|
|
Colapse all |
Post message
"IBM Access Support" (eGatherer) Activex Dangerous Methods Vulnerability 2004-06-16 Drew Copley (dcopley eEye com) "IBM Access Support" (eGatherer) Activex Dangerous Methods Vulnerability Release Date: June 15, 2004 Date Reported: February 20, 2004 Patch Development Time (In Days): 116 Severity: High (Remote Code Execution) Vendor: IBM Systems Affected: IBM Access Support (eGatherer) Activex Version 2.0 [ more ] [ reply ] Fwd : FD/IE: Popup object fakes the location field 2004-06-16 liudieyu umbrella name to moderator: just got another excellent site spoofing exploit - i didn't notice this msg on bugtraq. this exploit is not perfect. Digest: excellent site spoofing exploit found in the wild FullDisclosure: US Bank scam David Lederman (delphi4pro_at_yahoo.com) http://umbrella.name/iebug.com/displ [ more ] [ reply ] XSS in Snitz Forum 2000 2004-06-17 Pete Foster (petef sec-tec co uk) Sec-Tec Advisory - XSS in Snitz Forums 2000 The most up to date version of this advisory can always be found at: www.sec-tec.co.uk/vulnerability/snitzxss.html Advisory creation date: 6th May 2004 Product: Snitz Forums 2000 Tested version: 3.4.04 (older versions believed to be affected also) Vuln [ more ] [ reply ] [SECURITY] [DSA 520-1] New krb5 packages fix buffer overflows 2004-06-17 Matt Zimmerman (mdz debian org) [ GLSA 200406-13 ] Squid: NTLM authentication helper buffer overflow 2004-06-17 Kurt Lieber (klieber gentoo org) IBM acpRunner Activex Dangerous Methods Vulnerability 2004-06-16 Drew Copley (dcopley eEye com) IBM acpRunner Activex Dangerous Methods Vulnerability Release Date: June 15, 2004 Date Reported: February 20, 2004 Patch Development Time (In Days): 116 Severity: High (Remote Code Execution) Vendor: IBM Systems Affected: acpRunner Activex Version 1.2.5.0 Overview: eEye Digital Security ha [ more ] [ reply ] Is predictable spam filtering a vulnerability? 2004-06-16 R Armiento (rar_bt armiento se) During a recent email conversation with several participants, we discovered that the email service of one participant silently dropped legitimate emails that happened to contain certain combinations of words common in spam. I believe this sort of filter is common practice, and in fact even in place [ more ] [ reply ] Checkpoint Firewall-1 IKE Vendor ID information leakage 2004-06-16 Roy Hills (Roy Hills nta-monitor com) [Note to moderator: I notified Checkpoint of this issue on 13th April 2004, but have not received any response apart from a "We've received your Email" auto-reply.] Checkpoint Firewall-1 IKE Vendor ID information leakage Introduction: Checkpoint Firewall-1 version 4.1 and later with IPsec VPN ena [ more ] [ reply ] Re: Multiple Antivirus Scanners DoS attack. 2004-06-15 jspanitz erols com In-Reply-To: <BAY17-F32jMdiiRq5jP00147ef0 (at) hotmail (dot) com [email concealed]> CA eTrust Antivirus 7.0 SP2 scans and detects with no problems. > >Multiple Antivirus Scanners DoS attack. > >--- [Vulnerable Products] --- > Only tested on... > >* Norton Antivirus 2002 >* Norton Antivirus 2003 >* Mcafee VirusSca [ more ] [ reply ] [ GLSA 200406-11 ] Horde-IMP: Input validation vulnerability 2004-06-16 Kurt Lieber (klieber gentoo org) webauction 2004-06-15 bq phk at while doing security reviews for a client i found code originating from http://webauction.de.vu (v2_1) to be severely lacking. e.g. several parts (del,del_views) allow deletion of items regardless of userid. the software seems to be unmaintained by now (no response/updates) but being made aware of [ more ] [ reply ] [SECURITY] [DSA 516-1] New odbc-postgresql packages fix denial of service 2004-06-07 joey infodrom org (Martin Schulze) Problem With IP Logging In Invision Power Board? 2004-06-16 GulfTech Security (security gulftech org) IPB like many other forum systems logs visitors IP's However I have noticed in the past that people who are surfing through some proxies have their internal (private) IP logged instead of their "real" IP Address. Here are a few screenshots I took of my LAN IP being logged instead of my internet IP. [ more ] [ reply ] Linux Kernel i2c Integer Overflow Vulnerability 2004-06-16 Shaun Colley (shaunige yahoo co uk) (1 replies) Caveat Lector: Beastie Boys Evil 2004-06-16 Dragos Ruiu (dr kyx net) Well I truly regret actually purchasing a copy of the new Beastie Boys album to support them. It seems that Capitol Records has some sort of new copy protection system, that automatically, silently, installs "helpful" copy protection software on MacOS and Windows as soon as you insert the CD into [ more ] [ reply ] Re: Symantec Enterprise Firewall DNSD cache poisoning Vulnerability 2004-06-16 Sym Security (secure symantec com) Symantec is aware of the posting of this issue, http://www.securityfocus.com/archive/1/366113/2004-06-13/2004-06-19/0 Symantec engineers are reviewing the posted information. If it is validated we will respond accordingly. Symantec takes the security of our products seriously and is a responsi [ more ] [ reply ] RE: Multiple Antivirus Scanners DoS attack. 2004-06-16 Brian Christmas (bchristmas forwardtechnology net) Hello, Just tried this using PC-Cillin version 11.31 with def file of 1.905.00. With default settings real-time scan did not detect a virus in the zip file. Doing a manual scan hosed the PC. Tried to kill pc-cillin process but was unable to. Next I tested by maxing out the scan layer for bot [ more ] [ reply ] First documented cell phone virus //no code or 0-days// just info 2004-06-16 System Administrator (lowdownhaxor hotmail com) //-> 81memories.com// First Cell Phone Virus Discovered On: Tue June, 15 2004 @ 10:26 GMT It had to happen sooner or later. Just to show that it could be done, thus demonstrating another vulnerability in part of our infrastructure, some clever programmers have create a virus that can infect ce [ more ] [ reply ] Cisco Security Advisory: Cisco IOS Malformed BGP packet causes reload 2004-06-16 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco IOS Malformed BGP Packet Causes Reload Revision 1.0 ============ Last Updated June 16 15:00 UTC (GMT) For Public Release 2004 June 16 15:00 UTC (GMT) - ------------------------------------------------------------------ [ more ] [ reply ] [ GLSA 200406-08 ] Squirrelmail: Another XSS vulnerability 2004-06-15 Thierry Carrez (koon gentoo org) |
|
Privacy Statement |
There is a vulnerability in the software package of Singapore.
Say hello to theyr website: http://singapore.sourceforge.net/
This effects every version thye have made.
QUOTE OF THEIR DAY: (a while ago)_
"It is now a little over a year since singapore was first released on
SourceForg
[ more ] [ reply ]