|
|
2003-09-28
Secunia
Security Tracker
Security Focus
Symantec
Secunia
Top 5 Most Read Secunia Security Advisories (Last 24 hours):
- Microsoft Windows RPCSS Service DCOM Interface Vulnerabilities
- Sun Solaris Sadmind Insecure Default Configuration
- Special Update: Microsoft Internet Explorer Multiple Vulnerabilities
- Microsoft Windows DirectX Remotely Exploitable Buffer Overflow
- Eudora Multiple Vulnerabilities
Security Tracker
A-CART Input Validation Flaw in 'signin.asp' Permits Remote Cross-Site Scripting Attacks
G00db0y from Zone-h Security Team reported an input validation vulnerability in A-CART. A remote user can conduct cross-site scripting attacks.
Impact: Disclosure of authentication information, Disclosure of user information, Execution of arbitrary code via network, Modification of user information
Apache Web Server mod_cgi Error May Let Malicious CGI Scripts Crash the Web Service
A denial of service vulnerability was reported in the Apache 2.0 web server. A user with the ability to place CGI scripts on the server can cause the web service to hang.
Impact: Denial of service via local system
Marbles Game HOME Environment Variable Buffer Overflow Lets Local Users Gain Elevated Privileges
A buffer overflow vulnerability was reported in the Marbles game software. A local user may be able to obtain elevated privileges on the target system.
Impact: Execution of arbitrary code via local system, User access via local system
Sambar Server Contains Multiple Unspecified Vulnerabilities
Several vulnerabilities were reported in Sambar Server. The specific nature of these flaws was not disclosed, but one is reported to be a significant vulnerability.
Impact: Not specified
sbox May Disclose Installation Path and User Account Paths to Remote Users
A vulnerability was reported in 'sbox'. A remote user can determine the installation path and the path to various user cgi scripts.
Impact: Disclosure of system information, Disclosure of user information
SecurityFocus BugTraq
SecurityFocus Vulnerabilities
09/27/2003 Marbles v1.0.5 local PoC exploit. demz -
09/27/2003 Re: ICMP pokes holes in firewalls... Darren Reed
09/27/2003 Re: base64 Ilya Teterin
09/27/2003 Re: base64 Greg A. Woods
09/27/2003 UnixWare 7.1.3 Open UNIX 8.0.0 : Sendmail: buffer overflow in versions 8.12.8 and prior. security sco com
09/27/2003 UnixWare 7.1.3 Open UNIX 8.0.0 UnixWare 7.1.1 : OpenSSH: multiple buffer handling problems security sco com
09/27/2003 UnixWare 7.1.3 UnixWare 7.1.1 Open UNIX 8.0.0 : Network device drivers reuse old frame buffer data to pad packets security sco com
09/27/2003 Re: ICMP pokes holes in firewalls... Daniel Hartmeier
2003-09-25: SBox Path Disclosure Vulnerability
2003-09-25: ArGoSoft FTP Server XCWD Command Remote Buffer Overrun Vulnerability
2003-09-25: WodFTPServer FTP Command Buffer Overflow Vulnerability
2003-09-25: Multiple Vendor VPN Implementation Vulnerabilities
2003-09-25: Software602 602Pro LAN SUITE 2003 Directory Traversal Vulnerability
2003-09-25: Software602 602Pro LAN SUITE 2003 Sensitive User Information Storage Vulnerability
2003-09-25: Imatix Xitami Long Header Denial Of Service Vulnerability
2003-09-25: BRS WebWeaver Long URL Request Logging Failure Weakness
2003-09-24: NullLogic Null HTTPd Error Page Long HTTP Request Cross-Site Scripting Vulnerablity
2003-09-24: Thread-ITSQL HTML Injection Vulnerabilities
2003-09-24: PHP4 Multiple Vulnerabilities
2003-09-24: TCLhttpd Directory Listing Disclosure Vulnerability
2003-09-24: NullLogic Null HTTPd Remote Denial Of Service Vulnerability
2003-09-24: Re-Boot Design ASP Forum SQL Injection Vulnerability
2003-09-24: yMonda Thread-IT Multiple Fields HTML Injection Vulnerability
2003-09-24: PHP4 Base64_Encode() Integer Overflow Vulnerability
2003-09-24: Comment Board HTML Injection Vulnerabilities
2003-09-24: BSD Kernel ARP Cache Flooding Denial of Service Vulnerability
2003-09-24: TCLHttpd Multiple Cross-Site Scripting Vulnerabilities
2003-09-24: Mondosoft MondoSearch MsmSetup.exe ASP Code Injection Vulnerability
2003-09-24: Wu-Ftpd SockPrintf() Remote Stack-based Buffer Overrun Vulnerability
2003-09-24: Sun StorEdge T3 Security Scan Master Controller Failure Vulnerability
2003-09-24: Gauntlet Firewall SQL-GW Connection Denial Of Service Vulnerability
2003-09-24: Multiple Vendor C Library realpath() Off-By-One Buffer Overflow Vulnerability
2003-09-24: ProFTPD ASCII File Transfer Buffer Overrun Vulnerability
2003-09-24: HP-UX IPCS Unspecified Buffer Overflow Vulnerability
Symantec SSR
|
|
|
 |
|
No Comments Allowed for Anonymous, please register |
|
| |
|
Login |
|
 |
|
|
|
|
· New User? · Click here to create a registered account.
|
|
|
Article Rating |
|
|
|
|
|
|
Average Score: 0
Votes: 0
|
|
|
