Section: .. / 0604-advisories /
| /// File Name: |
03.23.05.txt |
Description:
|
iDefense Security Advisory 03.23.05 - ISS Multiple Products Local Privilege Escalation Vulnerability
| | Author: | iDefense | | Homepage: | http://labs.idefense.com | | File Size: | 4208 | | Last Modified: | Mar 31 19:28:23 2006 |
| MD5 Checksum: | 9c4b582ea1bddfa2d0749370bc300b40 |
|
| /// File Name: |
03.23.06.txt |
Description:
|
iDefense Security Advisory 03.23.06 - RealNetworks RealPlayer and Helix Player Invalid Chunk Size Heap Overflow Vulnerability
| | Author: | iDefense | | Homepage: | http://labs.idefense.com | | File Size: | 5589 | | Last Modified: | Mar 31 19:29:13 2006 |
| MD5 Checksum: | be111e982a1b5479b9fc4ad01c41cf5e |
|
| /// File Name: |
11.txt |
Description:
|
JetPhoto suffers from multiple XSS vulnerabilities.
| | Author: | 0o_zeus_o0 | | Homepage: | http://www.elitemexico.org | | File Size: | 5314 | | Last Modified: | Apr 12 02:34:08 2006 |
| MD5 Checksum: | 6ba1f7f898607c355ddd8d27a151d598 |
|
| /// File Name: |
16.txt |
Description:
|
open security advisory #16 - Xine Media Player Format String Bug - There are 2 format string bugs in the latest version of Xine that could be exploited by a malicious person to execute code on the system of a remote user running the media player against a malicious playlist file. By passing a format specifier in the path of a file that is embedded in a remote playlist, it is possible to trigger this bug.
| | Author: | c0ntexb | | Homepage: | http://www.open-security.org | | File Size: | 4296 | | Last Modified: | Apr 28 17:25:03 2006 |
| MD5 Checksum: | 92858d7f11e1322f1c6da1305e571109 |
|
| /// File Name: |
4images-1.7.txt |
Description:
|
4images versions less than or equal to 1.7 suffer from XSS.
| | Author: | qex | | File Size: | 250 | | Last Modified: | Apr 28 14:20:22 2006 |
| MD5 Checksum: | a4e1fe5401feefc141874387c26f1358 |
|
| /// File Name: |
ActualAnalyzer.txt |
Description:
|
ActualAnalyzer suffers from a remote file inclusion vulnerability if register_globals = On.
| | Homepage: | http://www.majorsecurity.de | | File Size: | 1415 | | Last Modified: | Apr 28 14:46:12 2006 |
| MD5 Checksum: | 9bcc17c87c11678acda81e4225e8584c |
|
| /// File Name: |
Ad-Aware.txt |
Description:
|
A paper discussing the various vulnerabilities in Ad-Aware.
| | Author: | Roy.Batty | | File Size: | 14487 | | Last Modified: | Apr 28 20:11:10 2006 |
| MD5 Checksum: | 27920d702e57f28ffbd214ea61a49bc2 |
|
| /// File Name: |
AD20060428.txt |
Description:
|
There is a vulnerability exists in WinISO and UltraISO, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability has been confirmed in version WinISO 5.3,UltraISO V8.0.0.1392, PowerISO v2.9,Magic ISO 5.0 Build 0166
| | Homepage: | http://secway.org | | Related File: | PoC.iso.bin | | File Size: | 3289 | | Last Modified: | Apr 28 21:21:34 2006 |
| MD5 Checksum: | f774737162f3f7718e685159e8d2addd |
|
| /// File Name: |
advisory4.5.06.txt |
Description:
|
Myspace.com - Intricate Script Injection Vulnerability. Includes a very detailed discussion of the vulnerability and the security / insecurity of Myspace in general.
| | Author: | silentproducts | | Homepage: | http://www.silent-products.com/ | | File Size: | 12428 | | Last Modified: | Apr 12 14:55:03 2006 |
| MD5 Checksum: | 9198b87b5855ea29563b817528a302db |
|
| /// File Name: |
alp.txt |
Description:
|
Autonomous LAN party suffers from a remote file inclusion vulnerability in gameSpy2.php.
| | Author: | Liz0ziM | | Homepage: | http://liz0zim.no-ip.org/ | | File Size: | 647 | | Last Modified: | Apr 11 02:28:27 2006 |
| MD5 Checksum: | 0f70e8489812b4ba6844b6c64feb306d |
|
| /// File Name: |
Amaya9.4-2.txt |
Description:
|
Amaya versions less than or equal to 9.4 suffer from a stack overflow which could possibly lead to exploitation.
| | Author: | Thomas Waldegger | | Homepage: | http://morph3us.org/ | | File Size: | 4633 | | Last Modified: | Apr 19 16:12:48 2006 |
| MD5 Checksum: | e0ecd6f2d7b062b705970044571b4a98 |
|
| /// File Name: |
Amaya9.4.txt |
Description:
|
Amaya versions less than or equal to 9.4 suffer from a stack overflow which could possible lead to exploitation.
| | Author: | Thomas Waldegger | | Homepage: | http://morph3us.org/ | | File Size: | 5456 | | Last Modified: | Apr 19 16:09:09 2006 |
| MD5 Checksum: | 4e498829c35d6be63700ff50a2582be3 |
|
| /// File Name: |
AnimeGenesis.txt |
Description:
|
AnimeGenesis suffers from XSS.
| | Author: | qex | | File Size: | 104 | | Last Modified: | Apr 19 17:35:22 2006 |
| MD5 Checksum: | aa0a95856ce7daa0cf7cb62b132b1880 |
|
| /// File Name: |
ArabPortal2.0.1.txt |
Description:
|
ArabPortal 2.0.1 Stable suffers from several XSS and SQL injection vulnerabilities.
| | Author: | o.y.6 | | Homepage: | http://www.palestineonly.com | | File Size: | 846 | | Last Modified: | Apr 10 21:27:39 2006 |
| MD5 Checksum: | 88c731cb81a47173720c3147b26a6e1a |
|
| /// File Name: |
ArabPortal2.0.txt |
Description:
|
ArabPortal 2.0 Stable suffers from a full path disclosure vulnerability.
| | Author: | o.y.6 | | File Size: | 262 | | Last Modified: | Mar 31 19:17:15 2006 |
| MD5 Checksum: | 6c9ee2463883846d5faa18f46d2b980c |
|
| /// File Name: |
ASPSitem-1.83.txt |
Description:
|
ASPSitem 1.83 and prior suffer from SQL injection in the id parameter of Haberler.asp.
| | Author: | nukedx | | Homepage: | http://www.nukedx.com | | File Size: | 1329 | | Last Modified: | Apr 28 14:07:21 2006 |
| MD5 Checksum: | 1c7de361373fbfcb35c488ec1fe83be9 |
|
| /// File Name: |
astathome.txt |
Description:
|
Two vulnerabilities was found in the ARI package included in the asterisk@home Distribution versions 0.7.15 and lower. These vulnerabilities allow a user to listen to voicemail from any other users and and to disclose configuration password.
| | Author: | Francois Harvey | | File Size: | 2125 | | Last Modified: | Apr 28 20:23:38 2006 |
| MD5 Checksum: | 4be1f2c8f7f51ebd83f939349a51149d |
|
| /// File Name: |
AT-9724TS.txt |
Description:
|
It is possible to crash a Allied Telesyn AT-9724TS switch by sending it a large stream of UDP data.
| | Author: | kim | | File Size: | 412 | | Last Modified: | Apr 28 14:09:45 2006 |
| MD5 Checksum: | 87332998944a6df10049445ae18f0c65 |
|
| /// File Name: |
Autogalleryv0.41.txt |
Description:
|
Autogallery v0.41 suffers from multiple XSS vulnerabilities.
| | Homepage: | http://www.elitemexico.org/ | | File Size: | 3523 | | Last Modified: | Apr 12 14:41:20 2006 |
| MD5 Checksum: | 2ebb223e59ea1326c3e754545c6795be |
|
| /// File Name: |
Avast-1.0.5.txt |
Description:
|
Avast Linux antivirus versions 1.0.5, 1.0.5-1 creates a temporary directory in an insecure manner. POC included.
| | Author: | Julien L. | | File Size: | 1723 | | Last Modified: | Apr 19 17:20:46 2006 |
| MD5 Checksum: | 30a849f97f6a56d0a48869ba221d3416 |
|
| /// File Name: |
BetaBoard-0.1.txt |
Description:
|
BetaBoard v0.1 suffers from XSS.
| | Author: | Simon MOREL | | Homepage: | http://www.sysdream.com | | File Size: | 829 | | Last Modified: | Apr 19 17:56:15 2006 |
| MD5 Checksum: | 9f0f13d93f393344351d4ab459dca183 |
|
| /// File Name: |
BKForum-4.0.txt |
Description:
|
BK Forum versions less than or equal to 4.0 suffer from a remote SQL injection vulnerability.
| | Author: | n0m3rcy | | File Size: | 434 | | Last Modified: | Apr 27 18:08:23 2006 |
| MD5 Checksum: | 17df56cd68920e25f4832a1f4afb4156 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
