Network Security News – Sunday, July 17, 2005 Events
phpAdsNew Unspecified Login Authentication Bypass
phpAdsNew contains a flaw related to the login that may allow an attacker to bypass authentication. No further details have been provided.. Read more at osvdb.org/17816
phpAdsNew Upload Feature Arbitrary File Access
phpAdsNew contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the upload feature is misused to download files from the server, which will disclose sensitive information resulting in a loss of confidentiality.. Read more at osvdb.org/17815
phpAdsNew Unspecified Arbitrary Code Execution
phpAdsNew contains a flaw that may allow an attacker to excute arbitrary code on the server. No further details have been provided.. Read more at osvdb.org/17814
SquirrelMail options_identities.php Variable Overwrite Privilege Escalation
SquirrelMail contains a flaw that may allow a malicious user to escalate privileges. The issue is triggered by overwriting the previously set $_POST variable, which may allow the attacker to read or modify the preferences of arbitrary users.. Read more at osvdb.org/17874
Leave a Reply