CVE-2005-3319 PHP mod_php apache2handler SAPI Crafted .htaccess DoS

Timeline : Vulnerability discovered by Eric Romang Public release of the vulnerability the 2005-10-24 Exploit provided the 2005-10-24 PoC provided by : Eric Romang Reference(s) : CVE-2005-3319 GLSA 200511-08 OSVDB-20491 Affected version(s) : PHP versions 4.0.x to 4.4.0 and versions … Continue reading →

CVE-2005-2995 Bacula Insecure Temporary Files Creations

Timeline : Vulnerabilities discovered by Eric Romang the 2005-09-06 Vendor notified the 2005-09-19 Coordinated vulnerabilities disclosure the 2005-09-20 Reference(s) : CVE-2005-2995 OSVDB-19514 Affected version(s) : bacula equal or under version 1.36.3 Description : Bacula contains flaws … Continue reading →

CVE-2005-2809 SILC Server and Toolkit silcd.c Symlink Arbitrary File Overwrite

Timeline : Vulnerability discovered by Eric Romang the 2005-05-31 Vendor notified the 2005-06-15 Vulnerability disclosure the 2005-09-01 Reference(s) : CVE-2005-2809 OSVDB-19121 Affected version(s) : silc-server before or equal to 1.0 silc-toolkit before or equal to 0.9.12-r3 Description … Continue reading →

CVE-2005-1917 Kpopper popper-send.sh Symlink Arbitrary File Manipulation

Timeline : Vulnerability discovered by Eric Romang the 2005-06-13 Vendor notified the 2005-06-15 Vulnerability disclosure the 2005-07-04 Reference(s) : CVE-2005-1917 OSVDB-17725 Affected version(s) : kpopper before or equal to 1.0 Description : kpopper 1.0 and earlier allows local users … Continue reading →

CVE-2005-1916 ekg linki.py Add-on Symlink Arbitrary File Manipulation

Timeline : Vulnerability discovered by Eric Romang the 2005-05-27 Vendor notified the 2005-06-06 Vulnerability disclosure the 2005-07-04 Reference(s) : CVE-2005-1916 OSVDB-17722 Affected version(s) : keg before or equal to 2005-06-05 22:03 Description : Eksperymentalny Klient Gadu-Gadu … Continue reading →