Microsoft Security Advisory MS02-15 - A cumulative patch for all versions of IE - 5.01, 5.5 and IE 6 has been released which eliminates two new serious vulnerabilities. The vulnerabilities include a bug in the handling of object tags that allows attackers to invoke an commands on the user's machine and a bug in the zone determination function that allows a script embedded in a cookie to be run in the Local Computer zone. Microsoft FAQ on this issue available here.
51dbaac63d58cad3cee2fc7322e91939f598b35a02807aeb0b638fb34e9fc725OpenSSH 2.9p* channel_lookup() off by one exploit. Tested against SuSE Linux 7.2 and FreeBSD 4.5-STABLE with OpenSSH 2.9p1 and p2. Based on OpenSSH-2.9p2 source.
22f4b5d77a8fba07b61ee6032eb4ea27d2d0c10191a7560bcd18f267581e391e
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed