Section:  .. / 0412-advisories  /

Page 5 of 11
<< 1 2 3 4 5 6 7 8 9 10 11 >> Files 100 - 125 of 253
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: sa13129.txt
Description:
Secunia Security Advisory - Secunia Research has reported a vulnerability in Mozilla / Mozilla Firefox, which can be exploited by malicious people to spoof the content of websites. The problem is that a website can inject content into another site's window if the target name of the window is known. This can e.g. be exploited by a malicious website to spoof the content of a pop-up window opened on a trusted website.
Homepage:http://secunia.com/advisories/13129/
File Size:2614
Last Modified:Dec 12 19:55:21 2004
MD5 Checksum:7fe550a68547d583df329ea33a08f1c9

 ///  File Name: glsa-200412-05.txt
Description:
Gentoo Linux Security Advisory GLSA 200412-05 - mirrorselect is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.
Homepage:http://security.gentoo.org/
File Size:2581
Last Modified:Dec 12 19:35:18 2004
MD5 Checksum:45104d9f128007d23b594638cf29aa6c

 ///  File Name: sec-consultPHP.txt
Description:
PHP 4.3.9 is susceptible to data segment memory corruption and information disclosure via memory dumping.
Author:Martin Eiszner
File Size:2564
Last Modified:Dec 30 09:28:41 2004
MD5 Checksum:be97382fa925148fa6e34e1147d94d1f

 ///  File Name: advisory-20041213-1.txt
Description:
KDE Security Advisory: The Konqueror web browser allows websites to load web pages into a window or tab currently used by another website. This vulnerability is similar to the Konqueror Frame Injection Vulnerability reported on 2004-08-11 but the solution offered as part of that advisory did not cover the window case. All versions of KDE up to KDE 3.3.2 inclusive.
Homepage:http://www.kde.org/info/security/advisory-20041213-1.txt
File Size:2564
Related CVE(s):CAN-2004-1158
Last Modified:Dec 30 07:36:11 2004
MD5 Checksum:aedf90d9742b949b828604cd0432a405

 ///  File Name: kreedexec.txt
Description:
Kreed versions 1.05 and below suffer from format string error, denial of service, and server freeze flaws.
Author:Luigi Auriemma
Homepage:http://aluigi.altervista.org
Related Exploit:kreedexec.zip"
File Size:2495
Last Modified:Dec 12 01:24:50 2004
MD5 Checksum:f10f9889946650b6ceaa240ad0e82ee5

 ///  File Name: sambaRemote.txt
Description:
Remote exploitation of an integer overflow vulnerability in the smbd daemon included in Samba 2.0.x, Samba 2.2.x, and Samba 3.0.x prior to and including 3.0.9 could allow an attacker to cause controllable heap corruption, leading to execution of arbitrary commands with root privileges.
Homepage:http://www.samba.org/
File Size:2488
Related CVE(s):CAN-2004-1154
Last Modified:Dec 30 09:54:35 2004
MD5 Checksum:51b3d15b606105f2c8e98b5768a8bf0d

 ///  File Name: singapore0910.txt
Description:
Multiple vulnerabilies have been found in the Singapore Image Gallery Web Application version 0.9.10 including arbitrary file download, directory deletion, and cross site scripting flaws.
Author:Tan Chew Keong
Homepage:http://www.security.org.sg/vuln/singapore0910.html
File Size:2483
Last Modified:Dec 30 10:08:35 2004
MD5 Checksum:9575c63773bd9433a1cc1532ca27c69c

 ///  File Name: greed.txt
Description:
An input validation error that allows for arbitrary command execution and a buffer overflow exist in Greed 0.81p.
Author:Manigandan Radhakrishnan
File Size:2460
Last Modified:Dec 30 21:07:24 2004
MD5 Checksum:932b28c64ce93483e4d0ffb7d20e2b73

 ///  File Name: phpMyAdmin261rc1.txt
Description:
phpMyAdmin versions prior to 2.6.1-rc1 suffer from command execution and file disclosure vulnerabilities.
Author:Nicolas Gregoire
Homepage:http://www.exaprobe.com/
File Size:2436
Related CVE(s):CAN-2004-1147, CAN-2004-1148
Last Modified:Dec 30 07:26:36 2004
MD5 Checksum:d276543b1c17e03eb47b583955c9ef8f

 ///  File Name: sa13311.txt
Description:
Secunia Security Advisory - A vulnerability has been reported in Unicenter Remote Control (URC), which can be exploited by malicious users to access arbitrary URC Management Servers.
Homepage:http://secunia.com/advisories/13311/
File Size:2416
Last Modified:Dec 12 19:31:20 2004
MD5 Checksum:d22a892027d698d1f996af8f5373ad90

 ///  File Name: sa13644.txt
Description:
Secunia Security Advisory - A vulnerability has been reported in Crystal Enterprise, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/13644/
File Size:2413
Last Modified:Jan 2 20:15:15 2005
MD5 Checksum:0555ed56d6680e76b8a4edfa50f1e309

 ///  File Name: esa-2004-1206.txt
Description:
Exaprobe Security Advisory - The w3who.dll in Windows 2000 is susceptible to multiple cross site scripting attacks and a buffer overflow.
Author:Nicolas Gregoire
Homepage:http://www.exaprobe.com/
File Size:2411
Related CVE(s):CAN-2004-1133, CAN-2004-1134
Last Modified:Dec 12 18:55:12 2004
MD5 Checksum:c39fa17ccdf03bb2ab44699a7d527492

 ///  File Name: oracle23122004D.txt
Description:
NGSSoftware Insight Security Research Advisory #NISR2122004D - The 10g Oracle database server may have passwords in clear text in world readable files. Systems Affected: Oracle 10g on all operating systems.
Author:David Litchfield
Homepage:http://www.ngssoftware.com/advisories/oracle23122004D.txt
File Size:2399
Last Modified:Dec 31 22:41:55 2004
MD5 Checksum:428ac4ebe3aca104d0aaf92bc5284f08

 ///  File Name: sa13463.txt
Description:
Secunia Security Advisory - Kostya Kortchinsky has reported two vulnerabilities in Microsoft Windows NT, allowing malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. Both are related to DHCP functionality.
Homepage:http://secunia.com/advisories/13463/
File Size:2392
Last Modified:Dec 30 08:49:04 2004
MD5 Checksum:18e6b4d1620bd3bd30bcc82dfd6c31a8

 ///  File Name: 6503.txt
Description:
Opera for Linux has a flaw that allows remote users to execute arbitrary shell commands via the kfmclient default setting for file viewing.
Author:Giovanni Delvecchio
File Size:2385
Last Modified:Dec 30 07:31:06 2004
MD5 Checksum:3ad93256e25abd9367495accc0dacae8

 ///  File Name: bfcboom.txt
Description:
Battlefield 1942 versions 1.6.19 and below and Battlefield Vietnam versions 1.2 and below suffer from a client side denial of service flaw.
Author:Luigi Auriemma
Homepage:http://aluigi.altervista.org
Related Exploit:bfcboom.zip"
File Size:2340
Last Modified:Dec 12 19:37:42 2004
MD5 Checksum:fc6cf68bf186e250f3865960c23fefb4

 ///  File Name: sa13572.txt
Description:
Secunia Security Advisory - Multiple vulnerabilities have been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain knowledge of potentially sensitive information. Kernel versions 2.6.9 and below may be affected.
Author:Darrick J. Wong, Thomas Hellstrom, Rob Landley
Homepage:http://secunia.com/advisories/13572/
File Size:2317
Last Modified:Dec 31 20:36:20 2004
MD5 Checksum:3807cb12e4412dae47dad72c97efb439

 ///  File Name: oracle23122004.txt
Description:
NGSSoftware Insight Security Research Advisory #NISR2122004A - The Oracle database server supports PL/SQL, a programming language. PL/SQL can execute external procedures via extproc. Extproc has been found to suffer from another buffer overflow vulnerability. Systems Affected: Oracle 10g on all operating systems.
Author:David Litchfield
Homepage:http://www.ngssoftware.com/advisories/oracle23122004.txt
File Size:2309
Last Modified:Dec 31 22:34:52 2004
MD5 Checksum:8ff3f6a4a456615d65a9263bafbdd8f2

 ///  File Name: sa13251.txt
Description:
Secunia Security Advisory - Secunia Research has reported a vulnerability in Microsoft Internet Explorer, which can be exploited by malicious people to spoof the content of websites. The problem is that a website can inject content into another site's window if the target name of the window is known. This can e.g. be exploited by a malicious website to spoof the content of a pop-up window opened on a trusted website.
Homepage:http://secunia.com/advisories/13251/
File Size:2305
Last Modified:Dec 12 19:54:28 2004
MD5 Checksum:2125e5582ddf4f91aff13cb3f0773fc2

 ///  File Name: sa13671.txt
Description:
Secunia Security Advisory - Symantec has acknowledged three vulnerabilities in the Nexland Firewall Appliances, which can be exploited by malicious people to cause a DoS (Denial of Service), identify active services, and manipulate the firewall configuration.
Homepage:http://secunia.com/advisories/13671/
File Size:2277
Last Modified:Jan 2 21:13:12 2005
MD5 Checksum:110f14a17c20e3cf0838dad233a1ff87

 ///  File Name: abctab2ps.txt
Description:
Two vulnerabilities in abctab2ps allow for local compromise of a system. Version 1.6.3 is affected.
Author:Limin Wang
Homepage:http://tigger.uic.edu/~jlongs2/holes/abctab2ps.txt
File Size:2251
Last Modified:Dec 30 10:51:27 2004
MD5 Checksum:773d4df2ce8d86eee4c048d358ac3ce4

 ///  File Name: sa13377.txt
Description:
Secunia Security Advisory - A security issue has been reported in NetMail, which can be exploited by malicious people to access the mail store.
Homepage:http://secunia.com/advisories/13377/
File Size:2216
Last Modified:Dec 12 19:06:06 2004
MD5 Checksum:ff2da2c59a5df752dfa53660bb358f48

 ///  File Name: oracle23122004H.txt
Description:
NGSSoftware Insight Security Research Advisory #NISR2122004H - Oracle 10g and 9i suffer from multiple PL/SQL injection vulnerabilities. Systems Affected: Oracle 10g/AS on all operating systems.
Author:David Litchfield
Homepage:http://www.ngssoftware.com/advisories/oracle23122004H.txt
File Size:2196
Last Modified:Dec 31 22:49:29 2004
MD5 Checksum:bba6750fb329c77e111241092f946839

 ///  File Name: mercury_adv.txt
Description:
Multiple buffer overflows exist in Mercury/32, version 4.01a, Dec 8 2003. There are 14 vulnerable commands that can be used to cause buffer overflows to occur. After a successful login to the mail server, if any of these commands are used with an overly long argument the application closes resulting in a denial of service.
Author:Reed Arvin
Related Exploit:ex_MERCURY.c"
File Size:2195
Last Modified:Dec 12 01:03:17 2004
MD5 Checksum:ac1ce8217842af8d95151fefd0ddf700

 ///  File Name: AD_LAB-04005.txt
Description:
Venustech AD-Lab Advisory AD_LAB-04005 - Parsing a specially crafted ANI file causes the windows kernel to crash or stop to work properly. An attacker can crash or freeze a target system if he sends a specially crafted ANI file within an HTML page or within an Email. Vulnerable: Windows NT, Windows 2000 SP0, Windows 2000 SP1, Windows 2000 SP2, Windows 2000 SP3, Windows 2000 SP4, Windows XP SP0, Windows XP SP1, Windows 2003.
Author:Flashsky
File Size:2190
Last Modified:Dec 31 22:27:48 2004
MD5 Checksum:7c8b2895949b4c596fe65af09ac8e905