Search:Vulnerability:28.04.2005 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Rootkit Hunter symbolic links problem
Published: 28.04.2005
Source: BUGTRAQ
SecurityVulns ID: 4736
Type: local
Level: 5/10
Description: Insecure temporary files handling.

Affected: RKHUNTER : rkhunter 1.2

Original document GENTOO, [ GLSA 200504-25 ] Rootkit Hunter: Insecure temporary file creation (28.04.2005)

Discuss: Read or add your comments to this news (0 comments)

Bakbone Netvault privilege escalation
Published: 28.04.2005
Source: BUGTRAQ
SecurityVulns ID: 4738
Type: remote
Level: 5/10
Description: Hidden windows of local system process handles user's messages.

Affected: BAKBONE : NetVault 7.1

Original document Reed Arvin, Privilege escalation in BakBone NetVault 7.1 (28.04.2005)

Discuss: Read or add your comments to this news (0 comments)

BulletProof FTP Server privilege escalation
Published: 28.04.2005
Source: BUGTRAQ
SecurityVulns ID: 4739
Type: remote
Level: 5/10
Description: Privilege escalation with help subsystem.

Affected: BPFTPSERVER : BulletProof FTP Server 2.4

Original document Reed Arvin, Privilege escalation in BulletProof FTP Server v2.4.0.31 (28.04.2005)

Discuss: Read or add your comments to this news (0 comments)

KMiNT21 Software Golden FTP Server buffer overflow
Published: 28.04.2005
Source: BUGTRAQ
SecurityVulns ID: 4740
Type: remote
Level: 5/10
Description: Buffer overflow on oversized username.

Affected: KMiNT21 : Golden FTP Server Pro 2.52

Original document Reed Arvin, Buffer overflow in KMiNT21 Software Golden FTP Server Pro v2.52 (10.04.2005) (28.04.2005)

Files: golden ftp 2.52.0.0 remote r00t exploit
Golden FTP Server Pro remote stack BOF exploit
Discuss: Read or add your comments to this news (0 comments)

IBM WebSphere Application Server crossite scripting
Published: 28.04.2005
Source: SECUNIA
SecurityVulns ID: 4741
Type: remote
Level: 5/10
Description: Crossite scripting with error pages.

Affected: IBM : WebSphere 6.0

Original document SECUNIA, [SA15067] IBM WebSphere Application Server Cross-Site Scripting Vulnerability (28.04.2005)

Discuss: Read or add your comments to this news (0 comments)

BEA application server Admin console crossite scripting
Published: 28.04.2005
Source: REDDATABASESEC
SecurityVulns ID: 4733
Type: remote
Level: 5/10
Description: Crossite scripting with http://server:8001/console/actions/jndi/JndiFramesetAction/

Affected: BEA : BEA Admin Console 8.1

Original document Kornbrust, Alexander, Cross Site Scripting in BEA Admin console (28.04.2005)

Discuss: Read or add your comments to this news (0 comments)

VooDoo cIRCle BOTNET buffer overflow
Published: 28.04.2005
Source: SECUNIA
SecurityVulns ID: 4734
Type: remote
Level: 5/10
Description: Buffer overflow in botnet center while processing data from bot.

Affected: VOODOOCIRCLE : VooDoo cIRCle 1.0

Original document SECUNIA, [SA15110] VooDoo cIRCle BOTNET Buffer Overflow Vulnerability (28.04.2005)

Discuss: Read or add your comments to this news (0 comments)

Multiple firewalls directory traversal protection bypass
Published: 28.04.2005
Source: BUGTRAQ
SecurityVulns ID: 4743
Type: remote
Level: 5/10

Affected: RAZLEE : Firewall+++
SAFESTONE : DetectIT
POWERLOCK : NetworkSecurity
CASTLEHILL : SECURE/NET
NETIQ : NetIQ Security Manager 4.0

Original document SECUNIA, [SA15102] NetIQ Security Manager Directory Traversal Security Bypass (28.04.2005)

SECUNIA, [SA15088] Castlehill Computer Services SECURE/NET Directory Traversal Security Bypass (28.04.2005)

SECUNIA, [SA15094] PowerLock NetworkSecurity Directory Traversal Security Bypass (28.04.2005)

document SECUNIA, [SA15099] SafeStone DetectIT Directory Traversal Security Bypass (28.04.2005)

SECUNIA, [SA15091] Bsafe/Global Security for iSeries Directory Traversal Security Bypass (28.04.2005)

SECUNIA, [SA15063] RazLee Firewall+++ Directory Traversal Security Bypass (28.04.2005)

Discuss: Read or add your comments to this news (0 comments)

Altris deployment solution AClient privilege escalation
updated since 30.11.2004
Published: 28.04.2005
Source: BUGTRAQ
SecurityVulns ID: 4226
Type: local
Level: 5/10
Description: It's possible to launch executable with LocalSystem privileges.

Affected: ALTRIS : Altiris Deployment Solution 5.6
ALTRIS : Altiris Deployment Solution 6.0

Original document Reed Arvin, [Full-disclosure] Privilege escalation and password protection bypass in Altiris Client Service for Windows (Version 6.0.88) (28.04.2005)

Reed Arvin, [Full-Disclosure] Privilege escalation flaw in the AClient Service for Windows (Version 5.6.181). (30.11.2004)

Discuss: Read or add your comments to this news (0 comments)

netterm netftpd multiple bugs
updated since 21.07.2003
Published: 28.04.2005
Source: FULL-DISCLOSURE
SecurityVulns ID: 2999
Type: remote
Level: 5/10
Description: Buffer overflows, DoS.

Affected: INTERSOFT : netterm 4.2
INTERSOFT : NetTerm 5.1

Original document shadown, ADV: NetTerm's NetFtpd 4.2.2 Buffer Overflow + PoC Exploit (28.04.2005)

morning_wood, [Full-Disclosure] Netterm netftpd - Remote DoS (21.07.2003)

Files: Net-ftpd 4.2.2 user autentication b0f exploit
Discuss: Read or add your comments to this news (1 comments)

Multiple tcpdump / ethereal sniffers vulnerabilities
updated since 28.04.2005
Published: 21.06.2005
Source: BUGTRAQ
SecurityVulns ID: 4735
Type: remote
Level: 6/10
Description: Endless loops during handling RSVP, ISIS, BGP, LDP protocols, buffer overflows in ANSI A, GSM MAP, AIM, DISTCC, FCELS, SIP, KINK, LMP, Telnet, TZSP, WSP, BER, SMB, H.245, Bittorrent, Fibre Channel and many others.

Affected: ETHEREAL : Ethereal 0.10
TCPDUMP : tcpdump 3.9

Original document Simon L. Nielsen, Another tcpdump BGP infinite loop vulnerability (CAN-2005-1267) (21.06.2005)

advisories, remote root security bug in ethereal 0.9.13 >= and <= 0.10.10 (11.05.2005)

Ejovi Nuwere, [Full-disclosure] [SecurityLab] Ethereal 0.10.10 SIP Dissector Overflow (10.05.2005)

document Ejovi Nuwere, [SecurityLab] Ethereal 0.10.10 SIP Dissector Overflow (10.05.2005)

SECURITEAM, [NEWS] Ethereal Protocol Dissectors Buffer Overflow Vulnerabilities (06.05.2005)

Vade 79, tcpdump(/ethereal)[]: (RSVP) rsvp_print() infinite loop DOS. (28.04.2005)

Vade 79, tcpdump[v3.8.x/v3.9.1]: ISIS, BGP, and LDP infinite loop DOS exploits. (28.04.2005)

Files: tcpdump(/ethereal)[]: (RSVP) rsvp_print() infinite loop DOS
tcpdump[3.8.x/3.9.1]: (ISIS) isis_print() infinite loop DOS
tcpdump[3.8.x]: (BGP) RT_ROUTING_INFO infinite loop DOS
tcpdump[3.8.x]: (LDP) ldp_print() infinite loop DOS
Tcpdump Remote Denial of Service Exploit (bgp_update_print)
Build a BGP4 update message with what you want as payload
Ethereal <= 0.10.10 dissect_ipc_state() DoS
Discuss: Read or add your comments to this news (0 comments)

Macromedia ColdFusion MX application server crossite scripting
updated since 28.04.2005
Published: 12.05.2006
Source: SECUNIA
SecurityVulns ID: 4742
Type: remote
Level: 5/10
Description: Crossite scripting with error pages.

Affected: MACROMEDIA : ColdFusion MX 7

Original document zuxncwaruio_(at)_mailinator.com, yet more XSS in older versions of ColdFusion (12.05.2006)

MACROMEDIA, New Macromedia Security Zone Bulletin Posted (12.05.2005)

SECUNIA, [SA15050] Macromedia ColdFusion Error Page Cross-Site Scripting (28.04.2005)

Discuss: Read or add your comments to this news (0 comments)

Convert-UUlib / Barracuda Spam Firewall buffer overflow
updated since 28.04.2005
Published: 06.12.2006
Source: BUGTRAQ
SecurityVulns ID: 4737
Type: library
Level: 6/10
Description: Buffer overflow on BinHex encoding parsing.

Affected: CONVERTUULIB : Convert-UUlib 1.051
BARRACUDA : Barracuda Spam Firewall 3.3

Original document Jean-Sébastien Guay-Leroux, Barracuda Convert-UUlib library buffer overflow leads to remote compromise (06.12.2006)

GENTOO, [ GLSA 200504-26 ] Convert-UUlib: Buffer overflow (28.04.2005)

Discuss: Read or add your comments to this news (0 comments)