Computer Security
[EN] securityvulns.ru no-pyccku


Adobe Flash Player multiple security vulnerabilities
updated since 10.04.2008
Published:14.04.2008
Source:
SecurityVulns ID:8886
Type:client
Threat Level:
8/10
Description:Code execution, crossite scripting, request spoofing.
Affected:ADOBE : Flash Player 8.0
 ADOBE : Flash Player 9.0
CVE:CVE-2008-1655
 CVE-2008-1654 (Interaction error between Adobe Flash and multiple Universal Plug and Play (UPnP) services allow remote attackers to perform Cross-Site Request Forgery (CSRF) style attacks by using the Flash navigateToURL function to send a SOAP message to a UPnP control point, as demonstrated by changing the primary DNS server.)
 CVE-2007-6637 (Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to "pre-generated SWF files" and Adobe Dreamweaver CS3 or Adobe Acrobat Connect. NOTE: the asfunction: vector is already covered by CVE-2007-6244.1.)
 CVE-2007-6243 (Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for remote attackers to conduct cross-domain and cross-site scripting (XSS) attacks.)
 CVE-2007-6019
 CVE-2007-5275 (The Adobe Macromedia Flash 9 plug-in allows remote attackers to cause a victim machine to establish TCP sessions with arbitrary hosts via a Flash (SWF) movie, related to lack of pinning of a hostname to a single IP address after receiving an allow-access-from element in a cross-domain-policy XML document, and the availability of a Flash Socket class that does not use the browser's DNS pins, aka DNS rebinding attacks, a different issue than CVE-2002-1467 and CVE-2007-4324.)
 CVE-2007-0071
Original documentdocumentSECUNIA, Secunia Research: Adobe Flash Player "Declare Function (V7)" Heap Overflow (14.04.2008)
 documentZDI, ZDI-08-021: Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability (10.04.2008)
 documentCERT, US-CERT Technical Cyber Security Alert TA08-100A -- Adobe Flash Updates for Multiple Vulnerabilities (10.04.2008)

rsync integer overflow
Published:14.04.2008
Source:
SecurityVulns ID:8891
Type:remote
Threat Level:
6/10
Description:Integer overflow on ACL handling.
Affected:RSYNC : rsync 2.6
CVE:CVE-2008-1720 (Buffer overflow in rsync 2.6.9 to 3.0.1, with extended attribute (xattr) support enabled, might allow remote attackers to execute arbitrary code via unknown vectors.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1545-1] New rsync packages fix arbitrary code execution (14.04.2008)

am-utils symbolic links security vulnerability
Published:14.04.2008
Source:
SecurityVulns ID:8892
Type:local
Threat Level:
5/10
Description:expn utility unsafe temporary files creation.
Affected:AMUTILS : am-utils 6.1
CVE:CVE-2008-1078 (expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other distributions, allows local users to overwrite arbitrary files via a symlink attack on the expn[PID] temporary file. NOTE: this is the same issue as CVE-2003-0308.1.)
Original documentdocumentGENTOO, [ GLSA 200804-09 ] am-utils: Insecure temporary file creation (14.04.2008)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:14.04.2008
Source:
SecurityVulns ID:8893
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:WIKID : wClient-PHP 3.0
Original documentdocumentSebastien gioria, DOINGSOFT-2008-03-10-001 - XSS issue in BOXiR2 (14.04.2008)
 documentascii, WiKID wClient-PHP <= 3.0-2 Multiple XSS Vulnerabilities (14.04.2008)
 documentnoreply_(at)_aria-security.com, w2b.ru multiple products SQL Injection (14.04.2008)

EMC DiskXtender multiple security vulnerabilities
Published:14.04.2008
Source:
SecurityVulns ID:8894
Type:remote
Threat Level:
6/10
Description:Authentication bypass, buffer overflow, format string vulnerability.
Affected:EMC : DiskXtender 6.20
CVE:CVE-2008-0963
 CVE-2008-0962
 CVE-2008-0961
Original documentdocumentIDEFENSE, iDefense Security Advisory 04.09.08: EMC DiskXtender MediaStor Format String Vulnerability (14.04.2008)
 documentIDEFENSE, iDefense Security Advisory 04.09.08: EMC DiskXtender Authentication Bypass Vulnerability (14.04.2008)
 documentIDEFENSE, iDefense Security Advisory 04.09.08: EMC DiskXtender File System Manager Stack Buffer Overflow Vulnerability (14.04.2008)

Borland Interbase database server buffer overflow
Published:14.04.2008
Source:
SecurityVulns ID:8895
Type:remote
Threat Level:
6/10
Description:Buffer overflow on TCP/3050 data parsing.
Affected:BORLAND : Interbase 2007
Original documentdocumentLiu Zhen Hua, Borland InterBase 2007 "ibserver.exe" Buffer Overflow Vulnerability POC (14.04.2008)
Files:Borland InterBase 2007 "ibserver.exe" Buffer Overflow Vulnerability POC

Trillian buffer overflow
Published:14.04.2008
Source:
SecurityVulns ID:8896
Type:client
Threat Level:
6/10
Description:Buffer overflow on .dtd files parsing.
Affected:TRILLIAN : Trillian 3.1
Original documentdocumentdavid130490_(at)_hotmail.com, Trillian 3.1.9.0 DTD File Buffer Overflow (14.04.2008)

Python buffer overflow
Published:14.04.2008
Source:
SecurityVulns ID:8897
Type:library
Threat Level:
5/10
Description:Integer overflow leading to buffer overflow in PyString_FromStringAndSize().
Affected:PYTHON : python 2.5
Original documentdocumentJustin Ferguson, IOActive Security Advisory: Incorrect input validation in PyString_FromStringAndSize() leads to multiple buffer overflows (14.04.2008)

gnome-screensaver privilege escalation
Published:14.04.2008
Source:
SecurityVulns ID:8899
Type:local
Threat Level:
5/10
Description:getpwuid() exceptional conditions are not handled.
Affected:GNOME : gnome-screensaver 2.20
CVE:CVE-2008-0887 (gnome-screensaver before 2.22.1, when a remote authentication server is enabled, crashes upon an unlock attempt during a network outage, which allows physically proximate attackers to gain access to the locked session, a related issue to CVE-2007-1859.)
Original documentdocumentGENTOO, [ GLSA 200804-12 ] gnome-screensaver: Privilege escalation (14.04.2008)

libpng uninitialized memory reference
Published:14.04.2008
Source:
SecurityVulns ID:8900
Type:library
Threat Level:
5/10
Description:Uninitilized memory reference on zero-sized chunk with external chunk handlers.
Affected:libpng : libpng 1.2
 libpng : libpng 1.0
CVE:CVE-2008-1382
Original documentdocumentOCERT, [oCERT-2008-003] libpng zero-length chunks incorrect handling (14.04.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod