Computer Security
[EN] securityvulns.ru no-pyccku


Mailman Scrubber.py DoS
Published:30.03.2006
Source:
SecurityVulns ID:5960
Type:remote
Threat Level:
5/10
Description:Malformed multipart messages parsing DoS.
Affected:MAILMAN : mailman 2.1
Original documentdocumentMANDRIVA, [ MDKSA-2006:061 ] - Updated mailman packages fix DoS from badly formed mime multipart messages. (30.03.2006)

Dia biffer overflow
Published:30.03.2006
Source:
SecurityVulns ID:5961
Type:remote
Threat Level:
5/10
Description:Buffer overflow on XFig import.
Affected:DIA : Dia 0.94
Original documentdocumentlars_(at)_raeder.dk, Buffer overflows in Dia XFig import (30.03.2006)

Solaris Sun Cluster SunPlex Manager privilege escalation
Published:30.03.2006
Source:
SecurityVulns ID:5962
Type:remote
Threat Level:
5/10
Description:User with solaris.cluster.gui authorization can access any local files.
Affected:SUN : Sun Cluster 3.1
Original documentdocumentSECUNIA, [SA19444] Sun Cluster SunPlex Manager File Disclosure Vulnerability (30.03.2006)

NetBSD mail weak permissions
Published:30.03.2006
Source:
SecurityVulns ID:5963
Type:local
Threat Level:
4/10
Description:Record file is created workd-readable if set record is present in .mailrc.
Affected:NETBSD : NetBSD 1.6
Original documentdocumentSECUNIA, [SA19465] NetBSD mail Insecure Record File Creation (30.03.2006)

NetBSD if_bridge information leak
Published:30.03.2006
Source:
SecurityVulns ID:5964
Type:local
Threat Level:
5/10
Description:ioctl call exposes content of uninitialized memory.
Affected:NETBSD : NetBSD 1.6
Original documentdocumentSECUNIA, [SA19464] NetBSD if_bridge Kernel Memory Disclosure Vulnerability (30.03.2006)

Samba information leak
Published:30.03.2006
Source:
SecurityVulns ID:5965
Type:local
Threat Level:
5/10
Description:Machine account is logged in cleartext.
Affected:SAMBA : Samba 3.0
Original documentdocumentSAMBA, [SECURITY] Samba 3.0.21-3.0.21c: Exposure of machine account credentials in winbindd log files (30.03.2006)
 documentSECUNIA, [SA19455] Samba Exposure of Machine Account Credentials (30.03.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod