Computer Security

Search:Vulnerability:31.05.2004
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



gatos privilege escalation
Published:31.05.2004
Source:BUGTRAQ
SecurityVulns ID:3722
Type:local
Level:5/10
Description:Under certain conditions xatitv runs configuration script with root privileges.
Affected:GATOS : gatos 0.0
Original documentdocumentDEBIAN, [SECURITY] [DSA 509-1] New gatos packages fix privilege escalation (31.05.2004)
Discuss:Read or add your comments to this news (0 comments)

jftpgw format string buffer overflow
Published:31.05.2004
Source:BUGTRAQ
SecurityVulns ID:3723
Type:remote
Level:5/10
Description:syslog() format string bug.
Affected:JFTPGW : jftpgw 0.13
Original documentdocumentDEBIAN, [SECURITY] [DSA 510-1] New jftpgw packages fix format string vulnerability (31.05.2004)
Discuss:Read or add your comments to this news (0 comments)

CGI bugs
updated since 31.05.2004
Published:05.06.2004
Source:
SecurityVulns ID:3721
Type:remote
Level:5/10
Affected:CPANEL : cPanel 9.3
 E107 : e107 0.615
 LDU : LDU 700
 NUKECOPS : NukeCops
 PHPNUKE : PHPNuke 7.3
 OC2NUKE : OSC2Nuke 7x
 OC2NUKE : OSCNukeLite 3.1
 GALLERY : Gallery 1.2
 MAILMANAGEEX : Mail Manage EX 3.1
 Crafy Syntax Live Help 2.7
Original documentdocumentJohn C. Hennessy, Cross-site scripting vulnerability in Crafy Syntax Live Help 2.7.3 and below (05.06.2004)
 documentqbann targ, CPANEL Vuln : HTML injection (05.06.2004)
 documentJvdR, PHP Include Exploit in Mail Manage EX v3.1.8 and maybe others. (04.06.2004)
 documentSECURITEAM, [UNIX] Multiple SQL Injections in JPortal (print.php) (03.06.2004)
 documentDEBIAN, [SECURITY] [DSA 512-1] New gallery packages fix unauthenticated access (03.06.2004)
 documentSquid, [Squid 2004-OSC2Nuke-001] Inadequate Security Checking in OSC2Nuke (03.06.2004)
 documentSquid, [Squid 2004-Nuke-001] Inadequate Security Checking in PHPNuke v7.3 and earlier (03.06.2004)
 documentSquid, [Squid 2004-Nuke-001] Inadequate Security Checking in PHPNuke v7.3 and earlier (03.06.2004)
 documentSquid, [Squid 2004-betaNC-001] Inadequate Security Checking in NukeCops betaNC Bundle (03.06.2004)
 documentJanek Vind, [waraxe-2004-SA#031 - Multiple vulnerabilities in e107 version 0.615] (31.05.2004)
 documenttim de gier, LDU (land down under) xss vulnerability (31.05.2004)
Discuss:Read or add your comments to this news (0 comments)

Multiple Webmail systems crossite scripting
updated since 31.05.2004
Published:06.07.2004
Source:FULL-DISCLOSURE
SecurityVulns ID:3720
Type:remote
Level:5/10
Description:Crossite scripting via Content-Type.
Affected:SQUIRRELMAIL : SquirrelMail 1.5
 SQUIRRELMAIL : Squirrelmail 1.4
 OPENWEBMAIL : Openwebmail 2.32
 SQWEBMAIL : Sqwebmail 4.0
 HORDE : IMP 3.2
 ILOHAMAIL : IlohaMail 0.8
Original documentdocumentRoman Medina, [Full-Disclosure] RS-2004-2: "Content-Type" XSS vulnerability affecting other webmail systems (06.07.2004)
 documentA. Ramos, [openwebmail] Fw: Re: XSS bug. (05.06.2004)
 documentRoman Medina, SquirrelMail "Content-Type" XSS vulnerability (31.05.2004)
 documentRoman Medina, [Full-Disclosure] RS-2004-1: SquirrelMail "Content-Type" XSS vulnerability (31.05.2004)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru