Fedora Core 1 2004-087: libxml2

The remote host is missing the patch for the advisory FEDORA-2004-087 libxml2. This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or...

[SECURITY] [DSA 518-1] New kdelibs packages fix URI handler vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 518-1 [email protected] http://www.debian.org/security/ Martin Schulze June 14th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 518-1] New kdelibs packages fix URI handler vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 518-1 [email protected] http://www.debian.org/security/ Martin Schulze June 14th, 2004 http://www.debian.org/security/faq -...

DSA-518 kdelibs - unsanitised input

Bulletin has no description...

CVE-2004-0411

The URI handlers in Konqueror for KDE 3.2.2 and earlier do not properly filter "-" characters that begin a hostname in a 1 telnet, 2 rlogin, 3 ssh, or 4 mailto URI, which allows remote attackers to manipulate the options that are passed to the associated programs, possibly to read arbitrary files...

Important: Red Hat Security Advisory: libpng security update

Updated libpng packages that fix a out of bounds memory access are now available. The libpng package contains a library of functions for creating and manipulating PNG Portable Network Graphics image format files. Steve Grubb discovered a out of bounds memory access flaw in libpng. An attacker cou...

Microsoft Internet Explorer allows mouse events to manipulate window objects and perform "drag and drop" operations

Overview Microsoft Internet Explorer IE dynamic HTML DHTML mouse events can manipulate windows to copy objects from one domain to another, including the Local Machine Zone. This vulnerability could allow an attacker to write arbitrary files to the local file system. Description In IE, certain DHT...

CVE-2003-1024

Unknown vulnerability in the ls-F builtin function in tcsh on Solaris 8 allows local users to create or delete files as other users, and gain privileges...

CVE-2003-1298

Multiple directory traversal vulnerabilities in siteman.php3 in AnyPortalphp 12 MAY 00 allow remote attackers to 1 create, 2 delete, 3 save, and 4 upload files by navigating to the root directory and entering a filename beginning with "./.." dot slash dot dot...

CVE-2003-0999

CVE-2003-0999 affects Solaris 2.6–9 components: (1) lpstat and (2) the libprint library. The sources describe unknown multiple vulnerabilities that may allow an attacker to execute arbitrary code or read/write arbitrary files. The CVSS indicates local access with low complexity, no authentication...

cdwrite 1.3 insecure tmp file handling vulnerability.

Application: cdwrite 1.3 Versions: 1.3 Vendor: Cezary M. Kruk & H. P. de Vries Impact: Could allow attacker to overwrite/manipulate files as the user running cdwrite. Vendor status: Vendor contacted, no reply yet. Date: 06/12/03 Introduction "Cdwrite is the shell for creation of data and audio...

Opera < 7.22 Multiple Vulnerabilities

The remote host is using Opera, an alternative web browser. The version of Opera installed on the remote host is affected by several issues. One may allow an attacker to drop arbitrary files with arbitrary names on this host; another may allow an attacker to traverse directories on the affected...

Gast Arbeiter unauthorized access

It's possible to access file of attackers choice...

CVE-2003-0455

The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to create or overwrite arbitrary files...

CDRTools 2.0 - RSCSI Debug File Arbitrary Local File Manipulation

CDRTools 2.0 - RSCSI Debug File Arbitrary Local File Manipulation source: https://www.securityfocus.com/bid/8328/info It has been reported that the rscsi utility may provide for the modification of ownership and the corruption of arbitrary attacker specified files. It has been reported that a loc...

Buffer overflow in MSN Messenger 6.0

Application: MSN Messenger 6.0 http://www.msnmessenger-download.com/Preview/ Affected Versions: MSN Messenger 6.0 biuld 6.0.0501 and prior Bug: Buffer overflow in msnmsgr.exe In the small viewer box that show the sending file before accepting it. Author: Bahaa Naamneh e-mail: [email protected]...

CVE-2003-0455

The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to create or overwrite arbitrary files...

iXmail Multiple Script Arbitrary File Manipulation

The remote host is running the iXmail webmail interface. There is a flaw in this interface which allows an attacker who has a valid account on this host to upload and execute arbitrary php files on this host, thus potentially gaining a shell on this host. An attacker may also use this flaw to...

man[v1.5l]: &#40;catalog&#41; format strings exploit / POC.

was looking at the source code to man, and came upon this. newer g libc's will stop this from happening. but, still worth noting/effective bypass with older glibc's explained in exploit header Vade79 - fakehalo.deadpig.org - fakehalo. -- xmanfmt.c: start -- / linuxmanv1.5l: format string exploit...

WebLogic Servlets Multiple Vulnerabilities

The remote web server is WebLogic. An internal management servlet that does not properly check user credentials can be accessed from outside, allowing an attacker to change user passwords, and even upload or download any file on the remote server. In addition to this, there is a flaw in WebLogic...