Clipcomm CPW-100E wireless VoIP phone backdoor
Published:		17.01.2006
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5649
Type:		remote
Level:		5/10
Description:		Undocumented TCP/60023 shell access allows remote unauthorized phone control, including calls.

Affected:

CLIPCOMM : Clipcomm CPW-100E

Original document		Shawn Merdinger, [Full-disclosure] Clipcomm CP-100E VoIP wireless desktop phone open debug service TCP/60023 (17.01.2006)
		Shawn Merdinger, [Full-disclosure] Clipcomm CPW-100E VoIP wireless handset phone open debug service TCP/60023 (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

ZyXel P2000W wireless VoIP phone information leak
Published:		17.01.2006
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5651
Type:		remote
Level:		5/10
Description:		Undocumented TCP/9090 leaks information on phone configuration.

Affected:

ZYXEL : ZyXel P2000W

Original document

Shawn Merdinger, [Full-disclosure] ZyXel P2000W (Version 2) VoIP wireless phone undocumented port UDP/9090 (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

AntiWord symbolic links problem
Published:		17.01.2006
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5654
Type:		remote
Level:		5/10
Description:		Word to Postscript document convertation insecure temporary file creation.

Affected:

ANTIWORD : antiword 0.32

Original document

DEBIAN, [Full-disclosure] [SECURITY] [DSA 945-1] New antiword packages fix insecure temporary file creation (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		17.01.2006
Source:
SecurityVulns ID:		5644
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		SMBCMS : SMBCMS 2.1
		PHPXPLORER : phpXplorer 0.9
		BIT5BLOG : Bit 5 Blog 8.01
		BENDERSCALENDAR : Benders Calendar 1.0
		EDGEWALL : Trac 0.9
		PDFDIRECTORY : PDFdirectory 0.9
		CUBECART : CubeCart 3.0

Original document		SECUNIA, [SA18454] SMBCMS Site Search Cross-Site Scripting Vulnerability (17.01.2006)
		SECUNIA, [SA18519] CubeCart Cross-Site Scripting Vulnerabilities (17.01.2006)
		SECUNIA, [SA18459] PDFdirectory SQL Injection Vulnerabilities (17.01.2006)
		SECUNIA, [SA18465] Trac HTML WikiProcessor Script Insertion Vulnerability (17.01.2006)
		night_warrior771_(at)_hotmail.com, PunBB BBCode URL Tag Script Injection Vulnerability (17.01.2006)
		Aliaksandr Hartsuyeu, [eVuln] Bit 5 Blog SQL Injection & Authentication Bypass Vulnerability (17.01.2006)
		Aliaksandr Hartsuyeu, [eVuln] Benders Calendar SQL Injection (17.01.2006)
		Aliaksandr Hartsuyeu, [eVuln] Bit 5 Blog JavaScript Insertion Vulnerability (17.01.2006)
		Oriol Torrent Santiago, Directory traversal in phpXplorer (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

CMU SNMP snmptrapd format string vulnerability
Published:		17.01.2006
Source:		BUGTRAQ
SecurityVulns ID:		5646
Type:		remote
Level:		7/10
Description:		Format string vulnerability in snmp_input() function.

Affected:		CMUSNMP : cmu-snmp 3.6
		CMUSNMP : cmu-snmp 3.7

Original document

info_(at)_digitalarmaments.com, Digital Armaments Security Advisory 01.16.2006: CMU SNMP utilities snmptrad Format String Vulnerability (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

Senao SI-7800H wireless VoIP phone multiple vulnerabilities
Published:		17.01.2006
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5648
Type:		remote
Level:		5/10
Description:		VxWorks debugger (TCP/17185) access.

Affected:

SENAO : Senao SI-7800H

Original document

Shawn Merdinger, [Full-disclosure] Senao SI-7800H VoIP wireless phone wdbrpc debug service UDP/17185 (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

MPM HP-180W wireless VoIP phone information leak
Published:		17.01.2006
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5650
Type:		remote
Level:		5/10
Description:		Undocumented TCP/9090 leaks information on phone configuration.

Affected:

MPM : MPM HP-180W

Original document

Shawn Merdinger, [Full-disclosure] MPM HP-180W VoIP wireless desktop phone undocumented port UDP/9090 (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

CounterPath eyeBeam software SIP IP Phone DoS
Published:		17.01.2006
Source:		BUGTRAQ
SecurityVulns ID:		5645
Type:		remote
Level:		5/10
Description:		Buffer overflow on oversized SIP packet header name.

Affected:

COUNTERPATH : eyeBeam

Original document

zwell_(at)_sohu.com, CounterPath eyeBeam Handing SIP header Vulnerabilities (17.01.2006)

Files:		eyeBeam handling SIP header DOS POC
Discuss:		Read or add your comments to this news (0 comments)

ACT P202S wireless VoIP phone multiple vulnerabilities
Published:		17.01.2006
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5647
Type:		remote
Level:		5/10
Description:		VxWorks debugger (TCP/17185) access, rlogin access.

Affected:

ACT : ACT P202S

Original document

Shawn Merdinger, [Full-disclosure] ACT P202S VoIP wireless phone multiple undocumented ports/services (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

Mozilla Thunderbird attachment spoofing
Published:		17.01.2006
Source:		SECUNIA
SecurityVulns ID:		5652
Type:		client
Level:		4/10
Description:		Filename can be spoofed by using large number of spaces, display icon - with Content-Type header.

Affected:

MOZILLA : Firebird 1.0

Original document

SECUNIA, [SA15907] Mozilla Thunderbird Attachment Spoofing Vulnerability (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

AOL buffer overflow
Published:		17.01.2006
Source:		SECUNIA
SecurityVulns ID:		5653
Type:		client
Level:		5/10
Description:		Buffer overflow in You've Got Pictures ActiveX Control.

Affected:		AOL : AOL 8.0
		AOL : AOL 9.0

Original document

SECUNIA, [SA18521] AOL You've Got Pictures ActiveX Control Buffer Overflow (17.01.2006)

Discuss:

Read or add your comments to this news (0 comments)