Computer Security
[EN] securityvulns.ru no-pyccku


libsoup library DoS
Published:15.01.2007
Source:
SecurityVulns ID:7051
Type:library
Threat Level:
5/10
Description:DoS on parsing HTTP headers.
Affected:LIBSOUP : libsoup 2.2
CVE:CVE-2006-5876 (The soup_headers_parse function in soup-headers.c for libsoup HTTP library before 2.2.99 allows remote attackers to cause a denial of service (crash) via malformed HTTP headers, probably involving missing fields or values.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1248-1] New libsoup packages fix denial of service (15.01.2007)

libneon array index overflow
Published:15.01.2007
Source:
SecurityVulns ID:7052
Type:library
Threat Level:
5/10
Description:Index overflow on URI parsing with non-ASCII characters in 64-bit systems.
Affected:neon : libneon 0.26
CVE:CVE-2007-0496 (PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the g_strRootDir parameter.)
 CVE-2007-0157 (Array index error in the uri_lookup function in the URI parser for neon 0.26.0 to 0.26.2, possibly only on 64-bit platforms, allows remote malicious servers to cause a denial of service (crash) via a URI with non-ASCII characters, which triggers a buffer under-read due to a type conversion error that generates a negative index.)
Original documentdocumentMANDRAKE, [ MDKSA-2007:013 ] - Updated libneon0.26 packages fix vulnerability (15.01.2007)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:15.01.2007
Source:
SecurityVulns ID:7053
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:PHPNUKE : PHP-Nuke 7.9
 THWBOARD : ThWboard 3.0
 TREVORCHAN : Trevorchan 0.7
 JV2 : JV2 Folder Gallery 3.0
 DIGIAPPZ : DigiAffiliate 1.4
 FDWEB : FdWeB Espace Membre 2.1
 OVIDENTIA : Ovidentia 5.6
CVE:CVE-2007-0863 (** DISPUTED ** PHP remote file inclusion vulnerability in Trevorchan 0.7 and earlier allows remote attackers to execute arbitrary code via the tc_config[rootdir] parameter to (1) upgrade.php, (2) paint_save.php, (3) menu.php, (4) manage.php, and (5) banned.php. NOTE: his issue has been disputed by reliable third parties, who state that the variable is set before use in config.php.)
 CVE-2007-0682 (PHP remote file inclusion vulnerability in theme/include_mode/template.php in JV2 Folder Gallery 3.0.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the galleryfilesdir parameter.)
 CVE-2007-0372 (Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 7.9 allow remote attackers to execute arbitrary SQL commands via (1) the active parameter in admin/modules/modules.php; the (2) ad_class, (3) imageurl, (4) clickurl, (5) ad_code, or (6) position parameter in modules/Advertising/admin/index.php; or unspecified vectors in the (7) advertising, (8) weblinks, or (9) reviews section.)
 CVE-2007-0340 (SQL injection vulnerability in inc/header.inc.php in ThWboard 3.0b2.84-php5 and earlier allows remote attackers to execute arbitrary SQL commands via the board[styleid] parameter to index.php.)
 CVE-2007-0329 (download.php in Joonas Viljanen JV2 Folder Gallery allows remote attackers to read sensitive files via a relative pathname in the file parameter, as demonstrated by config/gallerysetup.php. NOTE: this issue might be resultant from a directory traversal vulnerability.)
 CVE-2007-0309 (SQL injection vulnerability in blocks/block-Old_Articles.php in Francisco Burzi PHP-Nuke 7.9 and earlier, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cat parameter.)
 CVE-2007-0306 (SQL injection vulnerability in visu_user.asp in Digiappz DigiAffiliate 1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.)
 CVE-2007-0301 (PHP remote file inclusion vulnerability in _admin/admin_menu.php in FdWeB Espace Membre 2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.)
Original documentdocumentMaximize Designs, AIMPages XSS (15.01.2007)
 documentH0tTurk, Ovidentia 5.6x Series Remote File İnclude (15.01.2007)
 documentpaisterist_(at)_neosecurityteam.net, PHP-Nuke <= 7.9 Old-Articles Block "cat" SQL Injection vulnerability (15.01.2007)
Files:ThWboard <=3.0 beta 2.84-php5 board[styleid] sql injection / cmd exec exploit
 JV2 Folder Gallery Remote Admin uName and Pass. Exploit
 DigiAffiliate <= V1.4 Remote Blind SQL Injection Exploit
 Exploits FdWeB Espace Membre <= 2.01(path) Remote File Include Vulnerability

WFTPD Pro FTP server DoS
Published:15.01.2007
Source:
SecurityVulns ID:7054
Type:remote
Threat Level:
5/10
Description:Incomplete SITE ADMIN command causes server to crash.
Affected:TEXAS : WFTPD 3.25
CVE:CVE-2007-0311 (Texas Imperial Software WFTPD and WFTPD Pro Server 3.25 and earlier allow remote attackers to cause a denial of service (application crash) via a long SITE ADMIN command.)
Files:WFTPD server <= 3.25 SITE ADMN DoS

Multiple GnuPG potential vulnerabilities
Published:15.01.2007
Source:
SecurityVulns ID:7055
Type:remote
Threat Level:
6/10
Description:Multiple potential buffer overflow and integer overflow with unknonwn exploitability.
Affected:GNU : GnuPG 1.4
Original documentdocumentFelix von Leitner, [Full-disclosure] gnupg diff available (15.01.2007)
Files:GnuPG unsafe functions fix dif

BMC Remedy Action Request System user enumeration vulnerability
Published:15.01.2007
Source:
SecurityVulns ID:7056
Type:remote
Threat Level:
5/10
Description:Messages for invalid password and invalid user name are different.
Affected:BMC : Remedy Action Request System 5.01
CVE:CVE-2007-0310 (BMC Remedy Action Request System 5.01.02 Patch 1267 generates different error messages for failed login attempts with a valid username than for those with an invalid username, which allows remote attackers to determine valid account names.)
Original documentdocumentDavide Del Vecchio, Remedy Action Request System 5.01.02 - User Enumeration (15.01.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod