FarsiNews 2.5 Multiple Vulnerabilities

FarsiNews 2.5 Multiple Vulnerabilities FarsiNews is a News Publishing System That uses Flat files to store it`s Datas... Farsinews is a persian and improved translation of CuteNews, AjFork, CuteHack and CuteSQL... for more information about FarsiNews Publishing System visit http://www.farsinewstea

[eVuln] GuestBookHost Authentication Bypass

New eVuln Advisory: GuestBookHost Authentication Bypass http://evuln.com/vulns/56/summary.html Summary eVuln ID: EV0056 CVE: CVE-2006-0542 Software: GuestBookHost Sowtware's Web Site: http://nukedweb.memebot.com/ Versions: 2005.04.25 Critical Level: Moderate Typ

Secunia Research: Lotus Notes HTML Speed Reader Link Buffer Overflows

== Secunia Research 10/02/2006 - Lotus Notes HTML Speed Reader Link Buffer Overflows - == Table of Contents Affected Software.

runCMS <= 1.3a2 possible remote code execution through the integrated FCKEditor package

--- RunCMS <= 1.3a2 remote code execution software: site: http://www.runcms.org/public/modules/news/ description: "RUNCMS (E-Xoops) is a extensible content management system based on the v1 core of Xoops" --

TSLSA-2006-0006 - multi

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Trustix Secure Linux Security Advisory #2006-0006 Package names: fcron, kernel, unzip Summary: Multiple vulnerabilities Date: 2006-02-10 Affected

[SECURITY] [DSA 967-1] New elog packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 967-1 [EMAIL PROTECTED] http://www.debian.org/security/ Moritz Muehlenhoff February 10th, 2006

Secunia Research: Lotus Notes UUE File Handling Buffer Overflow

== Secunia Research 10/02/2006 - Lotus Notes UUE File Handling Buffer Overflow - == Table of Contents Affected Software.

RE: John the Ripper 1.7; pam_passwdqc 1.0+; tcb 1.0; phpass 0.0

Can a tool as this be as useful when there are rainbow tables out there to utilize for this kind of cracking? Amin Tora, CISSP,CHSP,CCSI Senior Security Consultant ePlus Technology Inc. Mailstop #168 13595 Dulles Technology Drive Herndon, VA 20171 Office: (703) 984-8007 Cell: (703) 675-0738 Fax

LayerOne 2006 - Event Update and Announcement

LayerOne - 2006 April 15-16, 2006 Pasadena Hilton Pasadena, CA http://layerone.info Initial LayerOne speaker line-up Since the opening of our CFP cycle we have been recieving quite a few papers from a wide background of indivduals. Recently we have begun accepting talks for this years event. Ther

Re: mailback script exploit

The problem was addressed on February 6, 2006. The fixed version of the mailback.pl script can be found at: ftp://ftp.skytouch.com/soft/unix/cgi-scripts/mailback.pl.txt Erik C. Thauvin

[ Secuobs - Advisory ] Bluetooth : DoS on Nokia cell phones

[Software affected] Bluetooth Stack on Nokia cell phones [Version] Nokia N70 and maybe other models [Impact] Denial of Service on Bluetooth Stack (maybe more) - Message "System Error" - Phone DoS (shutdown) [Credits] Pierre Betouin - [EMAIL PROTECTED] - Bug found with BSS v0.6 GPL fuzzer (Blu

[eVuln] Unknown Domain Shoutbox multiple XSS & SQL Injection Vulnerabilities

New eVuln Advisory: Unknown Domain Shoutbox multiple XSS & SQL Injection Vulnerabilities http://evuln.com/vulns/55/summary.html Summary eVuln ID: EV0055 CVE: CVE-2006-0605 CVE-2006-0606 Software: Shoutbox Sowtware's Web Site: http://www.unknowndomain.co.uk/ Vers

iDEFENSE Security Advisory 02.10.06: IBM Lotus Domino Server LDAP DoS Vulnerability

IBM Lotus Domino Server LDAP DoS Vulnerability iDEFENSE Security Advisory 02.10.06 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=389 February 10, 2006 I. BACKGROUND IBM Lotus Domino Server software provides messaging, calendaring and scheduling capabilities on a variety of

CPAINT AJAX Library Cross Site Scripting

## # GulfTech Security Research February 9, 2006 ## # Vendor : CPAINT # URL : http://sourceforge.net/projects/cpaint # Version : CPAINT <= 2.0.2 # Risk : Cross Site Scripting

Secunia Research: Lotus Notes TAR Reader File Extraction Buffer Overflow

== Secunia Research 10/02/2006 - Lotus Notes TAR Reader File Extraction Buffer Overflow - == Table of Contents Affected Software...

Re: John the Ripper 1.7; pam_passwdqc 1.0+; tcb 1.0; phpass 0.0

On Thu, Feb 09, 2006 at 03:44:25PM -0500, Amin Tora wrote: > Can a tool as this be as useful when there are rainbow tables out there > to utilize for this kind of cracking? For salted hashes (such as of Unix passwords), definitely yes. In fact, I am not aware of rainbow table implementations for

ProtoVer Sample LDAP testsuite release

Hi, I am pleased to announce the release of ProtoVer Sample LDAP testsuite. The purpose of ProtoVer Sample LDAP testsuite is to evaluate security and stability of LDAP v3 server protocol implementations. The testsuite contains 3665 individual test cases in raw binary format generated with th

Re: CPGNuke Dragonfly 9.0.6.1 remote commands execution through arbitrary local inclusion

Follow thread for current patches http://dragonflycms.org/Forums/viewtopic/p=98034.html#98034

[security bulletin] SSRT051102 rev.1 - HP HTTP Server Running on Windows, Forced Use of Weaker Security Protocol

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00592810 Version: 1 HPSBMA02093 SSRT051102 rev.1 - HP HTTP Server Running on Windows, Forced Use of Weaker Security Protocol NOTICE: The information in this Security Bulletin should be acted up

Secunia Research: IBM Lotus Domino iNotes Client Script Insertion Vulnerabilities

== Secunia Research 10/02/2006 - IBM Lotus Domino iNotes Client Script Insertion Vulnerabilities - == Table of Contents Affected Softw

Secunia Research: Lotus Notes ZIP File Handling Buffer Overflow

== Secunia Research 10/02/2006 - Lotus Notes ZIP File Handling Buffer Overflow - == Table of Contents Affected Software.