Design/Logic Flaw

Unspecified vulnerability in Objective Development Sharity 3 before 3.5 has unknown impact and attack vectors, related to a "serious security problem."...

CVE-2008-4057

Unspecified vulnerability in Objective Development Sharity 3 before 3.5 has unknown impact and attack vectors, related to a "serious security problem."...

CVE-2008-4057

Technical details for CVE-2008-4057 are not publicly available in the provided documents. Monitor for updates.

integramod-database.txt

today i found some major security problem. the issue can be found at all integramod 1.4.x versions. explanation of the issue: all integramod versions do have a backup folder where the daily database backups are stored. the coders of integramod forgott to secure this folder. example: just head to...

Integramod 1.4.x - Insecure Directory Download Database

today i found some major security problem. the issue can be found at all integramod 1.4.x versions. explanation of the issue: all integramod versions do have a backup folder where the daily database backups are stored. the coders of integramod forgott to secure this folder. example: just head to...

Hitachi JP1/File Transmission Server/FTP Transmission Failure Problem

Overview Hitachi JP1/File Transmission Server/FTP has a problem where file transmission fails due to the termination of the connection or failure of getting a response from the server when executing FTP commands with certain arguments. Impact When executing FTP commands with certain arguments, fi...

Microsoft Windows Messenger Remote Illegal Access Vulnerability

CVE-2008-0082 When installing Windows XP, an old edition of MSN Messenger is installed automatically. The old edition opens the MSN API to develop as an ActiveX Control, and marks it with "safe". By using this ActiveX Control, we can control the local MSN Messenger, for instance: change state, ga...

Microsoft Windows Messenger Remote Illegal Access Vulnerability

Microsoft Windows Messenger Remote Illegal Access Vulnerability by cocoruderfrankruderathotmail.com http://ruder.cdut.net Summary: A remote illegal access vulnerability exists in Microsoft Windows Live Messenger. A vicious attacker can control the Live Messenger via constructing a malicious web...

CVE-2008-2388

CVE-2008-2388 affects opensuse-updater in openSUSE 10.2. The vulnerability is described as multiple off-by-one errors in the updater component, with the impact and attack vectors stated as unspecified. The vendor notes these “can be considered no security problem,” and no concrete exploitation de...

Fedora 8 : perl-5.8.8-39.fc8 (2008-3392)

Tue Apr 29 2008 Marcela Maslanova - 4:5.8.8-39 - perl-5.8.8-CVE-2008-1927.patch - buffer overflow, when using unicode characters in regexp - Wed Mar 19 2008 Marcela Maslanova - 4:5.8.8-38 - 434865 upgrade Test::Simple - turn off test on loading Dummy in More.t, can't find module path problem? -...

firefox -- javascript garbage collector vulnerability

Mozilla Foundation reports: Fixes for security problems in the JavaScript engine described in MFSA 2008-15 introduced a stability problem, where some users experienced crashes during JavaScript garbage collection. This is being fixed primarily to address stability concerns. We have no demonstrati...

Potential OOo security problem

There's a bug in OOo which make it crash if number of styles in a document 65535 http://qa.openoffice.org/issues/showbug.cgi?id=84159 Seems like the problem is in the framework so it could potentially affect other areas in a document. I am wondering if this can be potential security problem too a...

Fedora 8 : asterisk-1.4.18.1-1.fc8 (2008-2554)

Update to 1.4.18.1 plus another patch to fix some security issues. AST-2008-002 details two buffer overflows that were discovered in RTP codec payload type handling. http://downloads.digium.com/pub/security/AST-2008-002.pdf All users of SIP in Asterisk 1.4 and 1.6 are affected. AST-2008-003 detai...

[SECURITY] [DSA 1500-1] New splitvt packages fix privilege escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1500-1 [email protected] http://www.debian.org/security/ Steve Kemp February 21, 2008 http://www.debian.org/security/faq -...

Moderate: tcltk security update

8.3.5-92.8 - CVE-2008-0553 CVE-2007-5378 CVE-2007-4772 - problems: regexp, GIF overflow and also GIF overflow Resolves: 432511...

Trusted authentication doesn't work for Confluence users with uppercase usernames

Trying to use the trusted authentication feature of the Jiraissues macro doesn't work when a user's username is uppercase. JIRA shows the following in its log: quote 2008-01-23 13:59:48,104 INFO STDOUT 2008-01-23 13:59:48,104 ajp-0.0.0.0-6103-8 WARN atlassian.seraph.filter.TrustedApplicationsFilt...

Debian Security Advisory DSA 009-1 (stunnel)

The remote host is missing an update to stunnel announced via advisory DSA 009-1. OpenVAS Vulnerability Test $Id: deb0091.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 009-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 575-1 (catdoc)

The remote host is missing an update to catdoc announced via advisory DSA 575-1. OpenVAS Vulnerability Test $Id: deb5751.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 575-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 964-1 (gnocatan)

The remote host is missing an update to gnocatan announced via advisory DSA 964-1. A problem has been discovered in gnocatan, the computer version of the settlers of Catan boardgame, that can lead the server an other clients to exit via an assert, and hence does not permit the execution of...

Debian Security Advisory DSA 005-1 (slocate)

The remote host is missing an update to slocate announced via advisory DSA 005-1. OpenVAS Vulnerability Test $Id: deb0051.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 005-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...