HNS Exploit Update: 13.01.2003 - #15

Started by Cobra, January 13, 2003, 01:54:16 PM

Previous topic - Next topic
BRS WebWeaver FTP Server Multiple Vulnerabilities
>> http://www.net-security.org/vuln.php?id=2357


Efficient Networks 5861 DSL Router Denial of Service Vulnerability
>> http://www.net-security.org/vuln.php?id=2356


WebIntelligence Session Hijacking Vulnerability
>> http://www.net-security.org/vuln.php?id=2355


IMP 2.x SQL Injection Vulnerabilities
>> http://www.net-security.org/vuln.php?id=2354


a.shopKart Web Shopping Cart Insuficient Input Checking Vulnerability
>> http://www.net-security.org/vuln.php?id=2353


Bookmar4U and Active PHP Bookmarks Vulnerabilities
>> http://www.net-security.org/vuln.php?id=2352


Directory Traversal Vulnerability in Communigate Pro 4.0b to 4.0.2
>> http://www.net-security.org/vuln.php?id=2351


Longshine WLAN Access-Point LCS-883R Vulnerability
>> http://www.net-security.org/vuln.php?id=2350


S8Forum Remote Command Execution Vulnerability
>> http://www.net-security.org/vuln.php?id=2349


OpenTopic Cross Site Scripting Vulnerability
>> http://www.net-security.org/vuln.php?id=2348


Nettelephone Dialer Security Vulnerability
>> http://www.net-security.org/vuln.php?id=2347


Bypassing Integrity Protection Driver
>> http://www.net-security.org/vuln.php?id=2346


Solaris 2.x /usr/sbin/wall Vulnerability
>> http://www.net-security.org/vuln.php?id=2345


S-plus /tmp Vulnerability
>> http://www.net-security.org/vuln.php?id=2344


CuteFTP Buffer Overflow Vulnerability
>> http://www.net-security.org/vuln.php?id=2343


EServ v.2.97 Remote Denial of Service Vulnerability
>> http://www.net-security.org/vuln.php?id=2342


WinAmp v.3.0 Buffer Overflow Vulnerability
>> http://www.net-security.org/vuln.php?id=2341


AN HTTPd v.1.41e Multiple Vulnerabilities
>> http://www.net-security.org/vuln.php?id=2340


libmcrypt Multiple Vulnerabilities
>> http://www.net-security.org/vuln.php?id=2339


OpenTopic Cross Site Scripting Vulnerability
>> http://www.net-security.org/vuln.php?id=2338


iCal 3.7 Remote Denial of Service Vulnerability
>> http://www.net-security.org/vuln.php?id=2337
I am not suffering with insanity... I am loving every minute of it.

It really is scary.. all these holes and vulnerabilities and flaws.. I mean look at all these Cobby posted.. and then think of all the ones he didn't post...

and yet, a lot of people seem to think that security is not an issue, that there isn't that much to be worried about. Yeah fucking right.

Again, I bring up BO from the cDc.. anyone remember Microsoft's response ?

Pretty much said that it is not even an issue.. at all. Perfect example of all these blind people. There was an article about the Microsoft security team (or whatever) that I hope to post eventually. The guy.. he believes he is so good, and he's done so much.. but yet, look at all the holes now, not to mention back then.

Word of advice to companies: open your eys and quit denying thing for your reputation. What would you rather lose your reputation for.. having a security hole or lying, hiding, cheating your customers ? I would think that the former would be your answer. So brighten up.

As far as end users: just don't always jump to conclusions or believe everything the said company says..

Admins need to do that too..
there are good admins (like here for instance).. but some horrible ones..

and never ever ever rely on security through obscurity. That is a very big mistake. Of course, we wouldn't but many other entities do...

Met
"My Terminal is my Soul"

SMF spam blocked by CleanTalk