Computer Security

Search:Vulnerability:14.08.2005
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Multiple Mentor ADSL router vulnerabilities
Published:14.08.2005
Source:BUGTRAQ
SecurityVulns ID:5102
Type:remote
Level:5/10
Description:Undocumented Web-interface TCP/5678, no passwords in default configuration, DoS, cleartext passwords in configuration file.
Affected:MENTOR : ADSL-FR4II
Original documentdocumentTim Brown, Low security hole affecting Mentor's ADSLFR4II router (14.08.2005)
Discuss:Read or add your comments to this news (0 comments)

Veritas Backup Exec unauthorized access
updated since 13.08.2005
Published:14.08.2005
Source:SECUNIA
SecurityVulns ID:5099
Type:remote
Level:6/10
Description:It's possible to retrieve any file from TCP/10000.
Affected:SYMANTEC : VERITAS Backup Exec 8.6
Original documentdocumentSECUNIA, [SA16403] VERITAS Backup Exec Arbitrary File Download Vulnerability (13.08.2005)
Files:Veritas Backup Exec Windows Agent Remote File Access Exploit
Discuss:Read or add your comments to this news (0 comments)

Whisper passwords manager cleartext password
Published:14.08.2005
Source:BUGTRAQ
SecurityVulns ID:5100
Type:local
Level:5/10
Description:Passwords are visible in cleartext in process memory. Password for password store is not used in ecnryption, allowing to restore passwords from password file.
Affected:IVORY : Whisper32 1.16
Original documentdocumentЗаключённый, Vuln: Password Disclosure in Whisper32 (14.08.2005)
Discuss:Read or add your comments to this news (0 comments)

JaguarControl ActiveX buffer overflow
Published:14.08.2005
Source:BUGTRAQ
SecurityVulns ID:5101
Type:client
Level:5/10
Description:Buffer overflow on Jtex paramters on Jtex paramter.
Affected:ISEMARKET : JaguarControl
Original documentdocumentTacettin Karadeniz, JaguarControl Activex Buffer Overflow (14.08.2005)
Discuss:Read or add your comments to this news (0 comments)

Grandstream Budge Tone IP phone DoS
Published:14.08.2005
Source:BUGTRAQ
SecurityVulns ID:5103
Type:remote
Level:5/10
Description:Large datagrame to UDP/5060 port causes device to hang.
Affected:GRANDSTREAM : Budge Tone 101
 GRANDSTREAM : Budge Tone 102
Original documentdocumentKroma Pierre, Grandstream Budge Tone 101/102 DoS Vulnerability (14.08.2005)
Discuss:Read or add your comments to this news (0 comments)

Web applications security vulnerabilities (PHP, ASP, CGI, Perl, etc)
updated since 08.08.2005
Published:14.08.2005
Source:
SecurityVulns ID:5078
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:OPENBB : OpenBB 1.0
 OPENBB : OpenBB 1.1
 INVISION : Invision Power Board 2.0
 XMB : XMB 1.9
 AWSTATS : AWStats 6.3
 PHPOPENCHAT : PhpOpenChat 3.0
 WORDPRESS : WordPress 1.5
 MYBB : MyBB 1.0
 SIMPLEPHPBLOG : SimplePHPBlog 0.4
 BLOGTORRENT : BlogTorrent 0.92
 E107 : e107 0.6171
 INVISION : Invision Power Board 1.0
 SYSCP : SysCP 1.2
 GRAVITYBOARDX : Gravity Board X 1.1
 CFBB : CFBB 1.1
 MYFAQ : MYFAQ 1.0
 TDIARY : tDiary 2.1
 PHPINCLUDES : phpIncludes News System 1.0
 FUNKBOARD : FunkBoard 0.66
 PHPLITE : Calendar Express 2.0
 XMBFORUM : XMB Forum 1.9
 XOOPS : XOOPS 2.2
 CHIPMUNK : Chipmunk Forum 1.3
 PHLYMAIL : PHlyMail 3.02
 CPANEL : cPanel 10.4
 OMNIPILOT : Lasso 8.0
 VEGADNS : VegaDNS 0.9
 EQDKP : EQdkp 1.2
 CALOGIC : CaLogic 1.22
 GALLERY : Gallery 1.5
 FUDFORUM : Fud Forum 2.6
 CLAROLINE : Claroline 1.6
 PHPDESIGNER : PHP Designer 2005 3.0
 BLOODSHED : Bloodshed Dev-Pascal 1.9
 DEVPHP : Dev-PHP 2.0
 PHPTB : Topic Boards 2.0
 EZ : ezUpload 2.2
Original documentdocumentSECURITEAM, [UNIX] Blog Torrent Remote User and Password Disclosure (14.08.2005)
 documentSECURITEAM, [EXPL] SimplePHPBlog Password Disclosure (Exploit) (14.08.2005)
 documentSECURITEAM, [EXPL] ezUpload path Parameter Command Execution (Exploit) (14.08.2005)
 documentalmaster_(at)_hotmail.com, SQL in PHPTB Topic Boards 2.0 (14.08.2005)
 documentSECUNIA, [SA16420] Dev-PHP NULL Character File Display Weakness (13.08.2005)
 documentSECUNIA, [SA16422] Bloodshed Dev-Pascal NULL Character File Display Weakness (13.08.2005)
 documentSECUNIA, [SA16398] PHP Designer 2005 NULL Character File Display Weakness (13.08.2005)
 documentlaurent gaffié, Xoops 2.2.1 Full Path Disclosure (12.08.2005)
 documentphuket, [Full-disclosure] My Bulletin Board RC 4 Vulnerabilities (12.08.2005)
 documentAlexander Heidenreich, [Full-disclosure] Fudforum: incompletely check of user rights in tree view gaining access to all messages (12.08.2005)
 documentSECUNIA, [SA16377] MidiCart ASP Shopping Cart SQL Injection Vulnerability (11.08.2005)
 documentSECUNIA, [SA16389] Gallery PostNuke Integration Security Issue (11.08.2005)
 documentgb.network_(at)_gmail.com, Full path disclosure in CaLogic 1.22 and possible in older versions. (10.08.2005)
 documentSECUNIA, [SA16285] EQdkp session.php Session Handling Vulnerability (10.08.2005)
 documentSECUNIA, [SA16370] VegaDNS "message" Cross-Site Scripting Vulnerability (10.08.2005)
 documentSECUNIA, [SA16364] Lasso Professional Auth Tag Security Bypass Vulnerability (10.08.2005)
 documentSECUNIA, [SA16362] cPanel Password Change Privilege Escalation Security Issue (10.08.2005)
 documentSECUNIA, [SA16375] XMB Forum Server Set Variable Overwrite and SQL Injection (10.08.2005)
 documentSECUNIA, [SA16388] PHlyMail Unspecified Login Bypass Vulnerability (10.08.2005)
 documentSECUNIA, [SA16365] Chipmunk Forum "fontcolor" Cross-Site Scripting Vulnerability (09.08.2005)
 documentSECUNIA, [SA16357] e107 HTML / TXT Attachment Script Insertion Vulnerability (09.08.2005)
 documentSECUNIA, [SA16348] Invision Power Board HTML / TXT Attachment Script Insertion (09.08.2005)
 documentSECUNIA, [SA16339] XOOPS PHPMailer and XML-RPC Vulnerabilities (09.08.2005)
 documentheintz_(at)_hotmail.com, Sql injection and global variables poisoning in XMB Forum 1.9.1 (09.08.2005)
 documentIDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 08.09.05: AWStats ShowInfoURL Remote Command Execution Vulnerability (09.08.2005)
 documentretrogod_(at)_aliceposta.it, FunkBoard V0.66CF (possibly prior versions) cross site scripting, possible database username/password disclosure & board takeover,possible remote code execution (09.08.2005)
 documentSECUNIA, [SA16353] PHPLite Calendar Express Two Vulnerabilities (09.08.2005)
 documentSECUNIA, [SA16371] FunkBoard Multiple Cross-Site Scripting Vulnerabilities (09.08.2005)
 documentSECUNIA, [SA16351] phpIncludes News System SQL Injection Vulnerability (09.08.2005)
 documentSECUNIA, [SA16329] tDiary Cross-Site Request Forgery Vulnerability (09.08.2005)
 documentsvt_(at)_svt.nukleon.us, [SVadvisory#13] - SQL injection in MYFAQ 1.0 (09.08.2005)
 documentstormhacker_(at)_hotmail.com, XSS in forums CFBB v1.1.0 (09.08.2005)
 documentedward11_(at)_postmaster.co.uk, E107 + IPB XSS Exploit (09.08.2005)
 documentabducter_minds_(at)_yahoo.com, SQL IN Open Bulletin Board (09.08.2005)
 documentretrogod_(at)_aliceposta.it, Gravity Board X v1.1 multiple vulnerabilities (09.08.2005)
 documentChristopher Kunz, [Full-disclosure] Advisory 13/2005: Remote code execution in SysCP (08.08.2005)
Files:EzUpload 2.2 Remote Command Execution
Discuss:Read or add your comments to this news (0 comments)

Lotus Domino weak files permissions
updated since 14.08.2005
Published:22.08.2005
Source:SECURITEAM
SecurityVulns ID:5104
Type:local
Level:6/10
Description:Database names.nsf with password hashes is world readable.
Affected:IBM : Lotus Domino 6.5
CVE:CVE-2007-0977 (IBM Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores HTTPPassword hashes from names.nsf in a manner accessible through Readviewentries and OpenDocument requests to the defaultview view, a different vector than CVE-2005-2428.)
 CVE-2005-2696 (IBM Lotus Notes does not properly restrict access to password hashes in the Notes Address Book (NAB), which allows remote attackers to obtain sensitive information via the (1) password digest field in the Administration tab of a Lotus Notes client, (2) "PasswordDigest" and "HTTPPassword" fields in the document properties in the NAB, or (3) a direct query to the Domino LDAP server, a different vulnerability than CVE-2005-2428.)
 CVE-2005-2428 (Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores sensitive data from names.nsf in hidden form fields, which allows remote attackers to read the HTML source to obtain sensitive information such as (1) the password hash in the HTTPPassword field, (2) the password change date in the HTTPPasswordChangeDate field, (3) the client platform in the ClntPltfrm field, (4) the client machine name in the ClntMachine field, and (5) the client Lotus Domino release in the ClntBld field, a different vulnerability than CVE-2005-2696.)
Original documentdocumentShalom Carmel, IBM Lotus Notes multiple disclosures of password hashes (22.08.2005)
 documentSECURITEAM, [NEWS] Default Configuration Information Disclosure in Lotus Domino (Including Password Hashes) (14.08.2005)
Files:raptor_dominohash - Lotus Domino R5/R6 HTTPPassword dump
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server