31.01.2008 Detailed

OpenBSD BGP daemon crossite scripting   Web-interface crossite scripting.   xdg-utils shell characters vulnerability   Shell characteres vulnerability on invoking external application by URI.   Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

30.01.2008 Detailed

Netkit ftpd FTP server DoS   uninitialized pointer reference.

LSrunasE and Supercrypt cryptogoraphic vulnerabilities   Cryptography is implemented in insecure way.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

29.01.2008 Detailed

6! Firebird SQL server integer overflow   Integer overflow on XDR parsing leads to memory corruption.   Move Networks Quantum Streaming Player ActiveX buffer overflow   QMPUpgrade.dll buffer overflow   yarssr RSS reader shell characters vulnerability

ngIRCd IRC daemon DoS

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Tripwire Enterprise/Server crossite scripting   Web management interface crossite scripting.

27.01.2008 Detailed

pulseuadio privilege escalation   setuid() result is not checked.   PatchLink Update Unix client symbolic links vulnerability   Symbolic links vulnerability on temporayr files creation.   icu / libicu multiple security vulnerabilities   Multiple vulnerabilities on regular expressions execution.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Boundless Source: crossite scripting.

GE Fanuc Cimplicity buffer overflow

25.01.2008 Detailed

6! IBM Tivoli Provisioning Manager for OS Deployment buffer overflow   Buffer overflow on oversized HTTP request.   Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Relay: SQL injection and crossite scripting.   IBM AIX pioout utility buffer overflow

24.01.2008 Detailed

6! Cisco Application Velocity System default account   Password for default account is not generated during installation.   ImageShack Toolbar ActiveX unauthorized access   Insecure method allows local files reading access.   HTTP File Serve multiple security vulnerabilities   Crossite scripting, information disclosure, unauthroized files creation, log manipulation, user name spoofing.

Cisco PIX / Adaptive Security Appliance DoS   Crash on TTL processing if decrement-ttl enabled.

PHP safe mode bypass vulneraebility   It's possible to access files behind sandbox directory with cURL module.

SDL_Image library buffer overflow   Buffer overflow on GIF parsing.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Relay: SQL injection and crossite scripting.

Apache multiple security vulnerabilities updated since 12.01.2008   mod_proxy_balancer ñrossite scripting, crossite requests forgery, memory corruption, DoS, mod_proxy_ftp and mod_status, mod_negotiation - crossite scripting.

HP-UX ARPA transport DoS updated since 15.02.2007

Mozilla Firefox chrome: URL directory traversal   It's possible to access local script files

22.01.2008 Detailed

Belkin F5D9230-4 wireless router unauthorized access   It's possible to access few web administration pages without password.   Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.   scponly privilege escalation   Code execution with Subversion, Unison, rsync.

21.01.2008 Detailed

7! Axigen AXImilter format string vulnerability   CNHO header buffer overflow.   Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Relay: crossite scripting   AliceGate 2 ADSL WiFI routers unauthorized access   It's possible to access few administration pages, including WiFi encryption configuration, without authentication.

20.01.2008 Detailed

7! SocksCAP buffer overflow   Buffer overflow on oversized host name. 6! Citrix Presentation Server buffer overflow   IMA service(TCP/2512, TCP/2513) heap buffer overflow. 6! BitDefender Update Server directory traversal   HTTP server directory traversal with /../

CORE FORCE firewall buffer overflow   Buffer overflow on IOCTLs and SSDT-hooked functions processing.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Dell Remote Access Card DoS updated since 16.08.2007   nmap scan causes SSH service to crash.

OKI C5510MFP printers unauthroized access   Web interface password is checked on client site.

17.01.2008 Detailed

7! Cisco Call Manager / Cisco Unified Communications Manager buffer overflow   Buffer overflow in CTL Provider Service (TCP/2444). 7! Apple QuickTime multiple security vulnerabilities updated since 16.01.2008   Buffer overflow on parsing Macintosh resources embedded into QuickTime movie. Quicktime Image IDSC atom memory corruption. 6! BitTorrent / uTorrent buffer overflow   Buffer overflow on peer information displaying.

6! Linux kernel filesystem DoS   Local user can corrupt filesystem.

boost library DoS   Insufficient regular expression validation.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

apt-listchanges privilege escalation   Library is loaded by relative path.

16.01.2008 Detailed

6! Linux kernel IPv6 DoS   Uninitialized memory reference. 6! TIBCO SmartSockets RTserver multiple security vulnerabilities   Buffer overflows, arrays overflows, pointers manipulation. 6! FreeBSD libc / libbind memory corruption   Off-by-one heap overflow in inet_network() .

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) updated since 16.01.2008   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. RiSearch PHP: crossite scripting

FreeBSD pty hijacking   'script' users openpty in insecure way, ptsname incorrectly extracts device name.

15.01.2008 Detailed

7! Macrovision FlexNet Connect ActiveX code execution   Insecure methods are available through ISDM.exe and isusweb.dll.   IBM Tivoli Storage Manager Express Backup Server buffer overflow   TSM Express Backup Server (TCP/1500) buffer overflow.   Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. RiSearch PHP: crossite scripting

F5 BIG-IP crossite scripting updated since 15.01.2008   Administration interface crossite scripting

Apple Safari DoS   Malcrafted HTML causes browser to crash.

13.01.2008 Detailed

7! Sun Solaris ICMP DoS updated since 01.02.2007   Malformed ICMP packets cause system to crash. 6! Linux kernel multiple security vulnrabilities   unask is not correctly applied on CIFS filesystem, DoS via hugetlb_vmtruncate_list and hugetlb_vmtruncate, IA32 emulation subsystem processor registors access, ieee80211_rx integer overflow, Philips USB Webcam driver DoS, wait_task_stopped DoS.   StreamAudio ChainCast ProxyManager ActiveX buffer overflow   Buffer overflow in InternalTuneIn().

autofs privilege escalation   nosuid and nodev flags are not specified for NFS.

libxml DoS updated since 13.01.2008   Hanging on XML parsing.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. RiSearch: crossite scripting

12.01.2008 Detailed

6! Apple QuickTime Player buffer overflow updated since 12.01.2008   Buffer overflow on HTTP error message displaying.   OpenAFS race conditions   Race conditions on acquiring and giving back file callbacks.   Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

10.01.2008 Detailed

6! Novell Netware Client privilege escalation   \\.\nicm device allows memory manipulation in kernel context.   Sun Identity Manager multiple security vulnerabilities   Crossite scripting, frame injection, crossite request forgery.   Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

XFCS multiple security vulnerabilities   Buffer overflow, access to free()'d memory.

09.01.2008 Detailed

10! Microsoft Windows TCP/IP stack multiple security vulnerabilities   Memory corruption on IGMP/MLD processing, DoS on fragmented ICMP router discovery. 8! SAP MaxDB shell characters security vulnerability   Shell characters vulnerability on executing pre-authentication exec_sdbinfo command. 6! McAfee E-Business Server buffer overflow   TCP/1718 administration interface buffer overflow.

6! Microsoft Windows LSASS LPC requests privilege escalation   It's possible to execute code with LocalSystem privileges.

Gateway WebLauncher ActiveX code execution   Insecure methods and buffer overflows.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

unp shell characters security vulnerability   shell characters vulnerability thorugh filenames.

08.01.2008 Detailed

7! Linksys WRT54GL wireless router unauthorized access   Some administrative functions, including firewall rules changing, may be performed without authentication. 6! OpenPegasus buffer overflow   PAM authentication byffer overflow. 6! SynCE shell characters vulnerability   Shell characters vulnerability on external application execution.

6! Microsoft Windows Vista / XP / 2000 audio drivers privilege escalation   Ensoniq PCI 1371 WDM audio driver privilege escalation.

SUN Java Runtime Environment DoS   NULL pointer dereference on HTML-embedded RFC 2397 encoded applets.

Level One WBR-3460A wireless ADSL router unauthorized access   Username/password is not required for telnet configuration access.

Motorola netOctopus agent privileg eescalation   \\.\NantSys system device allows processor registers modification.

PostgreSQL database server multiple security vulnerabilities   Privilege escalation with indexing functions, privilege escalation with DBLink, DoS with regular expressions.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Geeklog: crossite scripting thorugh different form fields.

06.01.2008 Detailed

6! Aruba Mobility Controller unauthorized access   Unauthorized access without password if LDAP authentication module enabled. 6! Novell ZENworks Endpoint Security Management security client privilege escalation   Application launch with SYSTEM privileges by relative path, temporary executable files creatin in user-controlled directory.   loop-aes-utils / util-linux privilege escalation   Group privileges are not properly dropped.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

04.01.2008 Detailed

7! YaSSL library / MySQL multiple security vulnerabilities   Buffer overflows in ProcessOldClientHello and operator>>, memory exhaustion in HASHwithTransform::Update. 7! PHP multiple security vulnerabilities   DoS conditions, internal state modification, code execution, integer overflows, information leaks.   VanDyke VShell DoS   DoS on keys exchange.

Seattle Lab telnet Server DoS   NULL pointer dereference on telnet options parsing.

Pragma TelnetServer DoS   NULL pointer dereference on TELOPT PRAGMA LOGON telnet option.

Pragma FortressSSH SSH server DoS   Multiple user-reachable assert()'s.

Foxit Remote Access Server telnet server DoS   Crash on oversized option.

MaraDNS DNS server DoS   CNAME record fails to resolve on malformed packet.

tcpreen buffer overflows   FD_SET buffer overflow on large number of incvoming connections.

Wireshark multiple security vulnerabilities   Infinite loop in RPC dissector, memory exhaustion in CIP dissector.

FortiGuard URL filtering protection bypass   It's possible to bypass filtering by removing Host:header from HTTP request of by fragmenting request.

Dovecot password caching vulnerability   Under some conditions user can be logged with different account with same password.

03.01.2008 Detailed

8! Adobe Flash Player multiple security vulnerabilities updated since 20.12.2007   Heap buffer overflow on JPEG processing, universal crossite scripting, information leak. 6! Georgia SoftWorks SSH server multiple security vulnerabilities   Format string vulnerabilities and buffer overflows.   Asterisk SIP Also transfer DoS   NULL pointer dereference on BYE message parsing.

White_Dune VRML editor multiple security vulnerabilities   Buffer overflow and format string vulnerability on WRL files parsing.

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. AwesomeTemplateEngine: crossite scripting.

02.01.2008 Detailed

7! IBM Lotus Domino Web Access multiple ActiveX components security vulnerabilities   inotes6.dll, dwa7w.dll, inotes6w.dll buffer overflows. 6! Opera browser multiple security vulnerabilities   Crossite scripting, problem with TLS certificates, information leak.   Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)   PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. WordPress: local file include, directory traversal, files modification and information leak.