• Skip to main content
  • Skip to footer

Audit My PC - Free Internet Security Audit

Firewall Test and web tools to check your security and privacy

  • Firewall Test
  • Anti Spam
  • Internet Speed Test
  • Sitemap Generator
  • Whats My IP

Cisco IOS MMP Stack Group Bidding Protocol Crafted UDP Packet Remote DoS

Network Security News – Wednesday, January 25, 2006 Events

Cisco IOS MMP Stack Group Bidding Protocol Crafted UDP Packet Remote DoS

Cisco routers contain a flaw that may allow a remote denial of service. The issue is triggered when the device enables Multilink PPP (MLP) via the Stack Group Bidding Protocol (SGBP) and receives a crafted UDP packet sent to port 9900. This may cause the device to free and stop responding to traffic until the watchdog process resets the device.. Read more at osvdb.org/22624

myBloggie login.php username Variable Null Character SQL Injection

myBloggie contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.php script not properly sanitizing user-supplied input beginning with a null character to the 'username' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/19935

Tftpd32 Error Message Remote Format String

A remote format string vulnerability in Tftpd32 can be triggered when the server uses the filename passed in TFTP requests to construct an error message. With a specially crafted filename, an attacker can cause arbitrary code execution, resulting in a loss of integrity.. Read more at osvdb.org/22661

RTIS WebAdmin Login Multiple Field SQL Injection

WebAdmin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login script not properly sanitizing user-supplied input to the 'username' and 'password' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/20327

WebspotBlogging login.php Username Field SQL Injection

WebspotBlogging contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.php script not properly sanitizing user-supplied input to the 'username' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/22670

RCBlog data Directory Direct Access User Account Information Disclosure

RCBlog contains a flaw that may lead to an unauthorized information disclosure including unauthorized password exposure. The issue is triggered by a request in the /config/ or /data/ directories, which may disclose sensitive information including encrypted passwords, resulting in a loss of confidentiality.. Read more at osvdb.org/22679

Reader Interactions

Leave a Reply

Your email address will not be published. Required fields are marked *

Footer

Miscellaneous

  • Free Address Finder
  • HTML Encoder Decoder
  • Website Monitoring
  • Whats My IP Address?
  • Yes or No

Copyright © 2001-2021 Audit My PC .com All Rights Reserved. Our Privacy Policy and TOS

  • About
  • Acronyms
  • DLL Files
  • Ports
  • Computer Security News
  • Email Scams & Spam
  • Internet Safety
  • Free Software