[BUGZILLA] Security advisory for Bugzilla < 2.16.11

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Bugzilla Security Advisory ========================== December 27, 2005 Summary ======= Bugzilla is a Web-based bug-tracking system, used by a large number of software projects. This advisory covers an insecure temporary filename handling issue in...

[SA18230] Sun Solaris PC NetLink Insecure File Handling Vulnerability

TITLE: Sun Solaris PC NetLink Insecure File Handling Vulnerability SECUNIA ADVISORY ID: SA18230 VERIFY ADVISORY: http://secunia.com/advisories/18230/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: Sun Solaris PC Netlink 2.x http://secunia.com/product/6667/...

[SA18185] TN3270 Resource Gateway Potential syslog Perl Format String Vulnerability

TITLE: TN3270 Resource Gateway Potential syslog Perl Format String Vulnerability SECUNIA ADVISORY ID: SA18185 VERIFY ADVISORY: http://secunia.com/advisories/18185/ CRITICAL: Less critical IMPACT: Privilege escalation, DoS WHERE: Local system SOFTWARE: TN3270 Resource Gateway TN3270RG 1.x...

[SA17708] Sun Solaris traceroute Commandline Buffer Overflow Vulnerability

TITLE: Sun Solaris traceroute Commandline Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA17708 VERIFY ADVISORY: http://secunia.com/advisories/17708/ CRITICAL: Not critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: Sun Solaris 10 http://secunia.com/product/4813/...

[SA17534] Sudo Perl Environment Cleaning Privilege Escalation Vulnerability

TITLE: Sudo Perl Environment Cleaning Privilege Escalation Vulnerability SECUNIA ADVISORY ID: SA17534 VERIFY ADVISORY: http://secunia.com/advisories/17534/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: Sudo 1.x http://secunia.com/product/3929/ DESCRIPTION: A...

[SA17506] HP-UX envd Privilege Escalation Vulnerability

TITLE: HP-UX envd Privilege Escalation Vulnerability SECUNIA ADVISORY ID: SA17506 VERIFY ADVISORY: http://secunia.com/advisories/17506/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: HP-UX 11.x http://secunia.com/product/138/ DESCRIPTION: A vulnerabilit...

[SA17502] VERITAS Cluster Server for UNIX Buffer Overflow Vulnerability

TITLE: VERITAS Cluster Server for UNIX Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA17502 VERIFY ADVISORY: http://secunia.com/advisories/17502/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: VERITAS Storage Foundation Cluster File System 4.x...

Buffer Overrun in Messenger Service (828035)

A security vulnerability exists in the Messenger Service that could allow arbitrary code execution on an affected system. An attacker who successfully exploited this vulnerability could be able to run code with Local System privileges on an affected system, or could cause the Messenger Service to...

Buffer Overrun in Messenger Service (828035)

A security vulnerability exists in the Messenger Service that could allow arbitrary code execution on an affected system. This plugin determined by reading the remote registry that the patch MS03-043 has not been applied. SPDX-FileCopyrightText: 2003 Jeff Adams Some text descriptions might be...

XML Core Services patch (Q318203)

XMLHTTP Control Can Allow Access to Local Files. SPDX-FileCopyrightText: 2002 Michael Scheidell Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SA17293] Fetchmail "fetchmailconf" Password Disclosure Vulnerability

TITLE: Fetchmail "fetchmailconf" Password Disclosure Vulnerability SECUNIA ADVISORY ID: SA17293 VERIFY ADVISORY: http://secunia.com/advisories/17293/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: Local system SOFTWARE: Fetchmail 6.x http://secunia.com/product/370/...

[SA17299] mgdiff Patch Viewer Insecure Temporary File Creation

TITLE: mgdiff Patch Viewer Insecure Temporary File Creation SECUNIA ADVISORY ID: SA17299 VERIFY ADVISORY: http://secunia.com/advisories/17299/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: mgdiff Patch Viewer http://secunia.com/product/5962/ DESCRIPTION: Javie...

[SA17226] Linux Kernel Console Keyboard Mapping Shell Command Injection

TITLE: Linux Kernel Console Keyboard Mapping Shell Command Injection SECUNIA ADVISORY ID: SA17226 VERIFY ADVISORY: http://secunia.com/advisories/17226/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: Linux Kernel 2.6.x http://secunia.com/product/2719/...

[SA17202] AIX LSCFG Insecure Temporary File Handling Vulnerability

TITLE: AIX LSCFG Insecure Temporary File Handling Vulnerability SECUNIA ADVISORY ID: SA17202 VERIFY ADVISORY: http://secunia.com/advisories/17202/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system OPERATING SYSTEM: AIX 5.x http://secunia.com/product/213/ DESCRIPTION: A...

[SA17198] Sun Solaris SCTP Denial of Service Weaknesses

TITLE: Sun Solaris SCTP Denial of Service Weaknesses SECUNIA ADVISORY ID: SA17198 VERIFY ADVISORY: http://secunia.com/advisories/17198/ CRITICAL: Not critical IMPACT: DoS WHERE: Local system OPERATING SYSTEM: Sun Solaris 10 http://secunia.com/product/4813/ DESCRIPTION: Some weaknesses have been...

[SA17242] YIFF Sound Systems Arbitrary File Playback Weakness

TITLE: YIFF Sound Systems Arbitrary File Playback Weakness SECUNIA ADVISORY ID: SA17242 VERIFY ADVISORY: http://secunia.com/advisories/17242/ CRITICAL: Not critical IMPACT: Security Bypass WHERE: Local system SOFTWARE: YIFF Sound Systems 2.x http://secunia.com/product/5945/ DESCRIPTION: Javier...

[Full-disclosure] Secunia Research: Webroot Desktop Firewall Two Vulnerabilities

====================================================================== Secunia Research 06/10/2005 - Webroot Desktop Firewall Two Vulnerabilities - ====================================================================== Table of Contents Affected...

[SA17023] GNOME libzvt "gnome-pty-helper" Hostname Spoofing

TITLE: GNOME libzvt "gnome-pty-helper" Hostname Spoofing SECUNIA ADVISORY ID: SA17023 VERIFY ADVISORY: http://secunia.com/advisories/17023/ CRITICAL: Not critical IMPACT: Spoofing WHERE: Local system SOFTWARE: GNOME 2.x http://secunia.com/product/3277/ DESCRIPTION: Paul Szabo has reported a...

[SA17009] Macromedia Breeze Password Reset Security Issue

TITLE: Macromedia Breeze Password Reset Security Issue SECUNIA ADVISORY ID: SA17009 VERIFY ADVISORY: http://secunia.com/advisories/17009/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: Local system SOFTWARE: Macromedia Breeze 5.x http://secunia.com/product/5779/...

[SA17025] storeBackup Insecure Temporary File Creation and Insecure Backup Root Permissions

TITLE: storeBackup Insecure Temporary File Creation and Insecure Backup Root Permissions SECUNIA ADVISORY ID: SA17025 VERIFY ADVISORY: http://secunia.com/advisories/17025/ CRITICAL: Less critical IMPACT: Exposure of sensitive information, Privilege escalation WHERE: Local system SOFTWARE:...