[Full-Disclosure] SecurityLab.Ru Report: The Top 10 Most Critical Vulnerabilities in May 2004

From: Alexander (pk95_at_yandex.ru)
Date: 05/30/04

  • Next message: Gadi Evron: "[Full-Disclosure] request for help dealing with a netware outbreak" 
    To: <full-disclosure@lists.netsys.com>
Date: Sun, 30 May 2004 11:59:17 +0400

    SecurityLab.Ru Report: The Top 10 <http://www.securitylab.ru/45523.html>
    Most Critical Vulnerabilities in May 2004

    1. Exim Header Syntax Checking Remote Stack Buffer Overrun
    Vulnerability, Bugtraq ID 10291, <http://www.securitylab.ru/45107.html>
    http://www.securitylab.ru/45107.html.
    2. Multiple Vulnerabilities in Apple Mac OS X, Bugtraq ID 10271, 10268,
    10270. http://www.securitylab.ru/45032.html.
    3. Check Point VPN-1 ISAKMP Remote Buffer Overflow Vulnerability,
    Bugtraq ID 10273, <http://www.securitylab.ru/45048.html>
    http://www.securitylab.ru/45048.html.
    4. Apache Mod_SSL SSL_Util_UUEncode_Binary Stack Buffer Overflow
    Vulnerability, Bugtraq ID 10355, <http://www.securitylab.ru/45504.html>
    http://www.securitylab.ru/45504.html.
    5. Microsoft Windows HSC DVD Driver Upgrade Code Execution
    Vulnerability, Bugtraq ID 10321, <http://www.securitylab.ru/45165.html>
    http://www.securitylab.ru/45165.html.
    6. CVS Malformed Entry Modified and Unchanged Flag Insertion Heap
    Overflow Vulnerability, Bugtraq ID 10384,
    <http://www.securitylab.ru/45305.html> http://www.securitylab.ru/45305.html.
    7. DeleGate SSLway Filter Remote Stack Based Buffer Overflow
    Vulnerability, Bugtraq ID 10295, <http://www.securitylab.ru/45108.html>
    http://www.securitylab.ru/45108.html.
    8. WildTangent WebDriver Remote Filename Buffer Overflow Vulnerability,
    Bugtraq ID 10421, <http://www.securitylab.ru/45505.html>
    http://www.securitylab.ru/45505.html
    9. Subversion Date Parsing Function Buffer Overflow Vulnerability,
    Bugtraq ID 10386, <http://www.securitylab.ru/45306.html>
    http://www.securitylab.ru/45306.html
    10. MailEnable Mail Server HTTPMail Remote Heap Overflow Vulnerability,
    Bugtraq ID 10312, <http://www.securitylab.ru/45156.html>
    http://www.securitylab.ru/45156.html

     

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: Gadi Evron: "[Full-Disclosure] request for help dealing with a netware outbreak"

    Relevant Pages

    • Re: [Full-disclosure] Call for moderation
      ... did I'd be looking at bugtraq right now. ... > Full-Disclosure - We believe in it. ... Hosted and sponsored by Secunia - http://secunia.com/ ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ...
      (Full-Disclosure)
    • Re: [Full-disclosure] Please STOP this THREAD!
      ... Or this mailinglist will end like bugtraq some years ago. ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
      (Full-Disclosure)
    • [Full-Disclosure] Re: [k-otik.com] The French Security List (En Fran çais)
      ... K-optik use "Bugtraq France" as title. ... Full-Disclosure - We believe in it. ... Charter: http://lists.netsys.com/full-disclosure-charter.html ... Check & compose your email via SMS on your Telstra or Vodafone mobile. ...
      (Full-Disclosure)
    • Re: [Full-Disclosure] Ancient Trivia: +++ath0
      ... On Wed, 2004-03-17 at 21:17, Paul Szabo wrote: ... there was a discussion on BugTraq at the end of ... Full-Disclosure - We believe in it. ... Charter: http://lists.netsys.com/full-disclosure-charter.html ...
      (Full-Disclosure)
    • Re: [Full-Disclosure] Backdoor not recognized by Kaspersky
      ... One thing that I have not seen discussed in this thread is tarpitting spammers. ... This has been discussed before on BugTraq: ... Full-Disclosure - We believe in it. ... Charter: http://lists.netsys.com/full-disclosure-charter.html ...
      (Full-Disclosure)