Computer Security
[EN] securityvulns.ru no-pyccku


amule shell characters vulnerability
Published:24.06.2009
Source:
SecurityVulns ID:10008
Type:client
Threat Level:
5/10
Description:Shell characters vulnerability on video file filename.
Affected:AMULE : amule 2.1
CVE:CVE-2009-1440 (Incomplete blacklist vulnerability in DownloadListCtrl.cpp in amule 2.2.4 allows remote attackers to conduct argument injection attacks into a command for mplayer via a crafted filename.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1821-1] New amule packages fix insufficient input sanitising (24.06.2009)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:24.06.2009
Source:
SecurityVulns ID:10009
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:MAHARA : mahara 1.0
 JOMMLA : acajoom 3.2
 base : BASE 1.2
Original documentdocumenttimmedin_(at)_gmail.com, Authentication Bypas in BASE version 1.2.4 and prior (24.06.2009)
 documentDEBIAN, [SECURITY] [DSA 1822-1] New mahara packages fix cross-site scripting (24.06.2009)
 documentJan van Niekerk, Back door trojan in acajoom-3.2.6 for joomla (24.06.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod