MySimpleNews 1.0 - PHP Injection

source: https://www.securityfocus.com/bid/5865/info MySimpleNews allows users to enter news articles through a web interface. It will allow PHP code to be injected into URI parameters of the 'users.php' script, which will be stored into a MySimpleNews file news.php3. The injected code may then be...

Apache 2.0.39/40 - Oversized STDERR Buffer Denial of Service

// source: https://www.securityfocus.com/bid/5787/info Apache is prone to a denial of service condition when an excessive amount of data is written to stderr. This condition reportedly occurs when the amount of data written to stderr is over the default amount allowed by the operating system. Thi...

Linuxconf 1.1.x1.2.x - Local Environment Variable Buffer Overflow (2)

Linuxconf 1.1.x1.2.x - Local Environment Variable Buffer Overflow 2 // source: https://www.securityfocus.com/bid/5585/info Linuxconf is a Linux configuration utility from Solucorp. It is typically installed as a setuid root utility for the management and configuration of Linux operating systems. ...

Microsoft Windows XP/2000/NT 4.0 - Network Share Provider SMB Request Buffer Overflow (2)

source: https://www.securityfocus.com/bid/5556/info Microsoft Windows operating systems use the Server Message Block SMB protocol to support services such as file and printer sharing. A buffer overflow vulnerability has been reporting in the handling of some malformed SMB requests. An attacker ma...

Mozilla Bonsai 1.3 - Full Path Disclosure

Mozilla Bonsai 1.3 - Full Path Disclosure source: https://www.securityfocus.com/bid/5517/info A path disclosure vulnerability has been reported in Mozilla Bonsai. An attacker can exploit this vulnerability by making a malformed request to Bonsai. This causes Bonsai to return an error page to the...

Important: Red Hat Security Advisory: : Updated bind packages fix buffer overflow in resolver library

Various versions of the ISC BIND resolver libraries are vulnerable to a buffer overflow attack. Updated BIND packages are now available to fix this issue. ISC BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which...

Bharat Mediratta Gallery 1.x - Remote File Inclusion

Bharat Mediratta Gallery 1.x - Remote File Inclusion source: https://www.securityfocus.com/bid/5375/info Gallery is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. This issue is present in several PHP script files provided with Gallery. An...

[ARL02-A12] PHP(Reactor) Cross Site Scripting Vulnerability

+/---------------- ALPER Research Labs ------/--------/+ +/---------------- Security Advisory -----/---------/+ +/---------------- ID: ARL02-A12 ----/----------/+ +/---------------- [email protected] ---/-----------/+ Advisory Information -------------------- Name : phpReactor Cross Site Scripti...

Cisco IOS Port Scan Remote DoS (CSCds07326)

Some security scanners can force a Cisco device to reload. An attacker may use this flaw to prevent your network from working properly. This vulnerability is documented as Cisco Bug ID CSCds07326. C Tenable Network Security, Inc. Script audit and contributions from Carmichael Security Erik Anders...

QNX RTOS 4.256.1 - su Password Hash Disclosure

QNX RTOS 4.256.1 - su Password Hash Disclosure source: https://www.securityfocus.com/bid/4914/info It has been reported that the 'su' utility for QNX RTOS accepts the SIGSEGV signal and dumps a world readable core file. An attacker is able to analyze the core file and obtain very sensitive...

QNX RTOS 4.25 - 'CRTTrap' File Disclosure

source: https://www.securityfocus.com/bid/4901/info The QNX RTOS crttrap binary includes a command-line option for specifying a configuration file. crttrap is installed setuid by default. crttrap Local attackers may specify an arbitrary system file in place of the configuration file and crttrap...

Caldera OpenServer 5.0.55.0.6 - SCOAdmin Symbolic Link

Caldera OpenServer 5.0.55.0.6 - SCOAdmin Symbolic Link source: https://www.securityfocus.com/bid/4875/info A vulnerability has been reported in the scoadmin utility that may allow a local attacker to overwrite any file. The vulnerability is due to the predictable naming of temporary files used by...

PVote 1.01.5 - Poll Content Manipulation

PVote 1.01.5 - Poll Content Manipulation source: https://www.securityfocus.com/bid/4540/info PVote is a web voting system written in PHP. It will run on most Unix and Linux variants as well as Microsoft Windows operating systems. It is possible for a remote attacker to add/delete web polls just b...

Oracle 8i - TNS Listener Local Command Parameter Buffer Overflow

/ source: https://www.securityfocus.com/bid/4413/info Oracle 8i is a powerful relational database product. It is available for Windows, Linux, and a wide range of Unix operating systems. A vulnerability has been reported with some versions of Oracle 8i for Linux. A local attacker able to execute...

ISS BlackICE / RealSecure Large ICMP Ping Packet Overflow DoS

The remote host appears to be running either BlackICE or RealSecure Server Sensor. This application has a remote buffer overflow vulnerability. It was possible to crash the application by flooding it with 10 KB ping packets. A remote attacker could exploit this to cause a denial of service, or...

csSearch csSearch.cgi setup Parameter Arbitrary Command Execution

The version of csSearch running on the remote host has a command execution vulnerability. Input to the 'print' parameter of 'csSearch.cgi' is not properly sanitized. A remote attacker could exploit this by executing arbitrary system commands with the privileges of the web server. %NASLMINLEVEL...

CVE-2002-0142

CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service crash via a series of requests whose physical path is exactly 260 characters long and ends in a series of . dot characters...

Cisco IOS 11/12 - SNMP Message Denial of Service

// source: https://www.securityfocus.com/bid/4132/info Cisco products contain multiple vulnerabilities in handling of SNMP requests and traps. A general report for multiple vendors was initially published on February 12 Bugtraq IDs 4088 and 4089, however more information is now available and a...

CVE-2002-1596

Cisco SN 5420 Storage Router 1.15 and earlier allows remote attackers to cause a denial of service router crash via an HTTP request with large headers...

CVE-2001-1152

Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested URL, including 1 a // double slash, 2 a /SUBDIR/.. where the desired file is in the parentdir, 3 ...