n.runs AG
http://www.nruns.com/ security(at)nruns.com
n.runs-SA-2007.011 29-May-2007
Vendor:Avira
Synopsis: Multiple Vulnerabilities
Introduction:
Uebimiau is an open source webmail interface.
Details:
Uebimiau doesn't correctly handle the $_GET array in error.php. Many
vulnerabilities have been already discovered, but I would like to introduce
few new ones:
1) XSS
2) Three Web Server Direct
netVigilance Security Advisory #24
myEvent version 1.6 Multiple Path Disclosure Vulnerabilities
Description:
myEvent is Dynamic Calendar based Events Management system with admin panel for
adding events, edit and delete built using PHP & mySQL. Display today's
event and future events links on t
netVigilance Security Advisory #23
DGNews version 2.1 XSS Attack Vulnerability
Description:
DGNews is small and simple but powered news publishing. Easy installation, no
programing required. But you can still change whatever you want (for
advanced users). Features: add unlimited categories, auto
netVigilance Security Advisory #22
DGNews version 2.1 SQL Injection Vulnerability
Description:
DGNews is small and simple but powered news publishing. Easy installation, no
programing required. But you can still change whatever you want (for
advanced users). Features: add unlimited categories, a
netVigilance Security Advisory #21
DGNews version 2.1 Path Disclosure Vulnerability
Description:
DGNews is small and simple but powered news publishing. Easy installation, no
programing required. But you can still change whatever you want (for
advanced users). Features: add unlimited categories,
n.runs AG
http://www.nruns.com/ security(at)nruns.com
n.runs-SA-2007.010 28-May-2007
Vendor:Avira
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA 1298-1[EMAIL PROTECTED]
http://www.debian.org/security/ Moritz Muehlenhoff
May 28th, 2007
On Sun, 2007-05-27 at 14:22 +0200, Pavel Kankovsky wrote:
> "All memory" involves any aspect of the system mutable by the software. If
> the microcode is mutable than the memory used to store it is a part of
> "all memory".
Yes. And for typical systems, that also includes all of the mass storage
(