|
|
Colapse all |
Post message
STG Security Advisory: [SSA-20041122-12] Zwiki XSS vulnerability 2004-11-24 advisory stgsecurity com Re: [SIG^2 G-TEC] Prevx Home v1.0 Instrusion Prevention Features Can Be Disabled by Direct Service Table Restoration 2004-11-24 Ralph Harvey (ralph harvey prevx com) In-Reply-To: <20041122121935.25185.qmail (at) www.securityfocus (dot) com [email concealed]> Hi All, Thanks to all at SIG^2 for the feedback regarding Prevx Home v1.0. The version of software described in the advisory is no longer available for download, and as the advisory points out, the vulnerabilty is now resolved in [ more ] [ reply ] [SIG^2 G-TEC] CMailServer WebMail v5.2 Multiple Vulnerabilities 2004-11-24 chewkeong security org sg [ GLSA 200411-33 ] TWiki: Arbitrary command execution 2004-11-24 Sune Kloppenborg Jeppesen (jaervosz gentoo org) STG Security Advisory: [SSA-20041122-11] JSPWiki XSS vulnerability 2004-11-24 advisory stgsecurity com STG Security Advisory: [SSA-20041122-11] JSPWiki XSS vulnerability Revision 1.0 Date Published: 2004-11-22 (KST) Last Update: 2004-11-22 Disclosed by SSR Team (advisory (at) stgsecurity (dot) com [email concealed]) Summary ======== JSPWiki is one of famous wiki web applications. It has a cross site scripting vulne [ more ] [ reply ] [USN-31-1] cyrus21-imapd vulnerabilities 2004-11-23 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-31-1 November 23, 2004 cyrus21-imapd vulnerabilities CAN-2004-1012, CAN-2004-1013, http://security.e-matters.de/advisories/152004.html =========================================================== A secur [ more ] [ reply ] Limited buffer-overflow and arbitrary memory access in Star Wars Battlefront 1.11 2004-11-24 Luigi Auriemma (aluigi autistici org) [SECURITY] [DSA 596-2] New sudo packages removes debug output 2004-11-24 joey infodrom org (Martin Schulze) [SECURITY] [DSA 596-1] New sudo packages fix privilege escalation 2004-11-24 joey infodrom org (Martin Schulze) [SECURITY] [DSA 595-1] New bnc packages arbitrary code execution 2004-11-24 joey infodrom org (Martin Schulze) STG Security Advisory: [SSA-20041122-09] cscope insecure temp file creation vulnerability 2004-11-24 advisory stgsecurity com STG Security Advisory: [SSA-20041122-09] cscope insecure temp file creation vulnerability Revision 1.2 Date Published: 2004-11-22 (KST) Last Update: 2004-11-22 Disclosed by SSR Team (advisory (at) stgsecurity (dot) com [email concealed]) Summary ======== cscope is an interactive, screen-oriented tool that allows u [ more ] [ reply ] STG Security Advisory: [SSA-20041122-10] KorWeblog directory traversal vulnerability 2004-11-24 advisory stgsecurity com STG Security Advisory: [SSA-20041122-10] KorWeblog directory traversal vulnerability Revision 1.3 Date Published: 2004-11-22 (KST) Last Update: 2004-11-22 Disclosed by SSR Team (advisory (at) stgsecurity (dot) com [email concealed]) Summary ======== KorWeblog is a weblog application used by many Korean Linux users [ more ] [ reply ] [CLA-2004:896] Conectiva Security Announcement - bugzilla 2004-11-23 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : bugzilla SUMMARY : Fix for remote vulnerabili [ more ] [ reply ] SecureCRT - Remote Command Execution 2004-11-23 Brett Moore (brett moore security-assessment com) ======================================================================== = SecureCRT - Remote Command Execution = = Vendor Update: = http://www.vandyke.com/download/securecrt/index.html = = Affected Software: = SecureCRT V4.1, V4.0 (and probably lower) = = Public disclosure on November 23, 2 [ more ] [ reply ] MDKSA-2004:138 - Updated XFree86 packages fix libXpm vulnerabilities 2004-11-23 Mandrake Linux Security Team (security linux-mandrake com) Windows Mobile Pocket PC Security 2004-11-23 kers0r (root asylum-nz com) Windows Mobile Pocket PC Security by Seth Fogie - VP of Airscanner Corporation Seth Fogie, VP of Dallas-based Airscanner Corporation presents the latest in our series of security audio sessions. Mr. Fogie, an expert in the field of mobile computing security, discusses all the major security i [ more ] [ reply ] Incorrect reporting of the Bofra/The Register exploit 2004-11-22 matt welho com (1 replies) Hi All, In response to several regardings the spreading of the Bofra virus, it is not correct. It was not the work of a virus but a carefully planned hack. The Register just happened to be the site I first noticed the activity on and performed my analysis. I contacted Falk eSolutions AG by tele [ more ] [ reply ] Re: Incorrect reporting of the Bofra/The Register exploit 2004-11-24 Florian Laws (florian void s bawue de) |
|
Privacy Statement |
STG Security Advisory: [SSA-20041122-12] Zwiki XSS vulnerability
Revision 1.1
Date Published: 2004-11-22 (KST)
Last Update: 2004-11-22
Disclosed by SSR Team (advisory (at) stgsecurity (dot) com [email concealed])
Summary
========
Zwiki is a wiki clone in zope. It has a cross site scripting vulnerability.
Vulnera
[ more ] [ reply ]