Section:  .. / 0407-advisories  /

Page 5 of 5
<< 1 2 3 4 5 >> Files 100 - 114 of 114
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: Easy_chat_server.txt
Description:
A vulnerability in the Easy Chat server allows access to files located outside of the "webroot" due to the possibility of trivial escaping the webroot by typing ../.
Author:dr_insane, dr_insane@pathfinder.gr
Homepage:http://members.lycos.co.uk/r34ct/
File Size:1092
Last Modified:Jul 1 14:19:00 2004
MD5 Checksum:c70ac4f95758b578812126b07d87ed2e

 ///  File Name: lexmarkDoS.txt
Description:
Several Lexmark printers have HTTP servers embedded that are susceptible to a denial of service attacks via an overly long Host argument.
Author:Peter Kruse
Homepage:http://www.csis.dk
File Size:1082
Last Modified:Jul 21 23:45:29 2004
MD5 Checksum:34ed0c9b60f28797846665ff792ae732

 ///  File Name: moz070704.txt
Description:
Mozilla Security Advisory - Windows versions of Mozilla products pass URIs using the shell: scheme to the OS for handling. The effects depend on the version of windows, but on Windows XP it is possible to launch executables in known locations or the default handlers for file extensions. It could be possible to combine this effect with a known buffer overrun in one of these programs to create a remote execution exploit, although at this time we have confirmed only denial-of-service type attacks. Versions affected: Mozilla (Suite), Mozilla Firefox, Mozilla Thunderbird.
Author:Dan Veditz
Homepage:http://www.mozilla.org/security/shell.html
File Size:1063
Last Modified:Jul 8 18:14:00 2004
MD5 Checksum:089aed4b2ef682ce1d33814503d610e0

 ///  File Name: msoeJavascript.txt
Description:
Microsoft Outlook Express is susceptible to a vulnerability which will allow javascript to be execute in the message window. Tested against Microsoft Outlook Express version 6.0.2800.1123 on Microsoft Windows XP SP2.
Author:Paul
Homepage:http://www.greyhats.cjb.net
File Size:1054
Last Modified:Jul 11 11:48:00 2004
MD5 Checksum:87124c0d6ea2dbfd512293c0b3b23bbe

 ///  File Name: moodlexss.txt
Description:
Moodle 1.3.2 and Moodle 1.4 dev is susceptible to a cross site scripting flaw.
Author:Thomas Waldegger
File Size:1028
Last Modified:Jul 14 16:52:00 2004
MD5 Checksum:d1dba3807db1d272421a6b822449d32c

 ///  File Name: whisperFTP.txt
Description:
A buffer overflow in Whisper FTP Surfer 1.0.7 occurs when the client tries to delete a temporary file with an excessively long filename.
Author:Komrade
Homepage:http://unsecure.altervista.org
File Size:1023
Last Modified:Jul 22 00:29:29 2004
MD5 Checksum:753eef219f0cc2824040bb6d012d42d5

 ///  File Name: methodCache.txt
Description:
Microsoft Internet Explorer gives too much trust to the location variant when it comes to method cache.
Author:Paul
Homepage:http://www.greyhats.cjb.net
File Size:974
Last Modified:Jul 17 03:06:00 2004
MD5 Checksum:469715a18eec5605c5fa0574ec75369d

 ///  File Name: modsslFormat.txt
Description:
mod_ssl 2.8.18 for Apache 1.3.31 suffers from a format string vulnerability.
Author:virulent
Homepage:http://virulent.siyahsapka.org
File Size:968
Last Modified:Jul 16 18:48:23 2004
MD5 Checksum:d955211dcaee7e16eab94959262a8004

 ///  File Name: advisory_2004-07-27.txt
Description:
A flaw in phpMyFaq version 1.4.0 allows malicious users the ability to upload or delete arbitrary images.
Homepage:http://www.phpmyfaq.de/advisory_2004-07-27.php
File Size:885
Last Modified:Jul 28 05:06:37 2004
MD5 Checksum:647c49671e5a96548308384ab76ec4ea

 ///  File Name: atermBad.txt
Description:
Aterm version 0.4.2 has a tty permission weakness that allows the world to write to a terminal.
Author:Maarten Tielemans
File Size:701
Last Modified:Jul 14 17:03:00 2004
MD5 Checksum:597aa16b13faa18a12d684039557b8c4

 ///  File Name: lionmax.txt
Description:
LionMax Software WWW File Share Pro version 2.60 is susceptible to a denial of service attack.
Author:nekd0
File Size:683
Last Modified:Jul 21 23:48:27 2004
MD5 Checksum:98ee79a936abaee7ba101235880d8418

 ///  File Name: Brightmail.txt
Description:
Symantec Brightmail Anti-Spam 6.x suffers from a flaw where malicious users can read arbitrary mails.
Author:Thomas Springer
File Size:632
Last Modified:Jul 4 12:54:00 2004
MD5 Checksum:d892bd0779b6e866fee81bfcc0db11b1

 ///  File Name: linux.ia64.psr.mfh.txt
Description:
Arun Sharma has discovered a vulnerability that affects Linux ia64 kernels. When the psr.mfh bit is checked without checking the identity of the FPH owner, another process may be able to see the first process's registers.
Author:Arun Sharma
Homepage:https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124734
File Size:553
Related CVE(s):CAN-2004-0565
Last Modified:Jul 12 19:36:00 2004
MD5 Checksum:d2971eacdc2d281edebc8c5270c3bffd

 ///  File Name: XSR1800.txt
Description:
Enterasys XSR-1800 Security Routers crash when passing a packet with the option record route.
Author:Frederico Queiroz
File Size:452
Last Modified:Jul 2 18:55:00 2004
MD5 Checksum:82b0c71694cec2c8a53171e63d09bdb1