Section: .. / 0507-advisories /
| /// File Name: |
GoodTechRCPT.txt |
Description:
|
GoodTech versions 5.15 and below (and 5.16 evaluation) suffer from stack overflow vulnerabilities in the handling of the RCPT TO input.
| | Author: | Raphael Rigo | | File Size: | 4440 | | Last Modified: | Jul 28 07:26:49 2005 |
| MD5 Checksum: | e0392310bbb1cacca9ba5a4300dc364d |
|
| /// File Name: |
googleBam.txt |
Description:
|
Google allows for proxy based attacks via WML servers. Due to this, a remote attacker can mask their origin IP address.
| | Author: | Petko Petkov | | File Size: | 3642 | | Last Modified: | Jul 20 09:19:19 2005 |
| MD5 Checksum: | 53279a418d12076d3356c122d0012822 |
|
| /// File Name: |
IBMaccess.txt |
Description:
|
The QCWLICON.exe and QCTRAY.exe binaries in IBM Access software allow anyone read access to the configuration of all connections.
| | Author: | Sylvain ROGER | | Homepage: | http://www.solucom.fr | | File Size: | 622 | | Last Modified: | Jul 28 08:17:12 2005 |
| MD5 Checksum: | 4013cb85d8d739864c6ecbc47bddbd78 |
|
| /// File Name: |
integrigyOracle.txt |
Description:
|
A number of high risk SQL injection and parameter manipulation security vulnerabilities in the Oracle E-Business Suite 11i have been corrected by Oracle's July, 2005 release of security patches.
| | Author: | Stephen Kost | | Homepage: | http://www.integrigy.com/ | | File Size: | 2991 | | Last Modified: | Jul 14 09:03:53 2005 |
| MD5 Checksum: | d8d98f6ad55a578fe1da656c4ddf9177 |
|
| /// File Name: |
isr-groupwiseXSS.txt |
Description:
|
Novell Groupwise WebAccess version 6.5 SP4 is susceptible to cross site scripting attacks.
| | Homepage: | http://www.infobyte.com.ar | | File Size: | 2251 | | Last Modified: | Jul 20 20:13:19 2005 |
| MD5 Checksum: | c7637dd34806d1213da15306fbe2d3d6 |
|
| /// File Name: |
jaws052.txt |
Description:
|
Jaws versions 0.5.2 and below are susceptible to the XML_RPC vulnerability.
| | Author: | Stefan Esser | | Homepage: | http://www.hardened-php.net/ | | File Size: | 3737 | | Last Modified: | Jul 7 10:50:44 2005 |
| MD5 Checksum: | d165445ede5d8db236cb4070ea15b7e6 |
|
| /// File Name: |
jBPM20.txt |
Description:
|
JBoss jBPM suffers from a remote command execution flaw that allows a remote attacker to execute commands with the rights of the JBoss process.
| | Author: | Marc Schoenefeld | | Homepage: | http://www.illegalaccess.org/ | | File Size: | 3601 | | Last Modified: | Jul 7 09:45:22 2005 |
| MD5 Checksum: | 8796fa4fd04467b9e6490dad6668214a |
|
| /// File Name: |
lantronix.txt |
Description:
|
Lantronix SecureLinx console servers allow for retrieval of ssh-private keys and system logfiles.
| | Author: | Dr. Dirk Wetter | | Homepage: | http://drwetter.org | | File Size: | 4552 | | Last Modified: | Jul 8 09:03:40 2005 |
| MD5 Checksum: | 0561460be56bfec0e04de7bb682c117b |
|
| /// File Name: |
ldap.txt |
Description:
|
pam_ldap/nss_ldap fail to re-start TLS when following referred connections. This can result in credentials being sent in clear text when pam_ldap/nss_ldap attempt to rebind.
| | Author: | Rob Holland | | File Size: | 1230 | | Last Modified: | Jul 7 09:59:48 2005 |
| MD5 Checksum: | 4127b8c43bc18009fd879033b7076e19 |
|
| /// File Name: |
lotus-disclose.txt |
Description:
|
Lotus Domino R5 WebMail versions R5, R6, and possibly R4 are susceptible to a default configuration information disclosure vulnerability.
| | Author: | Leandro Meiners | | Homepage: | http://www.cybsec.com | | File Size: | 4101 | | Last Modified: | Jul 28 08:27:35 2005 |
| MD5 Checksum: | 8bdb1304f210ca33ae05c3806dc3e086 |
|
| /// File Name: |
LSS-2005-07-14.txt |
Description:
|
Winamp is vulnerable to a buffer overflow vulnerability when processing ID3v2 tags of mp3 files. To exploit this vulnerability, a user has to add malformed mp3 file to the Winamp playlist, and play it. The vulnerability was tested on Winamp versions 5.03a, 5.09 and 5.091.
| | Author: | Leon Juranic | | Homepage: | http://security.lss.hr | | File Size: | 6703 | | Last Modified: | Jul 15 07:53:00 2005 |
| MD5 Checksum: | be583fbb09d636219d14d569986d9f9c |
|
| /// File Name: |
MITKRB5-SA-2005-003.txt |
Description:
|
MIT krb5 Security Advisory 2005-003 - The krb5_recvauth() function can free previously freed memory under some error conditions. This vulnerability may allow an unauthenticated remote attacker to execute arbitrary code.
| | Homepage: | http://web.mit.edu | | File Size: | 4254 | | Related CVE(s): | CAN-2005-1689 | | Last Modified: | Jul 13 08:52:39 2005 |
| MD5 Checksum: | 1ab88c5dc1dcb20d49026ebda4522f20 |
|
| /// File Name: |
mobileTraverse.txt |
Description:
|
Misuse of services like Google's WMLProxy and IYHY allow for proxied/anonymous attacks against web sites.
| | Author: | Petko Petkov | | File Size: | 3451 | | Last Modified: | Jul 21 08:03:29 2005 |
| MD5 Checksum: | 4d8affdc07dfedba3fbb846f1d14472d |
|
| /// File Name: |
mozillaXPCOM.txt |
Description:
|
Mozilla's xpcom is susceptible to a race condition that allows for the browser to be crashed.
| | Author: | James Bercegay | | Homepage: | http://www.gulftech.org/ | | File Size: | 2610 | | Last Modified: | Jul 22 09:06:17 2005 |
| MD5 Checksum: | 51fe72da8f6cae4d50bdb53eb426dc7a |
|
| /// File Name: |
mrvConsole.txt |
Description:
|
A design flaw in MRV's In-Reach console servers versions LX-8000, 4000, and 1000 series allow users to bypass port access controls when ssh public-key authentication is enabled.
| | Author: | Dr. Dirk Wetter | | Homepage: | http://drwetter.org | | File Size: | 1430 | | Last Modified: | Jul 19 16:34:13 2005 |
| MD5 Checksum: | e9de2cd3593fb6688e195ab613cb2411 |
|
| /// File Name: |
msnKick.txt |
Description:
|
MSN's Messenger protocol will automatically kick users from a conversation if .pif is sent in a text message.
| | Author: | Diabolic Crab | | Homepage: | http://www.digitalparadox.org/ | | File Size: | 5067 | | Last Modified: | Jul 12 16:27:20 2005 |
| MD5 Checksum: | 75b45a62f65f087e62381949a1f5553a |
|
| /// File Name: |
NateOnMessenger30.txt |
Description:
|
NateOn Messenger version 3.0 suffers from a file sharing flaw that allows for traversal attacks allowing for directory listings.
| | Author: | PARK | | File Size: | 62230 | | Last Modified: | Jul 12 16:55:17 2005 |
| MD5 Checksum: | d5bb8e32de0d862cd7423c29f28aa274 |
|
| /// File Name: |
NILESA-20050701.txt |
Description:
|
When the UnixWare 7.x version of the RPC portmapper (rpcbind) receives an invalid portmap request, it falls into a denial of service state and cannot respond.
| | Author: | Yun Jonglim | | Homepage: | http://www.nilesoft.co.kr | | File Size: | 2528 | | Related CVE(s): | CAN-2005-2132 | | Last Modified: | Jul 28 08:32:01 2005 |
| MD5 Checksum: | 1eb5be89cde41bbe4f56ca41a5940a94 |
|
| /// File Name: |
novellBO653.txt |
Description:
|
The Novell GroupWise 6.5.3 client suffers from a remote buffer overflow vulnerability.
| | Author: | Francisco Amato | | Homepage: | http://www.infobyte.com.ar | | File Size: | 3301 | | Last Modified: | Jul 28 08:34:32 2005 |
| MD5 Checksum: | c2c04c614c9052f05cfdff801c554979 |
|
| /// File Name: |
NRVA05-03.txt |
Description:
|
HAURI live update suffers from remote file download and execution vulnerabilities.
| | Author: | Park Gyutae | | File Size: | 10030 | | Last Modified: | Jul 28 18:55:46 2005 |
| MD5 Checksum: | b0c582692ccecdb7dab8e7a8d192f5e0 |
|
| /// File Name: |
nullsessions.txt |
Description:
|
By taking advantage of hardcoded named pipes allowed for NULL sessions and using the property of MSRPC that, by default, all available RPC interfaces in a process can be reached using any opened endpoint, it is possible to anonymously enumerate Windows services and read the Application and System eventlogs of a remote Windows NT 4.0 or Windows 2000 system.
| | Author: | Jean-Baptiste Marchand | | Homepage: | http://www.hsc.fr/ | | File Size: | 6281 | | Related CVE(s): | CAN-2005-2150 | | Last Modified: | Jul 7 16:33:13 2005 |
| MD5 Checksum: | 403325e9110bbcc9a27420a238d7ab07 |
|
| /// File Name: |
openbook122.txt |
Description:
|
OpenBook version 1.2.2 suffers from a SQL injection vulnerability.
| | Homepage: | http://www.svt.nukleon.us | | File Size: | 1350 | | Last Modified: | Aug 5 07:51:59 2005 |
| MD5 Checksum: | 6194694be717028c76d02ed780f7d2df |
|
| /// File Name: |
Oracle9R2-unpatched.txt |
Description:
|
Oracle 9R2 has an unpatched, known vulnerability in the CWM2_OLAP_AW_AWUTIL package. A flaw that was reported months ago and was claimed to be fixed in this last release.
| | Author: | Cesar Cerrudo | | Homepage: | http://www.argeniss.com/ | | File Size: | 2031 | | Last Modified: | Jul 23 18:34:34 2005 |
| MD5 Checksum: | b27b66b35c2615076263b7e86866bdac |
|
| /// File Name: |
oracleFailed.txt |
Description:
|
The Oracle critical patch update released in April 2005 has failed to fix all of the vulnerabilities it claimed to have negated.
| | Author: | David Litchfield | | File Size: | 1945 | | Last Modified: | Jul 8 09:12:07 2005 |
| MD5 Checksum: | 1a05f7340f9f6ec7ec6afe8dfd3c7489 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
