===========================================================================
The Secunia Weekly Advisory Summary
2003-07-03 - 2003-07-10
This week : 50 advisories
===========================================================================
Are you confident that your environment is secure?
Really Secure?
or have you missed one patch!
Spend 2 minutes and get your security level documented via The Secunia
Vulnerability Scanner.
https://testzone.secunia.com/online_vulnerability_scanner/
===========================================================================
============
2003-07-10
============
TinyWEB Denial of Service Vulnerability
Less critical
http://www.secunia.com/advisories/9226/
--
Macromedia ColdFusion MX / JRun Source Code Disclosure Vulnerability
Moderately critical
http://www.secunia.com/advisories/9222/
============
2003-07-09
============
Windows SMB Buffer Overflow Vulnerability
Moderately critical
http://www.secunia.com/advisories/9225/
--
Windows 2000 Utility Manager Privilege Escalation Vulnerability
Less critical
http://www.secunia.com/advisories/9224/
--
Cisco Catalyst Switch Non-Standard TCP Flag Combination DoS Vulnerability
Less critical
http://www.secunia.com/advisories/9223/
--
Canon GP300 Denial of Service Vulnerability
Less critical
http://www.secunia.com/advisories/9221/
--
Conectiva update for php4
Less critical
http://www.secunia.com/advisories/9220/
--
Apache HTTP Server Three Security Issues
Less critical
http://www.secunia.com/advisories/9219/
--
Red Hat update for Netscape
Moderately critical
http://www.secunia.com/advisories/9218/
--
Apache Type-Map Handler Denial of Service Vulnerability
Not critical
http://www.secunia.com/advisories/9217/
--
Conectiva update for IMP
Moderately critical
http://www.secunia.com/advisories/9216/
--
Debian update for unzip
Less critical
http://www.secunia.com/advisories/9215/
--
Debian skk/ddskk Insecure Temporary File Creation Vulnerability
Less critical
http://www.secunia.com/advisories/9214/
--
XBlockOut "-display" Privilege Escalation Vulnerability
Not critical
http://www.secunia.com/advisories/9213/
--
Conectiva update for OpenLDAP
Moderately critical
http://www.secunia.com/advisories/9203/
--
MyServer CGI Script Denial of Service Vulnerabilities
Moderately critical
http://www.secunia.com/advisories/9197/
============
2003-07-08
============
ezTrans Directory Traversal Vulnerability
Moderately critical
http://www.secunia.com/advisories/9210/
--
Sun Linux update for Xpdf
Moderately critical
http://www.secunia.com/advisories/9209/
--
Sun Linux update for KDE
Moderately critical
http://www.secunia.com/advisories/9208/
--
Sun Linux update for XFree86
Moderately critical
http://www.secunia.com/advisories/9207/
--
Sun Linux update for ypserv
Less critical
http://www.secunia.com/advisories/9206/
--
Sun Linux update for Samba
Highly critical
http://www.secunia.com/advisories/9205/
--
OpenPKG update for PHP
Moderately critical
http://www.secunia.com/advisories/9204/
--
Mandrake update for unzip
Less critical
http://www.secunia.com/advisories/9202/
--
Debian Mozart Unsafe Mailcap Configuration Vulnerability
Moderately critical
http://www.secunia.com/advisories/9201/
--
Debian liece Insecure Temporary File Creation Vulnerability
Less critical
http://www.secunia.com/advisories/9200/
--
VP-ASP Shopping Cart SQL Injection Vulnerability
Highly critical
http://www.secunia.com/advisories/9199/
--
IglooFTP PRO FTP Server Response Buffer Overflow Vulnerability
Moderately critical
http://www.secunia.com/advisories/9196/
--
ProductCart SQL Injection Vulnerabilities
Highly critical
http://www.secunia.com/advisories/9193/
--
Greymatter PHP Injection Vulnerability
Highly critical
http://www.secunia.com/advisories/9189/
============
2003-07-07
============
cPanel Log File Script Code Injection Vulnerability
Moderately critical
http://www.secunia.com/advisories/9198/
--
ProductCart Database Content Disclosure Security Issue
Highly critical
http://www.secunia.com/advisories/9195/
--
Microsoft URLScan Server Header Information Disclosure Vulnerability
Not critical
http://www.secunia.com/advisories/9194/
--
Novell eDirectory Unspecified iMonitor Vulnerability
Moderately critical
http://www.secunia.com/advisories/9192/
--
CCBill whereami.cgi Arbitrary Command Execution Vulnerability
Highly critical
http://www.secunia.com/advisories/9191/
--
Axis Print Server Web Interface Denial of Service Vulnerability
Less critical
http://www.secunia.com/advisories/9190/
--
Conectiva update for xpdf
Moderately critical
http://www.secunia.com/advisories/9188/
--
Conectiva update for ml85p
Less critical
http://www.secunia.com/advisories/9187/
--
Debian x-face-el Insecure Temporary File Creation Vulnerability
Less critical
http://www.secunia.com/advisories/9186/
--
Debian semi/wemi Insecure Temporary File Creation Vulnerability
Less critical
http://www.secunia.com/advisories/9185/
--
Roger Wilco Nickname Buffer Overflow and Partial Packet DoS
Highly critical
http://www.secunia.com/advisories/9177/
============
2003-07-05
============
Mac OS X Screensaver Password Bypass Vulnerability
Moderately critical
http://www.secunia.com/advisories/9184/
============
2003-07-04
============
HP SeeView Server Gateway Privilege Escalation Vulnerability
Less critical
http://www.secunia.com/advisories/9183/
--
ezbounce "sessions" Command Format String Vulnerability
Moderately critical
http://www.secunia.com/advisories/9182/
--
Novell iChain two vulnerabilities
Less critical
http://www.secunia.com/advisories/9181/
--
PinkNet Web Server Directory Traversal Vulnerability
Moderately critical
http://www.secunia.com/advisories/9180/
--
Immunix update for unzip
Less critical
http://www.secunia.com/advisories/9179/
--
Conectiva update for unzip
Less critical
http://www.secunia.com/advisories/9178/
--
Microsoft Commerce Server Insecure Registry Permissions
Less critical
http://www.secunia.com/advisories/9176/
============
2003-07-03
============
Windows 2000 ShellExecute API Buffer Overflow Vulnerability
Moderately critical
http://www.secunia.com/advisories/9175/
===========================================================================
Secunia recommends that you verify all advisories you receive, by clicking
the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportat_private
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
===========================================================================
-
ISN is currently hosted by Attrition.org
To unsubscribe email majordomoat_private with 'unsubscribe isn'
in the BODY of the mail.
This archive was generated by hypermail 2b30 : Fri Jul 11 2003 - 22:29:02 PDT