Computer Security
[EN] securityvulns.ru no-pyccku


feta symbolic links vulnerability
Published:09.10.2008
Source:
SecurityVulns ID:9340
Type:local
Threat Level:
5/10
Description:Symboliclinks vulnerability on temporayr files creation.
Affected:FETA : feta 1.4
CVE:CVE-2008-4440 (The to-upgrade plugin in feta 1.4.16 allows local users to overwrite arbitrary files via a symlink on the (1) /tmp/feta.install.$USER and (2) /tmp/feta.avail.$USER temporary files.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1643-1] New feta packages fix denial of service (09.10.2008)

mon symbolic links vulnerability
Published:09.10.2008
Source:
SecurityVulns ID:9342
Type:local
Threat Level:
5/10
Description:Symbolic links vulnerability on temporary files creation.
Affected:MON : mon 0.99
CVE:CVE-2008-4477 (alert.d/test.alert in mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack on the test.alert.log temporary file.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1648-1] New mon packages fix insecure temporary files (09.10.2008)

Cisco Unity authentication bypass
Published:09.10.2008
Source:
SecurityVulns ID:9346
Type:remote
Threat Level:
5/10
Description:Authentication bypass to administration features if anonymous access is enabled.
Affected:CISCO : Cisco Unity 4.2
 CISCO : Cisco Unity 5.0
 CISCO : Cisco Unity 7.0
CVE:CVE-2008-3814 (Unspecified vulnerability in Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anonymous authentication (aka native Unity authentication), allows remote attackers to bypass authentication and read or modify system configuration parameters by going to a specific link more than once.)
Original documentdocumentCISCO, Cisco Security Advisory: Authentication Bypass in Cisco Unity (09.10.2008)

Gentoo Linux Portage privilege escalation
Published:09.10.2008
Source:
SecurityVulns ID:9348
Type:local
Threat Level:
6/10
Description:Relative shared library search path in suid application.
Affected:GENTOO : portage 2.1
CVE:CVE-2008-4394 (Multiple untrusted search path vulnerabilities in Portage before 2.1.4.5 include the current working directory in the Python search path, which allows local users to execute arbitrary code via a modified Python module that is loaded by the (1) ys-apps/portage, (2) net-mail/fetchmail, (3) app-editors/leo ebuilds, and other ebuilds.)
Original documentdocumentGENTOO, [ GLSA 200810-02 ] Portage: Untrusted search path local root vulnerability (09.10.2008)

HP System Management Homepage crossite scripting
Published:09.10.2008
Source:
SecurityVulns ID:9349
Type:remote
Threat Level:
5/10
Affected:HP : HP System Management Homepage 2.11
CVE:CVE-2008-4411 (Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 2.1.15.210 on Linux and Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2008-1663.)
Original documentdocumentHP, [security bulletin] HPSBMA02376 SSRT080099 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS) (09.10.2008)

Motorola Timbuktu information leak
Published:09.10.2008
Source:
SecurityVulns ID:9343
Type:remote
Threat Level:
5/10
Description:User data is sent to central server.
Original documentdocumentvulns_(at)_wintercore.com, Motorola Timbuktu's Internet Locator Service real-time data exposed to public. (09.10.2008)

Novell eDirectory multiple security vulnerabilities
Published:09.10.2008
Source:
SecurityVulns ID:9347
Type:remote
Threat Level:
7/10
Description:Multiple buffer overflows on TCP/8028 and TCP/8028 traffic parsing.
CVE:CVE-2008-4480 (Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.x before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a crafted Netware Core Protocol opcode 0x24 message that triggers a calculation error that under-allocates a heap buffer.)
 CVE-2008-4479 (Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a SOAP request with a long Accept-Language header.)
 CVE-2008-4478 (Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted (1) Content-Length header in a SOAP request or (2) Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer overflow.)
Original documentdocumentZDI, ZDI-08-066: Novell eDirectory Core Protocol Opcode 0x24 Heap Overflow Vulnerability (09.10.2008)
 documentZDI, ZDI-08-065: Novell eDirectory Core Protocol Opcode 0x0F Heap Overflow Vulnerability (09.10.2008)
 documentZDI, ZDI-08-064: Novell eDirectory dhost.exe Accept Language Header Heap Overflow Vulnerability (09.10.2008)
 documentZDI, ZDI-08-063: Novell eDirectory dhost.exe Content-Length Header Heap Overflow Vulnerability (09.10.2008)

Windows kernel integer overflow
Published:09.10.2008
Source:
SecurityVulns ID:9345
Type:local
Threat Level:
5/10
Description:Integer overflow in IopfCompleteRequest function.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 MICROSOFT : Windows Vista
 MICROSOFT : Windows 2008 Server
Original documentdocumentvulns_(at)_wintercore.com, [W02-1008] GearSoftware Powered Products Local Privilege Escalation (Microsoft Windows Kernel IopfCompleteRequest Integer Overflow) (09.10.2008)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:09.10.2008
Source:
SecurityVulns ID:9341
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:OPENNMS : OpenNMS 1.5
 OPENX : OpenX 2.4
 OPENX : OpenX 2.6
Original documentdocumentProCheckUp Research, PR07-31: Unauthenticated SQL Injection, XSS on Login Page and Username Enumeration on DPSnet Case Progress (09.10.2008)
 documentGhost hacker, News Manager Remote SQL Injection Vulnerability (09.10.2008)
 documentxsp, FC2 BLOG Cross-Site Scripting Vulnerabilities (09.10.2008)
 documentMatteo Beccati, [OPENX-SA-2008-002] OpenX 2.4.9 and 2.6.2 fix SQL injection vulnerability (09.10.2008)
 documentTrancer, OpenNMS Multiple Vulnerabilities (09.10.2008)

HP-UX NFS/ONCplus DoS
updated since 09.10.2008
Published:09.10.2008
Source:
SecurityVulns ID:9344
Type:remote
Threat Level:
5/10
Affected:HP : HP-UX 11.31
CVE:CVE-2008-3543 (Unspecified vulnerability in NFS / ONCplus B.11.31_04 and earlier on HP-UX B.11.31 allows remote attackers to cause a denial of service via unknown attack vectors.)
Original documentdocumentHP, [security bulletin] HPSBUX02375 SSRT080122 rev.1 - HP-UX Running NFS/ONCplus, Remote Denial of Service (DoS) (09.10.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod