.:[ packet storm ]:.
                             
the vulnerability safehouse
the vulnerability safehouse

 ///  File Name:glsa-200805-04.txt
Description:
Gentoo Linux Security Advisory GLSA 200805-04 - A vulnerability has been reported in FCKEditor due to the way that file uploads are handled in the file editor/filemanager/upload/php/upload.php when a filename has multiple file extensions (CVE-2008-2041). Another vulnerability exists in the _bad_protocol_once() function in the file phpgwapi/inc/class.kses.inc.php, which allows remote attackers to bypass HTML filtering (CVE-2008-1502). Versions less than 1.4.004 are affected.
Homepage:http://security.gentoo.org
File Size:3609
Related CVE(s):CVE-2008-1502, CVE-2008-2041
Last Modified:May 7 20:38:18 2008
MD5 Checksum:0ef7dd1b359cd5c05af051363a60b6d3

 .:. Back
 

 ///  Last 10 Files
  1. :· browser_insecurity_iceberg_2008.pdf
  2. :· SSRT080039.txt
  3. :· 25C3-CFP.txt
  4. :· SCANIT-2008-003.txt
  5. :· SCANIT-2008-002.txt
  6. :· SCANIT-2008-001.txt
  7. :· usurdat.zip
  8. :· usurdat.txt
  9. :· glsa-200807-02.txt
  10. :· glsa-200807-01.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· SSRT080039.txt
  2. :· SCANIT-2008-003.txt
  3. :· SCANIT-2008-002.txt
  4. :· SCANIT-2008-001.txt
  5. :· usurdat.txt
  6. :· glsa-200807-02.txt
  7. :· glsa-200807-01.txt
  8. :· USN-617-2.txt
  9. :· haloloop2.txt
  10. :· stalker39x.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· usurdat.zip
  2. :· blogparticle-traverse.txt
  3. :· hbr-rfi.txt
  4. :· 0806-exploits.tgz
  5. :· mambongal-sql.txt
  6. :· psys070-sql.txt
  7. :· pivot-disclosure.txt
  8. :· rcm-sql.txt
  9. :· barenuked-admin.txt
  10. :· faname10-xss.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· pktanon-1.2.0-dev.tar.gz
  2. :· unhide20080519.tgz
  3. :· prelude-manager-0.9.13.tar.gz
  4. :· nwldapbf.txt
  5. :· dnsenum1.2.tar.gz
  6. :· grubbrute.txt
  7. :· bsqlbf-v2.1.zip
  8. :· rfdump-1.6.tar.gz
  9. :· tmin-0.04.tar.gz
  10. :· iptables-1.4.1.1.tar.bz2
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· browser_insecurity_iceberg_2008.pdf
  2. :· 25C3-CFP.txt
  3. :· bacom2008-cfp.txt
  4. :· strongswan-4.2.4.tar.gz
  5. :· Reverse.Engineering.AntiCracking.Techniques.pdf
  6. :· An-approach-to-malware-collection-log-visualization.pdf
  7. :· the-extended-html-form-attack-revisited.pdf
  8. :· ISOI-CFP2008.txt
  9. :· DEFE-24-1925.pdf
  10. :· DEFE-24-1924.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice