Microsoft IIS 4.0/5.0 - SMTP Service Encapsulated SMTP Address (MS99-027)

source: https://www.securityfocus.com/bid/5213/info Microsoft Exchange 5.5 and the SMTP Simple Mail Transfer Protocol service included with IIS Internet Information Services 4.0 and 5.0 are vulnerable to an encapsulated SMTP address vulnerability. The vulnerability was originally announced in...

MacOS X SoftwareUpdate Vulnerability

---------------------------------------------------------------------------- MacOS X SoftwareUpdate Vulnerability. ---------------------------------------------------------------------------- Date: July 6, 2002 Version: MacOS 10.1.X and possibly 10.0.X Problem: MacOS X SoftwareUpdate connects to...

simpleinit root exploit - file descriptor left open

Background ---------- Simpleinit is an init program for Linux systems. It is included in the util-linux distribution. More information about simpleinit is available at http://www.atnf.csiro.au/people/rgooch/linux/boot-scripts/. Problem ------- Simpleinit leaves a file descriptor open in some chil...

[BUGZILLA] Security Advisory For Versions of Bugzilla 2.14 Prior To 2.14.2, 2.16 Prior To 2.16rc2

Bugzilla Security Advisory Jun 8th, 2002 All Bugzilla installations are advised to upgrade to the latest versions of Bugzilla released today, 2.14.2 and 2.16rc2. Various security issues of varying importance have been fixed in Bugzilla 2.14.2. Most of these were fixed already in 2.16rc1, a few we...

Using the backbutton in IE is dangerous

---..---..---..---..---..---..---..---..---..---..---..---..---- Title: Using the backbutton in IE is dangerous. Date: 2002-04-15 Software: At least Internet Explorer 6.0. Tested env: Windows 2000 pro, XP. Rating: Medium because user interaction is needed. Impact: Read cookies/local files and...

Security Advisory: Web interface vulnerabilities in ACS for Windows

Cisco Security Advisory: Web interface vulnerabilities in ACS for Windows Revision 1.0 For Public Release 2002 April 03 16:00 UTC +0000 - ---------------------------------------------------------------------------- Contents Summary Products Affected Details Impact Software Versions and Fixes...

[PINE-CERT-20020301] OpenSSH off-by-one

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ----------------------------------------------------------------------------- Pine Internet Security Advisory - ----------------------------------------------------------------------------- Advisory ID : PINE-CERT-20020301 Authors : Joost Pol...

RUS-CERT Advisory 2002-02:01: Temporary file handling in GNAT

RUS-CERT Advisory 2002-02:01: Temporary file handling in GNAT The run-time library of the GNU Ada compiler GNAT handles temporary files in an unsafe manner. Systems Affected All POSIX multi-user systems running GNAT-compiled binaries which use Ada language facilities for creating temporary files...

Buffer overflow in mIRC allowing arbitary code to be executed.

General Info ------------ Researched by: James Martin Full advisory: http://www.uuuppz.com/research/adv-001-mirc.htm Exploit: Proof of concept code available at above URL. Product: mIRC Website: http://www.mirc.com Version: 5.91 and all prior versions to be best of my knowledge. Fix: A patch will...

Microsoft IIS ASP Redirection Function XSS

The remote host contains an ASP.NET installation that is affected by a cross-site scripting vulnerability. An attacker can exploit this issue to execute arbitrary HTML or script code in a user's browser within the security context of the affected site. %NASLMINLEVEL 70300 C Tenable Network...

Novell Groupwise contains protocol implementation vulnerability allowing email to be viewed by unauthorized user

Overview Novell GroupWise is an email storage program. Email is encrypted when stored. Usernames and passwords can be acquired by sniffing communications between the client and server. Description In Novell GroupWise email is stored as encrypted data. Clients and servers operating in Live Remote ...

NetBSD Security Advisory 2002-001 Close-on-exec, SUID and ptrace(2)

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-001 ================================= Topic: Close-on-exec, SUID and ptrace2 Version: NetBSD-current: prior to January 14, 2002 NetBSD-1.5.: affected up to and including 1.5.2 NetBSD-1.4.: affected up to and including 1.4.3 Severity...

Heap overflow in snmpnetstat

---------------------------- Axioma Security Research January 3, 2002 A D V I S O R Y www.axiomasistemas.com ---------------------------- Platforms : All : Tested on Red Hat Linux 7.1 Application : snmpnetstat from ucd-SNMP-4.2.3 www.net-snmp.org Impact : Remote access to the snmpnetstat client...

OpenSSH UseLogin directive permits privilege escalation

Overview OpenSSH is an implementation of the Secure Shell protocol. When OpenSSH is configured with the UseLogin directive equal to "yes", an intruder can execute arbitrary code with the privileges of OpenSSH, usually root. Description OpenSSH contains a vulnerability that permits an intruder to...

Security Bulletin MS01-056

---------------------------------------------------------------------- Title: Windows Media Player .ASF Processor Contains Unchecked Buffer Date: 20 November 2001 Software: Windows Media Player Impact: Run code of attacker's choice Max Risk: Critical Bulletin: MS01-056 Microsoft encourages...

Entrust Bulletin E01-005: GetAccess Access Service vulnerability

Entrust Security Bulletin E01-005 ================================= Entrust GetAccesstm Access Service Vulnerability SUMMARY: ======== A vulnerability has been identified in Entrust GetAccess that could allow unauthorized retrieval of files on certain GetAccess web servers. Entrust recommends...

Vulnerability in Viralator proxy extension

Hi! Date: October 2001 Product: Viralator http://viralator.loddington.com/ Viralator is a perl-script to be used with the squid proxy, an apache webserver and some virus scanner software. Its purpose is to allow scanning of files downloaded through the proxy for viruses. The product has been list...

Security Bulletin MS01-052

---------------------------------------------------------------------- Title: Invalid RDP Data can Cause Terminal Service Failure Date: 18 October 2001 Software: Windows NT 4.0 Server, Terminal Server Edition, Windows 2000 Server and Advanced Server Impact: Denial of service Max Risk: Moderate...

Squid mkdir-only PUT Request Remote DoS

A problem exists in the way the remote Squid proxy server handles a special 'mkdir-only' PUT request, and causes denial of service to the proxy server. An attacker may use this flaw to prevent your LAN users from accessing the web. %NASLMINLEVEL 70300 This script was written by Adam Baldwin See t...

Microsoft Windows 2000 Telnet Service fails to reject oversized username input values

Overview The Microsoft Windows 2000 Telnet Service contains a denial-of-service vulnerability that allows remote attackers to disrupt the telnet service on affected servers. Description The Microsoft Windows 2000 Telnet Service contains a vulnerability in the section of code that performs range...