|
|
Colapse all |
Post message
Re: Siteframe Beaumont 5.0.2 <== User Comment Cross-Site Scripting Vulnerability 2006-02-16 federico alice tiscali it Sorry, but the advisory is this: Siteframe Beaumont 5.0.2 <== User Comment Cross-Site Scripting Vulnerability #################################### Information of Software: Software: Siteframe Beaumont 5.0.1a Site: http://www.siteframe.org/ Description of software: Siteframe is a lightweight [ more ] [ reply ] Soldier of Fortune II format string through PunkBuster 1.180 2006-02-16 Luigi Auriemma (aluigi autistici org) [eVuln] Scriptme products BBCode 'url' XSS Vulnerability 2006-02-16 alex evuln com New eVuln Advisory: Scriptme products BBCode 'url' XSS Vulnerability http://evuln.com/vulns/65/summary.html --------------------Summary---------------- eVuln ID: EV0065 CVE: CVE-2006-0661 Vendor: Scriptme Vendor's Web Site: http://www.scriptme.com/ Software: "SmE GB Host" "SmE Blog Host" Versions: [ more ] [ reply ] Stack overflow vulnerability in Internet Explorer exploitable trough VBScript and JScript scripting engines. 2006-02-16 porkythepig anspi pl A stack overflow vulnerability that can be remotely exploited exists in the Internet Explorer scripting engines, both VBscript and Jscript. The thread stack can be quickly consumed and forced to cross its memory boundaries. That could be done by, for example, a simple recurrent-call infinite loop. [ more ] [ reply ] RE: Vulnerabilites in new laws on computer hacking 2006-02-15 Craig Wright (cwright bdosyd com au) Hello, I will apologise in advance as this post is a demonstration of ignorance, inexperience and just a plain lack of knowledge of reality. This is akin to stating that Police in a robbery and assault division would be more effective if they have experience. Should we also extend this to murder? S [ more ] [ reply ] [ GLSA 200602-08 ] libtasn1, GNU TLS: Security flaw in DER decoding 2006-02-16 Thierry Carrez (koon gentoo org) [ GLSA 200602-09 ] BomberClone: Remote execution of arbitrary code 2006-02-16 Thierry Carrez (koon gentoo org) [USN-251-1] libtasn vulnerability 2006-02-16 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-251-1 February 16, 2006 libtasn1-2 vulnerability CVE-2006-0645 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog) Ub [ more ] [ reply ] PHPKIT >= 1.6.1r2 arbitrary local/remote inclusion (unproperly patched in previous versions) 2006-02-16 rgod autistici org ---------- PHPKit <= v.1.6.1 release 2 remote code execution ------------------- software: site: www.phpkit.de description: a Content Management / homepage / community building software written in PHP language ------------------------------------------------------------------------ -------- vulnera [ more ] [ reply ] First WMF mass mailer ItW (phishing Trojan) 2006-02-16 Gadi Evron (ge linuxbox org) The first worm (mass mailer) to (ab)use the WMF 0day is now spreading in Australia. Our initial reports indicate the worm is not massive, however it steals financial information from users (Phishing Trojan from a known group) it infects and is causing quite a buzz in Australian media. We expect it [ more ] [ reply ] Winamp .m3u fun again ;) 2006-02-16 Sowhat (smaillist gmail com) Winamp .m3u Remote Buffer Overflow Vulnerability (0day) by Sowhat Discovery: 2005.07.21 Pubulished: 2006.02.16 http://secway.org/advisory/AD20060216.txt Affected: Winamp All versions (including 5.13) Overview: WinAMP is a popular media player that supports various media and playlist formats, [ more ] [ reply ] Siteframe Beaumont 5.0.2 <== User Comment Cross-Site Scripting Vulnerability 2006-02-16 federico alice tiscali it Siteframe Beaumont 5.0.2 <== User Comment Cross-Site Scripting Vulnerability #################################### Information of Software: Software: Siteframe Beaumont 5.0.1a Site: http://www.siteframe.org/ Description of software: Siteframe is a lightweight content-management system designe [ more ] [ reply ] [eVuln] PHP Event Calendar XSS & User's Data Corruption Vulnerabilities 2006-02-16 alex evuln com New eVuln Advisory: PHP Event Calendar XSS & User's Data Corruption Vulnerabilities http://evuln.com/vulns/63/summary.html --------------------Summary---------------- eVuln ID: EV0063 CVE: CVE-2006-0657 Vendor: Softcomplex Vendor's Web Site: http://www.softcomplex.com/ Software: PHP Event Calendar [ more ] [ reply ] Critical SQL Injection PHPNuke <= 7.8 - Your_Account module 2006-02-16 sp3x securityreason com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SecurityAlert SA032 Author: sp3x CVE : CVE-2006-0679 Date: 16. February 2006 Affected software : =================== PHPNuke version : 7.8 with all security fixes/patches Not Affected software : ======================= PHPNuke version : 7.9 + [ more ] [ reply ] D-Link DWL-G700AP httpd DoS 2006-02-16 innate gmx de author: l0om page: www.excluded.org product: D-Link DWL-G700AP firmware: tested on v2.00 and the latest v2.01 The DWL-G700AP is an accesspoint from D-Link and the only way to configure it is the http service which is managed from a httpd called "CAMEO". This webserver is very easy to [ more ] [ reply ] RE: Vulnerabilites in new laws on computer hacking 2006-02-16 Marcus J. Ranum (mjr ranum com) self-destruction (at) itsbest (dot) com [email concealed] apparently writes: >"Advanced societies" are updating computer crime laws faster than the >rest of the world. This means that new generations of these more >"advanced societies" will have no clue about how remote computer attacks >are carried out. Future generations of s [ more ] [ reply ] [SECURITY] [DSA 977-1] New heimdal packages fix several vulnerabilities 2006-02-16 joey infodrom org (Martin Schulze) What is the state of vulnerability research? 2006-02-16 Steven M. Christey (coley mitre org) This is a series of open questions to people who consider themselves to be vulnerability researchers. Hopefully this will open a number of fruitful public discussions. 1) What is the state of vulnerability research? 2) What have researchers accomplished so far? 3) What are the greatest challeng [ more ] [ reply ] Windows Media Player BMP Heap Overflow (MS06-005) 2006-02-15 atmaca icqmail com /* * * Windows Media Player BMP Heap Overflow (MS06-005) * Bug discovered by eEye - http://www.eeye.com/html/research/advisories/AD20060214.html * Exploit coded by ATmaCA * Web: http://www.spyinstructors.com && http://www.atmacasoft.com * E-Mail: atmaca (at) icqmail (dot) com [email concealed] * Credit to Kozan * */ /* * * Sy [ more ] [ reply ] Openwall GNU/*/Linux (Owl) 2.0 release 2006-02-15 Solar Designer (solar openwall com) Hi, For those few who don't know yet, Openwall GNU/*/Linux (or Owl) is a security-enhanced operating system with Linux and GNU software as its core, intended as a server platform. More detailed information is available on the web site: http://www.openwall.com/Owl/ After many Owl-current snapsho [ more ] [ reply ] [myimei]MyBB1.0.3~managegroup.php~Multiple SqlInjection & XSS 2006-02-15 addmimistrator gmail com \>>>>>>>>ORIGINAL ADVISORY<<<<<<<<<<</ http://myimei.com/security/2006-02-10/mybb103managegroupphpmultiple-sqli njection-xss.html Vendor Credit:http://community.mybboard.net/showthread.php?tid=6777 ??????-Summary?????- Software: MyBB Sowtware?s Web Site: http://www.mybboard.com Versions: 1.0.3 Clas [ more ] [ reply ] Security advisory: Windows IME Vulnerability (MS06-009) 2006-02-15 Ryan Lee (ryan lee ryanstyle com) Kadu Remote Denial Of Service Fun 2006-02-15 Piotr Bania (bania piotr gmail com) Hi all, Some little Kadu fun info: http://www.piotrbania.com/all/adv/kadu-fun.txt best regards, pb -- -------------------------------------------------------------------- Piotr Bania - <bania.piotr (at) gmail (dot) com [email concealed]> - 0xCD, 0x19 Fingerprint: 413E 51C7 912E 3D4E A62A BFA4 1FF6 689F BE43 AC33 http://ww [ more ] [ reply ] |
|
Privacy Statement |
Ubuntu Security Notice USN-252-1 February 17, 2006
gnupg vulnerability
CVE-2006-0455
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 4.10 (Warty Warthog)
Ubuntu
[ more ] [ reply ]