Section: .. / 0603-advisories /
| /// File Name: |
03.02.06-1.txt |
Description:
|
iDefense Security Advisory 03.02.06 - Remote exploitation of a directory traversal vulnerability in Apple Computer Inc.'s MacOS X could allow attackers to overwrite arbitrary files with user-supplied contents. iDefense has confirmed the existence of this vulnerability in MacOS X 10.4.2. Versions 10.4.5 and earlier of the 10.4.x family and versions 10.3.9 of the 10.3.x family of both Mac OS X and Mac OS X Server are vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 2755 | | Related CVE(s): | CVE-2006-0391 | | Last Modified: | Mar 3 11:17:29 2006 |
| MD5 Checksum: | 656c5102cd9e61c84c5e848188976217 |
|
| /// File Name: |
03.02.06-2.txt |
Description:
|
iDefense Security Advisory 03.02.06 - Local exploitation of a design error in version 10.3.9 of Apple Computer Inc.'s Mac OS X could allow arbitrary files to be overwritten with user supplied contents. iDefense has confirmed the existence of this vulnerability in Mac OS X Version 10.3.9. In addition, the following versions been confirmed by the vendor to be vulnerable: Mac OS X Server Version 10.3.9, Mac OS X Version 10.4.5, Mac OS X Server Version 10.4.5.
| | Author: | vade79 | | Homepage: | http://www.idefense.com/ | | File Size: | 4699 | | Related CVE(s): | CVE-2005-2713, CVE-2005-2714 | | Last Modified: | Mar 3 11:19:50 2006 |
| MD5 Checksum: | 713561ccc67de4e8e0127687de6ca534 |
|
| /// File Name: |
03.02.06-3.txt |
Description:
|
iDefense Security Advisory 03.02.06 - The EWC Dantz Retrospect 7 backup client listens on TCP port 497 for commands from the central backup server. Sending a specially crafted malformed packet to this socket can force the backup client to terminate. This allows for an unauthenticated attacker to effectively disable the network backup services for a target network. This exploit has been tested with the Dantz Retrospect Client version 7.0.107. This is the latest available on the vendor's website.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3746 | | Last Modified: | Mar 3 11:22:57 2006 |
| MD5 Checksum: | 325e42b6a20e68235663afc6dc043a87 |
|
| /// File Name: |
2006-06-03-dokuwiki-xss.txt |
Description:
|
DokuWiki suffers from an XSS vulnerability in the "Picture List" of the "mediamanager" It is possible to upload a picture with a specially crafted EXIF tag, containing script code. This code will be executed every time a user views the "mediamanager".
| | Author: | yorn | | File Size: | 1243 | | Last Modified: | Mar 8 07:37:15 2006 |
| MD5 Checksum: | 3957e113737ff82bda11674ef5e5e717 |
|
| /// File Name: |
2006-0x82-029.txt |
Description:
|
Zeroboard version 4.1 pl 7 is susceptible to cross site scripting attacks.
| | Author: | Xpl017Elz | | Homepage: | http://www.inetcop.org | | File Size: | 5036 | | Last Modified: | Mar 13 01:01:40 2006 |
| MD5 Checksum: | 840c2676bc4c48b8f8274afe64263bb9 |
|
| /// File Name: |
20060314-1.txt |
Description:
|
A vulnerability exists in Microsoft Excel which can be exploited to run a code of attacker's choice on user's PC. Sufficient data validation is not performed when parsing "Named Range" definitions in the document file, which makes it possible to produce a negative 32-bit value that is later used as a length parameter for the msvcrt.memmove() function. As a result, a large chunk of memory is copied overwriting critical memory ranges, including the stack space. All tests were performed using Microsoft Excel 2003 (11.6560.6568) on Windows XP and Windows 2000 Pro platforms. It is likely that all MS Excel products are vulnerable.
| | Homepage: | http://www.hexview.com/ | | File Size: | 4563 | | Related OSVDB(s): | 21568 | | Related CVE(s): | CVE-2005-4131 | | Last Modified: | Mar 15 05:28:36 2006 |
| MD5 Checksum: | b16e2b0f4e9f88a71662e71adb50785f |
|
| /// File Name: |
99articles.txt |
Description:
|
Free Articles from 99articles.com suffers from a remote command execution vulnerability.
| | Author: | botan | | Homepage: | http://www.PatrioticHackers.com | | File Size: | 1076 | | Last Modified: | Mar 23 23:35:30 2006 |
| MD5 Checksum: | 5fc46be876ff2247688225cfaa1a12be |
|
| /// File Name: |
aa2k6x.txt |
Description:
|
Alien Arena 2006 Gold Edition versions 5.00 and below suffer from format string and buffer overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | Related Exploit: | aa2k6x.zip | | File Size: | 5205 | | Last Modified: | Mar 9 05:20:29 2006 |
| MD5 Checksum: | a417e8140e93aa291ab0fe5109b1f627 |
|
| /// File Name: |
adpforum2.txt |
Description:
|
ADP Forum 2.0.x is vulnerable to script injection while posting messages.
| | Author: | Liz0ziM | | Homepage: | http://www.biyosecurity.com | | File Size: | 1133 | | Last Modified: | Mar 10 01:10:39 2006 |
| MD5 Checksum: | 1e50c7244e3c6d74e4ea0e145109f04e |
|
| /// File Name: |
advisory-18.txt |
Description:
|
A buffer overflow and installation script error in firebird 1.5.3 could lead to system compromise.
| | Author: | Joxean Koret | | File Size: | 8093 | | Last Modified: | Mar 13 21:28:44 2006 |
| MD5 Checksum: | 38934e06ca4dc2ca5c0174865880f75e |
|
| /// File Name: |
advisory-277.txt |
Description:
|
CuteNews version 1.4.1 is susceptible to cross site scripting attacks.
| | Author: | Roozbeh Afrasiabi, imei addmimistrator | | Homepage: | http://www.kapda.ir | | File Size: | 1451 | | Last Modified: | Mar 8 05:40:07 2006 |
| MD5 Checksum: | a11e772427fa8b60960adae024b484f9 |
|
| /// File Name: |
advisory-295.txt |
Description:
|
MyBB 1.0.4 is vulnerable to header injection in many pages as a result of unsanitized user input.
| | Author: | imei addmimistrator | | Homepage: | http://www.kapda.ir | | File Size: | 1626 | | Last Modified: | Mar 17 01:47:46 2006 |
| MD5 Checksum: | 5092622ce3991b9c46fc5965ecfce830 |
|
| /// File Name: |
advisory_032006.115.txt |
Description:
|
KisMAC versions below 73p and development versions below 113 suffer from a stack overflow when handling specially crafted 802.11 management frames.
| | Author: | Stefan Esser | | Homepage: | http://www.hardened-php.net/ | | File Size: | 4038 | | Last Modified: | Apr 1 05:44:36 2006 |
| MD5 Checksum: | c01d0c22dc2e91f32789f4e6f9ba3078 |
|
| /// File Name: |
Aironet-1300-DoS.txt |
Description:
|
Cisco Aironet 1300 running IOS 12.3(8)JA with default settings is vulnerable to a DoS condition.
| | Author: | Alex | | File Size: | 1989 | | Last Modified: | Mar 21 23:42:58 2006 |
| MD5 Checksum: | 5d330b947dd34015df8737aa441c97da |
|
| /// File Name: |
akocomment.txt |
Description:
|
AkoComment version 2.0, a well known add-on for Mambo and Joomla CMS systems, is susceptible to SQL injection attacks.
| | Author: | Stefan Keller | | File Size: | 1585 | | Last Modified: | Apr 1 06:55:41 2006 |
| MD5 Checksum: | e1545d2c546f631073a5f8e6bfcc9146 |
|
| /// File Name: |
antivirNotepad.txt |
Description:
|
AntiVir Personal Edition Classic version 7 suffers from a local privilege escalation issue due to launching notepad.exe with SYSTEM privileges.
| | Author: | Ramon Kukla | | File Size: | 1362 | | Last Modified: | Mar 12 22:56:48 2006 |
| MD5 Checksum: | b1d3df71ca414fb4d85a729575c764c7 |
|
| /// File Name: |
APPLE-SA-2006-03-01.txt |
Description:
|
APPLE-SA-2006-03-01 Security Update 2006-001 - A new update has been released for Mac OS X that addresses vulnerabilities in apache_mod_php, automount, COM, Directory Services, FileVault, IPSec, LibSystem, Mail, perl, rsync, Safari, LaunchServices, and Syndication.
| | Homepage: | http://www.apple.com | | File Size: | 10972 | | Related CVE(s): | CVE-2005-3319, CVE-2005-3353, CVE-2005-3391, CVE-2005-3392, CVE-2006-0384, CVE-2006-0391, CVE-2005-2713, CVE-2005-2714, CVE-2006-0386, CVE-2006-0383, CVE-2005-3706, CVE-2006-0395, CVE-2005-4217, CVE-2005-3712, CVE-2005-4504, CVE-2006-0387, CVE-2006-0388, CVE-2006-0394, CVE-2006-0389 | | Last Modified: | Mar 3 09:09:05 2006 |
| MD5 Checksum: | 6f0b844d25580b154ac7c81e21114787 |
|
| /// File Name: |
ASPPortal-3.1.1.txt |
Description:
|
ASPPortal versions less than or equal to 3.1.1 suffer from multiple remote SQL injection vulnerabilities
| | Author: | nukedx | | Homepage: | http://www.nukedx.com | | File Size: | 2976 | | Last Modified: | Mar 21 23:40:22 2006 |
| MD5 Checksum: | 111f3121c602a426c2648bbb10c369ca |
|
| /// File Name: |
BetaParticle-6.0.txt |
Description:
|
BetaParticle Blog versions less than or equal to 6.0 suffer from multiple SQL injection vulnerabilities.
| | Author: | nukedx | | Homepage: | http://www.nukedx.com | | File Size: | 1053 | | Last Modified: | Mar 22 01:56:15 2006 |
| MD5 Checksum: | e625792db5649f23b38f3140204feebc |
|
| /// File Name: |
borders.txt |
Description:
|
bordersstores.com suffers from XSS in search.jsp.
| | Author: | Headz Shotz | | Homepage: | http://hs.elimate.co.uk | | File Size: | 599 | | Last Modified: | Mar 24 00:31:11 2006 |
| MD5 Checksum: | edaacd290b6fae20370c4884d0783dad |
|
| /// File Name: |
capi4hylafax.txt |
Description:
|
capi4hylafax version 01.03.00 is susceptible to a symbolic link creation vulnerability.
| | Author: | DrFrancky | | File Size: | 1325 | | Last Modified: | Mar 9 05:30:08 2006 |
| MD5 Checksum: | 2489f487fa9ebab1f038e1db3add250a |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
