SecurityFocus

Follow-up: Major hack attack on the U.S. Senate 2004-03-15
eric (eric catastrophe net)

A follow-up report to the thread.

<http://cryptome.org/judiciary-sys.htm>

[ more ] [ reply ]

[waraxe-2004-SA#006 - Multiple vulnerabilities in 4nalbum module for PhpNuke] 2004-03-15
Janek Vind (come2waraxe yahoo com)

{=======================================================================
=========}

{ [waraxe-2004-SA#006] }

{=======================================================================
=========}

{

[ more ] [ reply ]

[waraxe-2004-SA#005 - XSS in Php-Nuke 7.1.0 - part 2] 2004-03-15
Janek Vind (come2waraxe yahoo com)

{=======================================================================
=========}

{ [waraxe-2004-SA#005] }

{=======================================================================
=========}

{

[ more ] [ reply ]

[waraxe-2004-SA#007 - XSS and SQL injection bugs in 4nguestbook module for PhpNuke] 2004-03-15
Janek Vind (come2waraxe yahoo com)

{=======================================================================
=========}

{ [waraxe-2004-SA#007] }

{=======================================================================
=========}

{

[ more ] [ reply ]

Opera Array Allocation Managment Exploit 2004-03-14
d3thStaR (d3thStaR rootthief com)

=====================================

Opera Array Allocation Managment Exploit

=====================================

Dicovered by- d3thStaR [!AM] <d3thStaR at rootthief.com>

Greets: !AM Crew, Atomix, d3thstar, mgrd, 0x29A Crew, rootthief.com.

Sources: Safari Overflow Exploit- kang

Confirmed

[ more ] [ reply ]

YaBB/YaBBse Cross Site Scripting Vulnerability 2004-03-14
Cheng Peng Su (apple_soup msn com)

#####################################################################

Advisory Name : YaBB/YaBBse Cross Site Scripting Vulnerability

Release Date : Mar 14,2004

Application : YaBB/YaBBse

Test On : YaBB 1 Gold(SP1.3)

YaBB SE 1.5.1 Final

Vendor URL : http:

[ more ] [ reply ]

[SCAN Associates Sdn Bhd Security Advisory] phpBB 2.0.6 and below sql injection 2004-03-14
pokley (pokleyzz scan-associates net)

Products: phpBB 2.0.6 and below (http://www.phpbb.com)
Found date: 4 January 2004
Publish date: 15 March 2004
Author: pokleyzz <pokleyzz_at_scan-associates.net>
Contributors: sk_at_scan-associates.net
shaharil_at_scan-associates.net
munir_at_scan-associates.net
URL: http://www.scan-associates.net

[ more ] [ reply ]

Multiple Immunity Advisories 2004-03-14
Dave Aitel (dave immunitysec com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday, March 12th, two security advisories were released by
Immunity, Inc.

http://www.immunitysec.com/downloads/hp_http.sxw.pdf
Vulnerabilities in Compaq Web Management's authentication lead to
remote compromise.

http://www.immunitysec.com/downloa

[ more ] [ reply ]

Rosiello Security's exploit for MDaemon 2004-03-14
Angelo Rosiello (angelo rosiello katamail com)

© Rosiello Security

http://www.rosiello.org

Bug found by hat-squad security.

Background by securiteam.com

MDaemon offers a full range of mail server functionality. MDaemon protects your users from spam and viruses, provides full

[ more ] [ reply ]

ws_ftp overflow 2004-03-14
john layman (john interteq net)

Product: WS_FTP Pro v8.02 and probably earlier versions.

Vendor: Ipswitch

Vendor's Product Description:

WS_FTP Pro is the market leader in Windows-based FTP (file transfer protocol) client software. It enables users and organizations to move files between local and remote systems while enj

[ more ] [ reply ]

VocalTec Gateway 8 Reverse Directory Transversal + Authorization Bypass 2004-03-15
Rafel Ivgi, The-Insider (theinsider 012 net il) (1 replies)

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Application VocalTec Gateway
Vendors: http://www.vocaltec.com
Versions: 8
Platforms: Windows
Bug: Reverse Directory Trans

[ more ] [ reply ]

spamblocker turns into mail denial of service 2004-03-15
Dana Hudes (dhudes tcp-ip info) (1 replies)

Re: spamblocker turns into mail denial of service 2004-03-15
Chris Fuhrman (chris fuhrman tfcci com)

Multiple Vendor SOAP server array DoS 2004-03-15
Amit Klein (amit klein sanctuminc com)

/////////////////////////////////////////////////////////////////////
//=====================>> Security Advisory <<=====================//
/////////////////////////////////////////////////////////////////////

---------------------------------------------------------------------
-----[ Multiple Ven

[ more ] [ reply ]

phpBB 2.0.6d && Earlier Security Issues 2004-03-13
JeiAr (security gulftech org)

Vendor : phpBB Group

URL : http://www.phpbb.com

Version : phpBB 2.0.6d && Earlier

Risk : Cross Site Scripting

Description:

phpBB is a high powered, fully scalable, and highly customisable open-source

bulletin board package. phpBB has a user-friendly interface, simple and strai

[ more ] [ reply ]

[SECURITY] [DSA 463-1] New samba packages fix privilege escalation in smbmnt 2004-03-13
Matt Zimmerman (mdz debian org)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 463-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Matt Zimmerman
March 12th, 2004

[ more ] [ reply ]

PLAXO: is that a cure or a disease? 2004-03-12
http-equiv (at) excite (dot) com [email concealed] (1 malware com)

Friday, March 12, 2004

Having a firm belief in unnecessary gadgetry, we recently sent
our most senior colleague Liu Die Yu a request to update his
contact information via our plaxo device
[http://www.plaxo.com/]. Checking back several hours later in
our plaxo web account we eagerly selected h

[ more ] [ reply ]

SGI Advanced Linux Environment security update #14 2004-03-12
SGI Security Coordinator (agent99 sgi com)

Cpanel 9.1.0 have a problem ? 2004-03-12
Arab VieruZ (arabviersus hotmail com)

Hi all

I found another problem in login script

http://www.xxx.com:2082/login/?user=|"`id`"|

it same the first it give ROOT & u can use "+" or "%20" without any problem :) ! lool

look @ this:

/*

sh: /var/cpanel/users/: is a directory sh: uid=0(root) gid=0(root)

groups=0(root),1(

[ more ] [ reply ]

Dogpatch Software CFWebstore 5.0 shopping cart software multiple security vulnerabilities 2004-03-12
S-Quadra Security Research (research s-quadra com)

S-Quadra Advisory #2004-03-12

Topic: Dogpatch Software CFWebstore 5.0 shopping cart software multiple
security vulnerabilities
Severity: High
Vendor URL: http://www.cfwebstore.com
Advisory URL: http://www.s-quadra.com/advisories/Adv-20040312.txt
Release date: 12 Mar 2004

1. DESCRIPTION

[ more ] [ reply ]

Cpanel Request Lets Authenticated Users Conduct Cross-Site Scripting Attacks 2004-03-12
Fable (fable hush com)

####################################################

#Advisory Name: Cpanel Request Lets Authenticated Users Conduct Cross-#Site Scripting Attacks

#Discovered by: Fable

#Greets: 0x29A Crew, !AM Crew, Atomix, d3thstar, mgrd, rootthief.com.

#Versions: ??

########################################

[ more ] [ reply ]

MS Security Response is a bunch of half-witted morons 2004-03-12
Nick FitzGerald (nick virus-l demon co uk) (2 replies)

Try to read Microsoft's latest security epistles:

http://www.microsoft.com/technet/security/bulletin/ms04-009.mspx
http://www.microsoft.com/technet/security/bulletin/ms04-010.mspx

with a browser that does not have JavaScript enabled...

(And yes, they have retrofitted this "improvement" to _

[ more ] [ reply ]

Re: MS Security Response is a bunch of half-witted morons 2004-03-12
Kim Scarborough (kjs uchicago edu)

Re: MS Security Response is a bunch of half-witted morons 2004-03-12
Walter Wart (ribbit speakeasy net)

Metamail 'extcompose' script Symlink Vulnerability 2004-03-12
Shaun Colley (shaunige yahoo co uk)

~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*

Product: Extcompose included with the common
metamail package.
http://bmrc.berkeley.edu/~trey/emacs/metamail.html

Versions: All
Bug: Symlink bug / race condition
Impact: Attacker's can write to arbitr

[ more ] [ reply ]

[OpenPKG-SA-2004.006] OpenPKG Security Advisory (uudeview) 2004-03-12
OpenPKG (openpkg openpkg org)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

________________________________________________________________________

OpenPKG Security Advisory The OpenPKG Project
http://www.openpkg.org/security.html http://www.openpkg.org
openpkg-security (at) openpkg (dot) org [email concealed]

[ more ] [ reply ]

cPanel Secuirty Advisory CPANEL-2004:01-01 2004-03-11
J. Nick Koston (nick cpanel net)

cPanel Security Advisory - CPANEL-2004:01-01

---------------------------------------------
Date: Thu Mar 11 2004
---------------------------------------------

---------------------------------------------
Summary:
---------------------------------------------

Due to a recently discovered bug, it

[ more ] [ reply ]

Multiple vulnerabilities in Hushmail.com 2004-03-11
Calum Power (enune hush ai)

Hello Bugtraq,

There has been 2 vulnerabilities found in the secure Hushmail.com webmail/data
storage service.
One is a Cross-Site-Scripting vulnerability, and is discussed in the
attached advisory. This has now been fixed.

The second is currently in the progress of being fixed, and because of
thi

[ more ] [ reply ]