On Tue, 14 Dec 2004 10:49:48 +0100, Feher Tamas said:
An apparently brands new D version of the ZAFI worm, with
Merry Christmas! subject and animated fucking smiley icons
on the inside is spreading Postcard.HTML.blahblah.. dot
ZIP/CMD files.
*yawn* Somebody hit rewind on the remote control,
==
SEC-CONSULT Security Advisory PHP - 4.3.9 unserialize function
==
Product:PHP 4.3.9 (Win32/Unix)
Remarks:no other Versions tested but very likely vulnerable
[MaxPatrol] SQL-injection in Ikonboard 3.1.x
Release Date: December 16, 2004
Date Reported:December 2, 2004
Severity: High
Application: Ikonboard 3.1.x
Affects versions: 3.1.0, 3.1.1, 3.1.2 and 3.1.3.
Platform: PHP
I. DESCRIPTION
Input passed to
Whilst I have not seen any (although I haven't looked, sorry) I doubt
there are.
What you can do though, as with any application, is distribute locked
registry keys and configuration files for it. Documentation to do with
using firefox with multiple profiles in mutliuser environments is also
Have you considered using secured network protocols on dedicated
encryption hardware? or is that beyond the price point?
Any cipher algorithm would be theoretically implementable (providing
the length of data is suitable). If you are looking for _real_
performance though then ciphering may not be
-
|PHP Input Validation Vulnerabilities |
-
Date: 12-16-2004
Author: Daniel Fabian
Product: PHP
Vendor: PHP
[ZH2004-18SA] Content-Type spoofing in Mozilla Firefox and Opera could allow
users to bypass security restrictions
12/12/2004
Author: Giovanni Delvecchio
e-mail: [EMAIL PROTECTED]
Browsers tested:
- Firefox 1.0
- Mozilla 1.7.x
- Opera 7.54 (*)
- Konqueror 3.3.1
- Epiphany
-Internet Explorer 6
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hardened-PHP Project
www.hardened-php.net
-= Security Advisory =-
Advisory: Multiple vulnerabilities within PHP 4/5
Release Date: 2004/12/15
Last Modified: 2004/12/15
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hardened-PHP Project
www.hardened-php.net
-= Security Advisory =-
Advisory: Multiple vulnerabilities within PHP 4/5
Release Date: 2004/12/15
Last Modified: 2004/12/15
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandrakelinux Security Update Advisory
___
Package name: kdelibs
Advisory ID:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200412-10
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - -
11 matches
Mail list logo