Techno Dreams Multiple Product login.asp userid Variable SQL Injection

Network Security News – Sunday, October 30, 2005 Events

Techno Dreams Multiple Product login.asp userid Variable SQL Injection

Annoucement Script, Guestbook Script, Mailing List Script, and WebDirectory Script contain a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.asp script not properly sanitizing user-supplied input to the userid variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/20331

Novell ZENworks Patch Management reports/default.asp Multiple Variable SQL Injection

Novell ZENworks Patch Management contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the reports/default.asp script not properly sanitizing user-supplied input to the "Direction" variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/20363

Novell ZENworks Patch Management computers/default.asp Direction Variable SQL Injection

Novell ZENworks Patch Management contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the "reports/default.asp" script not properly sanitizing user-supplied input to the "SearchText", "StatusFilter", and "computerFilter" variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/20362

GNUMP3d Server Traversal Arbitrary File Access

GNUMP3d contains a flaw that allows a remote attacker to access arbitrary files outside of the web path. The issue is due to the program not properly sanitizing user input, specifically traversal style attacks (../../).. Read more at osvdb.org/20360

GNUMP3d Error Page XSS

GNUMP3d contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate URLs before returning them in a 404 error page. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/20359

AdMentor admin.asp Multiple Field SQL Injection

AdMentor contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'admin.asp' script not properly sanitizing user-supplied input to the 'Login' and 'Password' fields. This may allow a remote attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/728

Adobe Acrobat/Reader for Mac OS X Crafted PDF Arbitrary Javascript Execution

Adobe Acrobat contains a flaw that may allow a remote attacker to execute arbitrary code. The issue is triggered when malicious JavaScript is embedded in PDF files, which may allow a remote attacker to launch arbitrary executables resulting in a loss of integrity.. Read more at osvdb.org/17605

Adobe Acrobat/Reader Malformed PDF Negative Count Value DoS

Adobe Acrobat contains a flaw that may allow a remote denial of service. The issue is triggered when a PDF file contains a negative count value in the root page node, which may allow a remote attacker to crash the application resulting in a loss of availability.. Read more at osvdb.org/14819

Abyss Web Server Malformed GET Header Remote DoS

Abyss Web Server contains a flaw that may allow a remote denial of service. The issue is triggered when handling incomplete GET headers. With a malformed GET request containing an empty 'Connection:' and 'Range:' field, a remote attacker can cause the server to crash resulting in a loss of availability.. Read more at osvdb.org/2226

Abuse-SDL Multiple Unspecified Command Line Overflows

A local overflow exists in Abuse-SDL. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request, a malicious user can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/14609

Vuln: Subdreamer Multiple Remote SQL Injection Vulnerabilities

Subdreamer Multiple Remote SQL Injection Vulnerabilities. Read more at securityfocus.com/bid/15238

Vuln: Search Enhanced Module for PHP-Nuke HTML Injection Vulnerability

Search Enhanced Module for PHP-Nuke HTML Injection Vulnerability. Read more at securityfocus.com/bid/15218

Vuln: PHP Advanced Transfer Manager Remote Unauthorized Access Vulnerability

PHP Advanced Transfer Manager Remote Unauthorized Access Vulnerability. Read more at securityfocus.com/bid/15237

Vuln: Hyper Estraier Remote Information Disclosure Vulnerability

Hyper Estraier Remote Information Disclosure Vulnerability. Read more at securityfocus.com/bid/15236

uplod phpshell in PHP Advanced Transfer Manager

uplod phpshell in PHP Advanced Transfer Manager. Read more at securityfocus.com/archive/1/415172

Mirabilis ICQ 2003a Buffer Overflow Download Shellcoded Exploit

Mirabilis ICQ 2003a Buffer Overflow Download Shellcoded Exploit. Read more at securityfocus.com/archive/1/415171

Re: Remote File Inclusion in forum PunBB

Re: Remote File Inclusion in forum PunBB. Read more at securityfocus.com/archive/1/415154

Trend Micro’s Response to the Magic Byte Bug

Trend Micro’s Response to the Magic Byte Bug. Read more at securityfocus.com/archive/1/415173