Network Security News – Wednesday, March 16, 2005 Events
OpenPGP Cipher Feedback Mode Chosen-Ciphertext Partial Plaintext Retrieval Vulnerability
The OpenPGP Message Format Standard provides information on the message-exchange packet formats used by OpenPGP to provide encryption, decryption, signing, and key manage…. Read more at securityfocus.com/bid/12529?ref=rss
Cyrus SASL Multiple Remote And Local Vulnerabilities
SASL is the Simple Authentication and Security Layer, a method for adding authentication support to connection-based protocols.Cyrus SASL is affected by multiple critic…. Read more at securityfocus.com/bid/11347?ref=rss
Symantec Gateway Security Unspecified Remote DNS Cache Poisoning Vulnerability
Symantec Gateway Security is a device providing firewall and intrusion detection functionality. Gateway Security products contain a DNS proxy daemon that can act as a DN…. Read more at securityfocus.com/bid/12818?ref=rss
PHPOpenChat Multiple Remote File Include Vulnerabilities
PHPOpenChat is a PHP based chat server.PHPOpenChat is prone to multiple remote file include vulnerabilities. These issues are due to a failure of the application to pr…. Read more at securityfocus.com/bid/12817?ref=rss
Linux Kernel Netfilter Memory Leak Local Denial of Service Vulnerability
The Netfilter project maintains the packet filter component of the Linux kernel.Linux Kernel is reported prone to a local denial of service vulnerability due to a memor…. Read more at securityfocus.com/bid/12816?ref=rss
ImageMagick Remote EXIF Parsing Buffer Overflow Vulnerability
ImageMagick is an image manipulation program. It is available for a variety of platforms including Microsoft Windows, Unix and Unix variant operating systems. ImageMagic…. Read more at securityfocus.com/bid/11548?ref=rss
Re: Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
Sender: Thierry Zoller [Thierry at sniff-em dot com]. Read more at securityfocus.com/archive/1/393299?ref=rss
Re: Thoughts and a possible solution on homograph attacks
Sender: [Valdis dot Kletnieks at vt dot edu]. Read more at securityfocus.com/archive/1/393300?ref=rss
Re: Unfiltered escape sequences in filenames contained in ZIP archives wouldn't be escaped on displaying or logging, and can also lead to bypass AV scanning
Sender: Dr dot Peter Bieringer [pbieringer at aerasec dot de]. Read more at securityfocus.com/archive/1/393298?ref=rss
RE: SAV9 Functionality Hole – misses virus files
Sender: Dewyngaert Brian Contr ANG/C4 [Brian dot Dewyngaert at ang dot af dot mil]. Read more at securityfocus.com/archive/1/393296?ref=rss
Leave a Reply