Cisco AS5350 - Universal Gateway Portscan Denial of Service

Cisco AS5350 - Universal Gateway Portscan Denial of Service source: https://www.securityfocus.com/bid/6059/info The Cisco AS5350 Universal Gateway is reported to be prone to a denial of service condition. It is possible to cause this condition by portscanning a vulnerable device. This issue was...

[SECURITY] [DSA 159-2] New Python packages fix problem introduced by security fix

Attachment: pgpVFLiuYrAP.pgp Description: PGP message...

BSD NFS DoS

Empty RPC packet causes cycling...

CVE-2002-0743

mail and mailx in AIX 4.3.3 core dump when called with a very long argument, an indication of a buffer overflow...

CVE-2002-0518

The SYN cache syncache and SYN cookie syncookie mechanism in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service crash 1 via a SYN packet that is accepted using syncookies that causes a null pointer to be referenced for the socket's TCP options, or 2 by killing and...

Multiple bugs in Caldera OpenServer utilities

Symlink problem on temporary files handling in sort and scoadmin...

Problem when signing up for new user Account from login page

I signed up for a new user account from the login page, filled in a username, password, name and e-mail. Then I tried to login with the new username and got this exception: java.lang.NullPointerException at com.opensymphony.module.user.User.getGroupsUser.java:94 at...

Gaim abritary Email Reading

Date: Sun May 12 Problem App: Gaim Messenger Client Problem: Permissions Problem Severity: Low/Medium Results: A local attacker can gain full access to other gaim users hotmail accounts Evidence: See the end of this email for a shell example of this issue Exploitable: Simple if gaim is running,...

NTFS encryption information leakage problem in PGP

If "wiping file on deletion" option is used EFS temporary files are not deleted during file encryption...

Asked to re-authenticate to delete issue

/jira/secure/DeleteIssue!default.jspa?id=10012 everything seems to work ok, but I try to delete previously existing issue and I get redirected to the URL above. instead of a delete issue page, I get a login page, only it looks messed up - it's the login form table miniwindow except spread 100%...

Asked to re-authenticate to delete issue

/jira/secure/DeleteIssue!default.jspa?id=10012 everything seems to work ok, but I try to delete previously existing issue and I get redirected to the URL above. instead of a delete issue page, I get a login page, only it looks messed up - it's the login form table miniwindow except spread 100%...

Symbolic links problem in LogWatch

No description provided...

[SECURITY] [DSA 121-1] New xtell packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 121-1 [email protected] http://www.debian.org/security/ Martin Schulze March 11th, 2002 - -------------------------------------------------------------------------- Package : xtell...

[SECURITY] [DSA 114-1] New GNUJSP packages fix directory and script source disclosure

-------------------------------------------------------------------------- Debian Security Advisory DSA 114-1 [email protected] http://www.debian.org/security/ Martin Schulze February 21th, 2002 - -------------------------------------------------------------------------- Package : gnujsp...

[SECURITY] [DSA 108-1] New wmtv packages fix symlink vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 108-1 [email protected] http://www.debian.org/security/ Martin Schulze February 7th, 2002 - -------------------------------------------------------------------------- Package : wmtv...

Vulnerabilities in EServ 2.97

There are a couple of vulnerabilities in EServ 2.97. Vulnerability 1 The FTP server doesn't close the sockets that are allocated from using the PASV command. After all ports from 1024 to 5000 are listening after running a lot of PASV commands in a row no users can use passive mode anymore until t...

Sapgui 4.6D for Windows

The Sapgui 4.6D for Windows that we use at work, open a port listen on a port 1024, wenn you connect to this port, maybee with nmap or nc or something else, the sapgui crashed with "unknown connection data". Can you reproduce this? Or is it a local Problem? Greetings Falk -- Falk Siemonsmeier /"...

[SECURITY] [DSA-098-1] two libgtop security problems

Package : libgtop Problem type : remote nobody exploit Debian-specific: no Two different problems where found in libgtop-daemon: The laboratory intexxia found a format string problem in the logging code from libgtopdaemon. There were two logging functions which are called when authorizing a clien...

Advisory: popauth

Hi, there is a symlink problem in the popauth utility, which is part of the qpoper package. The binary is often istalled suid pop and follows symlinks in the -trace file option. This problem has been reported to vendors in June 2001. Impact: in case of suid popauth and valid shell for user pop, t...

[RHSA-2001:141-05] Updated webalizer packages available

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated webalizer packages available Advisory ID: RHSA-2001:141-05 Issue date: 2001-10-24 Updated on: 2001-10-30 Product: Red Hat Powertools Keywords: webalizer cross-site...