[ISN] Secunia Weekly Summary

From: InfoSec News (isn@private)
Date: Fri Oct 24 2003 - 00:33:39 PDT

  • Next message: InfoSec News: "[ISN] Security Dampens Microsoft Deals" 

    ===========================================================================

                    The Secunia Weekly Advisory Summary
                          2003-10-16 - 2003-10-23

                         This week : 30 advisories

===========================================================================

7 New Microsoft Security Bulletins

Microsoft has released no less than 7 security bulletins for their
products.

Make sure that your system gets the appropriate patches installed! Read
more about the vulnerabilities and patches in the following Secunia
Advisories:

SA10010
http://secunia.com/SA10010/

SA10011
http://secunia.com/SA10011/

SA10012
http://secunia.com/SA10012/

SA10013
http://secunia.com/SA10013/

SA10014
http://secunia.com/SA10014/

SA10015
http://secunia.com/SA10015/

SA10016
http://secunia.com/SA10016/


Secunia - Stay Secure

===========================================================================

============
 2003-10-22
============

Web Wiz Forums Cross-Site Scripting Vulnerabilities
SA10050 - Less critical
http://www.secunia.com/advisories/10050/

 -- 

eMule Long Password Denial of Service Vulnerability
SA10049 - Less critical
http://www.secunia.com/advisories/10049/

 -- 

My Photo Gallery Unspecified Vulnerability
SA10048 - Moderately critical
http://www.secunia.com/advisories/10048/

 -- 

My Classifieds SQL SQL Injection Vulnerability
SA10044 - Moderately critical
http://www.secunia.com/advisories/10044/

 -- 

PSCS VPOP3 Email Server Cross Site Scripting Vulnerability
SA10042 - Less critical
http://www.secunia.com/advisories/10042/


============
 2003-10-21
============

GoldScripts Goldlink User Authentication Bypass Vulnerability
SA10047 - Moderately critical
http://www.secunia.com/advisories/10047/

 -- 

phpGroupWare Unspecified Vulnerabilities
SA10046 - Moderately critical
http://www.secunia.com/advisories/10046/

 -- 

Immunix update for fetchmail
SA10045 - Moderately critical
http://www.secunia.com/advisories/10045/

 -- 

Oracle LD_PRELOAD Privilege Escalation
SA10043 - Less critical
http://www.secunia.com/advisories/10043/

 -- 

Opera HREF Buffer Management Error
SA10041 - Not critical
http://www.secunia.com/advisories/10041/

 -- 

PHP-Nuke Path Disclosure Vulnerability
SA10040 - Not critical
http://www.secunia.com/advisories/10040/

 -- 

OpenServer Insecure tmp Files Vulnerability
SA10039 - Less critical
http://www.secunia.com/advisories/10039/

 -- 

Mercur Mailserver AUTH Command Denial of Service Vulnerability
SA10038 - Moderately critical
http://www.secunia.com/advisories/10038/

 -- 

Bajie Http Web Server Cross-Site Scripting Vulnerabilities
SA10023 - Less critical
http://www.secunia.com/advisories/10023/


============
 2003-10-20
============

Conectiva update for ircd
SA10037 - Not critical
http://www.secunia.com/advisories/10037/

 -- 

Conectiva update for gdm
SA10036 - Not critical
http://www.secunia.com/advisories/10036/

 -- 

OpenPKG update for ircd
SA10035 - Not critical
http://www.secunia.com/advisories/10035/

 -- 

cpCommerce Arbitrary File Inclusion Vulnerability
SA10034 - Highly critical
http://www.secunia.com/advisories/10034/

 -- 

Vivísimo Content Engine Search Parameter Cross-Site Scripting
SA10033 - Less critical
http://www.secunia.com/advisories/10033/

 -- 

RealOne Insecure Temporary Files
SA10032 - Less critical
http://www.secunia.com/advisories/10032/

 -- 

Caucho Resin Sample Scripts Cross Site Scripting Vulnerabilities
SA10031 - Not critical
http://www.secunia.com/advisories/10031/

 -- 

Dansie Shopping Cart Reveals Installation Path
SA10030 - Not critical
http://www.secunia.com/advisories/10030/

 -- 

Geeklog Password Request SQL Injection Vulnerability
SA10029 - Moderately critical
http://www.secunia.com/advisories/10029/

 -- 

byteHoard Directory Traversal Vulnerability
SA10028 - Less critical
http://www.secunia.com/advisories/10028/

 -- 

Mandrake update for gdm
SA10027 - Not critical
http://www.secunia.com/advisories/10027/

 -- 

Mandrake update for fetchmail
SA10026 - Less critical
http://www.secunia.com/advisories/10026/

 -- 

fetchmail Denial of Service Vulnerability
SA10025 - Less critical
http://www.secunia.com/advisories/10025/

 -- 

GDM Local Denial of Service Vulnerabilities
SA10024 - Not critical
http://www.secunia.com/advisories/10024/


============
 2003-10-17
============

Novell iChain Multiple Vulnerabilities
SA10022 - Highly critical
http://www.secunia.com/advisories/10022/

 -- 

AOL Instant Messenger File Transfer Error Message Buffer Overflow
Vulnerability
SA10021 - Moderately critical
http://www.secunia.com/advisories/10021/


===========================================================================

Secunia recommends that you verify all advisories you receive, by clicking
the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Contact details:
Web	: http://www.secunia.com/
E-mail	: support@private
Tel	: +44 (0) 20 7016 2693
Fax	: +44 (0) 20 7637 0419

===========================================================================



-
ISN is currently hosted by Attrition.org

To unsubscribe email majordomo@private with 'unsubscribe isn'
in the BODY of the mail.

    This archive was generated by hypermail 2b30 : Fri Oct 24 2003 - 03:12:39 PDT