Monthly Archive: February 2005

Buffer overflow in pcdsvgaview in xpcd 2.08 allows local users to execute arbitrary code. Date published : 2005-02-11 http://www.securityfocus.com/bid/12523 http://www.debian.org/security/2005/dsa-676

Buffer overflow in queue.c in a support script for sympa 3.3.3, when running setuid, allows local users to execute arbitrary code. Date published : 2005-02-11 http://www.debian.org/security/2005/dsa-677 http://securitytracker.com/id?1013163

Directory traversal vulnerability in RealArcade 1.2.0.994 allows remote attackers to delete arbitrary files via an RGP file with a .. (dot dot) in the FILENAME tag. Date published : 2005-02-10 http://www.securityfocus.com/bid/12494 http://marc.info/?l=bugtraq&m=110792779115794&w=2

Integer overflow in RealArcade 1.2.0.994 and earlier allows remote attackers to execute arbitrary code via an RGS file with an invalid size string for the GUID and game name, which leads to a buffer...

SafeNet SoftRemote VPN Client stores the VPN password (pre-shared key) in cleartext in memory of the IreIKE.exe process, which allows local users to gain sensitive information if they have access to that process. Date...

viewthread.php in php-fusion 4.x does not check the (1) forum_id or (2) forum_cat parameters, which allows remote attackers to view protected forums via the thread_id parameter. Date published : 2005-02-10 http://www.securityfocus.com/bid/12482 http://marc.info/?l=bugtraq&m=110788267311132&w=2

Directory traversal vulnerability in 602LAN SUITE 2004.0.04.1221 allows remote authenticated users to upload and execute arbitrary files via a .. (dot dot) in the filename parameter. Date published : 2005-02-10 http://marc.info/?l=bugtraq&m=110793103506620&w=2 http://www.security.org.sg/vuln/602lansuite1221.html

SQL injection vulnerability in PerlDesk 1.x allows remote attackers to inject arbitrary SQL commands via the view parameter. Date published : 2005-02-10 http://www.securityfocus.com/bid/12471 http://marc.info/?l=bugtraq&m=110782042532295&w=2

The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain privileges by creating a hard link from the .DS_Store file to an arbitrary file. Date published :...

Apple Safari 1.2.4 does not obey the Content-type field in the HTTP header and renders text as HTML, which allows remote attackers to inject arbitrary web script or HTML and perform cross-site scripting (XSS)...

Integer signedness error in Apple File Service (AFP Server) allows remote attackers to cause a denial of service (application crash) via a negative UAM string length in a FPLoginExt packet. Date published : 2005-02-10...

Buffer overflow in Foxmail 2.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long MAIL FROM command. Date published : 2005-02-10 http://www.securityfocus.com/bid/12454 http://marc.info/?l=bugtraq&m=110763204301080&w=2

Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request. Date published : 2005-02-10 http://www.securityfocus.com/bid/12429 http://marc.info/?l=bugtraq&m=110756234611259&w=2

Postfix 2.1.3, when /proc/net/if_inet6 is not available and permit_mx_backup is enabled in smtpd_recipient_restrictions, allows remote attackers to bypass e-mail restrictions and perform mail relaying by sending mail to an IPv6 hostname. Date published :...