Fedora Core 1 : mc-4.6.0-8.4 (2004-058)

Sat Jan 31 2004 Jakub Jelinek 4.6.0-8.4 - fix previous patch - Fri Jan 30 2004 Jakub Jelinek 4.6.0-8.3 - update php.syntax file 112645 - fix crash with large syntax file 112644 - Fri Jan 23 2004 Jakub Jelinek 4.6.0-8.2 - update CVE-2003-1023 fix to still make vfs symlinks relative, but with...

vBulletin HTML Injection Vuln

Advisory Name : vBulletin HTML Injection Vulnerability Release Date : June 24,2004 Application : vBulletin Test On : 3.0.1 or others? Vendor : Jelsofthttp://www.vbulletin.com/ Discover : Cheng Peng Suapplesoupatmsn.com Intro: From vendor's website ,it says that ,vBulletin is a powerful, scalable...

roundUP.txt

Vickenty Fesunov 2004-05-27 04:51 random filesystem access Roundup uses /home/@@file/ prefix to get static files from the filesystem. It does not restrict in any way the files that are handled. I have a roundup tracker home at /home/kent/cit, then I do the following: kent@kent:$ nc localhost 8080...

MS04-012: Microsoft Hotfix (credentialed check) (828741)

The remote host has multiple bugs in its RPC/DCOM implementation 828741. An attacker could exploit one of these flaws to execute arbitrary code on the remote system. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12206; scriptversion"1.45"; scriptcvsdate"Date:...

[Full-Disclosure] MondoSoft - MsmLink.exe - Denial of Service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Topic: MondoSoft - MsmLink.exe - Denial of Service Application : MondoSearch versions prior to 5.1b Author: Dennis Rand dra at protego.dk Advisory URL: http://www.protego.dk/advisories/200403.html Vendor Name: MondoSoft Vendor URL:...

[Full-Disclosure] VieNuke VieBoard SQL Injection Vulnerability... again

--- http://www.securityfocus.com/bid/8967/info/ ... Solution: VieNuke has released a patch: http://www.vienuke.com/VieBoardPatch.zip ... --- http://www.securityfocus.com/bid/8967/solution/ ... VieNuke VieBoard 2.6 Beta 1: VieNuke Patch VieBoardPatch.zip http://www.vienuke.com/VieBoardPatch.zip...

FreeBSD-SA-03:14.arp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:14.arp Security Advisory The FreeBSD Project Topic: denial of service due to ARP resource starvation Category: core Module: sys Announced: 2003-09-25 Credits:...

VMware Workstation 4.0.1 (for Linux systems) vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Description - ----------- The following products have a vulnerability that can allow a non-root user of the host system to delete files. VMware Workstation 4.0.1 for Linux systems build 5289 and earlier releases Details/Impact - -------------- By...

Microsoft Windows RPC service vulnerable to denial of service

Overview A vulnerability exists in Microsoft's Remote Procedure Call RPC implementation. A remote attacker could exploit this vulnerability to cause a denial of service. An exploit for this vulnerability is publicly available. Description Microsoft has released MS03-039 to address a vulnerability...

VMware GSX Server 2.5.1 / Workstation 4.0 (for Linux systems) vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Description - ----------- The following products have a vulnerability that can allow a user of the host system to start an arbitrary program with root privileges: VMware GSX Server 2.5.1 for Linux systems build 4968 and earlier releases VMware...

MS03-031: Cumulative Patch for MS SQL Server (815495)

The remote Microsoft SQL server is vulnerable to several flaws : - Named pipe hijacking - Named Pipe Denial of Service - SQL server buffer overrun These flaws could allow a user to gain elevated privileges on this host. C Tenable Network Security, Inc. include"compat.inc"; if description...

MS03-039: Microsoft Windows RPC DCOM Interface epmapper Pipe Hijack Local Privilege Escalation (824146) (intrusive check)

It is possible to disable the remote RPC DOM interface by sending it a malformed request. The system will need to be rebooted to recover. A remote attacker could exploit this flaw to remotely disable RPC- related programs on this host. If a denial of service attack is successful, a local attacker...

VMware Workstation 4.0: Possible privilege escalation on the host via symlink manipulation

It is possible for a user to gain an esclation in privileges on a system running VMware Workstation 4.0 for Linux systems by symlink manipulation in a world-writable directory such as /tmp. Affected systems: VMware Workstation 4.0 for Linux systems Dates: This was reported to VMware on 2003-06-17...

Solaris syslogd overflow

Synopsis: Solaris syslogd is vulnerable to a remote buffer overflow. Versions: Solaris 2.6 SPARC: Not vulnerable Solaris 2.7 SPARC/x86: Untested Solaris 8 SPARC: Vulnerable Solaris 8 x86: Vulnerable Solaris 9 SPARC: Not vulnerable Solaris 9 x86: Untested Impact: Low-Medium. While I've not been ab...

Microsoft Windows Media Player fails to properly evaluate URLs when downloading skin files

Overview Microsoft Media Player contains a vulnerability in the parsing of "Skin Files" that may permit a remote attacker to download arbitrary files to a known location on the local system. Description Microsoft Media Player is an application that plays various types of media files. The user can...

Important: Red Hat Security Advisory: : Updated OpenSSL packages fix vulnerabilities

Updated OpenSSL packages are available that fix a potential timing-based attack and a modified Bleichenbacher attack. OpenSSL is a commercial-grade, full-featured, and open source toolkit that implements Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 protocols as well as a...

MS02-060: Flaw in WinXP Help center could enable file deletion (328940)

There is a security vulnerability in the remote Windows XP Help and Support Center which can be exploited by an attacker to delete arbitrary files on this host. To do so, an attacker needs to create malicious web pages that must be visited by the owner of the remote system. C Tenable Network...

FreeBSD-SA-03:02.openssl

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:02.openssl Security Advisory The FreeBSD Project Topic: OpenSSL timing-based SSL/TLS attack Category: core Module: openssl Announced: 2003-02-25 Credits: Brice...

[SECURITY] [DSA 240-1] New kdegames packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 240-1 [email protected] http://www.debian.org/security/ Martin Schulze January 23rd, 2003 http://www.debian.org/security/faq -...

MHonArc v2.5.2 Script Filtering Bypass Vulnerability

MHonArc v2.5.2 Script Filtering Bypass Vulnerability ==================================================== Affected: --------- MHonArc v2.5.2 http://www.mhonarc.org/ Fixed: ------ MHonArc v2.5.3 http://www.mhonarc.org/MHonArc/CHANGES Problem: -------- MHonArc has a feature which filters out...