[SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 810-1 [email protected] http://www.debian.org/security/ Martin Schulze September 13th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 807-1] New mod_ssl packages fix acl restriction bypass

-------------------------------------------------------------------------- Debian Security Advisory DSA 807-1 [email protected] http://www.debian.org/security/ Martin Schulze September 12th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 792-1] New pstotext packages fix arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 792-1 [email protected] http://www.debian.org/security/ Martin Schulze August 31st, 2005 http://www.debian.org/security/faq -...

Fetchmail 6.2.5 exploit for Bugtraq ID: 14349

The following exploit is brought to you by The Mantis Project which is a project geared towards learning the process of discovering and exploiting bugs in the wild. Exploits are based on published advisories which do not contain proof of concept code or unpublished findings. The project's purpose...

[SECURITY] [DSA 783-1] New mysql packages fix insecure temporary file

-------------------------------------------------------------------------- Debian Security Advisory DSA 783-1 [email protected] http://www.debian.org/security/ Martin Schulze August 24th, 2005 http://www.debian.org/security/faq -...

NOVL-2005010098073 GroupWise Password Caching

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 For Immediate Disclosure ============================== Summary ============================== Security Alert: NOVL-2005-10098073 Title: GroupWise Password Caching Date: 16-August-2005 Revision: Original Product Name: GroupWise 5.x, 6.x OS/Platforms:...

[SECURITY] [DSA 776-1] New clamav packages fix several problems

-------------------------------------------------------------------------- Debian Security Advisory DSA 776-1 [email protected] http://www.debian.org/security/ Martin Schulze August 16th, 2005 http://www.debian.org/security/faq -...

x_aix5_bellmail.pl.txt

-bash-2.05b$ -bash-2.05b$ cat xaix5bellmail.pl !/usr/bin/perl FileName: xaix5bellmail.pl Exploit "Race condition vulnerability BUGTRAQ ID: 8805" of /usr/bin/bellmail command on Aix5 to change any file owner to current user. Usage : xaix5bellmail.pl aimfile aimfile : then file wich you want to cho...

Gallery PostNuke Integration Access Validation Privilege Escalation

The remote host is running Gallery, a web-based photo album. According to its banner, the version of Gallery installed on the remote host is subject to an access validation issue when integrated with PostNuke, as is the case on the remote host. The issue means that any user with any level of admi...

Trillian Ver 3.1 saves password's in plain Text

Hi Everyone, I was playing around with Trillian Pro 3.1 Build 121 and noticed a very disturbing behavior when using it to check my yahoo mail. When you choose the option to check your yahoo email from Trillian The little connection ball - Check Yahoo Mail it creates a temp file in the Install...

Community Link Pro login.cgi file Parameter Arbitrary Command Execution

The remote host is running Community Link Pro, a web-based application written in Perl. The remote version of this software fails to sanitize user input to the 'file' parameter of the 'login.cgi' script of shell metacharacters before using it to run a command. An unauthenticated attacker can...

SUSE-SA:2005:034: opera

The remote host is missing the patch for the advisory SUSE-SA:2005:034 opera. The web browser Opera has been updated to version 8.01 to fix various security-related bugs. Fixed XMLHttpRequest redirect vulnerability reported in Secunia Advisory 15008. Fixed cross-site scripting vulnerability...

FreeBSD : cacti -- multiple vulnerabilities (1cf00643-ed8a-11d9-8310-0001020eed82)

Stefan Esser reports : Wrongly implemented user input filters lead to multiple SQL Injection vulnerabilities which can lead f.e. to disclosure of the admin password hash. Wrongly implemented user input filters allows injection of user input into executed commandline. Alberto Trivero posted his...

FreeBSD : kdelibs3 -- konqueror FTP command injection vulnerability (832e9d75-5bfc-11d9-a9e7-0001020eed82)

Albert Puigsech Galicia reports that Konqueror more specifically kioftp and Microsoft Internet Explorer are vulnerable to a FTP command injection vulnerability which can be exploited by tricking an user into clicking a specially crafted FTP URI. It is also reported by Ian Gulliver and Emanuele...

Slackware 10.0 / 10.1 / 9.1 / current : Mozilla/Firefox/Thunderbird (SSA:2005-085-01)

New Mozilla packages are available for Slackware 9.1, 10.0, 10.1, and -current to fix various security issues and bugs. See the Mozilla site for a complete list of the issues patched: http://www.mozilla.org/projects/security/known-vulnerabilities.htmlMo zilla Also updated are Firefox and...

PunBB < 1.2.6 Multiple Vulnerabilities

The remote version of PunBB contains a flaw in its template system that can be exploited to read arbitrary local files or, if an attacker can upload a specially crafted avatar, to execute arbitrary PHP code. In addition, the application fails to sanitize the 'temp' parameter of the 'profile.php'...

Rhapsody vidplin.dll AVI Processing Heap Overflow Vulnerability

The remote installation of Rhapsody has a heap overflow in the 'vidplin.dll' file used to process AVI files. With a specially- crafted AVI file, an attacker can exploit this flaw to cause arbitrary code to be run within the context of the affected application when a user opens the file. C Tenable...

Yaws Web Server .yaws Script Null Byte Request Source Code Disclosure

The remote host is running the Yaws web server. The remote version of this software is vulnerable to a source code disclosure issue. By requesting a '.yaws' script following by %00, an attacker may force the remote server to disclose the source code of that script. Since scripts may contain...

GLSA-200506-09 : gedit: Format string vulnerability

The remote host is affected by the vulnerability described in GLSA-200506-09 gedit: Format string vulnerability A format string vulnerability exists when opening files with names containing format specifiers. Impact : A specially crafted file with format specifiers in the filename can cause...

FlexCast Server Terminal Authentication Unspecified Remote Issue

The remote host is running FlexCast, an audio/video streaming server. According to its banner, the version installed on the remote host suffers from a vulnerability in suppliers / terminal authentication. While details are as-yet unavailable, it is likely the flaw is remotely exploitable...