Search:Vulnerability:24.09.2007 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

ImageMagic multiple security vulnerabilities
Published: 24.09.2007
Source: BUGTRAQ
SecurityVulns ID: 8178
Type: library
Level: 6/10
Description: Multiple vulnerabilities on BMP, DCM and another graphics formats parsing.

Affected: IMAGEMAGIC : ImageMagic 6.3
CVE: CVE-2007-4988 (Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overflow.)
CVE-2007-4987 (Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted image file, which triggers the writing of a '\0' character to an out-of-bounds address.)
CVE-2007-4986 (Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.)
CVE-2007-4985 (ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or (2) an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong function calls.)

Original document IDEFENSE, iDefense Security Advisory 09.19.07: Multiple Vendor ImageMagick Multiple Integer Overflow Vulnerabilities (24.09.2007)

IDEFENSE, iDefense Security Advisory 09.19.07: Multiple Vendor ImageMagick Off-By-One Vulnerability (24.09.2007)

IDEFENSE, iDefense Security Advisory 09.19.07: Multiple Vendor ImageMagick Multiple Denial of Service Vulnerabilities (24.09.2007)

document IDEFENSE, iDefense Security Advisory 09.19.07: Multiple Vendor ImageMagick Sign Extension Vulnerability (24.09.2007)

Discuss: Read or add your comments to this news (0 comments)

CA ARCServe Backup multiple security vulnerabilities
Published: 24.09.2007
Source: BUGTRAQ
SecurityVulns ID: 8179
Type: remote
Level: 7/10
Description: Authentication bypass, multiple buffer overflows TCP/1900.

Affected: CA : ARCserve Backup 11.1
CA : ARCserve Backup 11.5
CA : ARCServe Backup 4.0
CA : CA Desktop Management Suite 11.2
CA : CA Protection Suites 2
CVE: CVE-2007-5006
CVE-2007-5005
CVE-2007-5004
CVE-2007-5003
CVE-2007-3216 (Multiple unspecified vulnerabilities in the server component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via unknown attack vectors. NOTE: this information is based upon a vague pre-advisory. It is possible that this will be SPLIT when more details are released.)

Original document CA, [Full-disclosure] [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities (24.09.2007)

EEYE, EEYE: Multiple Vulnerabilities in CA ARCserve for Laptops & Desktops (24.09.2007)

IDEFENSE, iDefense Security Advisory 09.20.07: CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities (24.09.2007)

document IDEFENSE, iDefense Security Advisory 09.20.07: CA ARCserve Backup for Laptops and Desktops Authentication Bypass Vulnerability (24.09.2007)

Discuss: Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published: 24.09.2007
Source:
SecurityVulns ID: 8183
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: WORDPRESS : WordPress 2.0
NEURONNEWS : neuron news 1.0

Original document x0kster_(at)_gmail.com, xcms all version arbitrary code execution (24.09.2007)

pagvacito, 2 vanilla XSS on Wordpress ‘wp-register.php’ (24.09.2007)

h3llcode_(at)_hotmail.it, Neuron News 1.0 Local file inclusion (index.php) (24.09.2007)

Files: Exploits XCMS Arbitrary Command Execution Vulnerability
Discuss: Read or add your comments to this news (0 comments)

GreenSQL SQL firewall crossite scripting
Published: 24.09.2007
Source: BUGTRAQ
SecurityVulns ID: 8182
Type: remote
Level: 5/10
Description: Crossite scripting via admin's panel alerts.

Affected: GREENSQL : GreenSQL 0.6

Original document laurent gaffie, greensql firewall permanent xss (24.09.2007)

Discuss: Read or add your comments to this news (0 comments)

NetSupport Manager unauthorized access
updated since 24.09.2007
Published: 05.10.2007
Source: BUGTRAQ
SecurityVulns ID: 8181
Type: remote
Level: 6/10
Description: Unauthenticated access is possible thorugh TCP/5405.

Affected: NETSUPPORT : NetSupport Manager 10.20

Original document VulnerabilityResearch_(at)_digitaldefense.net, DDIVRT-2007-05 NetSupport Manager Client Buffer Overflow (05.10.2007)

VulnerabilityResearch_(at)_digitaldefense.net, DDIVRT-2007-04 NetSupport Manager Authentication Bypass (24.09.2007)

Discuss: Read or add your comments to this news (0 comments)

Barracuda Spam Firewall crossite scripting
updated since 24.09.2007
Published: 24.05.2008
Source: BUGTRAQ
SecurityVulns ID: 8180
Type: remote
Level: 5/10
Description: Crossite scripting with Web Syslog, with web administration login page.

Affected: BARRACUDENETWORK : Barracuda Spam Firewall 3.4

Original document Mark Crowther, IRM Security Advisory : Barracuda Networks Spam Firewall Cross-Site Scripting Vulnerability (24.05.2008)

ISR-noreply, [ISR] - Barracuda Spam Firewall. Cross-Site Scripting (24.09.2007)

Discuss: Read or add your comments to this news (0 comments)

test server