404 matches found
[SA15035] Heimdal Telnet Client Buffer Overflow Vulnerabilities
---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Heimdal Telnet Client Buffer Overflow Vulnerabilities...
[Hat-Squad] GFI L.N.S.S 5.0 Insecure Credential Storage
February 28, 2005 Hat-Squad Advisory: GFI L.N.S.S 5.0- Insecure Credential Storage Product: GFI Languard Network Security Scanner Vendor Url: http://gfi.com/ Version: 5.0 Vulnerability: Insecure Credential Storage Release Date: February 28, 2005 Vendor Status: Informed on 22 February 2005 Respons...
ZeroBoard Multiple Vulnerabilities
Binary data 2636.prm...
Apple QuickTime 6.5.2.10 - .qtif Image Parsing
Apple QuickTime 6.5.2.10 - .qtif Image Parsing Added qtif on milw0rm's sploits archive/ /str0ke Application: QuickTime http://www.apple.com/quicktime/ AFFECTED VERSION: Versions verified to be vulnerable: QuickTime.qts 6.5.2.10 and prior versions are affected. The bug: The problem specifically...
[SA12226] tnftpd Signal Handling Privilege Escalation Vulnerabilities
TITLE: tnftpd Signal Handling Privilege Escalation Vulnerabilities SECUNIA ADVISORY ID: SA12226 VERIFY ADVISORY: http://secunia.com/advisories/12226/ CRITICAL: Moderately critical IMPACT: System access, Privilege escalation WHERE: From remote SOFTWARE: tnftpd http://secunia.com/product/3800/...
SUSE-SA:2003:001: fetchmail
The remote host is missing the patch for the advisory SUSE-SA:2003:001 fetchmail. fetchmail is used to download emails from POP-, IMAP-, ETRN- or ODMR- servers. Stefan Esser of e-matters reported a bug in fetchmail's mail address expanding code which can lead to remote system compromise. When...
IBM EGatherer 2.0 - ActiveX Control Dangerous Method
source: https://www.securityfocus.com/bid/10562/info It is reported that the IBM eGatherer ActiveX control contains dangerous methods that may result in a remote compromise of a system on which the ActiveX control is installed. These methods may be accessed by a malicious website and may result i...
netobserve.txt
NetObserve Security Bypass Vulnerability Credit: Author : Peter Winter-Smith Software: Packages : NetObserve Version : 2.0 and prior Vendor : ExploreAnywhere Software Vendor Url : http://www.exploreanywhere.com/no-intro.php Vulnerability: Bug Type : Security Bypass Severity : Highly Critical +...
Session Initiation Protocol Detection
The remote system is running software that speaks the Session Initiation Protocol SIP. SIP is a messaging protocol to initiate communication sessions between systems. It is a protocol used mostly in IP Telephony networks / systems to setup, control, and teardown sessions between two or more...
SARA crossite scripting
Crossite scripting on displaying remote sustem scan results...
Compaq Web-enabled Management Software Default Account
The Compaq Web-based Management / HP System Management Agent active on the remote host is configured with the default, or a predictable, administrator password. Depending on the agents integrated, this allows an attacker to view sensitive and verbose system information, and may even allow more...
Overnet Detection
The remote server seems to be a Overnet peer-to-peer client, which may not be suitable for a business environment. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11845; scriptversion"$Revision: 1.11 $"; scriptcvsdate"$Date: 2013/02/15 02:47:03 $";...
NetBSD Security Advisory 2003-010: remote panic in OSI networking code
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2003-010 ================================= Topic: remote panic in OSI networking code Version: NetBSD-current: source prior to May 26, 2003 NetBSD 1.6.1: affected NetBSD 1.6: affected NetBSD-1.5.3: affected NetBSD-1.5.2: affected...
Witango & Tango 2000 Application Server Remote System Buffer Overrun
NGSSoftware Insight Security Research Advisory Name: WiTango Application Server & Tango 2000 Systems Affected: Windows Severity: Critical Risk Category: Remote System Buffer Overrun Vendor URL: http://www.witango.com Author: Mark Litchfield [email protected] Date: 18th July 2003 Advisory numbe...
SuSE Security Announcement: radiusd-cistron (SuSE-SA:2003:030)
-----BEGIN PGP SIGNED MESSAGE----- SuSE Security Announcement Package: radiusd-cistron Announcement-ID: SuSE-SA:2003:030 Date: Friday, Jun 13th 2003 09:32 MET Affected products: 7.2, 7.3, 8.0 Vulnerability Type: possible remote system compromise SuSE default package: no Cross References:...
Oracle unauthenticated remote system compromise (#NISR16022003a)
NGSSoftware Insight Security Research Advisory Name: Oracle unauthenticated remote system compromise Systems Affected: All platforms; Oracle9i Database Release 2, 9i Release 1, 8i, 8.1.7, 8.0.6 Severity: Critical Risk Category: Remote System Buffer Overrun Vendor URL: http://www.oracle.com Author...
remote SYSTEM compromise in WASD OpenVMS http server
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple vulnerabilities in WASD http server for OpenVMS Version 1.0, 25 Sept 2002. 0. Contents 1. Summary 2. Severity: Critical 3. Vulnerable versions 4. Description 5. Solutions 6. Examples of site weaknesses 7. Conclusion 8. Acknowledgments 9...
Macromedia JRUN Buffer overflow vulnerability (#NISR29052002)
NGSSoftware Insight Security Research Advisory Name: Macromedia JRun 3.1 Systems Affected: IIS 4/5 on WinNT 4/Win2K Severity: High Risk Category: Remote System Buffer Overrun Vendor URL: http://www.macromedia.com Author: David Litchfield [email protected] Advisory URL:...
AMANDA security issues
================================================================== Security advisory: AMANDA ================================================================== Package: AMANDA Version: 2.3.0.4 Date: 26/05/2002 Issue: Local and remote overflows Risk: Medium since this is an old package Credits:...
Avirt Gateway Suite Remote SYSTEM Level Compromise
Strumpf Noir Society Advisories ! Public release ! -- -= Avirt Gateway Suite Remote SYSTEM Level Compromise =- Release date: Thursday, January 17, 2002 Introduction: Avirt Gateway Suite combines the features of the Avirt Gateway internet sharing technology with the functionality of the Avirt Mail...