Debian Security Advisory DSA 1188-1 (mailman)

The remote host is missing an update to mailman announced via advisory DSA 1188-1. Several security related problems have been discovered in mailman, the web-based GNU mailing list manager. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2006-3636 Moritz...

March Networks DVR 3204 Logfile Information Disclosure Exploit

No description provided by source. !/usr/bin/perl March Networks DVR 3204 Logfile Information Disclosure Exploit Since configuration of the IP address, user console and root is carried out over the "administrator console", the vulnerability lies within Watchdog's HTTP server application. Any user...

dvr3204_exp.txt

!/usr/bin/perl March Networks DVR 3204 Logfile Information Disclosure Exploit Since configuration of the IP address, user console and root is carried out over the "administrator console", the vulnerability lies within Watchdog's HTTP server application. Any user can obtain the log files without...

March Networks DVR 3204 Logfile Information Disclosure Exploit

Exploit for hardware platform in category remote exploits ============================================================== March Networks DVR 3204 Logfile Information Disclosure Exploit ============================================================== !/usr/bin/perl March Networks DVR 3204 Logfile...

March Networks DVR 3204 - Logfile Information Disclosure

!/usr/bin/perl March Networks DVR 3204 Logfile Information Disclosure Exploit Since configuration of the IP address, user console and root is carried out over the "administrator console", the vulnerability lies within Watchdog's HTTP server application. Any user can obtain the log files without...

March Networks DVR 3204 - Logfile Information Disclosure

March Networks DVR 3204 - Logfile Information Disclosure !/usr/bin/perl March Networks DVR 3204 Logfile Information Disclosure Exploit Since configuration of the IP address, user console and root is carried out over the "administrator console", the vulnerability lies within Watchdog's HTTP server...

mailman security and bug fix update

2.1.5.1-34.rhel4.6 - fix 200036 - canceling subscription confirmation crashes mailman - fix 205651 - CVE-2006-4624 logfile CRLF injection - fix 230939 - missing migrate-fhs script - fix 223191 - spam filters gets deleted when sender filter is edited - fix 242677 - wrong init script...

Buffer overflow

Multiple buffer overflows in the AMX NetLinx VNC AmxVnc ActiveX control in AmxVnc.dll 1.0.13.0 allow remote attackers to execute arbitrary code via long 1 Host, 2 Password, or 3 LogFile property values...

AMX Corp. VNC ActiveX Control - AmxVnc.dll 1.0.13.0 Remote Buffer Overflow

AMX Corp. VNC ActiveX Control - AmxVnc.dll 1.0.13.0 Remote Buffer Overflow 'metasploit one, add a user "su" with pass "tzu" scode = unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%49%49%49%49%49%49%37%49%49%49%49%49%49%49%49%49%49%49%51%5a%6a%44%58%50%30%41%30%41%6b%41%41%54%42%41%32%41%41%32%4...

AMX Corp. VNC ActiveX Control (AmxVnc.dll 1.0.13.0) BoF Exploit

Exploit for unknown platform in category remote exploits =============================================================== AMX Corp. VNC ActiveX Control AmxVnc.dll 1.0.13.0 BoF Exploit =============================================================== script language='...

CVE-2007-2667

Buffer overflow in the DB Software Laboratory VImpX ActiveX control in VImpX.ocx 4.7.3 allows remote attackers to execute arbitrary code via a long LogFile parameter...

Buffer overflow

Buffer overflow in the DB Software Laboratory VImpX ActiveX control in VImpX.ocx 4.7.3 allows remote attackers to execute arbitrary code via a long LogFile parameter...

shoutcast-xss.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +--------------------------------------- - -- - | SaMuschie Research Labs proudly presents . . . +------------------------------------------- -- - - | Application: Nullsoft ShoutcastServer | Version: 1.9.7/Win32 other versions/platforms not tested |...

[SA23632] OpenVMS Audit Logfile Password Exposure

TITLE: OpenVMS Audit Logfile Password Exposure SECUNIA ADVISORY ID: SA23632 VERIFY ADVISORY: http://secunia.com/advisories/23632/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: Local system OPERATING SYSTEM: OpenVMS 8.x http://secunia.com/product/6052/ DESCRIPTION: A...

[SECURITY] [DSA 1188-1] New mailman packages fix several problems

-------------------------------------------------------------------------- Debian Security Advisory DSA 1188-1 [email protected] http://www.debian.org/security/ Martin Schulze October 4th, 2006 http://www.debian.org/security/faq -...

DSA-1188-1 mailman

Bulletin has no description...

Linux Kernel 2.6.13 2.6.17.4 - logrotate prctl() Local Privilege Escalation

Linux Kernel 2.6.13 2.6.17.4 - logrotate prctl Local Privilege Escalation / $Id: raptorprctl2.c,v 1.3 2006/07/18 13:16:45 raptor Exp $ raptorprctl2.c - Linux 2.6.x suiddumpable2 logrotate Copyright c 2006 Marco Ivaldi The suiddumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4,...

CVE-2006-3413

The privoxy configuration file in Tor before 0.1.1.20, when run on Apple OS X, logs all data via the "logfile", which allows attackers to obtain potentially sensitive information...

Default configuration

AWStats 6.5, and possibly other versions, allows remote authenticated users to execute arbitrary code by using the configdir parameter to awstats.pl to upload a configuration file whose name contains shell metacharacters, then access that file using the LogFile directive...

CVE-2006-2644

AWStats 6.5, and possibly other versions, allows remote authenticated users to execute arbitrary code by using the configdir parameter to awstats.pl to upload a configuration file whose name contains shell metacharacters, then access that file using the LogFile directive...