[ISN] Secunia Weekly Summary

From: InfoSec News (isnat_private)
Date: Fri Jun 13 2003 - 01:34:09 PDT

  • Next message: InfoSec News: "RE: [ISN] This computer security column is banned in Canada"

    ===========================================================================
    
                        The Secunia Weekly Advisory Summary
                              2003-06-05 - 2003-06-12
    
                             This week : 57 advisories
    
    ===========================================================================
    
    Secunia would like to offer you a 30 day free trial of our Vulnerability
    Tracking Service.
    
    View this page for more information:
    http://www.secunia.com/free_trial/
    
    ===========================================================================
    
    ============
     2003-06-12
    ============
    
    Enceladus Server Suite Multiple Vulnerabilities
    Less critical
    http://www.secunia.com/advisories/9003/
    
     -- 
    
    Debian update for slashem
    Less critical
    http://www.secunia.com/advisories/9002/
    
    
    ============
     2003-06-11
    ============
    
    Mailtraq Multiple Vulnerabilities
    Moderately critical
    http://www.secunia.com/advisories/9001/
    
     -- 
    
    Spyke's PHP Board Multiple Vulnerabilities
    Moderately critical
    http://www.secunia.com/advisories/9000/
    
     -- 
    
    FTP Voyager Long Filename Buffer Overflow
    Less critical
    http://www.secunia.com/advisories/8999/
    
     -- 
    
    SmartFTP PWD Reply and Long File List Vulnerabilities
    Less critical
    http://www.secunia.com/advisories/8998/
    
     -- 
    
    LeapFTP PASV Reply Buffer Overflow Vulnerability
    Less critical
    http://www.secunia.com/advisories/8997/
    
     -- 
    
    SGI IRIX PIOCSWATCH Denial of Service Vulnerability
    Not critical
    http://www.secunia.com/advisories/8996/
    
     -- 
    
    Immunix update for tetex
    Less critical
    http://www.secunia.com/advisories/8995/
    
     -- 
    
    SGI IRIX Broadcast Address Checking Vulnerability
    Less critical
    http://www.secunia.com/advisories/8994/
    
     -- 
    
    Mandrake update for Ghostscript
    Less critical
    http://www.secunia.com/advisories/8993/
    
     -- 
    
    Nuca WebServer Directory Traversal Vulnerability
    Moderately critical
    http://www.secunia.com/advisories/8992/
    
     -- 
    
    Linux Kernel 2.0 Information Leak
    Moderately critical
    http://www.secunia.com/advisories/8991/
    
     -- 
    
    Debian update for gzip
    Less critical
    http://www.secunia.com/advisories/8990/
    
     -- 
    
    Windows 2003 Server NIC Driver Information Disclosure Vulnerability
    Less critical
    http://www.secunia.com/advisories/8987/
    
     -- 
    
    FlashFXP Multiple Vulnerabilities
    Less critical
    http://www.secunia.com/advisories/8977/
    
    
    ============
     2003-06-10
    ============
    
    Debian update for kernel (PowerPC)
    Moderately critical
    http://www.secunia.com/advisories/8989/
    
     -- 
    
    Debian update for kernel (i386)
    Moderately critical
    http://www.secunia.com/advisories/8988/
    
     -- 
    
    Debian update for Eterm
    Less critical
    http://www.secunia.com/advisories/8986/
    
     -- 
    
    SGI IRIX update for WebSetup / WebMin
    Highly critical
    http://www.secunia.com/advisories/8985/
    
     -- 
    
    Speak Freely Multiple Vulnerabilities
    Highly critical
    http://www.secunia.com/advisories/8984/
    
     -- 
    
    zblast Privilege Escalation Vulnerability
    Not critical
    http://www.secunia.com/advisories/8983/
    
     -- 
    
    mnoGoSearch "ul" and "tmplt" Buffer Overflow Vulnerabilities
    Highly critical
    http://www.secunia.com/advisories/8982/
    
     -- 
    
    Red Hat update for kon2
    Less critical
    http://www.secunia.com/advisories/8981/
    
     -- 
    
    Red Hat update for tcpdump
    Less critical
    http://www.secunia.com/advisories/8980/
    
     -- 
    
    MaxWebPortal Multiple Vulnerabilities
    Moderately critical
    http://www.secunia.com/advisories/8979/
    
     -- 
    
    Mac OS X File Sharing Insecurity
    Less critical
    http://www.secunia.com/advisories/8978/
    
    
    ============
     2003-06-09
    ============
    
    HP-UX "uucp" and "uusub" Unspecified Buffer Overflow Vulnerabilities
    Less critical
    http://www.secunia.com/advisories/8976/
    
     -- 
    
    Debian update for xaos
    Less critical
    http://www.secunia.com/advisories/8975/
    
     -- 
    
    OpenSSH IP address restriction bypass
    Not critical
    http://www.secunia.com/advisories/8974/
    
     -- 
    
    Novell iChain Authentication Buffer Overflow Vulnerability
    Highly critical
    http://www.secunia.com/advisories/8973/
    
     -- 
    
    Novell Netware HTTPSTK Denial of Service Vulnerability
    Moderately critical
    http://www.secunia.com/advisories/8972/
    
     -- 
    
    HP-UX Unspecified Denial of Service Vulnerability
    Less critical
    http://www.secunia.com/advisories/8971/
    
     -- 
    
    HP-UX Unspecified CDE Buffer Overflow Vulnerabilities
    Moderately critical
    http://www.secunia.com/advisories/8970/
    
     -- 
    
    Gentoo update for atftp
    Moderately critical
    http://www.secunia.com/advisories/8969/
    
     -- 
    
    atftp filename Buffer Overflow
    Moderately critical
    http://www.secunia.com/advisories/8968/
    
     -- 
    
    SuSE update for CUPS
    Less critical
    http://www.secunia.com/advisories/8967/
    
     -- 
    
    Mercur Mail Server IMAP Buffer Overflow
    Highly critical
    http://www.secunia.com/advisories/8966/
    
     -- 
    
    SuSE update for pptpd
    Highly critical
    http://www.secunia.com/advisories/8965/
    
     -- 
    
    ImageFolio Directory Traversal and Default Password
    Less critical
    http://www.secunia.com/advisories/8964/
    
    
    ============
     2003-06-06
    ============
    
    Synkron.web Cross Site Scripting
    Less critical
    http://www.secunia.com/advisories/8963/
    
     -- 
    
    Immunix update for wget
    Less critical
    http://www.secunia.com/advisories/8962/
    
     -- 
    
    Immunix update for file
    Less critical
    http://www.secunia.com/advisories/8961/
    
     -- 
    
    Monkey httpd Cross Site Scripting
    Less critical
    http://www.secunia.com/advisories/8960/
    
     -- 
    
    Immunix update for LPRng
    Not critical
    http://www.secunia.com/advisories/8959/
    
     -- 
    
    Sun Java Security Model Violation
    Moderately critical
    http://www.secunia.com/advisories/8958/
    
     -- 
    
    Sun Solaris "utmp_update" Privilege Escalation Vulnerability
    Less critical
    http://www.secunia.com/advisories/8957/
    
     -- 
    
    Red Hat update for hanterm
    Moderately critical
    http://www.secunia.com/advisories/8956/
    
     -- 
    
    Internet Explorer Exposes Sensitive Information
    Moderately critical
    http://www.secunia.com/advisories/8955/
    
     -- 
    
    Wordpress Multiple Vulnerabilities
    Highly critical
    http://www.secunia.com/advisories/8954/
    
     -- 
    
    Mandrake update for kon2
    Less critical
    http://www.secunia.com/advisories/8953/
    
     -- 
    
    NewsPHP Cross Site Scripting
    Less critical
    http://www.secunia.com/advisories/8952/
    
    
    ============
     2003-06-05
    ============
    
    Red Hat update for KDE
    Moderately critical
    http://www.secunia.com/advisories/8951/
    
     -- 
    
    AdSubtract Unauthorised Proxy Access
    Less critical
    http://www.secunia.com/advisories/8950/
    
     -- 
    
    Internet Explorer "Classic" Folder View Cross Site Scripting
    Less critical
    http://www.secunia.com/advisories/8949/
    
     -- 
    
    MegaBrowser Multiple Vulnerabilities
    Moderately critical
    http://www.secunia.com/advisories/8948/
    
     -- 
    
    PHP Session ID Cross Site Scripting
    Less critical
    http://www.secunia.com/advisories/8947/
    
    
    ===========================================================================
    
    Secunia recommends that you verify all advisories you receive, by clicking
    the link.
    Secunia NEVER sends attached files with advisories.
    Secunia does not advise people to install third party patches, only use
    those supplied by the vendor.
    
    Contact details:
    Web	: http://www.secunia.com/
    E-mail	: supportat_private
    Tel	: +44 (0) 20 7016 2693
    Fax	: +44 (0) 20 7637 0419
    
    ===========================================================================
    
    
    
    -
    ISN is currently hosted by Attrition.org
    
    To unsubscribe email majordomoat_private with 'unsubscribe isn'
    in the BODY of the mail.
    



    This archive was generated by hypermail 2b30 : Fri Jun 13 2003 - 03:50:53 PDT