 |
|
|
|
| PHP multiple security vulnerabilities | | Published: |  | 08.01.2010 | | Source: |  | PHP | | SecurityVulns ID: |  | 10505 | | Type: |  | remote | | Level: |  | 7/10 | | Description: |  | safe_mode bypass, open_basedir bypass, memory corruption. |
| Affected: |  | PHP : PHP 5.2 | | | | PHP : PHP 5.3 | | CVE: |  | CVE-2009-4143 (PHP before 5.2.12 does not properly handle session data, which has unspecified impact and attack vectors related to (1) interrupt corruption of the SESSION superglobal array and (2) the session.save_path directive.) | | | | CVE-2009-4142 (The htmlspecialchars function in PHP before 5.2.12 does not properly handle (1) overlong UTF-8 sequences, (2) invalid Shift_JIS sequences, and (3) invalid EUC-JP sequences, which allows remote attackers to conduct cross-site scripting (XSS) attacks by placing a crafted byte sequence before a special character.) | | | | CVE-2009-3558 (The posix_mkfifo function in ext/posix/posix.c in PHP before 5.2.12 and 5.3.x before 5.3.1 allows context-dependent attackers to bypass open_basedir restrictions, and create FIFO files, via the pathname and mode arguments, as demonstrated by creating a .htaccess file.) | | | | CVE-2009-3557 (The tempnam function in ext/standard/file.c in PHP before 5.2.12 and 5.3.x before 5.3.1 allows context-dependent attackers to bypass safe_mode restrictions, and create files in group-writable or world-writable directories, via the dir and prefix arguments.) |
| Microsoft Windows Live Messenger DoS | | Published: | | 08.01.2010 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10506 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Crash on ActiveX ViewProfile method. |
| Transmission bittorent client directory traversal | | Published: | | 08.01.2010 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10507 | | Type: | | client | | Level: | | 5/10 | | Description: | | Directory traversal via .torrent files. |
| Affected: | | TRANSMISSION : transmission 1.77 | | CVE: | | CVE-2010-0012 (Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a pathname within a .torrent file.) |
Adobe Illustrator buffer overflow
updated since 04.12.2009 | | Published: | | 08.01.2010 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10445 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Buffer overflow on .EPS files parsing. |
| Novell iManager eDirectory plugin buffer overflow | | Published: | | 08.01.2010 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10508 | | Type: | | client | | Level: | | 5/10 | | Description: | | Buffer overflow on schema parsing. |
| Affected: | | NOVELL : iManager 2.7 | | CVE: | | CVE-2009-4486 (Stack-based buffer overflow in the eDirectory plugin in Novell iManager before 2.7.3 allows remote attackers to execute arbitrary code via vectors that trigger long arguments to an unspecified sub-application, related to importing and exporting from a schema.) |
BSD-based systems (FreeBSD, NetBSD, OpenBSD) index array overflow
updated since 27.06.2009 | | Published: | | 08.01.2010 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10021 | | Type: | | library | | Level: | | 8/10 | | Description: | | Index array overflow in libc gdtoa() function (used by printf()). |
|
|
|
|
|
|
|
|
