Monthly Archive: July 2005

Macromedia JRun 3.0 and 3.1 allows remote attackers to obtain duplicate active user session IDs and perform actions as other users via a URL request for the web application directory without the trailing ‘/’...

Unknown vulnerability in Allaire JRun 3.1 allows remote attackers to directly access the WEB-INF and META-INF directories and execute arbitrary JavaServer Pages (JSP), a variant of CVE-2000-1050. Date published : 2005-07-14 http://www.securityfocus.com/bid/3662 http://www.macromedia.com/v1/handlers/index.cfm?ID=22287

JRun 3.0 and 3.1 running on JRun Web Server (JWS) and IIS allows remote attackers to read arbitrary JavaServer Pages (JSP) source code via a request URL containing the source filename ending in (1)...

Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server (JWS), and possibly other web servers allows remote attackers to read arbitrary files and directories by appending...

geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user’s effective user id, which could allow local users to gain privileges. Date published : 2005-07-14 http://www.securityfocus.com/bid/3452 http://www.securityfocus.com/advisories/3606

Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitrary code as group bin via a long command line argument. Date published : 2005-07-14 http://www.securityfocus.com/bid/2597 ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.38/CSSA-2001-SCO.38.txt

OpenSSH before 3.0.1 with Kerberos V enabled does not properly authenticate users, which could allow remote attackers to login unchallenged. Date published : 2005-07-14 http://www.securityfocus.com/bid/3560 http://msgs.securepoint.com/cgi-bin/get/bugtraq0111/114.html

Multiple cross-site scripting (XSS) vulnerabilities in magicHTML of SquirrelMail before 1.2.6 allow remote attackers to inject arbitrary web script or HTML via (1) "

Directory traversal vulnerability in page.cgi of WWWeBBB Forum 3.82 beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP request. Date published : 2005-07-14 http://securitytracker.com/id?1003456 http://archives.neohapsis.com/archives/vuln-dev/2002-q1/0369.html

Directory traversal vulnerability in index.php of Portix 0.4.02 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) l and (2) topic parameters. Date published : 2005-07-14 http://www.securityfocus.com/bid/4038 http://securitytracker.com/id?1003430

The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware...

FTGate and FTGate Pro 1.05 lock user mailboxes before authentication succeeds, which allows remote attackers to lock the mailboxes of other users. Date published : 2005-07-14 http://www.securityfocus.com/bid/4429 http://archives.neohapsis.com/archives/bugtraq/2002-04/0053.html

cphost.dll in Microsoft Site Server 3.0 allows remote attackers to cause a denial of service (disk consumption) via an HTTP POST of a file with a long TargetURL parameter, which causes Site Server to...

Floositek FTGate PRO 1.05 allows remote attackers to cause a denial of service (memory and CPU consumption) via a large number of RCPT TO: messages during an SMTP session. Date published : 2005-07-14 http://www.securityfocus.com/bid/4428...