Mandrake Linux Security Advisory : cups (MDKSA-2003:001)

iDefense reported several security problems in CUPS that can lead to local and remote root compromise. An integer overflow in the HTTP interface can be used to gain remote access with CUPS privilege. A local file race condition can be used to gain root privilege, although the previous bug must be...

Mozilla_FireFox_25-07-2004.txt

Application: Firefox Vendors: http://www.mozilla.com Version: 0.9.1 / 0.9.2 Platforms: Windows Bug: Certificate Spoofing Phishing Risk: High Exploitation: Remote with browser Date: 25 July 2004 Author: Emmanouel Kellinis e-mail: me@cipherdotorgdotuk web: http://www.cipher.org.uk List :...

Solaris 2.6 (x86) : 112894-01

SunOS 5.6x86: rpc.rwalld has format string problem. Date this patch was last updated by Sun : Jun/17/02 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. i...

Solaris 2.5.1 (x86) : 111518-01

SunOS 5.5.1x86: dmesg security problem. Date this patch was last updated by Sun : Jun/19/01 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

Solaris 2.6 (x86) : 112815-01

SunOS 5.6x86: in.talkd has a "user format" security problem. Date this patch was last updated by Sun : May/14/02 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Securit...

RHEL 2.1 : kernel (RHSA-2004:044)

Updated kernel packages are now available that fix a few security issues, an NFS performance issue, and an e1000 driver loading issue introduced in Update 3. The Linux kernel handles the basic functions of the operating system. Alan Cox found issues in the R128 Direct Render Infrastructure that...

Esearch symbolic links problem

eupdatedb creates files in /tmp without checking for symbolic links...

ircd-hybrid-7 / ircd-ratbox low-bandwidth DoS

Name : ircd-hybrid-7/ircd-ratbox low-bandwidth DoS Date : June 14th 2004 Author : Erik Sperling Johansen [email protected] Severity : Medium This has been tested on most the ircd versions currently used on EFNet. Other ircds may be affected. Affected: ircd-hybrid =7.0.1 ircd-ratbox =1.5.1...

[SECURITY] [DSA 502-1] New exim-tls packages fix buffer overflows

-------------------------------------------------------------------------- Debian Security Advisory DSA 502-1 [email protected] http://www.debian.org/security/ Martin Schulze May 11th, 2004 http://www.debian.org/security/faq -...

Vulnerability in YaBB forum (Perl version without SQL)

There's a vulnerability in non-SQL version of YaBB forum I've checked it with YaBB 1 Gold - SP 1.2 written in Perl -- it's not new, but is in use even nowadays. You can input almost anything into .txt file from boards directory. The "subject" form field isn't checked for "n" symbols, so creating ...

flim symlink problem

Unsafe temporary files creation...

Zonet NAT problem

During translation to internal network IP address is overwritten with internal IP of the router...

[SECURITY] [DSA 486-1] New cvs packages fix multiple vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 486-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 16th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 476-1] New heimdal packages fix cross-realm vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 476-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 6th, 2004 http://www.debian.org/security/faq -...

clamav shell characters

Shell characters problem in filename if f option is used...

multiple vulnerabilities in ethereal

Stefan Esser of e-matters Security discovered a baker's dozen of buffer overflows in Ethereal's decoders, including: NetFlow IGAP EIGRP PGM IRDA BGP ISUP TCAP UCP In addition, a vulnerability in the RADIUS decoder was found by Jonathan Heusser. Finally, there is one uncredited vulnerability...

eudora603.pl

Eudora 6.0.3 for Windows was released recently. Though known for years, the spoofing of attachments is still not fixed; the problem with LaunchProtect is not fixed either. Spoofing demo essentially identical to 6.0.1 version below. Cheers, Paul Szabo - [email protected]...

Metamail symlink problem

Symlink problem in extcompose script...

Extremail Security Problem

Extremail Security Problem Extremail 1.5.9 www.extremail.com MTA If account is created with only digit password or password begins with digit - login is processing with any digit password or without password. -------------------- Andrey Smirnov [email protected] Russia Moscow...

Confirm shell character problem

shell characters problem on e-mail address parsing...