BugTraq Mode:
(Page 1068 of 1748)  < Prev  1063 1064 1065 1066 1067 1068 1069 1070 1071 1072 1073  Next >
©ZIXForum 1.12 <= "RepId" Remote SQL Injection 2006-09-05
ChironeX FleckeriX Gmail Com
########################################################################
########

## ##

## ©ZIXForum 1.12 <= "RepId" Remote SQL Injection ##

## - - - - - - - - - - - - - - - - - - - - - - - - -

[ more ]  [ reply ]
2nd European Conference on Computer Network Defense (EC2ND) 2006-09-05
Blyth A J C (AT) (ajcblyth glam ac uk)
2nd European Conference on Computer Network Defense (EC2ND)
14th/15th December 2006, School of Computing, University of Glamorgan, UK.
 
 
Call for Papers
The 2nd European Conference on Computer Network Defense will take place in December 2006 at the School of Computing, University of Glamorgan. The

[ more ]  [ reply ]
Buffer overflow vulnerability in dsocks 2006-09-05
Michael Adams (parasite sdf lonestar org)
A buffer overflow in variable 'buf' exists due to insufficient validation
of variable 'name' in function tor_resolve line 218 of software at
http://www.monkey.org/~dugsong/dsocks/

[ more ]  [ reply ]
[Kurdish Security # 26 ] AnnonceV News Script Remote Command Vulnerability 2006-09-05
botan linuxmail org
* Kurdish Security Advisory

* Original Adv : http://kurdishsecurity.blogspot.com/2006/09/kurdish-security-26-annoncev
-news.html

* Script : AnnonceV

* Site : http://www.comscripts.com/scripts/php.annoncesv.1895.html

* Version : 1.1

* Risk : High

* Class : Remote

* Contact : botan (at) linuxmail (dot) o [email concealed]

[ more ]  [ reply ]
VirtualPC 2004 (build 528) detection (?) 2006-09-02
gynvael vexillium org
Hello ;>

Recently I've been working on a disassembler. When implementing the 'REPE/REPNE' prefix, I've asked myself, how many prefixes 'REP' can there be ?

I tested it by creating an application with code like:

REP REP REP ... REP MOVSB

After a few tests (by me and ReWolf) we've found out that

[ more ]  [ reply ]
MyBace Light (hauptverzeichniss) Remote File Inclusion 2006-09-01
philipp niedziela gmx de
+--------------------------------------------------------------------

+

+ MyBace Light (hauptverzeichniss) Remote File Inclusion

+

+ Original advisory:

+ http://www.bb-pcsecurity.de/Websecurity/384/MyBace_Light_(hauptverzeichn
iss)_Remote_File_Inclusion.htm

+------------------------------------

[ more ]  [ reply ]
[Kurdish Security # 25 ] GrapAgenda Remote Command Vulnerability 2006-09-05
botan linuxmail org
* Kurdish Security Advisory

* Original Advisory : http://kurdishsecurity.blogspot.com/2006/09/kurdish-security-25-grapagen
da-remote.html

* Script : GrapAgenda

* Site : http://www.graphiks.net

* Version : 0.1

* Risk : High

* Class : Remote

* Contact : botan (at) linuxmail (dot) org [email concealed] and irc.gigachat.net

[ more ]  [ reply ]
[SECURITY] [DSA 1169-1] New MySQL 4.1 packages fix several vulnerabilities 2006-09-05
joey infodrom org (Martin Schulze)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 1169-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Martin Schulze
September 5th, 2006

[ more ]  [ reply ]
HITBSecConf2006 Final Call ! 2006-09-05
Praburaajan (prabu hackinthebox org)
Hello everybody HITBSecConf2006 - Malaysia is only 13 days away and we
will be having loads of speakers down to give talks and presentations on
highly interesting topics, so why don't you register now @
http://conference.hitb.org/hitbsecconf2006kl. Come and experience Asia's
Largest Security Confer

[ more ]  [ reply ]
Microsoft Word 0-day Vulnerability (September) FAQ document available 2006-09-05
Juha-Matti Laurio (juha-matti laurio netti fi)
New FAQ document about the recently discovered 0-day vulnerability in Microsoft Word is available.
This vulnerability has been reported especially in Office 2000 on Windows 2000 machines.
Possible other Office versions are affected as well.

This vulnerability is being exploited by Trojan from Mdrop

[ more ]  [ reply ]
[SECURITY] [DSA 1168-1] New imagemagick packages fix arbitrary code execution 2006-09-04
Moritz Muehlenhoff (jmm debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 1168-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Moritz Muehlenhoff
September 4th, 2006

[ more ]  [ reply ]
SoftBB v0.1 < = Cross-Site Scripting 2006-09-04
the leo 008 gmail com
# SoftBB v0.1 < = Cross-Site Scripting - XSS Exploit ;

# Discovred By : ThE__LeO[Mor0Ccan Islam DefenDers Team] ;

# Software : SoftBB ;

# Version : 0.1 ;

# Site Of Software : Www.Softbb.Be ;

# Exploit : http://Www.Site.Com/[Script]/index.php?page=<script>

[ more ]  [ reply ]
SolpotCrew Advisory #7 - AlstraSoft Template Seller Remote File Include Vulnerability 2006-09-01
jong_amq hotmail com
#############################SolpotCrew Community################################

#

# AlstraSoft Template Seller Remote File Include Vulnerability

#

# Download file : http://www.alstrasoft.com/template.htm

#

#######################################################################

[ more ]  [ reply ]
[USN-339-1] OpenSSL vulnerability 2006-09-05
Martin Pitt (martin pitt canonical com)
===========================================================
Ubuntu Security Notice USN-339-1 September 05, 2006
openssl vulnerability
CVE-2006-4339
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 5.04
Ubuntu 5.10
U

[ more ]  [ reply ]
TTG0602 - Alt-N WebAdmin MDaemon Account Hijacking 2006-09-04
TTG (releases teklow com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

TTG0602 - Alt-N WebAdmin MDaemon Account Hijacking

RELEASE DATE:
September 4, 2006

VENDOR:
Alt-N Technologies ( http://www.altn.com )

VULNERABLE:
Tested on Alt-N WebAdmin v3.2.5 running
with MDaemon v9.0.6, earlier versions are
suspected vulnerable

[ more ]  [ reply ]
[USN-338-1] MySQL vulnerabilities 2006-09-05
Martin Pitt (martin pitt canonical com)
===========================================================
Ubuntu Security Notice USN-338-1 September 05, 2006
mysql-dfsg-5.0 vulnerabilities
CVE-2006-4031, CVE-2006-4227
===========================================================

A security issue affects the following Ubuntu releases:

U

[ more ]  [ reply ]
Re: TinyWebGallery v1.5 ( image ) Remote Include Vulnerability 2006-09-04
tinywebgallery mdempfle de
Fixed since 1.5.0.2!

[ more ]  [ reply ]
AnywhereUSB/5 1.80.00 Drivers Integer Overflow 2006-09-04
SecuriTeam Assisted Disclosure (STAD securiteam com)
AnywhereUSB/5 1.80.00 Drivers Integer Overflow

Risk: low.
This advisory can be found here:
http://www.safend.com/advisories/digi_anywhereusb5_intoverflow.txt

I. BACKGROUND

AnywhereUSB/5 provides five USB ports, which deliver the same Plug and Play
user experience as onboard USB ports.

Software

[ more ]  [ reply ]
SoftBB 0.1 Remote PHP Code Execution Exploit 2006-09-04
gmdarkfig gmail com
#!/usr/bin/perl

#

# Affected.scr..: SoftBB 0.1

# Poc.ID........: 11060904

# Type..........: PHP code execution, SQL Injection, Full Path Disclosure

# Risk.level....: High

# Vendor.Status.: Unpatched

# Src.download..: softbb.be

# Poc.link......: acid-root.new.fr/poc/11060904.txt

# Advisory.l

[ more ]  [ reply ]
Airscanner Mobile Security Advisory #05081201: PDAapps Verichat v1.30bh Local Password Disclosure 2006-09-03
contact_removethis reomvethis_airscanner com
Airscanner Mobile Security Advisory #05081201:

PDAapps Verichat v1.30bh Local Password Disclosure

Product:

PDAapps Verichat v1.30bh

Platform:

Tested on Windows Mobile Pocket PC 2003

Requirements:

Mobile device running Windows Mobile Pocket PC with Verichat v1.30bh installed

Credits:

[ more ]  [ reply ]
Web Dictate Admin Null Password Vulnerability 2006-09-03
revnic gmail com
Web Dictate Admin Null Password Vulnerability

Software: Web Dictate

Version: 1.02

Website: http://nchsoftware.com/

Description:

Web Dictate is a dictation system that lets you record, edit and manage dictation over the internet. You, and other users, log into a server running Web Dictate to

[ more ]  [ reply ]
[SECURITY] [DSA 1166-1] New cheesetraceker packages fix buffer overflow 2006-09-03
Steve Kemp (skx debian org)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 1166-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Steve Kemp
September 3rd, 2006

[ more ]  [ reply ]
Re: [ECHO_ADV_45$2006] WEBinsta CMS 0.3.1 (templates_dir) Remote File Inclusion Vulnerability 2006-09-03
atomo64 gmail com
Webinsta CMS version 0.4.x fixes this vulnerability and increases the security of the website. The latest version was available even before july and can be downloaded from http://atomo64.puffinhost.com/page/webinsta_cms.html

For more information: http://my.opera.com/atomo64/blog/show.dml/443167

[ more ]  [ reply ]
Airscanner Mobile Security Advisory #05081701: IM+ v3.10 Local Password Plaintext Exposure 2006-09-03
contact_removethis airscanner com
Airscanner Mobile Security Advisory #05081701:

IM+ v3.10 Local Password Plaintext Exposure

Product:

Shape Services IM+ Mobile Instant Messenger for Pocket PC v3.10

Platform:

Tested on Windows Mobile Pocket PC 2003

Requirements:

Mobile device running Windows Mobile Pocket PC with IM+ v3

[ more ]  [ reply ]
The Amazing Little Poll Admin Pwd 2006-09-04
tugra local-root org
SOFTWARE

=========

The Amazing Little Poll

DESCRIPTION

============

google dork = "The Amazing Little Poll" and go to admin page /lp_admin.php default password dsapoll input to login admin or

add to last path /lp_settings.inc and take administrator passwd $pwd="dsapoll"; ;) create a new po

[ more ]  [ reply ]
[SECURITY] [DSA 1167-1] New apache packages fix several vulnerabilities 2006-09-04
Steve Kemp (skx debian org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 1167-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Steve Kemp
September 4th, 2005

[ more ]  [ reply ]
Tr Forum V2.0 Multiple Vulnerabilities 2006-09-03
gmdarkfig gmail com
#!/usr/bin/perl

#

# Affected.scr..: Tr Forum V2.0

# Poc.ID........: 10060903

# Type..........: SQL Injection, Bypass Security Restriction

# Risk.level....: Medium

# Vendor.Status.: Unpatched

# Src.download..: comscripts.com/scripts/php.tr-forum.1579.html

# Poc.link......: acid-root.new.fr/po

[ more ]  [ reply ]
CFP, IT Underground, Warsaw, Poland 2006 2006-09-02
Piotr Sobolewski (piotr sobolewski itunderground org)
I'd like to announce the call for papers for the IT Underground
2006, a two-day conference organized by Software Conferences in
Warsaw, Poland, 26th-27th October 2006

IT Underground 2006 is a sixth edition of a conference dedicated to
IT security issues, where remarkable authorities will share t

[ more ]  [ reply ]
Annuaire 1Two 2.2 Remote SQL Injection Exploit 2006-09-02
gmdarkfig gmail com
#!/usr/bin/perl

#

# Affected.scr..: Annuaire 1Two 2.2

# Poc.ID........: 09060902.txt

# Type..........: SQL Injection (without quote)

# Risk.level....: Medium

# Vendor.Status.: Unpatched

# Src.download..: http://www.1two.org/

# Poc.link......: acid-root.new.fr/poc/09060902.txt

# Credits.....

[ more ]  [ reply ]
(Page 1068 of 1748)  < Prev  1063 1064 1065 1066 1067 1068 1069 1070 1071 1072 1073  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus