CGI bugs updated since 24.03.2003
Published:		31.03.2003
Source:		BUGTRAQ
SecurityVulns ID:		2683
Type:		remote
Level:		5/10

Affected:		POSTNUKE : PostNuke 0.7
		PHPNUKE : PHPNuke 6.5
		PHPARENA : paFileDB 3.0
		PAFILEDB : paFileDB 3.1
		PHPWEBCHAT : PHP WEB CHAT 2.0
		BEANWEBB : Beanwebb Guestbook 1.0
		JUSTICEMEDIA : Justice Guestbook 1.3
		SCOZNET : ScozBook BETA 1.1
		APACHE : Mod_Survey 3.0
		CGICITY : CC Log
		CGICITY : CCGuestBook

Original document		BrainRawt ., CGI-City's CCLOG Script Injection Vulns (31.03.2003)
		BrainRawt ., CGI-City's CCLOG Script Injection Vulns (31.03.2003)
		Joel Palmius, Mod_Survey ENV tag vulnerability (29.03.2003)
		euronymous, ScozBook BETA 1.1 vulnerabilities (29.03.2003)
		euronymous, Justice Guestbook 1.3 vulnerabilities (29.03.2003)
		euronymous, Beanwebb Guestbook v1.0 vulnerabilities (29.03.2003)
		rkc, PostNuke Sensitive Information Disclosure (28.03.2003)
		Zero-X ScriptKiddy, PHPNuke viewpage.php allows Remote File retrieving (26.03.2003)
		Over_G, CSS in PHP WEB CHAT (25.03.2003)
		flur, paFileDB 3.x SQL Injection Vulnerability (24.03.2003)

Discuss:

Read or add your comments to this news (0 comments)

CGI bugs reported by Russian teams
Published:		31.03.2003
Source:		SECURITY.NNOV
SecurityVulns ID:		2699
Type:		remote
Level:		5/10

Affected:		BEANWEBB : Beanwebb Guestbook 1.0
		JUSTICEMEDIA : Justice Guestbook 1.3
		PHPSHOP : phpShop 0.6
		XONIX : Новости 1.0
		PHPLIST : PHP List 1.1
		HWDE : hwdeGUEST 2.0
		CLUB : Club 1.0
		SCOZNET : ScozBook 1.1

Original document		euronymous, ScozBook BETA 1.1 vulnerabilities (31.03.2003)
		euronymous, Justice Guestbook 1.3 vulnerabilities (31.03.2003)
		euronymous, Beanwebb Guestbook v1.0 vulnerabilities (31.03.2003)
		subj, hwdeGUEST (31.03.2003)
		subj, PHP List (31.03.2003)
		Over_G, Новости (31.03.2003)
		Курт Джаинс, MiniPortal SOHO (31.03.2003)
		Курт Джаинс, Edikon Release 0.6 of PHPShop (31.03.2003)

Discuss:

Read or add your comments to this news (0 comments)

Personal FTP Server buffer overflow
Published:		31.03.2003
Source:		DWCLAN
SecurityVulns ID:		2700
Type:		remote
Level:		5/10
Description:		Buffer overflow on USER longer than 320 characters.

Affected:

COOLSOFT : Personal FTP Server

Original document

DWCLAN, Personal FTP Server (31.03.2003)

Discuss:

Read or add your comments to this news (0 comments)

EZ Server multiple bugz updated since 31.03.2003
Published:		17.04.2003
Source:		SECURITYCORP
SecurityVulns ID:		2701
Type:		remote
Level:		5/10
Description:		Program exits by exception on oversized FTP ls and cd commands. Directory traversal.

Affected:

EZ : EZ Server 1.0

Original document		Gregory Le Bras | Security Corporation, [SCSA-017] Directory Traversal Vulnerability in EZ Server (17.04.2003)
		Gregory Le Bras | Security Corporation, [SCSA-014] Remote Denial of Service Vulnerability in EZ Server (31.03.2003)

Discuss:

Read or add your comments to this news (0 comments)

Buffer overflows on address parsing in sendmail updated since 31.03.2003
Published:		17.09.2003
Source:		BUGTRAQ
SecurityVulns ID:		2702
Type:		remote
Level:		7/10
Description:		Buffer overflows because on signed/unsigned type conversion.

Affected:

SENDMAIL : Sendmail 8.12

Original document		Michal Zalewski, [Full-Disclosure] Sendmail 8.12.9 prescan bug (a new one) [CAN-2003-0694] (17.09.2003)
		SENDMAIL, sendmail 8.12.9 available (31.03.2003)
		X-FORCE, ISS Security Brief: Email Processing Vulnerability in Sendmail (31.03.2003)
		CERT, CERT Advisory CA-2003-12 Buffer Overflow in Sendmail (31.03.2003)
		Michal Zalewski, Sendmail: -1 gone wild (31.03.2003)

Files:		local prescan() exploit for sendmail 8.11.6
Discuss:		Read or add your comments to this news (0 comments)