7013 matches found
CUPS < 1.1.18 Multiple Vulnerabilities
The remote CUPS server seems vulnerable to various flaws buffer overflow, denial of service, privilege escalation that could allow a remote attacker to shut down this service or remotely gain the privileges of the 'lp' user. C Tenable Network Security, Inc. This script checks for CVE-2002-1368, b...
Local/remote mpg123 exploit
-----BEGIN PGP SIGNED MESSAGE----- / |/ | | | / | / | / | | | | | / / | | | || | | | || | /| | | | V / |/|//||/ |/|/||| || || "Putting the honey in honeynet since '98." Introduction: Several months ago, GOBBLES Security was recruited by the RIAA riaa.org to invent, create, and finally deploy the...
[SECURITY] [DSA 227-1] New openldap packages fix buffer overflows and remote exploit
-------------------------------------------------------------------------- Debian Security Advisory DSA 227-1 [email protected] http://www.debian.org/security/ Martin Schulze January, 13th, 2003 http://www.debian.org/security/faq -...
CGI bugs
No description provided...
N/X (PHP)
Informations : °°°°°°°°°°°°°° Website : http://nxwcms.sourceforge.net/ Version : 2002 PreRelease 1 Problem : Include file PHP Code/Location : °°°°°°°°°°°°°°°°°°° nx/common/cds/menu.inc.php : ----------------------------------------------------------- ... requireonce...
CGI bugs
No description provided...
Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd)
---------------------------------------------------------------------- Foundstone Research Labs Advisory - FS2002-10 Advisory Name: Multiple Exploitable Buffer Overflows in Winamp Release Date: December 18, 2002 Application: Winamp 3.0 and Winamp 2.81 Platforms: Windows NT/2000/XP Severity: Remot...
Foundstone Research Labs Advisory - Exploitable Windows XP Media Files (fwd)
---------------------------------------------------------------------- Foundstone Research Labs Advisory - FS2002-11 Advisory Name: Exploitable Windows XP Media Files Release Date: December 18, 2002 Application: Windows Explorer Platforms: Windows XP Severity: Remote code execution Vendors:...
PHP-Nuke 6.0 : Path Disclosure & Cross Site Scripting
Informations : °°°°°°°°°°°°°° Product : PHP-Nuke Version : 6.0 Website : http://www.phpnuke.org Problems : - Path Disclosure - XSS Developpement : °°°°°°°°°°°°°°° The majority of the PHPNuke's files are includes in modules.php or index.php. To prevent the direct access, PHPNuke made two kinds of...
[SECURITY] [DSA 187-1] New Apache packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 187-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2002 http://www.debian.org/security/faq -...
ION Script 1.4 - Remote File Disclosure
source: https://www.securityfocus.com/bid/6091/info A vulnerability has been discovered in ION Script. By sending a malicious HTTP request to a webserver running the vulnerable ION Script package, it is possible for a remote attacker to disclose arbitrary webserver readable files. As webservers a...
Microsoft Internet Explorer 5/6 - Unauthorized Document Object Model Access
source: https://www.securityfocus.com/bid/5963/info Microsoft Internet Explorer MSIE is prone to a vulnerability that may enable a frame or iframe to gain unauthorized access to the Document Object Model DOM of other frames/iframes in a different domain. This is possible because MSIE does not...
iDEFENSE Security Advisory 10.03.2002: Apache 1.3.x shared memory scoreboard vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 10.03.2002 Apache 1.3.x shared memory scoreboard vulnerabilities 16:00 GMT, October 3, 2002 I. BACKGROUND The Apache Software Foundation's HTTP Server is an effort to develop and maintain an open-source HTTP server for moder...
phpLinkat 0.1 - Multiple Cross-Site Scripting Vulnerabilities
phpLinkat 0.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/5890/info Reportedly, phpLinkat is prone to cross site scripting attacks. An attacker may exploit this vulnerability by enticing a victim user to follow a malicious link containing HTML and...
[SECURITY] [DSA-136-3] Multiple OpenSSL problems (update)
Package : openssl094 Problem type : multiple remote exploits Debian-specific: no CVE : CAN-2002-0655 CAN-2002-0656 CAN-2002-0657 CAN-2002-0659 There was an error in the original openssl094 packages, resulting in an incomplete fix. This error has been corrected in 0.9.4-6.potato.2 and...
DSA-136-3 openssl - multiple remote exploits
Bulletin has no description...
[SECURITY] [DSA-136-2] Multiple OpenSSL problems (update)
Package : openssl094, openssl095, openssl Problem type : multiple remote exploits Debian-specific: no CVE : CAN-2002-0655 CAN-2002-0656 CAN-2002-0657 CAN-2002-0659 Note: this advisory is an update to DSA-136-1, issued 30 Jul 2002. It includes ASN1 updates in the woody packages, plus the potato...
DSA-136-2 openssl - multiple remote exploits
Bulletin has no description...
Buffer overflow in afd
Buffer overflow on long path in suid utils...
Happy Labor Day from Snosoft
For your reading pleasure I have attached some of the communication between myself and CERT regarding the issues recently released at: ftp://ftp1.support.compaq.com/public/unix/v5.1/T64V51B19-C0136901-15143-ES-20020817.txt We are in the process of making our formal advisories out of these...