Network Security News – Tuesday, March 22, 2005 Events
libFoundation Defaults write Command NSGlobalDomain.plist File Password Disclosure
libFoundation contains a flaw that may lead to an unauthorized password exposure. The problem is that the 'Defaults write' command sets insecure permissions to the 'NSGlobalDomain.plist' file, which may allow a malicious user to gain access to plain text passwords resulting in a loss of confidentiality.. Read more at osvdb.org/14674
Samsung DSL Modem Multiple Remote Vulnerabilities
Samsung DSL modems are broadband modems for DSL connections. These modems are reported to contain the Boa web server running on an uClinux operating system. Boa is a sing…. Read more at securityfocus.com/bid/12864?ref=rss
Apple Mac OS X Multiple Vulnerabilities
Multiple security vulnerabilities are reported to affect Apple Mac OS X. These issues were disclosed in the referenced vendor advisory.Insecure permissions are reported…. Read more at securityfocus.com/bid/12863?ref=rss
FUN labs Game Engine Multiple Remote Denial of Service Vulnerabilities
Multiple FUN labs games are affected by remote denial of service vulnerabilities. These issues arise because the game engine fails to handle exceptional conditions in a …. Read more at securityfocus.com/bid/12862?ref=rss
Multiple Web Browser International Domain Name Handling Site Property Spoofing Vulnerabilities
Multiple Web browsers are reported prone to vulnerabilities that surround the handling of International Domain Names. When International Domain Names (IDN) are processed …. Read more at securityfocus.com/bid/12461?ref=rss
GNU Mailman Remote Directory Traversal Vulnerability
Mailman is software to help manage email discussion lists, much like Majordomo and SmartList. It is written and maintained by the GNU Project and is available for the Lin…. Read more at securityfocus.com/bid/12504?ref=rss
SecurityForest Exploitation Framework Beta has been released!
Sender: Alon Swartz [loni at securityforest dot com]. Read more at securityfocus.com/archive/1/393861?ref=rss
Re: [VulnWatch] Details of Sybase ASE bugs withheld
Sender: sean [infamous41md at hotpop dot com]. Read more at securityfocus.com/archive/1/393860?ref=rss
Re: [ISN] How To Save The Internet
Sender: Jason Coombs [jasonc at science dot org]. Read more at securityfocus.com/archive/1/393859?ref=rss
iDEFENSE Security Advisory 03.21.05: Mac OS X CF_CHARSET_PATH Buffer Overflow Vulnerability
Sender: iDefense Customer Service [customerservice at idefense dot com]. Read more at securityfocus.com/archive/1/393858?ref=rss
Leave a Reply