|
|
Colapse all |
Post message
Denial of service vulnerability in FTPshell Server Version 3.38 2005-07-26 Reed Arvin (reedarvin gmail com) [USN-153-1] fetchmail vulnerability 2005-07-26 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-153-1 July 26, 2005 fetchmail vulnerability CAN-2005-2335 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog) Ubu [ more ] [ reply ] Ares FileShare 1.1 'Long Searched String' Buffer Overflow Vulnerability 2005-07-25 kozan spyinstructors com Ares FileShare 1.1 'Long Searched String' Buffer Overflow Vulnerability I. BACKGROUND Ares Fileshare is one of the most popular P2P application around the world. With Ares Fileshare you can connect to several established P2P-networks, which will yield more search results with less effort. One [ more ] [ reply ] [USN-154-1] vim vulnerability 2005-07-26 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-154-1 July 26, 2005 vim vulnerability http://www.guninski.com/where_do_you_want_billg_to_go_today_5.html =========================================================== A security issue affects the following Ub [ more ] [ reply ] [USN-149-2] Fixed Firefox packages for USN-149-1 2005-07-25 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-149-2 July 25, 2005 mozilla-firefox regressions Ubuntu bugs #10681, #12854, #12882 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu [ more ] [ reply ] [security bulletin] SSRT4884 rev.5 - HP-UX TCP/IP Remote Denial of Service (DoS) 2005-07-25 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 HP SECURITY BULLETIN HPSBUX01164 REVISION: 5 SSRT4884 rev.5 - HP-UX TCP/IP Remote Denial of Service (DoS) NOTICE: There are no restrictions for distribution of this Security Bulletin provided that it remains complete and intact. The information [ more ] [ reply ] [security bulletin] SSRT5954 rev.5 - HP-UX TCP/IP Remote Denial of Service (DoS) 2005-07-25 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 HP SECURITY BULLETIN HPSBUX01137 REVISION: 5 SSRT5954 rev.5 - HP-UX TCP/IP Remote Denial of Service (DoS) NOTICE: There are no restrictions for distribution of this Security Bulletin provided that it remains complete and intact. The information [ more ] [ reply ] [ GLSA 200507-23 ] Kopete: Vulnerability in included Gadu library 2005-07-25 Sune Kloppenborg Jeppesen (jaervosz gentoo org) [ GLSA 200507-22 ] sandbox: Insecure temporary file handling 2005-07-25 Sune Kloppenborg Jeppesen (jaervosz gentoo org) [ GLSA 200507-21 ] fetchmail: Buffer Overflow 2005-07-25 Sune Kloppenborg Jeppesen (jaervosz gentoo org) [FLSA-2005:152842] Updated lvm package fixes security issue 2005-07-24 Marc Deslauriers (marcdeslauriers videotron ca) [FLSA-2005:154276] Updated krb5 packages fix security issues 2005-07-24 Marc Deslauriers (marcdeslauriers videotron ca) Siemens SANTIS 50 Authentication Vulnerability 2005-07-25 luca carettoni securenetwork it Secure Network - Security Research Advisory Vuln name: [Siemens SANTIS 50 Authentication Vulnerability] Systems affected: Siemens Santis 50 Wireless router (firmware version: 4.2.8.0) Likely to be affected: Ericsson HN294dp Dynalink RTA300W Severity: medium risk Local/Remote: Remote (limited to [ more ] [ reply ] ClamAV Multiple Rem0te Buffer Overflows 2005-07-25 list rem0te com (1 replies) Date July 25, 2005 Vulnerability ClamAV is the most widely used GPL antivirus library today. It provides file format support for virus analysis. During analysis ClamAV Antivirus Library is vulnerable to buffer overflows allowing attackers complete control of the system. These vulnerabilities can be [ more ] [ reply ] Corsaire Security Advisory: SAP Internet Graphics Server traversal issue 2005-07-25 advisories (advisories corsaire com) -- Corsaire Security Advisory -- Title: SAP Internet Graphics Server traversal issue Date: 03.05.05 Application: SAP prior to version 6.40 Patch 11 Environment: Various Author: Martin O'Neal [martin.oneal (at) corsaire (dot) com [email concealed]] Audience: General distribution Reference: c050503-001 -- Scope -- The aim of [ more ] [ reply ] Chroot Security Group Advisory 2005-07-25 -- ftplocate 2005-07-25 newbug securityfocus com, "[at]" securityfocus com,chroot org securityfocus com ECI router login bypass 2005-07-24 D . (d is evil gmail com) Title: ECI router verification bypass and DoS Date: 24/07/2005 Impact: Log in verification bypass Vendors Status: Not contacted (they were mean to me) Overview: The B-FOCuS Router 312+ provides users with a reliable and secured ADSL2+ connection to the Internet. The 312+ has a single Ethernet port [ more ] [ reply ] PHP FirstPost remote file include vulnerability 2005-07-24 gb network gmail com Language: PHP Project name: PHP FirstPost Risk:High Home page: http://phpfirstpost.sourceforge.net Discovered by: ][GB][ [Description]: PHP FirstPost is yet another PHP weblog. This one, however, is based on Scoop, and has the open submission queue and comment rating system. A vulnerability exist [ more ] [ reply ] [Conectiva-updates] [CLA-2005:980] Conectiva Security Announcement- php4 2005-07-14 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : php4 SUMMARY : Fix for php4 vulnerability DAT [ more ] [ reply ] Beehive Forum Multiple Vulnerabilities 2005-07-25 thegreatone2176 yahoo com -------------------------------------- Beehive Forum Multiple Vulnerabilities -------------------------------------- Beehive Forum is affected by sql injection, xss, and path disclosure. Vulnerabilities --------------- 1) The $_GET "webtag" parameter is on almost every page of the product and is [ more ] [ reply ] Atomic Photo Album (APA) apa_phpinclude.inc.php remote file include 2005-07-23 gr0up pclabs gmail com Atomic Photo Album (APA) apa_phpinclude.inc.php remote file include :> ------------------------------------------------------------ Name: Atomic Photo Album (APA) Version: all Homepage: http://atomicpa.sourceforge.net/ Author: pc_labs / lwdz - RandomHero Date: 20 July 2005 -------------------- [ more ] [ reply ] Realchat user impersonation - BSA 200506110001 2005-07-23 Andreas Beck (becka-list-bugtraq bedatec de) Bedatec Security Advisory 200506110001 -------------------------------------- Discovered : 2005-06-06 Vendor notified : 2005-06-11 Release date : 2005-06-23 PoC release : around 2005-07-23 Author : Andreas Beck <becka-sav (at) bedatec (dot) de [email concealed]> Application : Realchat Severity [ more ] [ reply ] GoodTech SMTP server 5.16 RCPT TO command remote buffer overflow 2005-07-22 Raphaël Rigo (ml-bugtraq twilight-hall net) MDKSA-2005:124 - Updated zlib packages fix vulnerability 2005-07-22 Mandriva Security Team (security mandriva com) ICMP-based blind connection-reset attack 2005-07-22 Fernando Gont (fernando frh utn edu ar) Folks, Here's the packet trace and the explanation of an ICMP-based blind connection-reset attack. In our sample scenario, a web-client (10.0.0.1, TCP port 3270) is downloading a file from a web-server (192.168.0.1, TCP port 80). If the TCP/IP implementations of both end-points are vulnerable,y [ more ] [ reply ] Re: (ICMP attacks against TCP) (was Re: HPSBUX01137 SSRT5954 2005-07-22 Darren Reed (avalon caligula anu edu au) In some mail from Dana Hudes, sie said: > > you will find a range of MTU sizes in radio links of various sorts which > is not just 802.11 but also cellular including GPRS CDMA and WCDMA. > Now, in many instances there is a proxy between the mobile station and the > public network. In fact I wrote [ more ] [ reply ] [USN-151-2] zlib vulnerabilities 2005-07-22 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-151-2 July 22, 2005 dpkg, ia32-libs, amd64-libs vulnerabilities CAN-2005-1849, CAN-2005-2096 =========================================================== A security issue affects the following Ubuntu release [ more ] [ reply ] [Argeniss] Oracle 9R2 Unpatched vulnerability on CWM2_OLAP_AW_AWUTIL package 2005-07-22 Cesar (cesarc56 yahoo com) Oracle 9R2 Unpatched vulnerability on CWM2_OLAP_AW_AWUTIL package Date: 07/22/2005 Esteban Martinez Fayo (member of Argeniss security research team) reported a security vulnerability to Oracle some months ago, the vulnerability is on OLAPSYS.CWM2_OLAP_AW_AWUTIL package affecting Oracle Databa [ more ] [ reply ] |
|
Privacy Statement |
Denial of service vulnerability in FTPshell Server Version 3.38
(http://www.ftpshell.com/)
Details:
Logging into the FTP server successfully and then closing the
connection (without using the QUIT command) 39 times will cause the
ftpshelld.exe process will die.
Vulnerable Versions:
FTPshe
[ more ] [ reply ]