Register | Forget Password | Login
Search :
SecurityReason

News

Search

SecurityAlert

About SecurityAlert

ExploitAlert

SecurityReason Research
WLB

WLB Database

Send to WLB

About WLB
RSS

News

SecurityAlert

World Laboratory of Bugtraq

ExploitAlert

Apache

PHP
Corporate

Contact

About us
Services

SecurePHP
Note

If you have found a vulnerability, please send to our SecurityAlert Database :
secalert()securityreason()com

Also if you have new ( 0-day ) exploit, please send to our ExploitAlert Archive :
exploit()securityreason()com
Archive of News : SecurityReason
Back   01 02   Next   All Pages 2
   
  29.06.2008 - PHP 5.2.6 Exploit (safe_mode bypass)
  17.06.2008 - PHP 5.2.6 safe_mode bypass
  25.03.2008 - *BSD libc (strfmon) Multiple vulnerabilities
  20.03.2008 - PHP5 : *printf() Integer Overflow
  09.01.2008 - Apache2 CSRF, XSS, Memory Corruption and Denial of Service Vulnerability
  25.11.2007 - PHP 5.2.5 "mail.force_extra_parameters" issue patched
  04.09.2007 - PHP 5.2.4 Released... unpatched
  27.06.2007 - PHP 5.2.3 PHP 4.4.7, htaccess safemode and open_basedir Bypass
  25.01.2007 - PHP 5.2.0 safe_mode bypass (by Writing Mode)
  08.12.2006 - PHP 5.2.0 session.save_path safe_mode and open_basedir bypass
  09.09.2006 - Critical php_admin* bypass by ini_restore()
  26.06.2006 - error_log() Safe Mode Bypass PHP 5.1.4 and 4.4.2
  11.06.2006 - tempnam() Bypass unique file name PHP 5.1.4
  27.05.2006 - cURL Safe Mode Bypass PHP 4.4.2 and 5.1.4
  18.05.2006 - Trust unworthy variables in PHP
  06.05.2006 - phpBB 2.0.20 Full Path Disclosure and SQL Errors
  09.04.2006 - New advisorys about vulnerabilities in PHP4, PHP5
  19.02.2006 - New advisory about vulnerabilities in PostNuke 0.761
  16.02.2006 - Critical SQL Injection PHPNuke <= 7.8 - Your_Account module
  03.02.2006 - phpBB 2.0.19 Cross Site Request Forgeries and XSS
Alert

*BSD libc (strfmon) Multiple vulnerabilities

high- 2008-03-25

Maksymilian Arciemowicz discovered a Integer Overflow vulnerability in the libc library "strfmon()" function.A vulnerability could allow an attacker who successfully exploits this vulnerability to take control of the affected *BSD systems.
Apache rss

» Apache-SSL memory
   disclosure

» Apache mod_negotiation
   Xss and Http Response
   Splitting

» Apache (mod_status)
   Refresh Header - Open
   Redirector (XSS)

» Apache (mod_proxy_ftp)
   Undefined Charset UTF-7
   XSS Vulnerability
PHP rss

» PHP 5.2.6 chdir(),ftok()
   (standard ext) safe_mode
   bypass

» PHP 5.2.6 posix_access()
   (posix ext) safe_mode
   bypass

» PHP 5.2.5 and prior :
   *printf() functions
   Integer Overflow

» PHP 5.2.5 cURL safe_mode
   bypass
Copyright © SecurityReason. All Rights Reserved.