Internet Security Systems
Date Reported: 05/22/2004
Brief Description: Liferay Enterprise Portal message cross-site
scripting
Risk Factor: Medium
Attack Type: Network Based
Platforms: Any operating system Any version, Liferay
Enterprise Portal Any version
Vulnerability: liferay-message-xss
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16232
Date Reported: 05/23/2004
Brief Description: PimenGest2 rowLatex.inc.php view database password
Risk Factor: Medium
Attack Type: Network Based
Platforms: Debian Linux Any version
Vulnerability: pimengest2-rowlatex-view-password
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16234
Date Reported: 05/22/2004
Brief Description: xpcd xpcd-svga pcd_open buffer overflow
Risk Factor: High
Attack Type: Host Based
Platforms: Debian Linux 3.0, xpcd Any version
Vulnerability: xpcd-svga-pcdopen-bo
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16236
Date Reported: 05/24/2004
Brief Description: NETGEAR RP114 long URL filter bypass
Risk Factor: Medium
Attack Type: Network Based
Platforms: NETGEAR RP114 any version
Vulnerability: netgearrp114-long-url-filter-bypass
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16238
Date Reported: 05/23/2004
Brief Description: cPanel mod_phpsuexec allows command execution
Risk Factor: High
Attack Type: Host Based
Platforms: cPanel any version, Linux Any version, Unix Any
version
Vulnerability: cpanel-modphpsuexec-execute-commands
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16239
Date Reported: 05/25/2004
Brief Description: e107 user.php cross-site scripting
Risk Factor: Medium
Attack Type: Network Based
Platforms: Any operating system Any version, e107 Any version
Vulnerability: e107-user-xss
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16241
Brief Description: F-Secure Anti-Virus bypass Sober.D and Sober.G
detection
Risk Factor: Medium
Attack Type: Network Based
Platforms: Any operating system Any version, F-Secure Anti-
Virus 5.41, F-Secure Anti-Virus 5.42, F-Secure
Anti-Virus Client Security 5.50 and 5.52
Vulnerability: fsecure-sober-detection-bypass
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16243
Date Reported: 05/21/2004
Brief Description: UCD-SNMPD command buffer overflow
Risk Factor: High
Attack Type: Host Based
Platforms: Linux Any version, UCD-SNMPD 4.2.6 and earlier,
Unix Any version
Vulnerability: ucd-snmpd-command-bo
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16245
Date Reported: 05/24/2004
Brief Description: BigIP TCP SYN cookie denial of service
Risk Factor: Low
Attack Type: Network Based
Platforms: BigIP 4.5 through 4.5.10, BSD Any version
Vulnerability: bigip-syn-cookie-dos
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16253
Date Reported: 05/26/2004
Brief Description: FreeBSD msync allows elevated privileges
Risk Factor: High
Attack Type: Host Based
Platforms: FreeBSD 4.10-RELEASE, FreeBSD 4.10-STABLE, FreeBSD
4.8-RELEASE-p22, FreeBSD 4.9-RELEASE-p9, FreeBSD
5.2.1-RELEASE-p8, FreeBSD RELENG_4, FreeBSD
RELENG_4_10, FreeBSD RELENG_4_8, FreeBSD
RELENG_4_9, FreeBSD RELENG_5_2
Vulnerability: freebsd-msync-gain-privileges
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16254
Date Reported: 05/26/2004
Brief Description: GNU Mailman obtain password
Risk Factor: Medium
Attack Type: Network Based
Platforms: Conectiva Linux 8.0, Conectiva Linux 9.0, GNU
Mailman prior to 2.1.5
Vulnerability: mailman-obtain-password
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16256
Date Reported: 05/26/2004
Brief Description: 3Com OfficeConnect Telnet escape sequence buffer
overflow
Risk Factor: Low
Attack Type: Network Based
Platforms: 3Com OfficeConnect 812 ADSL Router 1.1.9
Vulnerability: 3com-officeconnect-telnet-bo
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16257
Date Reported: 05/26/2004
Brief Description: F-Secure Anti-Virus LHA archive buffer overflow
Risk Factor: Low
Attack Type: Network Based
Platforms: Any operating system Any version, F-Secure Anti-
Virus 2004 and earlier, F-Secure Anti-Virus Client
Security 5.52 and earlier, F-Secure Anti-Virus for
Linux 4.52 and earlier, F-Secure Anti-Virus for
MIMEsweeper 5.42 and earlier, F-Secure Anti-Virus
for MS Exchange 6.21 and earlier, F-Secure Anti-
Virus for Samba Servers 4.60, F-Secure Anti-Virus
for Windows Servers 5.42 and earlier, F-Secure
Anti-Virus for Workstations 5.42 and earlier, F-
Secure for Firewalls 6.20 and earlier, F-Secure
Internet Gatekeeper 6.32 and earlier, F-Secure
Internet Security 2004 and earlier
Vulnerability: fsecure-lha-archive-bo
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16258
Date Reported: 05/26/2004
Brief Description: Isoqlog parcer.c allows elevated privileges
Risk Factor: High
Attack Type: Host Based
Platforms: Isoqlog 2.2-BETA, Linux Any version, Unix Any
version
Vulnerability: isoqlog-parcer-gain-privileges
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16262
Date Reported: 05/27/2004
Brief Description: xdm open socket allows access
Risk Factor: High
Attack Type: Network Based
Platforms: Linux Any version, Unix Any version, xdm Any
version
Vulnerability: xdm-socket-gain-access
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16264
Date Reported: 05/27/2004
Brief Description: 3com OfficeConnect allows elevated access
Risk Factor: High
Attack Type: Network Based
Platforms: 3Com OfficeConnect 812 ADSL Router Any version
Vulnerability: 3com-officeconnect-gain-access
X-Force URL:
http://xforce.iss.net/xforce/xfdb/16267