Computer Security

Search:Vulnerability:30.08.2004
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Ipswitch WhatsUp buffer overflow
Published:30.08.2004
Source:FULL-DISCLOSURE
SecurityVulns ID:3941
Type:remote
Level:5/10
Description:Buffer overflow in _maincfgret.cgi
Affected:IPSWITCH : WhatsUp 8.03
Original documentdocumentIDEFENSE, [Full-Disclosure] iDEFENSE Security Advisory 08.25.04: Ipswitch WhatsUp Gold Remote Buffer Overflow Vulnerability (30.08.2004)
Files:IPSWITCH WhatsUp Gold ver8.03 Remote Buffer Overflow Exploit
Discuss:Read or add your comments to this news (0 comments)

OpenBSD bridging ICMP DoS
Published:30.08.2004
Source:BUGTRAQ
SecurityVulns ID:3942
Type:remote
Level:5/10
Description:If bridging is used, ICMP echo packet causes system to crash.
Affected:OPENBSD : OpenBSD 3.5
Original documentdocumentVafa Izadinia, Vulnerability: OpenBSD 3.5 Kernel Panic. (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

NtRegMon DoS
Published:30.08.2004
Source:BUGTRAQ
SecurityVulns ID:3943
Type:local
Level:4/10
Description:NULL pointer dereference during ZwSetQueryValue hook processing.
Affected:SYSINTERNALS : NtRegmon 6.11
Original documentdocumentNGSEC Research Team, [NGSEC-2004-7] NtRegmon, local system denial of service. (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Top Layer Attack Mitigator IPS 5500 DoS
Published:30.08.2004
Source:BUGTRAQ
SecurityVulns ID:3944
Type:remote
Level:5/10
Description:2000 concurrent HTTP sessions causes 100% CPU usage.
Affected:TOPLAYER : Attack Mitigator IPS 5500
Original documentdocumentadvisories_(at)_irmplc.com, IRM 010: Top Layer Attack Mitigator IPS 5500 Denial of Service (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Cisco Secure ACS multiple bugs
Published:30.08.2004
Source:BUGTRAQ
SecurityVulns ID:3945
Type:remote
Level:6/10
Description:TCP requests flood DoS, LEAP DoS, anonymous access if Novell Directory Service with anonymous account enabled is used, weak protection against connection hijacking.
Affected:CISCO : Secure ACS for Windows 3.2
Original documentdocumentCISCO, Cisco Security Advisory: Multiple Vulnerabilities in Cisco Secure Access Control Server (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

zlib DoS
updated since 30.08.2004
Published:30.08.2004
Source:BUGTRAQ
SecurityVulns ID:3947
Type:library
Level:5/10
Affected:ZLIB : zlib 1.2
Original documentdocumentOPENPKG, [OpenPKG-SA-2004.038] OpenPKG Security Advisory (zlib) (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

linux kernel information leak
Published:30.08.2004
Source:BUGTRAQ
SecurityVulns ID:3948
Type:local
Level:5/10
Description:/proc problems hit again
Affected:LINUX : kernel 2.4
 LINUX : kernel 2.6
Original documentdocumentGENTOO, [ GLSA 200408-24 ] Linux Kernel: Multiple information leaks (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Cisco IOS telnet DoS
Published:30.08.2004
Source:BUGTRAQ
SecurityVulns ID:3949
Type:remote
Level:6/10
Description:Specially crafted telnet or reverse telnet connection causes all TCP based services to fail.
Affected:CISCO : IOS 12.0
 CISCO : IOS 12.1
 CISCO : IOS 12.2
Original documentdocumentCISCO, Cisco Security Advisory: Cisco Telnet Denial of Service Vulnerability (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Gaucho buffer overflow
Published:30.08.2004
Source:SECUNIA
SecurityVulns ID:3950
Type:remote
Level:6/10
Description:Buffer overflow on oversized Content-Length: field.
Affected:GAUCHO : Gaucho 1.4
Original documentdocumentSECUNIA, [SA12387] Gaucho "Content-Type:" Header Processing Buffer Overflow Vulnerability (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

a2ps shell characters code execution
Published:30.08.2004
Source:SECUNIA
SecurityVulns ID:3955
Type:local
Level:5/10
Affected:GNU : a2ps 4.13
Original documentdocumentSECUNIA, [SA12375] GNU a2ps Command Injection Vulnerability (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Samba Printer Change Notification DoS
Published:30.08.2004
Source:SECUNIA
SecurityVulns ID:3956
Type:remote
Level:5/10
Description:DoS on FindNextPrintChangeNotify request processing.
Affected:SAMBA : Samba 2.2
Original documentdocumentSECUNIA, [SA12397] Samba Printer Change Notification Request Denial of Service Vulnerability (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Microsoft Outlook Express information leak
Published:30.08.2004
Source:SECUNIA
SecurityVulns ID:3952
Type:client
Level:4/10
Description:Bcc: header may not be stripped for partial multipart MIME message.
Affected:MICROSOFT : Outlook Express 5.5
 MICROSOFT : Outlook Express 6.0
Original documentdocumentSECUNIA, [SA12376] Microsoft Outlook Express "BCC:" Recipient Disclosure Weakness (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

ignitionServer DoS
Published:30.08.2004
Source:SECUNIA
SecurityVulns ID:3953
Type:remote
Level:5/10
Description:Insufficient restrictions on the "SERVER" command can be exploited by clients to introduce non-existing servers to the network.
Affected:IGNITIONSERVER : ignitionServer 0.1
 IGNITIONSERVER : ignitionServer 0.2
 IGNITION : ignitionServer 0.3
Original documentdocumentSECUNIA, [SA12374] ignitionServer "SERVER" Denial of Service Vulnerability (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Netscape NSS libraries buffer overflow
updated since 25.08.2004
Published:30.08.2004
Source:X-FORCE
SecurityVulns ID:3932
Type:library
Level:9/10
Description:Buffer overflow during SSL negotiation.
Affected:HP : HP-UX 11.00
 SUN : iPlanet Web Server 4.1
 HP : HP-UX 11.11
 HP : HP-UX 11.23
 MOZILLA : nss 3.9
 NETSCAPE : Netscape Enterprise Server 3.6
 NETSCAPE : Netscape Directory Server 6.2
 NETSCAPE : Netscape Certificate Server 6.2
Original documentdocumentHP, [security bulletin] SSRT4779 - rev.0 HP-UX Netscape NSS Library Suite SSLv2 remote buffer overflow (30.08.2004)
 documentX-FORCE, ISS Protection Brief: Netscape NSS Library Remote Compromise (25.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Heimdal ftpd/tnftpd/lukemftpd signal handling race conditions
updated since 19.08.2004
Published:30.08.2004
Source:BUGTRAQ
SecurityVulns ID:3918
Type:remote
Level:6/10
Description:Problem with OOB data processing.
Affected:NETBSD : NetBSD 1.6
 NETBSD : NetBSD 2.0
 HEIMDAL : Heimdal ftpd 0.6
 TNFTPD : tnftpd
Original documentdocumentPrzemyslaw Frasunek, multiple vulnerabilities in lukemftpd/tnftpd (30.08.2004)
 documentNETBSD, NetBSD Security Advisory 2004-009: ftpd root escalation (22.08.2004)
 documentSECUNIA, [SA12226] tnftpd Signal Handling Privilege Escalation Vulnerabilities (19.08.2004)
 documentSECUNIA, [SA12320] Heimdal ftpd Signal Handling Vulnerabilities (19.08.2004)
Discuss:Read or add your comments to this news (0 comments)

CDE libDtHelp buffer overflow
updated since 05.11.2003
Published:30.08.2004
Source:FULL-DISCLOSURE
SecurityVulns ID:3232
Type:library
Level:6/10
Description:Buffer overflow on DTHELPUSERSEARCHPATH/LOGNAME variable parsing.
Affected:SCO : UnixWare 7.1
 SCO : Open UNIX 8.0
 ORACLE : Solaris 9
Original documentdocumentIDEFENSE, [Full-Disclosure] iDEFENSE Security Advisory 08.25.04: CDE libDtHelp LOGNAME Buffer Overflow Vulnerability (30.08.2004)
 documentSCO, [Full-Disclosure] UnixWare 7.1.3 Open UNIX 8.0.0 UnixWare 7.1.1 : CDE libDtHelp buffer overflow (05.11.2003)
Discuss:Read or add your comments to this news (0 comments)

CGI bugs
updated since 30.08.2004
Published:04.09.2004
Source:
SecurityVulns ID:3951
Type:remote
Level:5/10
Affected:CUTEPHP : CuteNews 1.3
 COMERSUS : Comersus ASP Shopping Cart 5.09
 EPIXTECH : Dynix Webpac
 PLESK : Plesk 7.0
 PLESK : Plesk 7.1
 SUGARCRM : SugarCRM 1.1
 SMARTGUESTBOOK : Smart Guest Book 2.0
 SITENEWS : Site News 1.1
 XOOPS : XOOPS 0.94
 XOOPS : XOOPS 1.0
 PHPSCHEDULEIT : phpScheduleIt 1.0
 PLOG : pLog
 WEBANIMATIONS : Password protect
 NEWTELLIGENCE : DasBlog
 WEBAPP : WebAPP
 TUTORIAUX : TorrentTrader 1.0
 MAILWORKS : MailWorks Professional
 PHPNUKE : PHP-Nuke 7.4
Original documentdocumentPierquinto Manco, [XSS] PHP-Nuke 7.4 Remote Privilege Escalation (04.09.2004)
 documentPaul Craig - Pimp Industries, MailWorks Professional - Authentication bypass (03.09.2004)
 documentExoduks, [hackgen-2004-#001] - Non-critacal Cross-Site Scripting bug in CuteNews (03.09.2004)
 documentCriolabs, Password Protect XSS and SQL-Injection vulnerabilities. (03.09.2004)
 documentSECUNIA, [SA12439] TorrentTrader "id" SQL Injection Vulnerability (03.09.2004)
 documentMaestro De-Seguridad, ADVISORY: http response splitting hole in Comersus shopping cart (02.09.2004)
 documentSECURITEAM, [UNIX] WebAPP Directory Traversal and Encrypted DES Disclosure (01.09.2004)
 documentDominick Baier, [Full-Disclosure] Cross-Site Scripting Vulnerability in Newtelligence DasBlog (01.09.2004)
 documentSECUNIA, [SA12407] Password Protect Multiple Vulnerabilities (01.09.2004)
 documentIadnah, [Full-Disclosure] Code Injection Vulnerability in pLog (01.09.2004)
 documentJose Antonio, Multiple Vulnerabilities in phpScheduleIt (01.09.2004)
 documente0r, CuteNews News.txt writable to world (01.09.2004)
 documentCyruxNET, Cross Site Scripting in XOOPS Version 2.x Dictionary module (31.08.2004)
 documentvlb4g, Site News v 1.1 admin head error (31.08.2004)
 documentSECUNIA, [SA12401] Smart Guest Book Database Content Disclosure Security Issue (30.08.2004)
 documentSECUNIA, [SA12364] SugarCRM Unspecified Login Authentication Vulnerability (30.08.2004)
 documentSECUNIA, [SA12368] Plesk "login_name" Cross-Site Scripting Vulnerability (30.08.2004)
 documentWil Allsopp, Dynix Webpac Input Validation (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

RealVNC DoS
updated since 30.08.2004
Published:11.11.2004
Source:BUGTRAQ
SecurityVulns ID:3946
Type:remote
Level:5/10
Description:More than 60 concurrent TCP connections causes server to crash.
Affected:REALVNC : RealVNC 4.0
Original documentdocumentAllan Zhang, RealVNC 4.0 DoS (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)

Novell iChain access control solution multiple bugs
updated since 30.08.2004
Published:16.03.2005
Source:SECUNIA
SecurityVulns ID:3954
Type:remote
Level:6/10
Description:DoS, information leak (including authentication data), crossite scripting, session hijacking.
Affected:NOVELL : iChain 2.3
Original documentdocumentFrancisco Amato, [ISR] Insecure communication and Reproduce the Session authentication (16.03.2005)
 documentFrancisco Amato, [ISR] - Novell iChain Mini FTP Server Bruteforce Problem (16.03.2005)
 documentFrancisco Amato, [ISR] - Novell iChain Mini FTP Server Unauthorized Remote Path Disclosure Vulnerability (16.03.2005)
 documentFrancisco Amato, [ISR] - Novell iChain Mini FTP Server Valid User Disclosure Vulnerability (16.03.2005)
 documentSECUNIA, [SA14537] Novell iChain FTP Server Path Disclosure Weakness (09.03.2005)
 documentSECUNIA, [SA14527] Novell iChain Administrator Session Hijacking Vulnerability (09.03.2005)
 documentSECUNIA, [SA14010] iChain Mutual Authentication Unauthorised Resource Access (27.01.2005)
 documentSECUNIA, [SA12366] iChain Multiple Vulnerabilities (30.08.2004)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server