fetchmail -- insecure APOP authentication

Matthias Andree reports: The POP3 standard, currently RFC-1939, has specified an optional, MD5-based authentication scheme called "APOP" which no longer should be considered secure. Additionally, fetchmail's POP3 client implementation has been validating the APOP challenge too lightly and accepte...

NetBSD reference ISO protocol implementation multiple security vulnerabilities

Buffer overflows in different functions...

CVE-2007-1578

Multiple integer signedness errors in the NTLM implementation in Atrium MERCUR IMAPD mcrimap4.exe 5.00.14, with SP4, allow remote attackers to execute arbitrary code via a long NTLMSSP argument that triggers a stack-based buffer overflow...

CVE-2007-1533

The Teredo implementation in Microsoft Windows Vista uses the same nonce for communication with different UDP ports within a solicitation session, which makes it easier for remote attackers to spoof the nonce through brute force attacks...

PHPX 3.5.15/3.5.16 - 'gallery.php' SQL Injection

source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitra...

PHPX 3.5.153.5.16 - forums.php SQL Injection

PHPX 3.5.153.5.16 - forums.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-base...

PHPX 3.5.153.5.16 - users.php SQL Injection

PHPX 3.5.153.5.16 - users.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

CORE-2007-0115: GnuPG and GnuPG clients unsigned data injection vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ GnuPG and GnuPG clients unsigned data injection vulnerability Date Published: 2007-03-05 Last Update: 2007-03-05 Advisory ID: CORE-2007-0115 Bugtraq IDs: BID 22757 -...

CVE-2007-1104

PHP remote file inclusion vulnerability in top.php in PHP Module Implementation PHP-MIP 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the laypath parameter...

CVE-2007-1104

The CVE-2007-1104 entry concerns PHP Module Implementation (PHP-MIP) 0.1, specifically a vulnerability in top.php that allows remote attackers to execute arbitrary PHP code via a URL supplied to the laypath parameter (remote file inclusion). The problem is caused by improper handling of the laypa...

Tyger Bug Tracking System 1.1.3 - 'register.php?PATH_INFO' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied input. Exploiting these...

PHP Module Implementation(top.php laypath)Remote File Include Vul

PHP Module Implementationtop.php laypathRemote File Include Vul ^ Downlaoad S : http://sourceforge.net/projects/phpmip/ ^ Author: GolDM = Mahmoodali && Contact: [email protected] ^ In: /path/top.php ^ Vulnerable Code: ^ include"$laypath/body.php"; Line : 23 ^ Exploit:...

PHP-MIP 0.1 - 'top.php?laypath' Remote File Inclusion

PHP Module Implementationtop.php laypathRemote File Include Vul ^ Downlaoad S : http://sourceforge.net/projects/phpmip/ ^ Author: GolDM = Mahmoodali && Contact: [email protected] ^ In: /path/top.php ^ Vulnerable Code: ^ include"$laypath/body.php"; Line : 23 ^ Exploit:...

Oracle 10g Database - 'SUBSCRIPTION_NAME' SQL Injection (1)

source: https://www.securityfocus.com/bid/13236/info Oracle database is prone to an SQL-injection vulnerability because the software fails to properly sanitize user-supplied data. The 'SUBSCRIPTIONNAME' parameter is vulnerable. Packages that employ this parameter execute with 'SYS' user privilege...

Aruba Mobility Controller vulnerable to privilege escalation

Overview The Aruba Mobility Controller Management Interface contains a privilege escalation vulnerability. This vulnerability may allow a remote attacker to execute arbitrary code on a vulnerable system. Description The Aruba Mobility Controllers are used to process and control network traffic in...

MDPro 1.0.76 - index.php SQL Injection

MDPro 1.0.76 - index.php SQL Injection source: https://www.securityfocus.com/bid/22293/info MDPro is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

CVE-2007-0024

Integer overflow in the Vector Markup Language VML implementation vgx.dll in Microsoft Internet Explorer 5.01, 6, and 7 on Windows 2000 SP4, XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted web page that contains unspecified integer properti...

PHPKit 1.6.1 - comment.php SQL Injection

PHPKit 1.6.1 - comment.php SQL Injection source: https://www.securityfocus.com/bid/21962/info PHPKIT is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

CVE-2006-6900

Technical details about CVE-2006-6900 are not publicly available in the provided documents. Monitor for updates; no specifics on affected product versions, impact, vectors, or remediation are included here.

CVE-2006-6900

Unspecified vulnerability in the Bluetooth stack in Apple Mac OS 10.4 has unknown impact and attack vectors, related to an "implementation bug."...