92 matches found
PT-2009-21: CMS.Pilot SQL Injection Vulnerability
CMS.Pilot is a content management system CMS software, usually implemented as a Web application, for creating and managing HTML content. It is used to manage and control a large, dynamic collection of Web material HTML documents and their associated images. Vulnerability Description Positive...
SECURITY.NNOV: The Bat! 2.x message headers spoofing
Title: The Bat! 2.x message headers spoofing Author: 3APA3A [email protected] Homepage: http://www.security.nnov.ru/ Advisory URL: http://www.security.nnov.ru/advisories/thebatspoof.asp Vendor: RitLabs Vendor's page http://thebat.net/ Application: The Bat 2.x 2.12.04 tested Not vulnerable:...
aeNovo Database Content Disclosure Vulnerability
Due to improper file permission settings on the database directory of aeNovo it is possible for a remote attacker to download the product SPDX-FileCopyrightText: 2005 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
[Full-Disclosure] Credit Card data disclosure in CitrusDB
Credit Card data disclosure in CitrusDB A group of students at our lab called RedTeam found an information disclosure vulnerability in CitrusDB which can result in disclosure of credit card information. Details ======= Product: CitrusDB Affected Version: = 0.3.5 Immune Version: =0.3.6 OS affected...
KDE Security Advisory: kfax libtiff vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 KDE Security Advisory: kfax libtiff vulnerabilities Original Release Date: 2004-12-09 URL: http://www.kde.org/info/security/advisory-20041209-2.txt 0. References CAN-2004-0803 CAN-2004-0804 CAN-2004-0886 1. Systems affected: All KDE releases earlier...
GLSA-200405-09 : ProFTPD Access Control List bypass vulnerability
The remote host is affected by the vulnerability described in GLSA-200405-09 ProFTPD Access Control List bypass vulnerability ProFTPD 1.2.9 introduced a vulnerability that allows CIDR-based ACLs such as 10.0.0.1/24 to be bypassed. The CIDR ACLs are disregarded, with the net effect being similar t...
[Full-Disclosure] iDEFENSE Security Advisory 08.25.04: Ipswitch WhatsUp Gold Remote Buffer Overflow Vulnerability
Ipswitch WhatsUp Gold Remote Buffer Overflow Vulnerability iDEFENSE Security Advisory 08.25.04 http://www.idefense.com/application/poi/display?type=vulnerabilities August 25, 2004 I. BACKGROUND Ipswitch WhatsUp Gold is a Microsoft Windows based network monitoring application. More information is...
GLSA-200408-01 : MPlayer: GUI filename handling overflow
The remote host is affected by the vulnerability described in GLSA-200408-01 MPlayer: GUI filename handling overflow The MPlayer GUI code contains several buffer overflow vulnerabilities, and at least one in the TranslateFilename function is exploitable. Impact : By enticing a user to play a file...
Tomcat: Insecure installation
Background Tomcat is the Apache Jakarta Project's official implementation of Java Servlets and Java Server Pages. Description The Gentoo ebuild for Tomcat sets the ownership of the Tomcat init scripts as tomcat:tomcat, but those scripts are executed with root privileges when the system is started...
Origo ASR-8100 ADSL router remote factory reset
Vulnerable device ----------------- Origo ASR-8100 ADSL router Firmware ETHADSLUSB110502REL10S Customer Software Version 110502REL10S ADSL Showtime Firmware Version: 3.21 device based on Conexant CX82310-14 chipset Vulnerability: Remote ADSL reset and permanent denial of service attack...
[immune advisory] Mulitple vulnerabilities found in BisonFTP
immune advisory Mulitple vulnerabilities found in BisonFTP ================================================================================ BisonFTP is a FTP daemon used on Microsoft Windows 9x/NT systems. - DESCRIPTION ---------------------------------------------------------------- I BisonFTP i...
BitchX 1.0 - RPL_NAMREPLY Denial of Service
BitchX 1.0 - RPLNAMREPLY Denial of Service // source: https://www.securityfocus.com/bid/6880/info It has been reported that BitchX does not properly handle some types of replies contained in the RPLNAMREPLY numeric. When a malformed reply is received by the client, the client crashes, resulting i...
[Mantis Advisory/2002-05] Arbitrary code execution and file reading vulnerability in Mantis
Mantis Advisory/2002-05 Arbitrary code execution and file reading vulnerability in Mantis 0. Table of Contents 1. Introduction 2. Summary / Impact analysis 3. Affected versions 4. Workaround / Solution 5. Detailed explanation 5.1 Arbitrary code execution 5.2 Displaying local files 6. Credit 7...
[Mantis Advisory/2002-04] Arbitrary code execution vulnerability in Mantis
Mantis Advisory/2002-04 Arbitrary code execution vulnerability in Mantis 0. Table of Contents 1. Introduction 2. Summary / Impact analysis 3. Affected versions 4. Workaround / Solution 5. Detailed explanation 6. Credit 7. Contact details 1. Introduction Mantis is an Open Source web-based...
IBM Informix Web DataBlade: Auto-decoding HTML entities
IBM Informix Web DataBlade: Auto-decoding HTML entities By Simon Lodal, Denmark Vendor status: Notified months ago, said they would be working on updates, never heard anything. Software: Web DataBlade 4.12, IDS 9.20/9.21, Linux 2.2/2.4, SunOS 5.7 OS, IDS and WDB versions seem to be irrelevant...
FreeBSD-SA-02:05.pine
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-02:05 Security Advisory FreeBSD, Inc. Topic: pine port insecure URL handling REVISED Category: ports Module: pine Announced: 2002-01-04 Revised: 2002-01-10 Credits: zen-pars...
Buffer overflow vulnerability in pwck command line utility
Overview The CERT/CC has received a public report of a local buffer overflow vulnerability in the pwck utility. Description The pwck utility performs syntax checking of /etc/password and /etc/shadow password information files. This utility contains a buffer overflow vulnerability in the section o...
Buffer overflow vulnerability in grpck command line utility
Overview The CERT/CC has received a public report of a local buffer overflow vulnerability in the grpck utility. Description The grpck utility performs syntax checking of /etc/group and /etc/gshadow group information files. This utility contains a buffer overflow vulnerability in the section of...
FreeBSD-SA-01:64.wu-ftpd
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:64 Security Advisory FreeBSD, Inc. Topic: wu-ftpd port contains remote root compromise Category: ports Module: wu-ftpd Announced: 2001-12-04 Credits: CORE Security...
Buffer overflow vulnerability in action argument of dtaction
r0ar Security Advisory October 5, 2001 Buffer overflow vulnerability in action argument of dtaction Desription The dtaction utility allows applications or shell scripts, which are otherwise not connected into the CDE development environment, to invoke action requests. The action called actionname...