3336 matches found
CVE-2005-2174
Bugzilla 2.17.x, 2.18 before 2.18.2, 2.19.x, and 2.20 before 2.20rc1 inserts a bug into the database before it is marked private, which introduces a race condition and allows attackers to access information about the bug via buglist.cgi before MySQL replication is complete...
Bugzilla <= 2.18.1 / 2.19.3 Multiple Vulnerabilities (ID, more)
According to its banner, the version of Bugzilla installed on the remote host reportedly allows any user to change any flag on a bug, even if they don't otherwise have access to the bug or rights to make changes to it. In addition, a private bug summary may be visible to users if MySQL replicatio...
bugzilla -- multiple vulnerabilities
A Bugzilla Security Advisory reports: Any user can change any flag on any bug, even if they don't have access to that bug, or even if they can't normally make bug changes. This also allows them to expose the summary of a bug. Bugs are inserted into the database before they are marked as private, ...
Microsoft WINS server memory corruption
Bug in replication protocol handling allows code execution...
CVE-2004-1080
The WINS service wins.exe on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to write to arbitrary memory locations and possibly execute arbitrary code via a modified memory pointer in a WINS replication packet to TCP port 42, aka the...
Microsoft WINS Replication Attack (CVE-2004-1080)
...
[NT] WINS Replication Remote Vulnerability
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Microsoft Windows Internet Naming Service (WINS) replication protocol contains a heap-based buffer overflow
Overview A buffer overflow vulnerability in the Microsoft Windows Internet Naming Service WINS replication protocol may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. Description The Microsoft WINS service maps IP addresses to NETBIOS computer names. WIN...
CVE-2003-1438
Race condition in BEA WebLogic Server and Express 5.1 through 7.0.0.1, when using in-memory session replication or replicated stateful session beans, causes the same buffer to be provided to two users, which could allow one user to see session data that was intended for another user...
Windows 2000 multiple bugs
Windows 2000 Internet Key Exchange Selects Incorrect Certificate, Update to Help Prevent Cross-Forest Certificate Enrollment, Update to Verify cbDestLength in the Imaadpcm Component, Zones Removed from the Registry When You Start the DNS Service, Account Replication Latency Causes Certificate...
Microsoft Windows 'Replicator' Group User List
Using the supplied credentials, it is possible to extract the member list of the 'Replicator' group. Members of this group can replicate or copy files or directories within a domain. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10906; scriptversion"1.20";...
Security Hole In Shareplex
Security Hole in Shareplex 2.x ------------------------------ Summary ------- Shareplex Quest Software's product for Oracle database replication contains a security hole which can allow local users to read any file on the system, effectively bypassing the permissions set at the OS level. Details...
Linux news 29.09.00
Linux 2.2.18pre11 Alax Cox выпустил новую pre-версию следующего стабильного ядра Linux: 2.2.18pre11. Подробнее: http://linuxtoday.com/newsstory.php3?ltsn=2000-09-27-011-04-NW-KN MySQL 3.23.25 Вышла новая beta версия популярного SQL сервера MySQL - MySQL 3.23.25. Подробнее:...
Security update 1970-01-01
...
Security update 1970-01-01
...
Security update 1970-01-01
...