 |
|
|
|
| 2wire routers crossite request forgery | | Published: |  | 16.08.2007 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 8052 | | Type: |  | remote | | Level: |  | 4/10 | | Description: |  | Referer is not checked on configuration form submission. |
| Affected: |  | 2WIRE : 2wire 1701HG | | | | 2WIRE : 2wire 2071 |
| Original document |  | hkm_(at)_hakim.ws, Cross Site Request Forgery in 2wire routers (16.08.2007) |
| Multiple IRC NowPlaying scripts command injection | | Published: | | 16.08.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8054 | | Type: | | local | | Level: | | 3/10 | | Description: | | It's possible to inject IRC command thorugh unfiltered song titile. |
| Affected: | | IRSSI : ixmmsa.pl 0.3 | | | | IRSSI : l33tmusic.pl 2.00 | | | | IRSSI : mpg123.pl 0.01 | | | | IRSSI : ogg123.pl 0.01 | | | | IRSSI : xmms.pl 2.0 | | | | IRSSI : xmms2.pl 1.1 | | | | IRSSI : xmmsinfo.pl 1.1 | | | | XCHAT : xmms-thing 1.0 | | | | XCHAT : XMMS Remote Control Script 1.07 | | | | XCHAT : Disrok 1.0 | | | | XCHAT : a2x 0.0 | | | | XCHAT : Another xmms-info script 1.0 | | | | XCHAT : XChat-XMMS 0.8 | | | | WEECHAT : now-playing.rb | | | | WEECHAT : xmms.pl 1.1 | | | | BITCHX : xmms.bx 1.0 |
| Original document | | Wouter Coekaerts, Vulnerability in multiple "now playing" scripts for various IRC clients (16.08.2007) |
| NetGear ReadyNAS RAIDiator default password | | Published: | | 16.08.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8055 | | Type: | | remote | | Level: | | 6/10 | | Description: | | There are 3 default account, one of which is undocumented with root access. |
| Affected: | | NETGEAR : RAIDiator 3.01 |
| Original document | | Felix Domke, Default Root Password in Infrant (now Netgear) ReadyNAS "RAIDiator" (16.08.2007) |
| ircu IRC server multiple security vulnerabilities | | Published: | | 16.08.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8056 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Multiple DoS conditions, channels hijacking, information leakage. |
| Affected: | | IRCU : ircu 2.10 |
| Original document | | Wouter Coekaerts, Multiple vulnerabilities in ircu (16.08.2007) |
| dovecot privilege escalation | | Published: | | 16.08.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8060 | | Type: | | local | | Level: | | 2/10 | | Description: | | User can save message flags without having permissions. |
| Affected: | | DOVECOT : Dovecot 1.0 | | CVE: |  | CVE-2007-4211 (The ACL plugin in Dovecot before 1.0.3 allows remote authenticated users with the insert right to save certain flags via a (1) COPY or (2) APPEND command.) |
| Original document | | RPATH, rPSA-2007-0161-1 dovecot (16.08.2007) |
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: | | 16.08.2007 | | Source: | | | | SecurityVulns ID: | | 8062 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
| |
|
| |
