Ethereal GTP protocol DoS
Published:		28.12.2005
Source:		SECUNIA
SecurityVulns ID:		5581
Type:		remote
Level:		5/10
Description:		Infinite loop on parsing GTP protocol.

Affected:

ETHEREAL : Ethereal 0.10

Original document

SECUNIA, [SA18229] Ethereal GTP Dissector Denial of Service Vulnerability (28.12.2005)

Discuss:

Read or add your comments to this news (0 comments)

Web applications security vulnerabilities (PHP, ASP, JSP, CGI, Perl)
Published:		28.12.2005
Source:
SecurityVulns ID:		5579
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		DEVWMS : DEV web management system 1.5
		VISNETIC : Visnetic Mail Server 8.3
		PHPSURVEYOR : PHPSurveyor 0.991

Original document		SECUNIA, [SA18167] PHPSurveyor "sid" SQL Injection Vulnerability (28.12.2005)
		SECUNIA, [SA17865] VisNetic Mail Server Multiple Webmail Vulnerabilities (28.12.2005)
		retrogod_(at)_aliceposta.it, Dev web management system <= 1.5 SQL injection / cross site scripting (28.12.2005)
		zeus olimpusklan, bug in oscomerce (28.12.2005)

Files:		Dev <=1.5 'cat' SQL injection / admin MD5 password hash disclosure
Discuss:		Read or add your comments to this news (0 comments)

Juniper NetScreen-Security Manager DoS
Published:		28.12.2005
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5580
Type:		remote
Level:		5/10
Description:		Malformed data to TCP/7800 or TCP/7801 port causes service to crash.

Affected:

JUNIPER : NetScreen Security Manager 2004

Original document

David Maciejak, [Full-disclosure] Juniper NSM remote Denial Of Service (28.12.2005)

Discuss:

Read or add your comments to this news (0 comments)

Microsoft Windows RunAs GPO restrictions protection bypass
Published:		28.12.2005
Source:		BUGTRAQ
SecurityVulns ID:		5582
Type:		local
Level:		5/10
Description:		It's possible to use RunAs with restricted application.

Affected:		MICROSOFT : Windows 2000 Server
		MICROSOFT : Windows 2000 Professional
		MICROSOFT : Windows XP
		MICROSOFT : Windows 2003 Server

Original document

SECURITEAM, [NT] RunAs Allows Bypassing User GPO in Windows XP/2003 (28.12.2005)

Discuss:

Read or add your comments to this news (0 comments)

Multiple Merak Mail Server / Icewarp Web Mail vulnerabilities updated since 01.10.2005
Published:		28.12.2005
Source:		BUGTRAQ
SecurityVulns ID:		5276
Type:		remote
Level:		6/10
Description:		Unauthorized access, crossite scripting, unauthorized files deletion, information leak.

Affected:		MERAK : Merak Mail Server 8.2
		ICEWARP : Icewarp Web Mail 5.5
		VISNETIC : Visnetic Mail Server 8.3
		MERAK : Merak Mail Server 8.3

Original document		SECUNIA, Secunia Research: IceWarp Web Mail Multiple File Inclusion Vulnerabilities (28.12.2005)
		ShineShadow, Multiple vulnerabilities in Merak Mail Server 8.2.4r with Icewarp Web Mail 5.5.1 (01.10.2005)

Discuss:

Read or add your comments to this news (0 comments)

dBpowerAMP music converter / audio player buffer overflow updated since 30.09.2004
Published:		28.12.2005
Source:		SECUNIA
SecurityVulns ID:		4055
Type:		client
Level:		5/10
Description:		Buffer overflow during different playlists file formats parsing (pls, m3u, mcc).

Affected:		DBPOWERAMP : dBpowerAMP Music Converter 10.0
		DBPOWERAMP : dBpowerAMP Audio Player 2.0
		DBPOWERAMP : dBpowerAMP Music Converter 11.5

Original document		SecuBox fRoGGz, dBpowerAMP Music Converter v11.5 and priors Local Buffer Overflow Issue (28.12.2005)
		SECUNIA, [SA12684] dBpowerAMP Audio Player / Music Converter Playlist Handling Buffer Overflow (30.09.2004)

Files:		Illustrate dBpowerAMP dMCShell Module Buffer Overflow
Discuss:		Read or add your comments to this news (0 comments)

Microsoft Windows XP/2003 Picture and Fax Viewer / Wine / ME code execution updated since 28.12.2005
Published:		14.07.2006
Source:		BUGTRAQ
SecurityVulns ID:		5578
Type:		client
Level:		9/10
Description:		Buffer overflow on parsing WMF metafiles. It may be used for silent Spyware/Trojan installation with Internet Explorer or another browser and also with Lotus Notes. There are vulnerabilities not covered by MS06-001.

Affected:		MICROSOFT : Windows XP
		MICROSOFT : Windows 2003 Server
		IBM : Lotus Notes 6.5
		WINE : Wine 0.9

Original document		SYMANTEC, SYMSA-2006-004 (Full Details): Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (14.07.2006)
		SYMANTEC, SYMSA-2006-004: Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (14.06.2006)
		MICROSOFT, Microsoft Security Bulletin MS06-026 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (918547) (13.06.2006)
		frankruder_(at)_hotmail.com, Microsoft Windows GRE WMF Format Multiple Memory Overrun Vulnerabilities (10.01.2006)
		frankruder_(at)_hotmail.com, [UPDATE]Microsoft Windows GRE WMF Format Multiple Unauthorized Memory Access Vulnerabilities (10.01.2006)
		MICROSOFT, Microsoft Security Bulletin MS06-001 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (912919) (07.01.2006)
		CERT, US-CERT Technical Cyber Security Alert TA06-005A -- Update for Microsoft Windows Metafile Vulnerability (07.01.2006)
		Juha-Matti Laurio, Lotus Notes WMF File Handling Code Execution Vulnerability (30.12.2005)
		CERT, US-CERT Technical Cyber Security Alert TA05-362A -- Microsoft Windows Metafile Handling Buffer Overflow (29.12.2005)
		X-FORCE, ISS Protection Alert: Windows Picture and Fax Viewer WMF Overflow (29.12.2005)
		H D Moore, [Full-disclosure] Someone wasted a nice bug on spyware... (28.12.2005)
		noemailpls_(at)_noemail.ziper, Is this a new exploit? (28.12.2005)

Files:		WMF nDay download() Exploit Generator by Unl0ck Research Team
		Windows XP/2003 Picture and Fax Viewer Metafile Overflow
		Microsoft Security Bulletin MS06-001 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (912919)
		Microsoft Security Bulletin MS06-026 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (918547)
Discuss:		Read or add your comments to this news (2 comments)