Computer Security
[EN] securityvulns.ru no-pyccku


HP Integrity server iLO-2 DoS
Published:10.04.2008
Source:
SecurityVulns ID:8883
Type:remote
Threat Level:
5/10
Affected:HP : Integrity rx2660
 HP : Integrity rx3600
 HP : Integrity rx6600
 HP : Integrity bl860c
CVE:CVE-2008-0711 (Unspecified vulnerability in the embedded management console in HP iLO-2 Management Processors (iLO-2 MP), as used in Integrity Servers rx2660, rx3600, and rx6600, and Integrity Blade Server model bl860c, allows remote attackers to cause a denial of service via unknown vectors.)
Original documentdocumentHP, [security bulletin] HPSBMA02327 SSRT071455 rev.1 - HP Integrity Servers iLO-2 Management Processors (iLO-2 MP), Denial of Service (DoS) (10.04.2008)

licq fd_set bitmap index overflow
Published:10.04.2008
Source:
SecurityVulns ID:8884
Type:remote
Threat Level:
6/10
Description:FD_SETSIZE is not checked on incoming connection accept().
Affected:LICQ : licq 1.3
Original documentdocument3APA3A, Re: licq remote DoS? (10.04.2008)
 documentMilen Rangelov, licq remote DoS? (10.04.2008)

Wayport Public Access PC protection bypass
Published:10.04.2008
Source:
SecurityVulns ID:8885
Type:local
Threat Level:
5/10
Description:It's possible to disable protection by disabling Internet Explorer plugin.
Original documentdocumentPascal Cretain, Wayport Public Access PC Authentication Bypass Weakness (10.04.2008)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:10.04.2008
Source:
SecurityVulns ID:8887
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:PAFILEDB : paFileDB 3.1
 MICROSOFT : SharePoint Services 2.0
 SAP : NetWeaver 6.40
 SAP : NetWeaver 7.0
 JOOMLA : Pu Arcade 2.2 module for Joomla
 PECLAPC : pecl-apc 3.0
 PHPAPC : php-apc 3.0
 PLIGG : Pligg 9.9
CVE:CVE-2008-1488 (Stack-based buffer overflow in apc.c in Alternative PHP Cache (APC) 3.0.11 through 3.0.16 allows remote attackers to execute arbitrary code via a long filename.)
Original documentdocumentGuido Landi, [Full-disclosure] Pligg 9.9.0 editlink.php SQL Injection Vulnerability (10.04.2008)
 documentGENTOO, [ GLSA 200804-07 ] PECL APC: Buffer Overflow (10.04.2008)
 documentnoreply_(at)_aria-security.com, paFileDB 3.1 Remote SQL Injection (10.04.2008)
 documentnetmantis.com_(at)_gmail.com, Pu Arcade component for Joomla - SQL injection (10.04.2008)
 documentjaime.blasco_(at)_aitsec.com, SAP Netweaver 6.40-7.0 Cross-Site-Scripting (10.04.2008)
 documentI)ruid, CAU-2008-0002: Microsoft Windows SharePoint Services Picture Source XSS (10.04.2008)

AlsaPlayer buffer overflow
Published:10.04.2008
Source:
SecurityVulns ID:8888
Type:client
Threat Level:
5/10
Description:Buffer overflow on oversized .ogg comment.
CVE:CVE-2007-5301 (Buffer overflow in the vorbis_stream_info function in input/vorbis/vorbis_engine.c (aka the vorbis input plugin) in AlsaPlayer before 0.99.80-rc3 allows remote attackers to execute arbitrary code via a .OGG file with long comments.)
Original documentdocumentAlbert Sellarès, [CVE-2007-5301] alsaplayer PoC - exploit (10.04.2008)
Files:Exploit for alsaplayer before 0.99.80-rc3

Python zlib module buffer overflow
Published:10.04.2008
Source:
SecurityVulns ID:8889
Type:library
Threat Level:
5/10
Description:Integer overflow in flush leads to buffer overflow.
Affected:PYTHON : python 2.5
CVE:CVE-2008-1721 (Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow.)
 CVE-2008-1679
Original documentdocumentJustin Ferguson, IOActive Security Advisory: Buffer overflow in Python zlib extension module (10.04.2008)
Files:Exploits Buffer overflow in Python zlib extension module
 Exploits integer overflow in Python zlib extension module

Audit buffer overflow
Published:10.04.2008
Source:
SecurityVulns ID:8890
Type:remote
Threat Level:
6/10
Description:Buffer overflow on logging.
Affected:AUDIT : audit 1.6
CVE:CVE-2008-1628 (Stack-based buffer overflow in the audit_log_user_command function in lib/audit_logging.c in Linux Audit before 1.7 might allow remote attackers to execute arbitrary code via a long command argument. NOTE: some of these details are obtained from third party information.)
Original documentdocumentMANDRIVA, [ MDVSA-2008:083 ] - Updated audit packages fix vulnerability (10.04.2008)

Adobe Flash Player multiple security vulnerabilities
updated since 10.04.2008
Published:14.04.2008
Source:
SecurityVulns ID:8886
Type:client
Threat Level:
8/10
Description:Code execution, crossite scripting, request spoofing.
Affected:ADOBE : Flash Player 8.0
 ADOBE : Flash Player 9.0
CVE:CVE-2008-1655
 CVE-2008-1654 (Interaction error between Adobe Flash and multiple Universal Plug and Play (UPnP) services allow remote attackers to perform Cross-Site Request Forgery (CSRF) style attacks by using the Flash navigateToURL function to send a SOAP message to a UPnP control point, as demonstrated by changing the primary DNS server.)
 CVE-2007-6637 (Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to "pre-generated SWF files" and Adobe Dreamweaver CS3 or Adobe Acrobat Connect. NOTE: the asfunction: vector is already covered by CVE-2007-6244.1.)
 CVE-2007-6243 (Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for remote attackers to conduct cross-domain and cross-site scripting (XSS) attacks.)
 CVE-2007-6019
 CVE-2007-5275 (The Adobe Macromedia Flash 9 plug-in allows remote attackers to cause a victim machine to establish TCP sessions with arbitrary hosts via a Flash (SWF) movie, related to lack of pinning of a hostname to a single IP address after receiving an allow-access-from element in a cross-domain-policy XML document, and the availability of a Flash Socket class that does not use the browser's DNS pins, aka DNS rebinding attacks, a different issue than CVE-2002-1467 and CVE-2007-4324.)
 CVE-2007-0071
Original documentdocumentSECUNIA, Secunia Research: Adobe Flash Player "Declare Function (V7)" Heap Overflow (14.04.2008)
 documentZDI, ZDI-08-021: Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability (10.04.2008)
 documentCERT, US-CERT Technical Cyber Security Alert TA08-100A -- Adobe Flash Updates for Multiple Vulnerabilities (10.04.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod