Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:17.03.2009
Source:
SecurityVulns ID:9746
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:XLINESOFT : PHPRunner 4.2
 CPANEL : Cpanel 11.24
 OPENCART : OpenCart 1.1
 RAPIDLEECH : Rapidleech 36
Original documentdocumentAdam Baldwin, NGENUITY-2009-005 OpenCart Order By Blind SQL Injection (17.03.2009)
 documentrizki.wicaksono_(at)_gmail.com, CPANEL File Manager XSS Vulnerability (17.03.2009)
 documentadmin_(at)_bugreport.ir, [USN-735-1] GStreamer Base Plugins vulnerability (17.03.2009)

MySQL dynamic functions loading vulnerability
Published:17.03.2009
Source:
SecurityVulns ID:9747
Type:local
Threat Level:
5/10
Description:It's possible to load dynamic library from any location; functions are still available after library is unloaded.
Affected:ORACLE : MySQL 5.0
CVE:CVE-2008-4098 (MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future time at which a pathname is modified to contain a symlink to a subdirectory of the MySQL home data directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4097.)
 CVE-2005-2573 (The mysql_create_function function in sql_udf.cc for MySQL 4.0 before 4.0.25, 4.1 before 4.1.13, and 5.0 before 5.0.7-beta, when running on Windows, uses an incomplete blacklist in a directory traversal check, which allows attackers to include arbitrary files via the backslash (\) character.)
Original documentdocumentrahimeh.khodadadi_(at)_gmail.com, reporting CVE (17.03.2009)

HP LaserJet printers crossite request forgery
Published:17.03.2009
Source:
SecurityVulns ID:9748
Type:remote
Threat Level:
5/10
Description:Crossite request forgery with form data in conjunctions with insecure default access.
Affected:HP : LaserJet M1522
 HP : Color LaserJet 2605
Original documentdocumentHenri Lindberg - Smilehouse Oy, HP Laserjet multiple models web management CSRF vulnerability & insecure default configuration (17.03.2009)

GOM Encoder buffer overflow
Published:17.03.2009
Source:
SecurityVulns ID:9749
Type:local
Threat Level:
4/10
Description:Buffer overflow on .srt subtitles processing.
Affected:GOMENCODER : GOM Encoder 1.0
Original documentdocumentSecurity Vulnerability Research Team, [Bkis-04-2009] GOM Encoder Heap-based Buffer Overflow (17.03.2009)

Avahi multicast DNS server DoS
Published:17.03.2009
Source:
SecurityVulns ID:9750
Type:remote
Threat Level:
5/10
Description:Resources exhaustions on mDNS packet parsing.
Affected:AVAHI : Avahi 0.6
CVE:CVE-2009-0758 (The originates_from_local_legacy_unicast_socket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast packets, which allows remote attackers to cause a denial of service (network bandwidth and CPU consumption) via a crafted legacy unicast mDNS query packet that triggers a multicast packet storm.)
Original documentdocumentMANDRIVA, [ MDVSA-2009:076 ] avahi (17.03.2009)

Rosoft Media Player buffer overflow
Published:17.03.2009
Source:
SecurityVulns ID:9751
Type:client
Threat Level:
5/10
Description:Buffer overflow on .rml playlists parsing.
Original documentdocumentmaroc-anti-connexion_(at)_hotmail.com, rosoft media player local BOF exploit multi tagets (17.03.2009)
Files:Rosoft media player free local buffer overflow Exploit multi targets

yaws Web server DoS
Published:17.03.2009
Source:
SecurityVulns ID:9752
Type:remote
Threat Level:
5/10
Description:DoS via HTTP request with oversized header.
Affected:YAWS : yaws 1.79
CVE:CVE-2009-0751 (Yaws before 1.80 allows remote attackers to cause a denial of service (memory consumption and crash) via a request with a large number of headers.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1740-1] New yaws packages fix denial of service (17.03.2009)

Rosoft Media Player buffer overflow
updated since 19.12.2007
Published:17.03.2009
Source:
SecurityVulns ID:8475
Type:remote
Threat Level:
6/10
Description:Stack buffer overflow on .M3U files parsing.
Affected:ROSOFT : Rosoft Media Player 4.1
Original documentdocumentsecurfrog_(at)_gmail.com, Rosoft Media Player 4.1.8 Buffer Overflow ( .M3U) (16.02.2008)
 documentdev code, [Full-disclosure] Rosoft Media Player <= 4.1.7 .M3U Stack Overflow (19.12.2007)
Files:Exploits Rosoft Media Player <= 4.1.7 .M3U Stack Overflow

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod