Monthly Archive: August 2005

Buffer overflow in the rdb_query function for Denora IRC Stats 1.0 might allow attackers to execute arbitrary code. Date published : 2005-08-07 http://www.securityfocus.com/bid/14471 http://denora.nomadirc.net/index.php

Eval injection vulnerability in Karrigell before 2.1.8 allows remote attackers to execute arbitrary Python code via modified arguments to a Karrigell services (.ks) script, which can reference functions from libraries that are used by...

The StateToOptions function in msfweb in Metasploit Framework 2.4 and earlier, when running with the -D option (defanged mode), allows attackers to modify temporary environment variables before the "_Defanged" environment option is checked when...

Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string. Date published : 2005-08-05 http://www.securityfocus.com/bid/3715 http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0204.html

The timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0 does not properly terminate certain strings with a null, which allows remote attackers to cause a denial of service. Date published : 2005-08-05 http://archives.neohapsis.com/archives/linux/caldera/2001-q4/0020.html

Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors. Date published : 2005-08-05 http://archives.neohapsis.com/archives/linux/caldera/2001-q4/0014.html

Unknown vulnerability in CDE in Caldera OpenUnix 7.1.0, 7.1.1, and 8.0 allows an xterm session to gain privileges when the session is reused. Date published : 2005-08-05 http://www.securityfocus.com/bid/3646 http://archives.neohapsis.com/archives/linux/caldera/2001-q4/0017.html

Buffer overflow in cron in Caldera UnixWare 7 allows local users to execute arbitrary code via a command line argument. Date published : 2005-08-05 http://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00404.html

Apple Personal Web Sharing (PWS) 1.1, 1.5, and 1.5.5, when Web Sharing authentication is enabled, allows remote attackers to cause a denial of service via a long password, possibly due to a buffer overflow....

Buffer overflow in (1) HttpSaveCVP.dll and (2) HttpSaveCSP.dll in Trend Micro InterScan VirusWall 3.5.1 allows remote attackers to execute arbitrary code. Date published : 2005-08-05 http://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00408.html

Buffer overflow in smtpscan.dll for Trend Micro InterScan VirusWall 3.51 for Windows NT has allows remote attackers to execute arbitrary code via a certain configuration parameter. Date published : 2005-08-05 http://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00407.html

Pointsec before 1.2 for PalmOS stores a user’s PIN number in memory in plaintext, which allows a local attacker who steals an unlocked Palm to retrieve the PIN by dumping memory. Date published :...

SurfControl SuperScout Email filter for SMTP 3.5.1 allows remote attackers to cause a denial of service (crash) via a long SMTP (1) HELO or (2) RCPT TO command, possibly due to a buffer overflow....

Multiple buffer overflows in QNX RTOS 4.25 may allow attackers to execute arbitrary code via long filename arguments to (1) Watcom or (2) int10. Date published : 2005-08-05 http://www.securityfocus.com/bid/4905 http://www.securityfocus.com/bid/4906