6890 matches found
phpBugTracker 0.9.1 - Multiple Vulnerabilities
phpBugTracker 0.9.1 - Multiple Vulnerabilities phpBugTracke Multiple Vulnerabilities Vendor: Benjamin Curtis Product: phpBugTracke Version: query"delete from ".TBLBUGVOTE." where userid = $u and bugid = $bugid"; As we can see from that line of code taken from about line 30 of user.php it is clear...
phpBugTracker < 0.9.1 - Multiple Vulnerabilities
phpBugTracke Multiple Vulnerabilities Vendor: Benjamin Curtis Product: phpBugTracke Version: query"delete from ".TBLBUGVOTE." where userid = $u and bugid = $bugid"; As we can see from that line of code taken from about line 30 of user.php it is clear that the $bugid variable is passed into the...
CVE-2003-0544
OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote attackers to cause a denial of service crash via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used...
CVE-2003-0187
The connection tracking core of Netfilter for Linux 2.4.20, with CONFIGIPNFCONNTRACK enabled or the ipconntrack module loaded, allows remote attackers to cause a denial of service resource consumption due to an inconsistency with Linux 2.4.20's support of linked lists, which causes Netfilter to...
CVE-2003-0187
The connection tracking core of Netfilter for Linux 2.4.20, with CONFIGIPNFCONNTRACK enabled or the ipconntrack module loaded, allows remote attackers to cause a denial of service resource consumption due to an inconsistency with Linux 2.4.20's support of linked lists, which causes Netfilter to...
[SECURITY] Netfilter Security Advisory: Conntrack list_del() DoS
Netfilter Core Team Security Advisory CVE: CAN-2003-0187 Subject: Netfilter / Connection Tracking Remote DoS Released: 01 Aug 2003 Effects: Any remote user may be able to DoS a machine with netfilter connection tracking when running a specific version of the Linux kernel. Estimated Severity: High...
IIS 6.0 Web Admin Multiple vulnerabilities
Hi, last week I installed Windows 2003 for the first time Enterprise edition and Web Server edition. My first objective was to check the security in the IIS 6.0 and of course my target was the Web Admin interfacethat comes with a lot of ASP's to play with ;- Some flaws were detected, the vendor h...
[EXPL] GNATS Buffer Overflow Exploit Code Released (queue-pr)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion Beyond Security in Canada Toronto-based Sunrays Technologies is now Beyond Security's representative in Canada. We welcome ISPs, system...
[Full-Disclosure] GNATS (The GNU bug-tracking system) multiple buffer overflow vulnerabilities.
======================================== INetCop Security Advisory 2003-0x82-018 ======================================== Title: GNATS The GNU bug-tracking system multiple buffer overflow vulnerabilities. 0x01. Description About: GNATS is a portable incident/bug report/help request-tracking syste...
Another ZEUS Server web admin XSS!
Hi, another XSS, now on the ZEUS web admin interface. The tested software is Zeus 4.2r2 webadmin-4.2r2 on Linux x86 This is not the same issue as bid 6144 index.fcgi, now is on "vsdiag.cgi". Exploit is simple: http://target:9090/apps/web/vsdiag.cgi?server=YOURCODE I have read this post:...
MantisBT Detection
MantisBT, an open source bug tracking application written in PHP and using a MySQL back-end, was detected on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11652; scriptversion"1.26"; scriptsetattributeattribute:"pluginmodificationdate",...
BitchX: Crash when channel modes change
On May 7th 2003, we recieved a bug report through our tracking system which noted a crash problem with BitchX for all versions up to 1.0c20cvs. Certain mode changes would cause BitchX to core consistantly. This problem was resolved in less than 24 hours. The patch was commited to CVS by powuh...
Microsoft Biztalk Server DTA vulnerable to SQL injection
Security Advisory Name: Microsoft Biztalk Server Document Tracking and Admnistration vulnerable to SQL injection System Affected : BizTalk Server 2000 and BizTalk Server 2002 Severity : High Remote exploitable : Yes Author: Cesar Cerrudo. Date: 05/05/03 Advisory Number: CC040302 Legal Notice: Thi...
CVE-2003-0208
Cross-site scripting XSS vulnerability in Macromedia Flash ad user tracking capability allows remote attackers to insert arbitrary Javascript via the clickTAG field...
CVE-2003-0208
CVE-2003-0208 describes an XSS vulnerability in Macromedia Flash ad user tracking, exploitable via the clickTAG field to inject arbitrary JavaScript. Affected component: Flash ad-tracking capability; root cause: input in clickTAG not properly sanitized. Impact (per provided metrics): partial inte...
CVE-2002-0809
Bugzilla 2.14 before 2.14.2 and 2.16 before 2.16rc2 mishandles URL-encoded field names generated by some browsers, causing certain fields to appear unset and resulting in removal of group permissions on bugs when buglist.cgi is used with the encoded field names. Affected components: Bugzilla bug ...
Bugzilla Software Detection
The remote web server is hosting Bugzilla, a web application for bug tracking and managing software development. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11462; scriptversion"1.26"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/12";...
Opera 7.0 - History Object Information Disclosure
Opera 7.0 - History Object Information Disclosure source: https://www.securityfocus.com/bid/6757/info An information disclosure weakness has been reported for Opera 7 browsers on the Microsoft Windows platform. The weakness is due to the way the history object exposes some properties. Specificall...
Opera 7.0 - History Object Information Disclosure
source: https://www.securityfocus.com/bid/6757/info An information disclosure weakness has been reported for Opera 7 browsers on the Microsoft Windows platform. The weakness is due to the way the history object exposes some properties. Specifically, the properties history.next and history.previou...
[SECURITY] [DSA 230-1] New bugzilla packages fix unauthorized data modification
-------------------------------------------------------------------------- Debian Security Advisory DSA 230-1 [email protected] http://www.debian.org/security/ Martin Schulze January 16th, 2003 http://www.debian.org/security/faq -...