Computer Security
[EN] securityvulns.ru no-pyccku


scilab symbolic links vulnerability
Published:22.01.2009
Source:
SecurityVulns ID:9613
Type:remote
Threat Level:
5/10
Description:Symbolic links vulnerability on temporary files creation.
Affected:SCILAB : scilab 4.1
CVE:CVE-2008-4983 (scilab-bin 4.1.2 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/SciLink#####1, (b) /tmp/SciLink#####2, (c) /tmp/SciLink#####3, (d) /tmp/*.#####, (e) /tmp/*.#####.res, (f) /tmp/*.#####.err, and (g) /tmp/*.#####.diff temporary files, related to the (1) scilink, (2) scidoc, and (3) scidem scripts.)
Original documentdocumentGENTOO, [ GLSA 200901-14 ] Scilab: Insecure temporary file usage (22.01.2009)

Cisco Security Manager unauthorized access
Published:22.01.2009
Source:
SecurityVulns ID:9615
Type:remote
Threat Level:
7/10
Description:Unauthorized MySQL database access is possible if used with Cisco IPS Event Viewer.
Affected:CISCO : Cisco Security Manager 3.1
 CISCO : Cisco Security Manager 3.2
 CISCO : Cisco IPS Manager Express
CVE:CVE-2008-3820 (Cisco Security Manager 3.1 and 3.2 before 3.2.2, when Cisco IPS Event Viewer (IEV) is used, exposes TCP ports used by the MySQL daemon and IEV server, which allows remote attackers to obtain "root access" to IEV via unspecified use of TCP sessions to these ports.)
Original documentdocumentCISCO, Cisco Security Advisory: Cisco Security Manager Vulnerability (22.01.2009)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:22.01.2009
Source:
SecurityVulns ID:9617
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:JOOMLA : beamospetition 1.0 component for Joomla
Original documentdocumentr3d.w0rm_(at)_yahoo.com, Asp-project Cookie Handling (22.01.2009)
 documentvds_s_(at)_yahoo.com, Joomla component beamospetition 1.0.12 Sql Injection (22.01.2009)

Axis 70U Network Document Server multiple security vulnerabilities
Published:22.01.2009
Source:
SecurityVulns ID:9614
Type:remote
Threat Level:
5/10
Description:Privilege escalation, unauthorized files acccess, crossite scripting.
Affected:AXIS : AXIS 70U
Original documentdocumentDigital Security Research Group [DSecRG], [DSECRG-09-004] AXIS 70U Network Document Server - Privilege Escalation and XSS (22.01.2009)

Cisco Unified Communications Manager DoS
Published:22.01.2009
Source:
SecurityVulns ID:9616
Type:remote
Threat Level:
5/10
Description:Certificate Authority Proxy Function service DoS (TCP/3804).
Affected:CISCO : Unified Communications Manager 5.1
 CISCO : Unified Communications Manager 6.1
 CISCO : Unified Communications Manager 5.0
 CISCO : Unified Communications Manager 6.0
CVE:CVE-2009-0057 (The Certificate Authority Proxy Function (CAPF) service in Cisco Unified Communications Manager 5.x before 5.1(3e) and 6.x before 6.1(3) allows remote attackers to cause a denial of service (voice service outage) by sending malformed input over a TCP session in which the "client terminates prematurely.")
Original documentdocumentCISCO, Cisco Security Advisory: Cisco Unified Communications Manager CAPF Denial of Service Vulnerability` (22.01.2009)

Apple QuickTime multiple security vulnerabilities
updated since 22.01.2009
Published:23.01.2009
Source:
SecurityVulns ID:9612
Type:client
Threat Level:
7/10
Description:Memory corruptions on Cinepak, VR Track, STSD, AVI parsing.
CVE:CVE-2009-2006 (Multiple cross-site scripting (XSS) vulnerabilities in Dokeos 1.8.5, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) search_term parameter to main/auth/courses.php; the (2) frm_title and (3) frm_content parameters in a new personal agenda item action; the (4) title and (5) tutor_name parameters in a new course action; and the (6) student and (7) course parameters to main/mySpace/myStudents.php. NOTE: vectors 2 and 3 might only be exploitable via a separate CSRF vulnerability.)
 CVE-2009-0007 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QuickTime movie file containing invalid image width data in JPEG atoms within STSD atoms.)
 CVE-2009-0003 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via an AVI movie file with an invalid nBlockAlign value in the _WAVEFORMATEX structure.)
 CVE-2009-0002 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QTVR movie file with crafted THKD atoms.)
Original documentdocumentCERT, US-CERT Technical Cyber Security Alert TA09-022A -- Apple QuickTime Updates for Multiple Vulnerabilities (23.01.2009)
 documentZDI, ZDI-09-006: Apple QuickTime AVI Header nBlockAlign Heap Corruption Vulnerability (22.01.2009)
 documentZDI, ZDI-09-008: Apple QuickTime STSD JPEG Atom Heap Corruption Vulnerability (22.01.2009)
 documentZDI, ZDI-09-005: Apple QuickTime VR Track Header Atom Heap Corruption Vulnerability (22.01.2009)
 documentZDI, ZDI-09-007: Apple QuickTime Cinepak Codec MDAT Heap Corruption Vulnerability (22.01.2009)

VUPlayer buffer overflow
updated since 22.01.2009
Published:28.01.2009
Source:
SecurityVulns ID:9618
Type:local
Threat Level:
4/10
Description:Buffer overflow on .ASX / .VAX files parsing.
Affected:VUPLAYER : VUPlayer 2.49
Original documentdocumentstorms0uth_(at)_hotmail.com, VUplayer (.wax file) local buffer overflow crash exploit (28.01.2009)
 documentmaroc-anti-connexion_(at)_hotmail.com, VUPlayer 2.49 .ASX local universal BOF exploit (22.01.2009)
Files:VUPlayer 2.49 .ASX local universal BOF exploit
 VUplayer (.wax file) local buffer overflow crash exploit

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod