[Full-disclosure] -advisory- % =Thu Mar 16 02:47:00 EST 2006= % Directory Transversal in ISC BIND

From: sq5bpf@xxxxxxxxxxxx
Date: Thu, 16 Mar 2006 07:47:06 +0000 (GMT)

-advisory- % =Thu Mar 16 02:47:00 EST 2006= % Directory Transversal in ISC BIND

8======D~~~~~~~~
[+] DESCRIPTION
Remote exploitation of a directory traversal vulnerability in ISC BIND could allow attackers to overwrite or view arbitrary files with user-supplied contents.

8======D~~~~~~~~
[+] HISTORY
2-20-2006 [+] Vendor Notification.
1-8-2006 [+] Vendor Reply.
3-16-2006 [+] Public Disclosure.
8======D~~~~~~~~
[+] VENDOR RESPONSE
ISC BIND was presented no information.
8======D~~~~~~~~
[+] CVE INFORMATION
The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-731420 to this issue

8======D~~~~~~~~
CONTACT
Jacek Lipkowski sq5bpf@xxxxxxxxxxxx

GSAE CCE CEH CSFA SSP-CNSA SSP-MPA GWAS SSCP

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Advisory # [Thu Mar 16 02:46:47 EST 2006] # Off-by-one in Microsoft Access
Next by Date: [Full-disclosure] -ADVISORY- # +Thu Mar 16 02:47:06 EST 2006+ # Buffer Overflow in Microsoft Excel
Previous by thread: [Full-disclosure] Advisory # [Thu Mar 16 02:46:47 EST 2006] # Off-by-one in Microsoft Access
Next by thread: [Full-disclosure] -ADVISORY- # +Thu Mar 16 02:47:06 EST 2006+ # Buffer Overflow in Microsoft Excel
Index(es):
- Date
- Thread

Relevant Pages

[Full-disclosure] [Advisory] * x Thu Mar 16 14:30:03 EST 2006 x * Directory Transversal in Tripw
... Remote exploitation of a directory traversal vulnerability in Tripwire could allow attackers to overwrite or view arbitrary files with user-supplied contents. ... History ... 2/26/2006 - Vendor Notification. ... CVE Information ...
(Full-Disclosure)
[Full-disclosure] Advisory * +Thu Mar 16 02:45:55 EST 2006+ * Directory Transversal in VMware
... There was no identified background. ... Remote exploitation of a directory traversal vulnerability in VMware could allow attackers to overwrite or view arbitrary files with user-supplied contents. ... There had been no identified workarounds regarding the issue indentified. ... CVE Information ...
(Full-Disclosure)
[Full-disclosure] Advisory * =Thu Mar 16 14:30:35 EST 2006= * Directory Transversal in ISC INN
... Remote exploitation of a directory traversal vulnerability in ISC INN could allow attackers to overwrite or view arbitrary files with user-supplied contents. ... CVE INFORMATION ...
(Full-Disclosure)
[Full-disclosure] [Advisory] $ =Thu Mar 16 13:30:03 EST 2006= $ Directory Transversal in Microso
... Remote exploitation of a directory traversal vulnerability in Microsoft PowerPoint could allow attackers to overwrite or view arbitrary files with user-supplied contents. ... Microsoft PowerPoint had offered no identified information about this issue. ... CVE INFORMATION ...
(Full-Disclosure)