Threat Level: green Handler on Duty: Remco Verhoef

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2006-06-07 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

phpBB 2.0.21

Published: 2006-06-07
Last Updated: 2006-06-08 01:00:43 UTC
by Swa Frantzen (Version: 1)
0 comment(s)
phpBB version 2.0.21 was released.
There are some minor security improvements in the code, check the announcement for more details. Most of the code changes apear to be more functionality oriented than security oriented.

Considering the level of attention phpBB gets from the bad guys out there, it's best not to hesitate for long and upgrade really soon.

--
Swa Frantzen - Section 66
Keywords:
0 comment(s)

WinGate HTTP proxy vulnerability, remote DoS & Code Execution

Published: 2006-06-07
Last Updated: 2006-06-07 17:22:40 UTC
by Patrick Nolan (Version: 1)
0 comment(s)
There was a vuln/exploit announcement on FD today for QBik Wingate, the exploit says it's for "QBik Wingate version 6.1.1.1077 remote exploit for Win2k SP4 (german)".

Information is available here;

ISS rates this High Risk
WinGate HTTP proxy buffer overflow

Secunia - WinGate WWW Proxy Server Buffer Overflow Vulnerability

I do not see patch information available at this time.

Keywords:
0 comment(s)
Diary Archives