Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		13.05.2008
Source:		BUGTRAQ
SecurityVulns ID:		8986
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		JOOMLA : xsstream-dm 0.01 module for Joomla
		ACTUALSCRIPTS : ActualAnalyzer Server 8.37
		ACTUALSCRIPTS : ActualAnalyzer Gold 7.74
		ACTUALSCRIPTS : ActualAnalyzer Pro 6.95
		ACTUALSCRIPTS : Actual Analyzer Lite 2.78

Original document		Aesthetico, [MajorSecurity Advisory #52]ActualAnalyzer family - Cross Site Scripting Issues (13.05.2008)
		houssamix_(at)_hotmail.fr, Joomla Component xsstream-dm 0.01 Beta SQL Injection (13.05.2008)

Files:		Exploits Joomla Component xsstream-dm 0.01 Beta Remote SQL Injection
Discuss:		Read or add your comments to this news (0 comments)

libpng code execution updated since 01.05.2008
Published:		13.05.2008
Source:		BUGTRAQ
SecurityVulns ID:		8959
Type:		library
Level:		7/10

Affected:		libpng : libpng 1.2
		PNGCRUSH : pngcrush 1.6
CVE:		CVE-2008-1382

Original document		GENTOO, [ GLSA 200805-10 ] Pngcrush: User-assisted execution of arbitrary code (13.05.2008)
		RPATH, rPSA-2008-0151-1 libpng (01.05.2008)

Discuss:

Read or add your comments to this news (0 comments)

HP-UX FTP server DoS
Published:		13.05.2008
Source:		BUGTRAQ
SecurityVulns ID:		8987
Type:		remote
Level:		5/10

CVE:

CVE-2008-0713

Original document

HP, [security bulletin] HPSBUX02334 SSRT071403 rev.1 - HP-UX Running ftp, Remote Denial of Service (DoS) (13.05.2008)

Discuss:

Read or add your comments to this news (0 comments)

Linux kernel DoS
Published:		13.05.2008
Source:		BUGTRAQ
SecurityVulns ID:		8988
Type:		local
Level:		5/10
Description:		fcntl code race conditions.

Affected:		LINUX : kernel 2.6
CVE:		CVE-2008-1669

Original document

DEBIAN, [SECURITY] [DSA 1575-1] New Linux 2.6.18 packages fix denial of service (13.05.2008)

Discuss:

Read or add your comments to this news (0 comments)