Network Security News Monitor - Wednesday, April 12, 2006 Events

Pubcookie MS ISAPI Filter Unspecified XSS

Pubcookie contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified variables upon submission to the MS ISAPI filter. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more.

Pubcookie index.cgi Unspecified XSS

Pubcookie contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified variables upon submission to the index.cgi script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more.

Pubcookie Apache mod_pubcookie Unspecified XSS

Pubcookie mod_pubcookie contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unknown variables. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more.

Shopweezle memo.php itemID Variable SQL Injection

Shopweezle contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the memo.php script not properly sanitizing user-supplied input to the 'itemID' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more.

Shopweezle index.php Multiple Variable SQL Injection

Shopweezle contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'itemgr', 'brandID', and 'album' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more.

Shopweezle login.php itemID Variable SQL Injection

Shopweezle contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.php script not properly sanitizing user-supplied input to the 'itemID' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more.

Shopweezle Malformed SQL Query Path Disclosure

Shopweezle contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker submits requests containing SQL injection attacks to various unspecified scripts, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.. Read more.

OpenVPN LD_PRELOAD Environment Variable Pushing Arbitrary Code Execution

OpenVPN contains a flaw that may allow a malicious user to execute arbitrary code. The issue is caused due to OpenVPN clients allowing the server to transmit environment variables including LD_PRELOAD to client-side shell scripts via 'setenv' configuration directives. It is possible that the flaw may allow arbitrary code execution by placing and loading a file in a known location resulting in a loss of integrity.. Read more.

Cisco ONS 15000 Series CTC Launcher java.policy Permission Weakness Arbitrary Code Execution

Cisco CTC contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered because the Java Applet installed by CTC on a client workstation installs with a 'grant all' permission set for 'http://*/fs/LAUNCHER.jar'. This allows malicious applets from websites to execute arbitrary Java code with all permissions if they are installed in a location that fits that pattern. This flaw may lead to a loss of integrity.. Read more.

Gallery Unspecified JavaScript Injection

Gallery contains a flaw that allows a remote JavaScript injection attack. This flaw exists because the application does not validate certain unspecified user input. This could allow a user to execute arbitrary scripting code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more.

Vuln: Microsoft Internet Explorer Double Byte Character Memory Corruption Vulnerability

Microsoft Internet Explorer Double Byte Character Memory Corruption Vulnerability. Read more.

Vuln: Linux Kernel 64-Bit SMP Routing_ioctl() Local Denial of Service Vulnerability

Linux Kernel 64-Bit SMP Routing_ioctl() Local Denial of Service Vulnerability. Read more.

Vuln: Linux Kernel SYSFS_Write_File Local Integer Overflow Vulnerability

Linux Kernel SYSFS_Write_File Local Integer Overflow Vulnerability

. Read more.

Vuln: Linux Kernel Multiple Local Vulnerabilities

Linux Kernel Multiple Local Vulnerabilities. Read more.

Microsoft Internet Explorer DBCS Remote Memory Corruption Vulnerability

Microsoft Internet Explorer DBCS Remote Memory Corruption Vulnerability. Read more.