|
|
Colapse all |
Post message
PC-EXPERIENCE/TOPPE CMS Security Advisory 2005-07-30 rat marocmaffia com # PC-EXPERIENCE/TOPPE CMS Security Advisory # By : Morinex # E-Mail : rat (at) marocmaffia (dot) com [email concealed] # Date : 30-07-2K5 ( so lazzy this summer ) # Shoutz : Woopie , sirh0t , 00pz , V1su4l and the gay´s of 0x1fe. I hate them so much isnt Falesco ? 0x1fe.com :) Vulnerabilities * User-ID Bypassing ( remote [ more ] [ reply ] Kayako liveResponse Multiple Vulnerabilities 2005-07-30 GulfTech Security Research (security gulftech org) Kshout Data Disclosure 2005-07-29 group (at) soulblack.com (dot) ar [email concealed] (group soulblack com ar) =========================================================== ============================================================ Title: Kshout Data Disclosure Vulnerability Discovery: SoulBlack - Security Research - http://soulblack.com.ar Date: 26/07/2005 Severity: Medium. Remote users can view configurat [ more ] [ reply ] RE: [VOIPSEC] VoIP-Phones: Weakness in proccessing SIP-Notify-Messages 2005-07-29 Walton, John Michael (John) (jmwalton avaya com) All- Avaya is unable to duplicate any application unhandled exceptions, crashes, or reboots due to unsolicited SIP NOTIFY message processing in the Avaya 4620 and IP Softphone endpoints. Furthermore, Avaya tested a number of variations of the unsolicited SIP NOTIFY messages including utilizing net [ more ] [ reply ] [SECURITY] [DSA 770-1] New gopher packages fix insecure temporary file creation 2005-07-29 joey infodrom org (Martin Schulze) [USN-156-1] TIFF vulnerability 2005-07-29 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-156-1 July 29, 2005 tiff vulnerability https://bugzilla.ubuntu.com/show_bug.cgi?id=12008 =========================================================== A security issue affects the following Ubuntu releases: [ more ] [ reply ] Re[2]: [Full-disclosure] SPIDynamics WebInspect Cross-ApplicationScripting (XAS) 2005-07-29 3APA3A (3APA3A SECURITY NNOV RU) Dear DAN MORRILL, --Wednesday, July 27, 2005, 10:08:12 PM, you wrote to 3APA3A (at) SECURITY.NNOV (dot) RU [email concealed]: DM> I got the official notice from SPI Dynamics to day on this issue. I am in no DM> way slamming people at all, but the interesting response was inability to DM> reproduce the XAS issue. SPI Dynamic [ more ] [ reply ] Cisco Security Advisory: IPv6 Crafted Packet Vulnerability 2005-07-29 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: IPv6 Crafted Packet Vulnerability Revision 1.0 For Public Release 2005 July 29 0800 UTC - ------------------------------------------------------------------------ ------- Contents ======== Summary Affected Products [ more ] [ reply ] [SECURITY] [DSA 769-1] New gaim packages fix denial of service 2005-07-29 joey infodrom org (Martin Schulze) MDKSA-2005:127 - Updated mozilla-thunderbird packages fix multiple vulnerabilities 2005-07-29 Mandriva Security Team (security mandriva com) MDKSA-2005:126 - Updated fetchmail packages fix vulnerability 2005-07-29 Mandriva Security Team (security mandriva com) SPIDynamics WebInspect Cross-ApplicationScripting (XAS) 2005-07-28 Security-Alert (security-alert spidynamics com) SPI Dynamics Security Bulletin SPI-0001-07282005 Issue: Potential WebInspect Cross Application Scripting (XAS) Vulnerability Severity: Low Potential Impact: Remote Code Execution Recommendation: All customers should run SmartUpdate to ensure they are running the latest version of WebInspect (5.5 [ more ] [ reply ] [FLSA-2005:163559] Updated php packages fix security issues 2005-07-29 Marc Deslauriers (marcdeslauriers videotron ca) Website Baker Project Multiple Vulnerabilities 2005-07-28 thegreatone2176 yahoo com ---------------------------------------------------------- Website Baker Project Multiple Vulnerabilities ---------------------------------------------------------- Vulnerabilities --------------- 1) admin/media/browse.php The "dir" parameter is vulnerable to xss. Also the script blocks ../ but i [ more ] [ reply ] Re: eBay phishing - phishers are getting better 2005-07-24 info securityfocus com, "[at]" securityfocus com,orebla it securityfocus com an other email: <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Fraud Investigations Team ( F I T )</title> </head> <body> <p> <img src="http://pics.ebaystatic.com/aw/pics/navbar/redesign_p1/ebayLogo.gif" border="0" width="150" height="70"><b><font style="line-he [ more ] [ reply ] Re: Re : [Firefox Bug 302187] New: Shared section vulnerability when opening microsoft office document resulting in DoS 2005-07-28 sylvain roger solucom fr As I got some questions about this I think I need to precise it. I can say for sure now : It is not a firefox vulnerability but Microsoft Office vulnerability. Firefox is just here as an example. The vulnerability is that when a winword.exe process is created from another application (like firefox.e [ more ] [ reply ] [OpenPKG-SA-2005.015] OpenPKG Security Advisory (spamassassin) 2005-07-28 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] Thomson Web Skill Vantage Manager 2005-07-28 walter sobchak hushmail com Hi Is anyone here using Thomson Web Skill Vantage Manager for online training? If yes I suggest to take the system offline and to improve input validation.The system allows an SQL injection at the login - this gives a visitor easy access with complete Administrator privileges over the system. A mal [ more ] [ reply ] [USN-155-2] Updated Epiphany packages to match Mozilla security update 2005-07-28 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-155-2 July 28, 2005 epiphany-browser regressions https://bugzilla.ubuntu.com/show_bug.cgi?id=13041 =========================================================== A security issue affects the following Ubuntu r [ more ] [ reply ] Vulnerability in Linksys Router access 2005-07-28 Nick Simicich (njs scifi squawk com) Many months ago, I reported a vulnerability to Linksys/Cisco regarding the WRT54G. The vulnerability is simple: SSL is used to secure communications with the router. That is a good thing. However, SSL is not secure when you just implement part of it. SSL was implemented in a miserably insecure [ more ] [ reply ] Re: PHP Code Snippet Library Multiple Cross-Site Scripting (XSS) Vulnerabilities 2005-07-26 stuartc1 securityfocus com, hotmail securityfocus com (at),com securityfocus com (dot) Hi, This is a bugus bug report, I've tested this on both v0.8 and v0.9 and no problems. Please remove this bug as it gives a bad name to the project. It is possible to pass fake variables (as with most systems), but not executable code!! which is not a security issue. If I'm missing something, p [ more ] [ reply ] |
|
Privacy Statement |
site : http://kentldyer.com/guestbook/default.asp
bug is here :
http://[ Trage ] / guestbook / guestbook.mdb
============
my name :
MeSa7eB
My website :
http://3asfh.net/vb
My Email :
l--s (( at )) hotmail ((Dot)) com
by
[ more ] [ reply ]