Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:09.12.2007
Source:
SecurityVulns ID:8424
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:KVALIITII : Kvaliitti WebDoc 3.0
 SITEBAR : sitebar 3.2
 APACHEAUTHCAS : Apache::AuthCAS 0.4
CVE:CVE-2007-5695 (command.php in SiteBar 3.3.8 allows remote attackers to redirect users to arbitrary web sites via the forward parameter in a Log In action.)
 CVE-2007-5694 (Absolute path traversal vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to read arbitrary files via an absolute path in the dir parameter, a different vulnerability than CVE-2007-5491.)
 CVE-2007-5693 (Eval injection vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to execute arbitrary PHP code via the edit parameter in an upd cmd action, a different vulnerability than CVE-2007-5492.)
 CVE-2007-5692 (Multiple cross-site scripting (XSS) vulnerabilities in SiteBar 3.3.8 allow remote attackers to inject arbitrary web script or HTML via (1) the lang parameter to integrator.php; (2) the token parameter in a New Password action, (3) the nid_acl parameter in a Folder Properties action, or (4) the uid parameter in a Modify User action to command.php; or (5) the target parameter to index.php, different vectors than CVE-2006-3320.)
 CVE-2007-5494
 CVE-2007-5493 (The SMS handler for Windows Mobile 2005 Pocket PC Phone edition allows attackers to hide the sender field of an SMS message via a malformed WAP PUSH message that causes the PDU to be incorrectly decoded.)
 CVE-2007-5492 (Static code injection vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to execute arbitrary PHP code via the value parameter.)
 CVE-2007-5491 (Directory traversal vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to chmod arbitrary files to 0777 via ".." sequences in the lang parameter.)
Original documentdocumentMatthias Bethke, Potential SQL injection vulnerability in Apache::AuthCAS (09.12.2007)
 documentjaakko_(at)_ritke.fi, Kvaliitti WebDoc 3.0 CMS SQL Injection vulnerability (09.12.2007)

Easy File Sharing Web Server multipel security vulnerabilities
Published:09.12.2007
Source:
SecurityVulns ID:8425
Type:remote
Threat Level:
6/10
Description:Directory traversal, information leak.
Affected:SHARINGFILE : Easy File Sharing Web Server 4.5
Original documentdocumentLuigi Auriemma, Upload directory traversal in Easy File Sharing 4.5 (09.12.2007)
Files:Exploits Easy File Sharing 4.5 upload directory traversal

Simple HTTPD multiple security vulnerabilities
Published:09.12.2007
Source:
SecurityVulns ID:8426
Type:remote
Threat Level:
6/10
Description:Directory traversal, script source code access.
Affected:SHTTPD : Simple HTTPD 1.38
Original documentdocumentLuigi Auriemma, Two vulnerabilities in Simple HTTPD 1.38 (09.12.2007)

CA ArcServe Backup multiple security vulnerabilities
Published:09.12.2007
Source:
SecurityVulns ID:8427
Type:remote
Threat Level:
8/10
Affected:CA : Brightstor ARCserve Backup 11.1
 CA : BrightStor ARCserve Backup 9.01
 CA : BrightStor Enterprise Backup 10.5
 CA : Brightstor ARCserve Backup 11.5
 CA : CA Server Protection Suite 2
 CA : CA Business Protection Suite 2
CVE:CVE-2007-5332 (Multiple unspecified vulnerabilities in (1) mediasvr and (2) caloggerd in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, have unknown impact and attack vectors related to memory corruption.)
 CVE-2007-5331 (Queue.dll for the message queuing service (LQserver.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a malformed ONRPC protocol request for operation 0x76, which causes ARCserve Backup to dereference arbitrary pointers.)
 CVE-2007-5330 (The cadbd RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to (1) execute arbitrary code via stack-based buffer overflows in unspecified RPC procedures, and (2) trigger memory corruption related to the use of "handle" RPC arguments as pointers.)
 CVE-2007-5329 (Unspecified vulnerability in dbasvr in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, has unknown impact and attack vectors related to memory corruption.)
 CVE-2007-5328 (CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows attackers to execute arbitrary code via a "Privileged function exposure.")
 CVE-2007-5327 (Stack-based buffer overflow in the RPC interface for the Message Engine (mediasvr.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a long argument in the 0x10d opnum.)
 CVE-2007-5326 (Multiple buffer overflows in (1) RPC and (2) rpcx.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote attackers to execute arbitrary code via unspecified vectors.)
 CVE-2007-5325 (Multiple buffer overflows in (1) the Message Engine and (2) AScore.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote attackers to execute arbitrary code via unspecified vectors.)
Original documentdocumentCA, [CAID 35724, 35725, 35726]: CA BrightStor ARCserve Backup Multiple Vulnerabilities (09.12.2007)

e2fsprogs utilities multiple security vulnerabilities
Published:09.12.2007
Source:
SecurityVulns ID:8428
Type:local
Threat Level:
5/10
Description:Multiple integer overflows.
Affected:E2FSPROGS : e2fsprogs 1.39
CVE:CVE-2007-5497 (Multiple integer overflows in libext2fs in e2fsprogs before 1.40.3 allow user-assisted remote attackers to execute arbitrary code via a crafted filesystem image.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1422-1] New e2fsprogs packages fix arbitrary code execution (09.12.2007)

Heimdal RADIUS server memory corruption
Published:09.12.2007
Source:
SecurityVulns ID:8429
Type:remote
Threat Level:
7/10
Description:free() of uninitialized pointer on invalid user name.
Affected:HEIMDAL : Heimdal 0.7
CVE:CVE-2007-5939
Original documentdocumentMANDRIVA, [ MDKSA-2007:239 ] - Updated heimdal packages fix potential vulnerability (09.12.2007)

HTTP File Server directory traversal
Published:09.12.2007
Source:
SecurityVulns ID:8430
Type:remote
Threat Level:
6/10
Description:Durectory traversal on file upload.
Affected:HFS : HTTP File Server 2.2
 HFS : HTTP File Server 2.3
Original documentdocumentLuigi Auriemma, Limited upload directory traversal in HTTP File Server 2.2a / 2.3 beta (build #146) (09.12.2007)
Files:Generic custom HTTP file uploader

Firefly Media Server multiple security vulnerabilities
Published:09.12.2007
Source:
SecurityVulns ID:8431
Type:remote
Threat Level:
6/10
Description:Directory traversal, authentication bypass. DoS.
Affected:FIREFLYMEDIASERV : Firefly Media Server 2.4
Original documentdocumentLuigi Auriemma, Multiple vulnerabilities in Firefly Media Server (mt-daapd) 2.4.1 / SVN 1699 (09.12.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod