wireshark -- Multiple problems

wireshark Team reports: It may be possible to make Wireshark or Ethereal crash or use up available memory by injecting a purposefully malformed packet onto the wire or by convincing someone to read a malformed packet trace file...

Deleting a custom field which has an issue security scheme or permission scheme on it does not update the index and issue navigator is out of date

emphasized textSimilar to JRA-12410 - deleting a custom field does not adequately clean up after itself. Specifically, affected issues are not reindexed so the updated security and permission aspects are not reflected in search results which is a security hole. Note that a naive fix may produce...

Deleting a custom field which has an issue security scheme or permission scheme on it does not update the index and issue navigator is out of date

Similar to JRA-12410 - deleting a custom field does not adequately clean up after itself. Specifically, affected issues are not reindexed so the updated security and permission aspects are not reflected in search results which is a security hole. Note that a naive fix may produce performance...

Deleting a custom field which has an issue security scheme or permission scheme on it does not update the index and issue navigator is out of date

emphasized textSimilar to JRA-12410 - deleting a custom field does not adequately clean up after itself. Specifically, affected issues are not reindexed so the updated security and permission aspects are not reflected in search results which is a security hole. Note that a naive fix may produce...

Microsoft Windows files and folders management problems

During file operations conditions exist for attacker to gain access to content of protected or locked files. It's also possible to create unmanageble file...

SUSE-SA:2006:060: clamav

The remote host is missing the patch for the advisory SUSE-SA:2006:060 clamav. Two security problems have been found and fixed in the anti virus scan engine 'clamav', which could be used by remote attackers sending prepared E-Mails containing special crafted infected files to potentially execute...

SUSE-SA:2006:052: php4,php5

The remote host is missing the patch for the advisory SUSE-SA:2006:052 php4,php5. Various security problems have been fixed in the PHP script language engine and its modules, versions 4 and 5. The PHP4 updated packages were released on September 12, the PHP5 update packages were released on...

Debian DSA-944-1 : mantis - several vulnerabilities

Several security related problems have been discovered in Mantis, a web-based bug tracking system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-4238 Missing input sanitising allows remote attackers to inject arbitrary web script or HTML. -...

CVE-2006-4831

Unspecified vulnerability in IP over DNS is now easy iodine before 0.3.2 has unknown impact and attack vectors, related to "potential security problems."...

CVE-2006-4831

Unspecified vulnerability in IP over DNS is now easy iodine before 0.3.2 has unknown impact and attack vectors, related to "potential security problems."...

Learning More about SmartView Tracker Logs: InterSpect NGX Packets Capture

Packet streams that have triggered a SmartDefense or Web Intelligence protection can be stored in the form of raw data. The captured packet can be examined using an internal packet viewer or any protocol analyzer, such as Ethereal, Snoop or tcpdump.Packet capture is available for all protections ...

phpNULL.txt

Author: ShAnKaR Title: multiple PHP application poison NULL byte vulnerability Applications: phpBB 2.0.21, punBB 1.2.12 Threat Level: Critical Original advisory in Russian: http://www.security.nnov.ru/Odocument221.html Poison NULL byte vulnerability for perl CGI applications was described in 1...

PHP 4.4.4 and PHP 5.1.5 Released

PHP 4.4.4 and PHP 5.1.5 Released 17-Aug-2006 The PHP development team would like to announce the immediate availability of PHP 5.1.5 and 4.4.4. These two releases address a series of security problems that were discovered since the release of PHP 5.1.4 and 4.4.3. The new releases include the...

horde -- various problems in dereferrer

Horde 3.1.2 release announcement: Security Fixes: Closed XSS problems in dereferrer IE only, help viewer and problem reporting screen. Removed unused image proxy code from dereferrer...

CVE-2006-1928

Cisco IOS XR, when configured for Multi Protocol Label Switching MPLS and running on Cisco CRS-1 routers, allows remote attackers to cause a denial of service Modular Services Cards MSC crash or "MPLS packet handling problems" via certain MPLS packets, as identified by Cisco bug IDs 1 CSCsd15970...

advisory DATALIFE engine

------------------------------------------------ / / DataLife Engine v.3.7 SoftNews Media Group advisory Программный продукт : DataLife Engine v.3.7 SoftNews Media Group Текущее состояние : UNPATCHED Найдена : LTK Дата написания : 29nd March, 2006 Тестировалось : ; Детали : Раскрытие установочног...

Fedora Core 5 : xorg-x11-server-1.0.1-9 (2006-172)

Coverity scanned the X.Org source code for problems and reported their findings to the X.Org development team. Upon analysis, Alan Coopersmith, a member of the X.Org development team, noticed a couple of serious security issues in the findings. In particular, the Xorg server can be exploited for...

Monotone code execution versioning controle system code execution

Problems with case insensitive filesystems...

[Full-disclosure] Skype emoticons problems / bugs

Skype 1.x havent tested on 2.x windows version has problems with emoticons when there is a big enough list of them like this :...

Fedora Core 4 : kernel-2.6.15-1.1833_FC4 (2006-131)

This update rebases to the latest -stable release 2.6.15.5, which fixes a number of security problems. - sysmbind failed to sanity check its arguments, leading to a potential local DoS. - A specially crafted ELF executable could cause Intel EM64T boxes to crash. CVE-2006-0741 - Normal users could...