Buffer overflow in the Microsoft Color Management Module for Windows allows remote attackers to execute arbitrary code via an image with crafted ICC profile format tags. Date published : 2005-07-12 http://www.securityfocus.com/bid/14214 http://www.us-cert.gov/cas/techalerts/TA05-193A.html
Stack-based buffer overflow in Microsoft Word 2000 and Word 2002, and Microsoft Works Suites 2000 through 2004, might allow remote attackers to execute arbitrary code via a .doc file with long font information. Date...
apt-setup in Debian GNU/Linux installs the apt.conf file with insecure permissions, which allows local users to obtain sensitive information such as passwords. Date published : 2005-07-11 http://www.securityfocus.com/bid/14173 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305142
Buffer overflow in the mms_interp_header function in mms.c in MMS Ripper before 0.6.4 might allow remote attackers to execute arbitrary code via a file with more than 20 streams. Date published : 2005-07-11 http://nbenoit.tuxfamily.org/projects/mmsrip/ChangeLog...
Backup Manager 0.5.8a creates an archive repository with world readable and writable permissions, which allows attackers to modify or read the repository. Date published : 2005-07-11 http://www.sukria.net/packages/backup-manager/ http://secunia.com/advisories/15989
Backup Manager 0.5.8a creates temporary files insecurely, which allows local users to conduct unauthorized file operations when a user is burning a CDR. Date published : 2005-07-11 http://www.sukria.net/packages/backup-manager/ http://secunia.com/advisories/15989
Stack-based buffer overflow in Internet Download Manager 4.05 allows remote attackers to execute arbitrary code via a long URL. Date published : 2005-07-11 http://www.ihsteam.com/download/ihsexpl/dlm.c http://securitytracker.com/id?1014404
Capturix ScanShare 1.06 build 50 stores sensitive information such as the password in cleartext in capturixss_cfg.ini, which is readable by local users. Date published : 2005-07-11 http://securitytracker.com/id?1014409 http://secunia.com/advisories/15995
PrivaShare 1.1b allows remote attackers to cause a denial of service (crash) via a malformed message. Date published : 2005-07-11 http://k.domaindlx.com/shellcore/advisories.asp?bug_report=display&infamous_group=66 http://securitytracker.com/id?1014412
Cross-site scripting (XSS) vulnerability in store/login.asp in CartWIZ allows remote attackers to inject arbitrary web script or HTML via the message parameter. Date published : 2005-07-11 http://digitalparadox.org/viewadvisories.ah?view=42 http://securitytracker.com/id?1014418
Multiple SQL injection vulnerabilities in CartWIZ allow remote attackers to modify SQL statements via the (1) idProduct parameter to tellAFriend.asp, (2) sortType parameter to viewSupportTickets.asp, or the id parameter to (3) updateCreditCards.asp or (4)...
The ReadLog function in kaiseki.cgi in pngren allows remote attackers to execute arbitrary commands via shell metacharacters in the query string. Date published : 2005-07-11 http://www.securityfocus.com/bid/14182 http://seclists.org/lists/bugtraq/2005/Jul/0097.html
Cross-site scripting (XSS) vulnerability in Computer Associates (CA) eTrust SiteMinder 5.5, when the "CSSChecking" parameter is set to "NO," allows remote attackers to inject arbitrary web script or HTML via the (1) PASSWORD or...
login.php in phpWishlist before 0.1.15 allows remote attackers to bypass authentication via a direct request to admin.php. Date published : 2005-07-11 http://unix.freshmeat.net/projects/phpwishlist/?branch_id=53897&release_id=200925 http://securitytracker.com/id?1014432