Search:Vulnerability:17.11.2007
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 15.11.2007
Published:
17.11.2007
Source:
SecurityVulns ID:
8347
Type:
remote
Level:
5
/10
Description:
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:
RUBY
:
Ruby on Rails 1.2
LIFERAY
:
Liferay Portal Enterprise 4.1
CVE:
CVE-2007-5380
CVE-2007-3227
(Cross-site scripting (XSS) vulnerability in the to_json function in Ruby on Rails before edge 9606 allows remote attackers to inject arbitrary web script via the input values.)
Original document
thetaung_(at)_gmail.com
,
Javamail login username and password same email problem
(
17.11.2007
)
research_(at)_procheckup.com
,
PR07-02: XSS on Liferay Portal Enterprise 4.1.1 login page ('login' parameter)
(
17.11.2007
)
MC Iglo
,
Aida-Web Information Exposure
(
17.11.2007
)
admin_(at)_biyofrm.com
,
Sciurus Hosting Panel Code İnjection
(
17.11.2007
)
GENTOO
,
[ GLSA 200711-17 ] Ruby on Rails: Multiple vulnerabilities
(
15.11.2007
)
Files:
Exploits Sciurus Hosting Panel Code injection
Discuss:
Read or add your comments to this news (0 comments)
Aruba Mobility Controller crossite scripting
Published:
17.11.2007
Source:
BUGTRAQ
SecurityVulns ID:
8350
Type:
remote
Level:
5
/10
Description:
Crossite scripting in administration interface.
Affected:
ARUBA
:
Aruba 800
Original document
research_(at)_procheckup.com
,
PR07-26: Persistent XSS on Aruba 800 Mobility Controller's login page
(
17.11.2007
)
Discuss:
Read or add your comments to this news (0 comments)
libFLAC / WinAMP multiple security vulnerabilities
Published:
17.11.2007
Source:
BUGTRAQ
SecurityVulns ID:
8351
Type:
client
Level:
6
/10
Description:
14 different vulnerabilities exist on FLAC media format files parsing.
Affected:
LIBFLAC
:
libFLAC 1.2
Original document
EEYE
,
EEYE: Multiple Vulnerabilities In .FLAC File Format and Various Media Applications
(
17.11.2007
)
Discuss:
Read or add your comments to this news (0 comments)
AhnLab AntiVirus memory corruption
Published:
17.11.2007
Source:
BUGTRAQ
SecurityVulns ID:
8353
Type:
remote
Level:
6
/10
Description:
Memory corruption on ZIP archives parsing.
Affected:
AHNLAB
:
Ahnlab V3 Internet Security 2008
Original document
Sowhat .
,
AhnLab AntiVirus Remote Kernel Memory Corruption
(
17.11.2007
)
Discuss:
Read or add your comments to this news (0 comments)
Apple Mac OS X multiple security vulnerabilities
updated since 15.11.2007
Published:
17.11.2007
Source:
FULL-DISCLOSURE
SecurityVulns ID:
8348
Type:
remote
Level:
6
/10
Description:
Mach ports privilege escalation. Multiple Appletalk protocol handling vulnerabilities. ldt privilege escalation.
Affected:
APPLE
:
MacOS X 10.3
APPLE
:
MacOS X 10.4
CVE:
CVE-2007-4269
CVE-2007-4268
CVE-2007-4267
CVE-2007-3749
Original document
RISE Security
,
[RISE-2007004] Apple Mac OS X 10.4.x Kernel i386_set_ldt() Integer Overflow Vulnerability
(
17.11.2007
)
RISE Security
,
[Full-disclosure] [RISE-2007004] Apple Mac OS X 10.4.x Kernel i386_set_ldt() Integer Overflow Vulnerability
(
16.11.2007
)
tk_(at)_trapkit.de
,
[TKADV2007-001] Mac OS X TIOCSETD IOCTL Kernel Memory Corruption Vulnerability
(
16.11.2007
)
CERT
,
US-CERT Technical Cyber Security Alert TA07-319A -- Apple Updates for Multiple Vulnerabilities
(
16.11.2007
)
IDEFENSE
,
[Full-disclosure] iDefense Security Advisory 11.14.07: Apple Mac OS X AppleTalk mbuf Kernel Heap Overflow Vulnerability
(
15.11.2007
)
IDEFENSE
,
[Full-disclosure] iDefense Security Advisory 11.14.07: Apple Mac OS X Mach Port Inheritance Privilege Escalation Vulnerability
(
15.11.2007
)
Files:
Exploits Apple Mac OS X 10.4.x Kernel i386_set_ldt() Integer Overflow Vulnerability
Discuss:
Read or add your comments to this news (0 comments)
Microsoft Jet Engine MDB files parsing buffer overflow
Published:
17.11.2007
Source:
BUGTRAQ
SecurityVulns ID:
8352
Type:
library
Level:
5
/10
Description:
Buffer overflow on MDB file access.
Affected:
MICROSOFT
:
Windows 2000 Server
MICROSOFT
:
Windows 2000 Professional
MICROSOFT
:
Windows XP
MICROSOFT
:
Windows 2003 Server
MICROSOFT
:
Windows Vista
Original document
cocoruder
,
Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability
(
17.11.2007
)
Files:
Exploits Microsoft Jet Engine MDB File Parsing Stack Overflow
Discuss:
Read or add your comments to this news (0 comments)
ComponentOne FlexGrid ActiveX multiple buffer overflows
Published:
17.11.2007
Source:
BUGTRAQ
SecurityVulns ID:
8354
Type:
client
Level:
5
/10
Description:
Buffer overflows on different object properties.
Affected:
COMPONENTONE
:
FlexGrid 7.1
Original document
Elazar Broad
,
[Full-disclosure] ComponentOne FlexGrid 7.1 Light Multiple Stack Overflows
(
17.11.2007
)
Files:
ComponentOne FlexGrid 7.1 Light Multiple Stack Overflows PoC
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
