|
|
Colapse all |
Post message
Immunix Secured OS 7+ openssl update 2003-03-27 Immunix Security Team (security wirex com) ----------------------------------------------------------------------- Immunix Secured OS Security Advisory Packages updated: openssl, openssh, mod_ssl Affected products: ImmunixOS 6.2, 7.0, 7+ Bugs fixed: CAN-2003-0131 CAN-2003-0147 Date: Wed Mar 26 2003 Advisory ID: IMNX-2003-7+-001-01 Auth [ more ] [ reply ] Vulnerability in my guest book 2003-03-27 Over_G (overg mail ru) Product: My guest book Version: ? OffSite: ? Problem: CSS and unauthorized access in admin panel -------------------------------------------------------------- 1)Cross Site scripting http://[target]/myguestBk/add1.asp?name=Name&subject=Subj&email=M@IL&mes sage=<scr*pt>alert ("Test!")</scr*pt> Or o [ more ] [ reply ] [SECURITY] [DSA 271-1] New ecartis and listar packages fix password change vulnerability 2003-03-27 joey infodrom org (Martin Schulze) Re: SNMP security issues in D-Link DSL Broadband Modem/Router 2003-03-27 m singh tesco net I told dlink about this problem last year Sepember. They told they will release a fix I have not see a fix. It looks like dlink will not be doing any thing about this problem. In futher I will post here as well. Thanks Malkit Singh > > From: Arhont Information Security <infosec (at) arhont (dot) com [email concealed]> [ more ] [ reply ] [SECURITY] [DSA 270-1] New Linux kernel packages (mips + mipsel) fix local root exploit 2003-03-27 joey infodrom org (Martin Schulze) [SCSA-013] Cross Site Scripting vulnerability in testcgi.exe 2003-03-27 Grégory Le Bras (gregory lebras security-corporation com) ________________________________________________________________________ Security Corporation Security Advisory [SCSA-013] ________________________________________________________________________ PROGRAM: Ceilidh HOMEPAGE: http://www.lilikoi.com VULNERABLE VERSIONS: 2.70 and prior ______ [ more ] [ reply ] SNMP security issues in D-Link DSL Broadband Modem/Router 2003-03-27 Arhont Information Security (infosec arhont com) @(#)Mordred Labs advisory - PHP for Win32: buffer overflow in openlog() function 2003-03-27 sir mordred hushmail com (1 replies) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 //@(#) Mordred Security Labs advisory Release date: March 27, 2003 Name: PHP for Windows - buffer overflow in openlog() function Versions affected: all versions for Windows platforms Risk: average Author: Sir Mordred (mordred (at) s-mail (dot) com [email concealed]) I. Descripti [ more ] [ reply ] Re: @(#)Mordred Labs advisory - PHP for Win32: buffer overflow in openlog() function 2003-03-27 Jason Brooke (jason ausgamers com) Fwd: CERT Advisory CA-2003-11 Multiple Vulnerabilities in Lotus Notes and Domino 2003-03-27 Muhammad Faisal Rauf Danka (mfrd attitudex com) Regards -------- Muhammad Faisal Rauf Danka *** There is an attachment in this mail. *** _____________________________________________________________ --------------------------- [ATTITUDEX.COM] http://www.attitudex.com/ --------------------------- _____________________________________________ [ more ] [ reply ] Re: WebDAV exploit: using wide character decoder scheme 2003-03-27 JW Oh (mat monkey org) In-Reply-To: <20030326111443.6fb287a3.dave (at) immunitysec (dot) com [email concealed]> > >Unfortunately, on my US Windows 2K SP3 build (and I assume all others), >those %u directives get translated into question marks. (0x003F in hex) >:< I tested it only on Korean version of Windows(Server and Professional edition). [ more ] [ reply ] NSFOCUS SA2003-01: Microsoft Windows XP Redirector Local Buffer Overflow Vulnerability 2003-03-27 NSFCOSU Security Team (security nsfocus com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NSFOCUS Security Advisory(SA2003-01) Topic: Microsoft Windows XP Redirector Local Buffer Overflow Vulnerability Release Date: 2003-3-27 CVE CAN ID: CAN-2003-0004 Affected system: =================== - - Microsoft Windows XP - - Microsoft Windows XP [ more ] [ reply ] [RHSA-2003:051-01] Updated kerberos packages fix various vulnerabilities 2003-03-26 bugzilla redhat com NetBSD Security Advisory 2003-007: (Another) Encryption weakness in OpenSSL code 2003-03-26 NetBSD Security Officer (security-officer netbsd org) NetBSD Security Advisory 2003-008: faulty length checks in xdrmem_getbytes 2003-03-26 NetBSD Security Officer (security-officer netbsd org) (1 replies) NetBSD Security Advisory 2003-005: RSA timing attack in OpenSSL code 2003-03-26 NetBSD Security Officer (security-officer netbsd org) NetBSD Security Advisory 2003-004: Format string vulnerability in zlib gzprintf() 2003-03-26 NetBSD Security Officer (security-officer netbsd org) Re: PHPNuke viewpage.php allows Remote File retrieving 2003-03-25 admin gaylenandmargie com (1 replies) In-Reply-To: <20030326022821.48e4e54f.negative (at) magnesium (dot) net [email concealed]> >From: Jim Geovedi <negative (at) magnesium (dot) net [email concealed]> >To: bugtraq (at) securityfocus (dot) com [email concealed] >Subject: Re: PHPNuke viewpage.php allows Remote File retrieving >Message-Id: <20030326022821.48e4e54f.negative (at) magnesium (dot) net [email concealed]> >In-Reply-To: <3E8098FE.3070808 [ more ] [ reply ] Security Advisory - MyTaxexpress 2003 2003-03-25 Nathan Wosnack (nathan hypervivid com) (1 replies) Original Advisory: Tuesday, March 25, 2003 Severity: Medium - High Description: Unencrypted tax-return information saved in C:\My Documents by default can pose security risks, and may disclose financial/personal information to the Internet via peer-to-peer (P2P) networks. Version: Tes [ more ] [ reply ] Re: Security Advisory - MyTaxexpress 2003 2003-03-27 HCTITS Security Division (security humancentrictech com) |
|
Privacy Statement |
Wireless router/firewall is vulnerable to several old,
well known vulnerablities. The user was able to reproduce
the problem multiple times with consistent results. Not
having the equipment, we have NOT reproduced these ourselves,
and would appre
[ more ] [ reply ]