Mandrake Linux Security Advisory : clamav (MDKSA-2006:067)

Damian Put discovered an integer overflow in the PE header parser in ClamAV that could be exploited if the ArchiveMaxFileSize option was disabled CVE-2006-1614. Format strings in the logging code could possibly lead to the execution of arbitrary code CVE-2006-1615. David Luyer found that ClamAV...

TWiki Search.pm shell command injection

Added: 04/06/2006 CVE: CVE-2004-1037 BID: 11674 OSVDB: 11714 Background TWiki is a web-based collaboration platform written in PERL. Problem The Search.pm module does not sufficiently check search strings for illegal characters, allowing remote attackers to execute commands using search strings...

CVE-2006-0559

Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed...

[SA19453] v-creator VCEngine.php Shell Command Injection Vulnerability

TITLE: v-creator VCEngine.php Shell Command Injection Vulnerability SECUNIA ADVISORY ID: SA19453 VERIFY ADVISORY: http://secunia.com/advisories/19453/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: v-creator 1.x http://secunia.com/product/9080/ DESCRIPTION: A...

CVE-2006-1147

The Comsprintf function in qshared.c in Alien Arena 2006 Gold Edition 5.00 does not properly NULL terminate certain long strings, which allows remote attackers possibly authenticated to cause a denial of service application crash via a long skin, weapon, or model name...

security flaw

Cross-site scripting XSS vulnerability in Apache Struts 1.2.7, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly quoted or filtered when the request handler generates an error message...

Design/Logic Flaw

wimpytrackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the 1 trackFile, 2 trackArtist, and 3 trackTitle parameters, which can result in providing false information about songs, occupying excessive disk spa...

CVE-2006-0787

wimpytrackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the 1 trackFile, 2 trackArtist, and 3 trackTitle parameters, which can result in providing false information about songs, occupying excessive disk spa...

CVE-2006-0787

wimpytrackplays.php in Plaino Wimpy MP3 Player, possibly 5.2 and earlier, allows remote attackers to insert arbitrary strings into trackme.txt via the 1 trackFile, 2 trackArtist, and 3 trackTitle parameters, which can result in providing false information about songs, occupying excessive disk spa...

CVE-2006-0788

Kyocera 3830 aka FS-3830N printers have a back door that allows remote attackers to read and alter configuration settings via strings that begin with "!R!SIOP0", as demonstrated using 1 a connection to to TCP port 9100 or 2 the UNIX lp command...

Easily exploitable Pseudo Random Number generator in phpbb version 2.0.19 and under.

I. DESCRIPTION Easily exploitable Pseudo Random Number generator in phpbb version 2.0.19 and under. II. DETAILS Due to poor design the genrandstring can only generate upto 1 million hashes or random strings. This allow an attacker to reset any account through the lost password request form by...

[SECURITY] [DSA 955-1] New mailman packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 955-1 [email protected] http://www.debian.org/security/ Michael Stone January 25th, 2006 http://www.debian.org/security/faq -...

CVE-2006-0410

SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors involving binary strings...

CVE-2006-0410

SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors involving binary strings...

DEBIAN-CVE-2006-0410

SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors involving binary strings...

Sql injection

SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors involving binary strings...

CVE-2006-0410

SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors involving binary strings...

DSA-955-1 mailman - DoS

Bulletin has no description...

Ubuntu 4.10 / 5.04 / 5.10 : perl vulnerability (USN-222-2)

USN-222-1 fixed a vulnerability in the Perl interpreter. It was discovered that the version of USN-222-1 was not sufficient to handle all possible cases of malformed input that could lead to arbitrary code execution, so another update is necessary. Original advisory : Jack Louis of Dyad Security...

Ubuntu 4.10 / 5.04 / 5.10 : perl vulnerability (USN-222-1)

Jack Louis of Dyad Security discovered that Perl did not sufficiently check the explicit length argument in format strings. Specially crafted format strings with overly large length arguments led to a crash of the Perl interpreter or even to execution of arbitrary attacker-defined code with the...