Audit My PC - Free Internet Security Audit

Firewall Test and web tools to check your security and privacy

IPB Riverdark RSS Syndicator rss.php Multiple Variable XSS

Network Security News – Friday, September 30, 2005 Events

IPB Riverdark RSS Syndicator rss.php Multiple Variable XSS

Riverdark RSS Syndicator contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "forum" or "topic" parameters upon submission to the "rss.php" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/19664

Cisco IOS Authentication Proxy for FTP/Telnet Remote Overflow

A remote overflow exists in Cisco IOS. The Firewall Authentication Proxy for FTP and/or Telnet Sessions fails to perform proper bounds checking resulting in a buffer overflow. With specially crafted user authentication credentials, a remote attacker can cause the device to reload resulting in a loss of availability.. Read more at osvdb.org/19227

FL Studio FLEngine.dll FLP File Handling Overflow

A remote overflow exists in FL Studio. The 'FLEngine.dll' library fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted '.flp' file which contains an overly long path name to a '.mid' or '.wav' file, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/19697

vxFtpSrv USER Command Remote Overflow

A remote overflow exists in vxFtpSrv. The 'USER' command fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long user name, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/19466

vxTftpSrv Long Filename Remote Overflow

A remote overflow exists in vxTftpSrv. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long filename, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/19464

vxWeb GET Request Overflow Remote DoS

A remote overflow exists in vxWeb. The 'coredll.dll' library fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted HTTP GET request, a remote attacker can cause the application to crash resulting in a loss of availability.. Read more at osvdb.org/19465