Search:Vulnerability:28.09.2004
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
YahooPOPS buffer overflow
Published:
28.09.2004
Source:
BUGTRAQ
SecurityVulns ID:
4039
Type:
remote
Level:
5
/10
Description:
Buffer overflow on oversized POP3 USER command and any SMTP request.
Affected:
YAHOOPOPS
:
YahooPOPS! 0.4
YAHOOPOPS
:
YahooPOPS! 0.5
YAHOOPOPS
:
YahooPOPS! 0.6
Original document
Hat-Squad Security Team
,
[Hat-Squad] Remote Buffer overflow Vulnerability in YahooPOPS
(
28.09.2004
)
Files:
Proof of concept demo exploit for YPOP! SMTP listener
YPOP SMTP Remote Buffer Overflow BindShell Exploit by cyrex
Discuss:
Read or add your comments to this news (0 comments)
.Net server form authentication protection bypass
Published:
28.09.2004
Source:
NTBUGTRAQ
SecurityVulns ID:
4040
Type:
remote
Level:
6
/10
Description:
By using backslash in the request path it's possible to access protected file.
Affected:
MICROSOFT
:
Windows 2003 Server
Original document
Toby Beaumont
,
Security bug in .NET Forms Authentication
(
28.09.2004
)
Discuss:
Read or add your comments to this news (0 comments)
Sendmail relaying
Published:
28.09.2004
Source:
BUGTRAQ
SecurityVulns ID:
4041
Type:
remote
Level:
5
/10
Description:
Predefined user account is used to initialize SASL database.
Affected:
SENDMAIL
:
Sendmail 8.12
Original document
DEBIAN
,
[SECURITY] [DSA 554-1] New sendmail packages fix potential open relay
(
28.09.2004
)
Discuss:
Read or add your comments to this news (0 comments)
AIX ctstrtcasd privilege escalation
Published:
28.09.2004
Source:
BUGTRAQ
SecurityVulns ID:
4042
Type:
local
Level:
5
/10
Description:
User can overwrite any file with -f option.
Affected:
IBM
:
AIX 5.2
IBM
:
AIX 5.3
Original document
IDEFENSE
,
iDEFENSE Security Advisory 09.27.04 - IBM AIX ctstrtcasd Local File Corruption Vulnerability
(
28.09.2004
)
Discuss:
Read or add your comments to this news (0 comments)
Multiple MyWebServer bugs
Published:
28.09.2004
Source:
BUGTRAQ
SecurityVulns ID:
4043
Type:
remote
Level:
5
/10
Description:
DoS, administration interface protection bypass.
Affected:
MYWEBSERVER
:
MyWebServer 1.0
Original document
nekd0
,
MyWebServer 1.0.3
(
28.09.2004
)
Discuss:
Read or add your comments to this news (0 comments)
Multiple DNS4ME bugs
Published:
28.09.2004
Source:
SECUNIA
SecurityVulns ID:
4044
Type:
remote
Level:
5
/10
Description:
Crossite scripting, DoS.
Affected:
RHINOSOFT
:
DNS4Me 3.0
Original document
SECUNIA
,
[SA12595] DNS4Me Web Server Cross-Site Scripting and Denial of Service
(
28.09.2004
)
Discuss:
Read or add your comments to this news (0 comments)
Multiple Emulive Server4 bugs
Published:
28.09.2004
Source:
SECUNIA
SecurityVulns ID:
4045
Type:
remote
Level:
5
/10
Description:
DoS, protection bypass.
Affected:
EMULIVE
:
Server4 7560
Original document
SECUNIA
,
[SA12616] Emulive Server4 Security Bypass and Denial of Service Vulnerabilities
(
28.09.2004
)
Discuss:
Read or add your comments to this news (0 comments)
Multiple LessTif bugs
Published:
28.09.2004
Source:
SECUNIA
SecurityVulns ID:
4047
Type:
library
Level:
7
/10
Affected:
LESSTIF
:
lesstif 0.93
Original document
SECUNIA
,
[SA12652] LessTif XPM Library Image Decoding Vulnerabilities
(
28.09.2004
)
Discuss:
Read or add your comments to this news (0 comments)
Linux CD protection bypass
Published:
28.09.2004
Source:
SECUNIA
SecurityVulns ID:
4048
Type:
remote
Level:
5
/10
Description:
user with read-only access can bypass these permissions and perform write and erase operations on media in a drive.
Affected:
LINUX
:
kernel 2.4
LINUX
:
kernel 2.6
Original document
SECUNIA
,
[SA12498] Linux Kernel ide-cd SG_IO Functionality Permission Bypass Vulnerability
(
28.09.2004
)
Discuss:
Read or add your comments to this news (0 comments)
Multiple Macromedia JRun bugs
updated since 28.09.2004
Published:
15.10.2004
Source:
SECUNIA
SecurityVulns ID:
4046
Type:
remote
Level:
7
/10
Description:
DoS, source code leakage, session hijacking, crossite scripting, buffer overflow.
Affected:
MACROMEDIA
:
JRun 3.0
MACROMEDIA
:
JRun 3.1
ADOBE
:
JRun 4.0
MACROMEDIA
:
ColdFusion MX 6.0
MACROMEDIA
:
ColdFusion MX 6.1
CVE:
CVE-2006-5860
(Cross-site scripting (XSS) vulnerability in the administrator console for Adobe JRun 4.0, as used in ColdFusion, allows remote attackers to inject arbitrary web script or HTML via unknown vectors.)
Original document
ACROS Security
,
ACROS Security: Unsanitized Session ID Cookie Allows Modifying Server Response
(
15.10.2004
)
ACROS Security
,
ACROS Security: Session Fixation in JRun Management Console
(
15.10.2004
)
ACROS Security
,
ACROS Security: HTML Injection in JRun Management Console
(
15.10.2004
)
IDEFENSE
,
[Full-Disclosure] iDEFENSE Security Advisory 10.05.04a: ColdFusion MX 6.1 on IIS File Contents Disclosure
(
06.10.2004
)
Eric Lackey
,
CFMX vulnerability
(
01.10.2004
)
IDEFENSE
,
[Full-Disclosure] iDEFENSE Security Advisory 09.29.04 - Macromedia JRun 4 mod_jrun Apache Module Buffer Overflow Vulnerability
(
30.09.2004
)
SECUNIA
,
[SA12647] ColdFusion MX Sensitive Information Disclosure and Denial of Service
(
28.09.2004
)
SECUNIA
,
[SA12638] Macromedia JRun Server Multiple Vulnerabilities
(
28.09.2004
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
