Design/Logic Flaw

The elfloadfile function in NetBSD 2.0 through 3.0 allows local users to cause a denial of service kernel crash via an ELF interpreter that does not have a PTLOAD section in its header, which triggers a null dereference...

CVE-2006-1589

The elfloadfile function in NetBSD 2.0 through 3.0 allows local users to cause a denial of service kernel crash via an ELF interpreter that does not have a PTLOAD section in its header, which triggers a null dereference...

CVE-2006-1589

The elfloadfile function in NetBSD 2.0 through 3.0 allows local users to cause a denial of service kernel crash via an ELF interpreter that does not have a PTLOAD section in its header, which triggers a null dereference...

[SA19448] VBook Multiple Vulnerabilities

TITLE: VBook Multiple Vulnerabilities SECUNIA ADVISORY ID: SA19448 VERIFY ADVISORY: http://secunia.com/advisories/19448/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data, System access WHERE: From remote SOFTWARE: VBook 2.x http://secunia.com/product/9051/...

Microsoft Windows - Telephony Service Command Execution (MS05-040)

Microsoft Windows - Telephony Service Command Execution MS05-040 // by Cesar Cerrudo - Argeniss - www.argeniss.com // // TAPI Vulnerability- MS05-040 // // Should work on Win2k sp0,sp1,sp2,sp3,sp4 any language // If Telephony Service is not running you can start it by net start "Telephony Service...

Design/Logic Flaw

Joomla! 1.0.7 and earlier allows attackers to bypass intended access restrictions and gain certain privileges via certain attack vectors related to the 1 Weblink, 2 Polls, 3 Newsfeeds, 4 Weblinks, 5 Content, 6 Content Section, 7 Content Category, 8 Contact items, or 9 Contact Search, 10 Content...

CVE-2006-1048

Joomla! 1.0.7 and earlier allows attackers to bypass intended access restrictions and gain certain privileges via certain attack vectors related to the 1 Weblink, 2 Polls, 3 Newsfeeds, 4 Weblinks, 5 Content, 6 Content Section, 7 Content Category, 8 Contact items, or 9 Contact Search, 10 Content...

EasyCMS vulnerable to XSS injection.

The Norwegian web-publishing system EasyCMS www.easycms.no contains multiple input flaws letting users conduct successful XSS attacks. Both in the admin section, and the webpage that uses the system is vulnerable to XSS. It does not filter script tags and simple scripting like...

Ubuntu 4.10 / 5.04 : courier vulnerabilities (USN-201-1)

Several Cross Site Scripting vulnerabilities were discovered in SqWebmail. A remote attacker could exploit this to execute arbitrary JavaScript or other active HTML embeddable content in the web browser of an SqWebmail user by sending specially crafted emails to him. Please note that the...

88Script's Event Calendar v2.0 SQL inj. vuln.

88Script's Event Calendar v2.0 SQL inj. vuln. Vuln. dicovered by : r0t Date: 29 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/88scripts-event-calendar-v20-sql-inj.html Vendor:http://www.88scripts.com/ affected version: v2.0 and prior Product Description: A simple yet elegant even...

[SA17693] vtiger CRM Multiple Vulnerabilities

TITLE: vtiger CRM Multiple Vulnerabilities SECUNIA ADVISORY ID: SA17693 VERIFY ADVISORY: http://secunia.com/advisories/17693/ CRITICAL: Highly critical IMPACT: Security Bypass, Cross Site Scripting, Manipulation of data, Exposure of sensitive information, System access WHERE: From remote SOFTWARE...

ipb.2.1-english.txt

Fast translation of benji's advisory Author : benjilenoob WebSite : http://benji.redkod.org/ and http://www.redkod.org/ Audit in pdf : http://benji.redkod.org/audits/ipb.2.1.pdf Product : Invision power board Version : 2.1 Tisk : Low. XSS I- XSS non critical: -------------------- 1. Input passed ...

Invision Power Board 2.1 : Multiple XSS Vulnerabilities

Fast translation of benji's advisory Author : benjilenoob WebSite : http://benji.redkod.org/ and http://www.redkod.org/ Audit in pdf : http://benji.redkod.org/audits/ipb.2.1.pdf Product : Invision power board Version : 2.1 Tisk : Low. XSS I- XSS non critical: -------------------- 1. Input passed ...

ipb.2.1.txt

Auteur : benjilenoob WebSite : http://benji.redkod.org/ and http://www.redkod.org/ Audit in pdf : http://benji.redkod.org/audits/ipb.2.1.pdf Produit : Invision power board Version : 2.1 Types de failles : Xss permanentes et non permanentes. Risque : Faible. I- failles XSS non critique:...

FlexWATCH Authentication Bypassing

There is a vulnerability in the current version of FlexWATCH that allows an attacker to access administrative sections without being required to authenticate. An attacker may use this flaw to gain the list of user accounts on this system and the ability to reconfigure this service. This is done b...

fr-dyn0.txt

FriendsReunited.co.uk - XSS hole -------------------------------- Desc: Theres' a XSS hole in FriendsReunited Risk: Medium to High can be used to include malicious code Discovered by : dyn0 codeslaghatgmail.com http://0xdeadface.co.uk Site blurb : So FriendsReunited is one of those places where...

security flaw

Integer overflow in the Binary File Descriptor BFD library for gdb before 6.3, binutils, elfutils, and possibly other packages, allows user-assisted attackers to execute arbitrary code via a crafted object file that specifies a large number of section headers, leading to a heap-based buffer...

CVE-2005-2346

Buffer overflow in Novell GroupWise 6.5 Client allows remote attackers to execute arbitrary code via a GWVW02xx.INI language file with a long entry, as demonstrated using a long ES02TKS.VEW value in the Group Task section...

CVE-2005-2346

Buffer overflow in Novell GroupWise 6.5 Client allows remote attackers to execute arbitrary code via a GWVW02xx.INI language file with a long entry, as demonstrated using a long ES02TKS.VEW value in the Group Task section...

Vulnerability in IBM access

Hello, I would like to make to Bugtraq knowledge the existence of a security vulnerability in IBM access software. IBM access is vulnerable to a Shared Section vulnerability. The processes QCWLICON.exe and QCTRAY.exe have the section BaseNamedObjectsQCONDB with invalid rights which allows everyon...