability, Information disclosure (27.11.2004)
 documentZero-X ScriptKiddy, EZshopper is still vulnerable against Directory Traversal. (27.11.2004)
 documentSECUNIA, [SA13285] JSPWiki "query" Parameter Cross-Site Scripting Vulnerability (24.11.2004)
 documentSECUNIA, [SA13300] PHPNews "mid" Parameter SQL Injection Vulnerability (24.11.2004)
 documentSECUNIA, [SA13287] SugarCRM Unspecified Security Issues (24.11.2004)
 documentSECUNIA, [SA13261] SecretSanta Security Bypass Vulnerability (24.11.2004)
 documentGENTOO, [Full-Disclosure] [ GLSA 200411-33 ] TWiki: Arbitrary command execution (24.11.2004)
 documentSSR Team, [Full-Disclosure] STG Security Advisory: [SSA-20041122-12] Zwiki XSS vulnerability (24.11.2004)
 documentSSR Team, [Full-Disclosure] STG Security Advisory: [SSA-20041122-10] KorWeblog directory traversal vulnerability (24.11.2004)
 documentSteve, PHPKIT SQL Injection, XSS (23.11.2004)
 documentaxl daivy, IpbProArace 2.5.x SQL injection. (22.11.2004)
Discuss:Read or add your comments to this news (0 comments)

BNC password protection bypass
Published:27.11.2004
Source:BUGTRAQ
SecurityVulns ID:4220
Type:remote
Level:5/10
Description:It's possible to connect with invalid password.
Affected:BNC : bnc 2.9
Original documentdocumentSECUNIA, [SA13302] BNC IRC proxy Incorrect Password Authentication Bypass Vulnerability (27.11.2004)
Discuss:Read or add your comments to this news (0 comments)

MailEnable buffer overflow
Published:27.11.2004
Source:BUGTRAQ
SecurityVulns ID:4221
Type:remote
Level:6/10
Description:Buffer overflow on oversized IMAP command.
Affected:MAILENABLE : MailEnable 1.52
Original documentdocumentJerome ATHIAS, Remote buffer overflow in MailEnable IMAP service [Hat-Squad Advisory] (27.11.2004)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru