228 matches found
DSA-386 libmailtools-perl - input validation bug
Bulletin has no description...
Moderate: Red Hat Security Advisory: : Updated gnupg packages fix validation bug
Updated gnupg packages correcting a bug in the GnuPG key validation functions are now available. The GNU Privacy Guard GnuPG is a utility for encrypting data and creating digital signatures. When evaluating trust values for different UIDs assigned to a given key, GnuPG versions earlier than 1.2.2...
BitMover BitKeeper 3.0 - Daemon Mode Remote Command Execution
BitMover BitKeeper 3.0 - Daemon Mode Remote Command Execution source: https://www.securityfocus.com/bid/6588/info It has been reported that BitKeeper is vulnerable to an input validation bug. When the software is run in daemon mode, it starts a service with an interface that can be connected to v...
BitMover BitKeeper 3.0 - Daemon Mode Remote Command Execution
source: https://www.securityfocus.com/bid/6588/info It has been reported that BitKeeper is vulnerable to an input validation bug. When the software is run in daemon mode, it starts a service with an interface that can be connected to via HTTP. By sending specially crafted input to the service, it...
Savant Web Server 3.1 - File Disclosure
Savant Web Server 3.1 - File Disclosure source: https://www.securityfocus.com/bid/5709/info Savant Webserver is vulnerable to an input validation bug, that could allow malicious users access to password protected folders. It should be noted that versions below 3.1 may also be vulnerable to this...
Inproper input validation in Bugzilla <=2.14 - exploit
Since advisory and patched version is already released, here goes description of vulnerabilities I discovered in Bugzilla almost year ago. 1. Creating files on remote server. ----------------------------------- Nothing spectacular, but this vulnerability may allow us easily at least when using...
: xchat input validation bug fixed
An input validation bug was found to affect Slackware Linux 7.0, 7.1, and -current. The problem is described in detail at this site: http://www.securityfocus.com/bid/1601 Users of Slackware 7.0, 7.1, and -current are urged to upgraded to the xchat.tgz package available in the Slackware -current...
TalentSoft Web+ Input Validation Bug Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Sword & Shield Enterprise Security, Inc. - Security Advisory www.sses.net, Copyright c 2000 Advisory: TalentSoft Web+ Input Validation Bug Vulnerability Release Date: April 12, 2000 Application: webpsvr Severity: A remote user can access web server...