Computer Security
[EN] securityvulns.ru no-pyccku


Firebird SQL server integer overflow
Published:29.01.2008
Source:
SecurityVulns ID:8615
Type:remote
Threat Level:
6/10
Description:Integer overflow on XDR parsing leads to memory corruption.
Affected:FIREBIRD : Firebird 1.5
 FIREBIRD : Firebird 2.0
CVE:CVE-2008-0387
Original documentdocumentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2007-1219: Firebird Remote Memory Corruption (29.01.2008)
Files:Firebird remote BOF POC

ngIRCd IRC daemon DoS
Published:29.01.2008
Source:
SecurityVulns ID:8616
Type:remote
Threat Level:
5/10
Affected:NGIRCD : ngIRCd 0.10
 NGIRCD : ngIRCd 0.11
CVE:CVE-2008-0285 (ngIRCd 0.10.x before 0.10.4 and 0.11.0 before 0.11.0-pre2 allows remote attackers to cause a denial of service (crash) via crafted IRC PART message, which triggers an invalid dereference.)
Original documentdocumentGENTOO, [ GLSA 200801-13 ] ngIRCd: Denial of Service (29.01.2008)

yarssr RSS reader shell characters vulnerability
Published:29.01.2008
Source:
SecurityVulns ID:8617
Type:client
Threat Level:
5/10
Affected:YARSSR : yarssr 0.2
CVE:CVE-2007-5837 (GUI.pm in yarssr 0.2.2, when Gnome default URL handling is disabled, allows remote attackers to execute arbitrary commands via shell metacharacters in a link element in a feed.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1477-1] New yarssr packages fix arbitrary shell command execution (29.01.2008)

Tripwire Enterprise/Server crossite scripting
Published:29.01.2008
Source:
SecurityVulns ID:8618
Type:remote
Threat Level:
4/10
Description:Web management interface crossite scripting.
Affected:TRIPWIRE : Tripwire Enterprise 7.0
Original documentdocumentLiquidmatrix Security Digest, Advisory: Tripwire Enterprise/Server XSS Vulnerability (29.01.2008)

Move Networks Quantum Streaming Player ActiveX buffer overflow
Published:29.01.2008
Source:
SecurityVulns ID:8619
Type:client
Threat Level:
5/10
Description:QMPUpgrade.dll buffer overflow
Original documentdocumentElazar Broad, [Full-disclosure] Move Networks Upgrade Manager QMPUpgrade.dll Buffer Overflow (29.01.2008)
Files:Move Networks Upgrade Manager Control Buffer Overflow Exploit

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod