Network Security News – Sunday, March 27, 2005 Events
phpBB username Handling SQL Injection
phpBB contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the hightlight variable in the viewtopic.php module is not verified properly and will allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/11962
phpBB Cash_Mod admin_cash.php Arbitrary Command Execution
phpBB Cash_Mod contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to admin_cash.php not properly sanitizing user input supplied to the phpbb_root_path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/11928
Cisco ACNS Cache Process Malformed TCP Connection DoS
Cisco ACNS contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker establishes a connection to the device with malformed TCP packets, and will result in loss of availability for the device.. Read more at osvdb.org/14120
Cisco ACNS Malformed IP Packet DoS
Cisco ACNS contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends a specially crafted packet(s) to the ACNS device, and will result in loss of availability for the device.. Read more at osvdb.org/14121
PHPOpenChat ENGLISH_poc.php Remote File Inclusion
PHPOpenChat contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to ENGLISH_poc.php not properly sanitizing user input supplied to the poc_root_path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/14809
PHPOpenChat poc.php Remote File Inclusion
PHPOpenChat contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to poc.php not properly sanitizing user input supplied to the phpbb_root_path, poc_root_path, and sourcedir variables. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/14808
PHPOpenChat poc_loginform.php Remote File Inclusion
PHPOpenChat contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to poc_loginform.php not properly sanitizing user input supplied to the phpbb_root_path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/14807
paFileDB admin.php Installation Path Disclosure
paFileDB contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when requesting the 'admin.php' script directly, which will disclose the installation path resulting in a loss of confidentiality.. Read more at osvdb.org/14977
paFileDB email.php Installation Path Disclosure
paFileDB contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when requesting the 'email.php' script directly, which will disclose the installation path resulting in a loss of confidentiality.. Read more at osvdb.org/14976
paFileDB file.php Installation Path Disclosure
paFileDB contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when requesting the 'file.php' script directly, which will disclose the installation path resulting in a loss of confidentiality.. Read more at osvdb.org/14975
MagicScripts E-Store Kit-2 PayPal Edition Remote File Include Vulnerability
MagicScripts E-Store Kit-2 PayPal Edition is a PHP script for using PayPal to accept online payments.MagicScripts E-Store Kit-2 PayPal Edition is prone to a remote file…. Read more at securityfocus.com/bid/12910?ref=rss
MagicScripts E-Store Kit-2 PayPal Edition Cross-Site Scripting Vulnerability
MagicScripts E-Store Kit-2 PayPal Edition is a PHP script for using PayPal to accept online payments.E-Store Kit-2 PayPal Edition is prone to a cross-site scripting vul…. Read more at securityfocus.com/bid/12909?ref=rss
Nuke Bookmarks Marks.php SQL Injection Vulnerability
Nuke Bookmarks is a module for PHP-Nuke that allows users to store their bookmarks on the server.Nuke Bookmarks is prone to an SQL injection vulnerability.This issue …. Read more at securityfocus.com/bid/12908?ref=rss
Nuke Bookmarks Multple Cross-Site Scripting Vulnerabilities
Nuke Bookmarks is a module for PHP-Nuke that allows users to store their bookmarks on the server.Nuke Bookmarks is prone to multiple cross-site scripting vulnerabilitie…. Read more at securityfocus.com/bid/12907?ref=rss
Nuke Bookmarks Marks.php Path Disclosure Vulnerability
Nuke Bookmarks is a module for PHP-Nuke that allows users to store their bookmarks on the server.Nuke Bookmarks is prone to a path disclosure issue when invalid data is…. Read more at securityfocus.com/bid/12906?ref=rss
Apple QuickTime PictureViewer Buffer Overflow Vulnerability
QuickTime Player is the media player distributed by Apple for QuickTime as well as other media files.Reportedly, the Quicktime PictureViewer is prone to a buffer overf…. Read more at securityfocus.com/bid/12905?ref=rss
QuickTime malformed JPEG buffer overflow
Sender: [liquid at cyberspace dot org]. Read more at securityfocus.com/archive/1/394309?ref=rss
Re: smail remote and local root holes (no, really ;-)
Sender: sean [infamous41md at hotpop dot com]. Read more at securityfocus.com/archive/1/394318?ref=rss
ZH2005-03SA — multiple vulnerabilities in NukeBookmarks .6
Sender: Gerardo Astharot Di Giacomo [astharot at zone-h dot org]. Read more at securityfocus.com/archive/1/394307?ref=rss
AS/400 LDAP user accounts disclosure
Sender: Shalom Carmel [shalom at venera dot com]. Read more at securityfocus.com/archive/1/394308?ref=rss
Leave a Reply