Computer Security
[EN] securityvulns.ru no-pyccku


Adobe Flash Plasyer memory corruption
Published:24.07.2009
Source:
SecurityVulns ID:10093
Type:client
Threat Level:
8/10
Description:Memory corruption on Flash parsing.
Affected:ADOBE : Flash Player 9.0
 ADOBE : Flash Player 10.0
 ADOBE : Acrobat 9.1
 ADOBE : Adobe Reader 9.1
CVE:CVE-2009-1862 (Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via (1) a crafted Flash application in a .pdf file or (2) a crafted .swf file, related to authplay.dll, as exploited in the wild in July 2009.)
Original documentdocumentCERT, US-CERT Technical Cyber Security Alert TA09-204A -- Adobe Flash Vulnerability Affects Flash Player and Other Adobe Products (24.07.2009)
 documentADOBE, Security advisory for Adobe Reader, Acrobat and Flash Player (24.07.2009)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:24.07.2009
Source:
SecurityVulns ID:10094
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:DRUPAL : Drupal 6.12
 JOOMLA : Joomla! 1.5
Original documentdocumentJustin C. Klein Keane, [Full-disclosure] Drupal 6 Date/Calendar XSS Vulnerability (24.07.2009)
 documentISecAuditors Security Advisories, [ISecAuditors Security Advisories] Joomla! < 1.5.12 Multiple Full Path Disclosure vulnerabilities (24.07.2009)

Communigate Pro crossite scripting
Published:24.07.2009
Source:
SecurityVulns ID:10095
Type:remote
Threat Level:
5/10
Description:Crossite scripting on URLs inside message.
Affected:COMMUNIGATE : Communigate Pro 5.2
Original documentdocumentAndrea Purificato - bunker, Stored XSS on Communigate Pro 5.2.14 and prior versions (24.07.2009)

Asante FM2008 backdoor account
updated since 16.12.2004
Published:24.07.2009
Source:
SecurityVulns ID:4269
Type:remote
Threat Level:
5/10
Description:Undocumented superuser/asante account.
Affected:ASANTE : Asante FM2008
Original documentdocumentJoe Philipps, Re: Asante FM2008 10/100 Ethernet switch backdoor login (24.07.2009)
 documentJoe Philipps, Asante FM2008 10/100 Ethernet switch backdoor login (16.12.2004)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod