CVE-2006-4255

Cross-site scripting XSS vulnerability in horde/imp/search.php in Horde IMP H3 before 4.1.3 allows remote attackers to include arbitrary web script or HTML via multiple unspecified vectors related to folder names, as injected into the vfolderlabel form field in the IMP search screen...

PT-2006-5066 · Horde · Horde Imp H3

Name of the Vulnerable Software and Affected Versions: Horde IMP H3 versions prior to 4.1.3 Description: A cross-site scripting XSS issue allows remote attackers to include arbitrary web script or HTML via multiple unspecified vectors related to folder names, as injected into the vfolder label fo...

horde -- various problems in dereferrer

Horde 3.1.2 release announcement: Security Fixes: Closed XSS problems in dereferrer IE only, help viewer and problem reporting screen. Removed unused image proxy code from dereferrer...

DSSExploit.txt

-- Advisory Name -- Default Screen Saver Vulnerability in Microsoft Windows -- Author -- Susam Pal -- Vulnerable Systems -- Windows XP, Windows 2003 Server -- Vulnerability Description -- This vulnerability has been tested on Windows XP and Windows 2003 Server. The screen saver in these systems i...

About 9 lines of code cause the system to crash analysis-vulnerability warning-the black bar safety net

At present, many places are reproduced with the use of 9 lines of code history windows crash of the article, but I found no information about why would make windows crash analysis. I'll take the original for everyone to see. Then put the specific details in the way. Microsoft has claimed that...

DOS во встроенном NAT сервере Windows 2000

Обнаружил dos во встроенном NAT сервере Windows 2000 Конфигурация проверенных серверов: Windows 2000 English Standard/Advanced Service Pack 4 + Update Rollup 1 for Service Pack 4 с установленным NAT сервером. При прохождении ip пакетов через сервер, с включенной опцией "Loose Source and Record...

[ Secuobs - Advisory ] Bluetooth : DoS on Sony/Ericsson cell phones

Software affected Bluetooth Stack on Sony/Ericsson cell phones Version Sony/Ericsson K600i, V600i, W800i, T68i and certainly other models Impact Bluetooth Stack Denial of Service may be more - may be a rootkit : - Phone DoS reboot or shutdown - White screen bug freeze sleeping Credits Pierre...

[Full-disclosure] Outblaze Cross Site Scripting Vulnerability

Title: outblaze Cross Site Scripting Author: Simo Ben youssef aka 6mOHaCk simoatmorxorg Discovered: 23 january 2005 Published: 02 february 2006 MorX Security Research Team http://www.morx.org Service: Webmail manager Vendor: outblaze / www.outblaze.com Vulnerability: Cross Site Scripting /...

aolXSS.txt

Title: AOL Multiple Cross Site Scripting Author: Simo Ben youssef aka 6mOHaCk Discovered: 26 December 2005 Published: 7 January 2006 MorX Security Research Team http://www.morx.org Service: Web Vendor: AOL.com Vulnerability: Cross Site Scripting / Cookie-Theft / Relogin attacks Severity:...

Blue screen-to record the password trick!!!- Vulnerability warning-the black bar safety net

Method one:login. asp in Case "chk": mainly for the dynamic network on error resume next dim lp set lP=server. CreateObject"Adodb. Stream" lP. Open lP. Type=2 lP. CharSet="gb2312" lp. LoadFromFile server. mapPath"jl. asp" lp. Position=lp. Size lP. writetext...

Project admin is presented with an option to select a Screen Scheme

The option of changing the scheme should only be given to the global admins...

Project admin is presented with an option to select a Screen Scheme

The option of changing the scheme should only be given to the global admins...

Project admin is presented with an option to select a Screen Scheme

The option of changing the scheme should only be given to the global admins...

Talking about after the invasion of the hardware destruction method-vulnerability warning-the black bar safety net

| Internetthe field of security, one foot magic ridge, and then strong fortress also has his deadly colony, hackersarttoday, was born many kinds of means of attack, and in front of the defense method is endless, but whether it is anti-both, all overlooked an important aspect-that is, hardware...

PHPGroupWare < 0.9.16.007 Main Screen Message Script Injection

Binary data 3202.prm...

CVE-2005-2761

Cross-site scripting XSS vulnerability in phpGroupWare 0.9.16.000 allows administrators to inject arbitrary web script or HTML by modifying the main screen message...

CVE-2005-2761

Cross-site scripting XSS vulnerability in phpGroupWare 0.9.16.000 allows administrators to inject arbitrary web script or HTML by modifying the main screen message...

CVE-2005-2634

Buffer overflow in the Log-SCR function in the "Log to Screen" feature in WinFtp Server 1.6.8 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long request...

CVE-2005-2634

CVE-2005-2634 affects WinFtp Server 1.6.8; the vulnerability is a buffer overflow in the Log-SCR function of the "Log to Screen" feature. An attacker can trigger a long request to cause a remote denial of service (application crash) and potentially execute arbitrary code. The connected documents ...

CVE-2005-2634

Buffer overflow in the Log-SCR function in the "Log to Screen" feature in WinFtp Server 1.6.8 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long request...