Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:21.11.2011
Source:
SecurityVulns ID:12045
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:FREEWEBSHOP : FreeWebshop 2.2
 ADOBE : ColdFusion 9.0
 JOOMLA : Joomla 1.6
 WEBERP : webERP 4.05
 ZOHO : ManageEngine ADSelfServicePlus 4.5
 TIKI : Tiki Wiki 7.2
 TIKI : Tiki Wiki 8.0
 WORDPRESS : Zingiri Web Shop 2.2
 PHPDOCUMENTOR : PhpDocumentor 1.4
 WORDPRESS : WP-Cumulus 1.23
 INFOBLOX : NetMRI 6.2
CVE:CVE-2011-4455
 CVE-2011-4454
Original documentdocumentJose Carlos de Arriba, [FOREGROUND SECURITY 2011-004] Infoblox NetMRI 6.2.1 Multiple Cross-Site Scripting (XSS) vulnerabilities (21.11.2011)
 documentMustLive, New XSS vulnerability in WP-Cumulus for WordPress and multiple web applications and millions web sites (21.11.2011)
 documentGENTOO, [ GLSA 201111-04 ] phpDocumentor: Function call injection (21.11.2011)
 documentNetsparker Advisories, XSS vulnerability in Joomla 1.6.3 (21.11.2011)
 documentn0b0d13s_(at)_gmail.com, Wordpress Zingiri Web Shop Plugin <= 2.2.3 Remote Code Execution Vulnerability (21.11.2011)
 documentn0b0d13s_(at)_gmail.com, FreeWebshop <= 2.2.9 R2 (ajax_save_name.php) Remote Code Execution Vulnerability (21.11.2011)
 documentAmir_(at)_irist.ir, wordpress Flexible Custom Post Type plugin Xss Vulnerabilities (21.11.2011)
 documentsecurity_(at)_infoserve.de, Tiki Wiki CMS Groupware Multiple XSS vulnerabilities (21.11.2011)
 documentJames Webb, Cross-Site Scripting Vuln in Zoho ManageEngine ADSelfServicePlus (21.11.2011)
 documentHigh-Tech Bridge Security Research, Multiple vulnerabilities in webERP (21.11.2011)
 documentMustLive, IL, DoS и FPD уязвимости в Adobe ColdFusion (21.11.2011)

ProFTPD memory corruption
Published:21.11.2011
Source:
SecurityVulns ID:12046
Type:remote
Threat Level:
6/10
Description:Use after free()
Affected:PROFTPD : ProFTPD 1.3
CVE:CVE-2011-4130 (Use-after-free vulnerability in the Response API in ProFTPD before 1.3.3g allows remote authenticated users to execute arbitrary code via vectors involving an error that occurs after an FTP data transfer.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2346-1] proftpd-dfsg security update (21.11.2011)

DVR Remote ActiveX code execution
Published:21.11.2011
Source:
SecurityVulns ID:12047
Type:client
Threat Level:
5/10
Description:It's possible to load dynamic library via DVRobot.DLL
CVE:CVE-2011-3828 (DVRemoteAx.ax 2.1.0.39 in the DVR Remote ActiveX control allows remote attackers to execute arbitrary code via a crafted DVRobot.dll file in a manifest directory on a web server.)
Original documentdocumentSECUNIA, Secunia Research: DVR Remote ActiveX Control DVRobot Library Loading Vulnerability (21.11.2011)

CA Directory buffer overflow
Published:21.11.2011
Source:
SecurityVulns ID:12048
Type:remote
Threat Level:
6/10
Description:Buffer overflow on SNMP-packet parsing.
CVE:CVE-2011-3849 (Unspecified vulnerability in dxserver before 6279 in CA Directory 8.1 and CA Directory r12 before SP7 CR1 allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP packet.)
Original documentdocumentCA, CA20111116-01: Security Notice for CA Directory (21.11.2011)

OpenTTD DoS
updated since 21.11.2011
Published:21.11.2011
Source:
SecurityVulns ID:12049
Type:remote
Threat Level:
3/10
Description:Multiple DoS conditions.
CVE:CVE-2011-3343 (Multiple buffer overflows in OpenTTD before 1.1.3 allow local users to cause a denial of service (daemon crash) or possibly gain privileges via (1) a crafted BMP file with RLE compression or (2) crafted dimensions in a BMP file.)
 CVE-2011-3342 (Multiple buffer overflows in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via vectors related to (1) NAME, (2) PLYR, (3) CHTS, or (4) AIPL (aka AI config) chunk loading from a savegame.)
 CVE-2011-3341 (Multiple off-by-one errors in order_cmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted CMD_INSERT_ORDER command.)
 CVE-2010-4168 (Multiple use-after-free vulnerabilities in OpenTTD 1.0.x before 1.0.5 allow (1) remote attackers to cause a denial of service (invalid write and daemon crash) by abruptly disconnecting during transmission of the map from the server, related to network/network_server.cpp; (2) remote attackers to cause a denial of service (invalid read and daemon crash) by abruptly disconnecting, related to network/network_server.cpp; and (3) remote servers to cause a denial of service (invalid read and application crash) by forcing a disconnection during the join process, related to network/network.cpp.)
Original documentdocumentGENTOO, [ GLSA 201111-03 ] OpenTTD: Multiple vulnerabilities (21.11.2011)

iGuard Biometric Access Control multiples security
Published:21.11.2011
Source:
SecurityVulns ID:12050
Type:remote
Threat Level:
5/10
Original documentdocumentVulnerability Lab, iGuard Biometric Access Control - Multiple Vulnerabilities (21.11.2011)

InduSoft WebStudio ActiveX buffer overflow
updated since 05.09.2011
Published:21.11.2011
Source:
SecurityVulns ID:11894
Type:client
Threat Level:
5/10
Description:Different ActiveX methods buffer overflows.
Affected:INDUSOFT : InduSoft Web Studio 7.0
CVE:CVE-2011-4052 (Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote attackers to execute arbitrary code via a crafted 0x15 (aka Remove File) operation for a file with a long name.)
 CVE-2011-4051 (CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 does not require authentication, which allows remote attackers to execute arbitrary code via vectors related to creation of a file, loading a DLL, and process control.)
 CVE-2011-0342 (Multiple buffer overflows in the InduSoft ISSymbol ActiveX control in ISSymbol.ocx 301.1104.601.0 in InduSoft Web Studio 7.0B2 hotfix 7.0.01.04 allow remote attackers to execute arbitrary code via a long parameter to the (1) Open, (2) Close, or (3) SetCurrentLanguage method.)
Original documentdocumentZDI, ZDI-11-329 : InduSoft WebStudio CEServer Operation 0x15 Remote Code Execution Vulnerability (21.11.2011)
 documentZDI, ZDI-11-330 : InduSoft WebStudio Unauthenticated Remote Operations Remote Code Execution Vulnerability (21.11.2011)
 documentSECUNIA, Secunia Research: InduSoft ISSymbol ActiveX Control Buffer Overflow Vulnerabilities (05.09.2011)

HP Network Node Manager i multiple security vulnerabilities
updated since 21.11.2011
Published:27.11.2011
Source:
SecurityVulns ID:12052
Type:remote
Threat Level:
6/10
Description:Crossite scripting, unauthorized access, information disclosure.
Affected:HP : Network Node Manager i 9.0
 HP : Network Node Manager i 9.1
CVE:CVE-2011-4156 (Cross-site scripting (XSS) vulnerability in HP Network Node Manager i (NNMi) 9.0x and 9.1x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-4155.)
 CVE-2011-4155 (Cross-site scripting (XSS) vulnerability in HP Network Node Manager i (NNMi) 9.0x and 9.1x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-4156.)
 CVE-2011-1534 (Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x allows remote authenticated users to obtain access to processes via unknown vectors.)
 CVE-2010-0738 (The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET handler by using a different method.)
Original documentdocument0a29 40, 0A29-11-1 : Cross-Site Scripting vulnerabilities in HP Network Node Manager i 9.10 (27.11.2011)
 documentHP, [security bulletin] HPSBMU02714 SSRT100244 rev.2 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Disclosure of Information (21.11.2011)
 documentHP, [security bulletin] HPSBMA02659 SSRT100440 rev.2 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access (21.11.2011)
 documentHP, [security bulletin] HPSBMU02708 SSRT100633 rev.1 - HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Cross Site Scripting (XSS) (21.11.2011)

Cisco TelePresence System Integrator / Cisco IP Video Phone E20 default account vulnereability
updated since 21.11.2011
Published:20.01.2012
Source:
SecurityVulns ID:12051
Type:remote
Threat Level:
6/10
Description:Default root account is enabled.
Affected:CISCO : Cisco E20
Original documentdocumentCISCO, Cisco Security Advisory: Cisco IP Video Phone E20 Default Root Account (20.01.2012)
 documentCISCO, Cisco Security Advisory: Cisco TelePresence System Integrator C Series and Cisco TelePresence EX Series Device Default Root Account Manufacturing Error (21.11.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod