Computer Security
[EN] securityvulns.ru no-pyccku


OpenSG / EasyHDR Pro / ksquirrel-libs buffer overflow
updated since 20.01.2009
Published:26.02.2009
Source:
SecurityVulns ID:9608
Type:library
Threat Level:
5/10
Description:Buffer overflow on Radiance RGBE (*.hdr) images parsing.
Affected:EASYHDR : EasyHDR Pro 1.60
 OPENSG : OpenSG 1.8
 KSQUIRREL : ksquirrel-libs 0.8
CVE:CVE-2008-5263 (Multiple stack-based buffer overflows in the mt_codec::getHdrHead function in kernel/kls_hdr/fmt_codec_hdr.cpp in ksquirrel-libs 0.8.0 allow context-dependent attackers to execute arbitrary code via a crafted Radiance RGBE image (aka .hdr file).)
Original documentdocumentSECUNIA, Secunia Research: ksquirrel-libs Radiance RGBE Buffer Overflows (26.02.2009)
 documentSECUNIA, [Full-disclosure] Secunia Research: OpenSG Radiance RGBE Buffer Overflow Vulnerability (20.01.2009)
 documentSECUNIA, [Full-disclosure] Secunia Research: EasyHDR Pro Radiance RGBE Buffer Overflow (20.01.2009)

Huawei HSDPA routers SMS crossite scripting
Published:26.02.2009
Source:
SecurityVulns ID:9692
Type:remote
Threat Level:
5/10
Description:SMS text is shown unfiltered.
Affected:HUAWEI : Huawei E960
Original documentdocumentrizki.wicaksono_(at)_gmail.com, XSS Attack using SMS to Optus/Huawei E960 HSDPA Router (26.02.2009)

HP Virtual Rooms ActiveX code execution
Published:26.02.2009
Source:
SecurityVulns ID:9693
Type:client
Threat Level:
5/10
Affected:HP : Virtual Rooms client 7.0
CVE:CVE-2009-0208 (Unspecified vulnerability in HP Virtual Rooms Client before 7.0.1, when running on Windows, allows remote attackers to execute arbitrary code via unknown vectors.)
Original documentdocumentHP, [security bulletin] HPSBGN02410 SSRT080135 rev.1 - HP Virtual Rooms Client Running on Windows, Remote Execution of Arbitrary Code (26.02.2009)

Orbit Downloader buffer overflow
Published:26.02.2009
Source:
SecurityVulns ID:9694
Type:client
Threat Level:
5/10
Description:Buffer overflow on oversized URL.
Affected:ORBITDOWNLOADER : Orbit Downloader 2.8
CVE:CVE-2009-0187 (Stack-based buffer overflow in Orbit Downloader 2.8.2 and 2.8.3, and possibly other versions before 2.8.5, allows remote attackers to execute arbitrary code via a crafted HTTP URL with a long host name, which is not properly handled when constructing a "Connecting" log message.)
Original documentdocumentSECUNIA, Secunia Research: Orbit Downloader Long URL Parsing Buffer Overflow (26.02.2009)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:26.02.2009
Source:
SecurityVulns ID:9695
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:PPIM : pPIM 1.0
 OPENSITE : OpenSite 2.1
 JONAS : JOnAS 4.10
 TAIFAJOBS : taifajobs 1.0
Original documentdocumentadv_(at)_e-rdc.org, [ECHO_ADV_103$2009] taifajobs <= 1.0 (jobid) Remote SQL Injection Vulnerability (26.02.2009)
 documentrezazahfaran_(at)_gmail.com, Golabi CMS Remote File Inclusion Vulnerability (26.02.2009)
 documentDigital Security Research Group [DSecRG], [DSECRG-09-008] JOnAS(4.10.3) - Linked XSS Vulnerability (26.02.2009)
 documentNam Nguyen, [BMSA-2009-03] Multiple vulnerabilities in OpenSite v2.1 (26.02.2009)
 documentJustin C. Klein Keane, pPIM Multiple Vulnerabilities (26.02.2009)

Shoutcast server buffer overflow
Published:26.02.2009
Source:
SecurityVulns ID:9696
Type:client
Threat Level:
5/10
Description:Buffer overflow in DNAS Relay service on master server reply parsing.
Affected:SHOUTCAST : SHOUTcast 1.9
Original documentdocumentSECUNIA, Secunia Research: SHOUTcast DNAS Relay Server Buffer Overflow (26.02.2009)

Apache Tomcat information leak
Published:26.02.2009
Source:
SecurityVulns ID:9697
Type:remote
Threat Level:
6/10
Description:Under some conditions it's possible to retrieve data from previous POST request.
Affected:APACHE : Tomcat 4.1
 APACHE : Tomcat 5.5
CVE:CVE-2008-4308 (The doRead method in Apache Tomcat 4.1.32 through 4.1.34 and 5.5.10 through 5.5.20 does not return a -1 to indicate when a certain error condition has occurred, which can cause Tomcat to send POST content from one request to a different request.)
Original documentdocumentAPACHE, [SECURITY] CVE-2008-4308: Tomcat information disclosure vulnerability (26.02.2009)

BitDefender crossaplication scripting
Published:26.02.2009
Source:
SecurityVulns ID:9698
Type:client
Threat Level:
6/10
Description:Filename is displayed without filtering during scanning.
Original documentdocumentjplopezy_(at)_gmail.com, BitDefender Internet Security XSS (26.02.2009)

Cisco Unified MeetingPlace Web Conferencing multiple security vulnerabilities
Published:26.02.2009
Source:
SecurityVulns ID:9699
Type:remote
Threat Level:
7/10
Description:Authentication bypass, crossite scripting.
Affected:CISCO : Unified MeetingPlace Web Conferencing 6.0
 CISCO : Unified MeetingPlace Web Conferencing 7.0
CVE:CVE-2009-0614 (Unspecified vulnerability in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 before 6.0(517.0) (aka 6.0 MR4) and 7.0 before 7.0(2) (aka 7.0 MR1) allows remote attackers to bypass authentication and obtain administrative access via a crafted URL.)
Original documentdocumentsecurity.assurance_(at)_nab.com.au, Cisco Unified MeetingPlace Web Conferencing Stored Cross Site Scripting Vulnerability (26.02.2009)
 documentCISCO, Cisco Security Advisory: Cisco Unified MeetingPlace Web Conferencing Authentication Bypass Vulnerability (26.02.2009)

Cisco ACE multiple security vulneraiblities
Published:26.02.2009
Source:
SecurityVulns ID:9700
Type:remote
Threat Level:
7/10
Description:Privilege escalation, default accounts, DoS.
Affected:CISCO : Cisco ACE 4710
CVE:CVE-2009-0625 (Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8.0) allows remote attackers to cause a denial of service (device reload) via a crafted SNMPv3 packet.)
 CVE-2009-0624 (Unspecified vulnerability in the SNMPv2c implementation in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3) and Cisco ACE 4710 Application Control Engine Appliance before A3(2.1) allows remote attackers to cause a denial of service (device reload) via a crafted SNMPv1 packet.)
 CVE-2009-0623 (Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3) and Cisco ACE 4710 Application Control Engine Appliance before A3(2.1) allows remote attackers to cause a denial of service (device reload) via a crafted SSH packet.)
 CVE-2009-0622 (Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8a) allows remote authenticated users to execute arbitrary operating-system commands through a command line interface (CLI).)
 CVE-2009-0621 (Cisco ACE 4710 Application Control Engine Appliance before A1(8a) uses default (1) usernames and (2) passwords for (a) the administrator, (b) web management, and (c) device management, which makes it easier for remote attackers to perform configuration changes to the Device Manager and other components, or obtain operating-system access.)
 CVE-2009-0620 (Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.1) uses default (1) usernames and (2) passwords for (a) the administrator and (b) web management, which makes it easier for remote attackers to perform configuration changes or obtain operating-system access.)
 CVE-2009-0618 (Unspecified vulnerability in the Java agent in Cisco Application Networking Manager (ANM) before 2.0 Update A allows remote attackers to gain privileges, and cause a denial of service (service outage) by stopping processes, or obtain sensitive information by reading configuration files.)
 CVE-2009-0617 (Cisco Application Networking Manager (ANM) before 2.0 uses a default MySQL root password, which makes it easier for remote attackers to execute arbitrary operating-system commands or change system files.)
 CVE-2009-0616 (Cisco Application Networking Manager (ANM) before 2.0 uses default usernames and passwords, which makes it easier for remote attackers to access the application, or cause a denial of service via configuration changes, related to "default user credentials during installation.")
 CVE-2009-0615 (Directory traversal vulnerability in Cisco Application Networking Manager (ANM) before 2.0 and Application Control Engine (ACE) Device Manager before A3(2.1) allows remote authenticated users to read or modify arbitrary files via unspecified vectors, related to "invalid directory permissions.")
Original documentdocumentCISCO, Cisco Security Advisory: Cisco ACE Application Control Engine Device Manager and Application Networking Manager Vulnerabilities (26.02.2009)
 documentCISCO, Cisco Security Advisory: Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine (26.02.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod