Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		26.05.2006
Source:
SecurityVulns ID:		6190
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		PHPWEBSITE : phpWebSite 0.8
		WORDPRESS : WordPress 2.0
		IFLANCE : iFlance 1.1
		PRENEWSMANAGER : Pre News Manager 1.0
		PREPROJECTS : Pre Shopping Mall 1.0
		CMSMUNDO : CMS Mundo 1.0
		GUESTBOOKXL : GuestbookXL 1.3
		ELITEBOARD : Elite-Board 1.1
		IFDATE : iFdate 1.2
		CHATPAT : ChatPat 1.0

Original document		mx_(at)_hackmx.net, phpFoX All Version Login Exploit (26.05.2006)
		luny_(at)_youfucktard.com, AZ Photo Album Script Pro (26.05.2006)
		luny_(at)_youfucktard.com, ChatPat v1.0 (26.05.2006)
		luny_(at)_youfucktard.com, iFdate v1.2 (26.05.2006)
		luny_(at)_youfucktard.com, Realty Pro One Property Listing Script (26.05.2006)
		luny_(at)_youfucktard.com, Bulletin Board Elite-Board v.1.1 (26.05.2006)
		luny_(at)_youfucktard.com, GuestbookXL 1.3 (26.05.2006)
		luny_(at)_youfucktard.com, CMS Mundo V1.0 (26.05.2006)
		luny_(at)_youfucktard.com, Pre Shopping Mall v1.0 (26.05.2006)
		farhad koosha, [KAPDA::#44] - NewsCMSLite Login ByPass by Cookie (26.05.2006)
		luny_(at)_youfucktard.com, Pre News Manager v1.0 (26.05.2006)
		luny_(at)_youfucktard.com, iFlance v1.1 (26.05.2006)

Files:		WordPress <= 2.0.2 'cache' shell injection exploit
Discuss:		Read or add your comments to this news (0 comments)

libtiff buffer overflow
Published:		26.05.2006
Source:		VULN-DEV
SecurityVulns ID:		6192
Type:		library
Level:		6/10
Description:		Stack-based buffer overflow in tiffsplit.

Affected:

LIBTIFF : libtiff 3.8

Original document

A. Alejandro Hernández, tiffsplit (libtiff <= 3.8.2) bss & stack buffer overflow... (26.05.2006)

Files:		libtiff tiffsplic PoC
Discuss:		Read or add your comments to this news (0 comments)

Microsoft Internet Explorer memory corruption
Published:		26.05.2006
Source:		FULL-DISCLOSURE
SecurityVulns ID:		6193
Type:		client
Level:		6/10
Description:		resizeBy() method negative values memory corruption.

Affected:

MICROSOFT : Internet Explorer 6.0

Original document

r k, [Full-disclosure] Internet Explorer Ver 6.0.2800.1106 vulnerability (26.05.2006)

Files:		Exploits MSIE ResizeBy() negative values
Discuss:		Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) updated since 20.04.2006
Published:		26.05.2006
Source:		BUGTRAQ
SecurityVulns ID:		6028
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		INVISION : Invision Power Board 2.1
		RECHNUNGSZENTRAL : RechnungsZentrale 2
		PHPSURVEYOR : PHPSurveyor 0.995
		AWSTATS : AWStats 6.5
		PORTALPACK : Portal Pack 6.0
		AASIMEDIA : Net Clubs Pro 4.0
		GREENMINUTE : Green Minute 1.0
		MDNEWS : MD News 1.0
		NT : N.T. 1.1
		PCPIN : PCPIN Chat 5.0
		ASPSITEM : ASPSitem 1.83
		WWWTHREAD : WWWThread RC 3
		MANICWEB : MWGuest 2.1

Original document		Marko Seppänen, Article suggestion: "wannabe security group members" doing harm to software developers (26.05.2006)
		Aliaksandr Hartsuyeu, [eVuln] MWGuest XSS Vulnerability (20.04.2006)
		r0t, AWStats 6.5.x multiple vuln. (20.04.2006)
		SECUNIA, [SA19717] W2B Online Banking "SID" Cross-Site Scripting Vulnerability (20.04.2006)
		SECUNIA, [SA19684] I-Rater Platinum "include_path" Parameter File Inclusion Vulnerability (20.04.2006)
		botan_(at)_linuxmail.org, ContentBoxx Login.php Cross-Site Scripting (20.04.2006)
		o.y.6_(at)_hotmail.com, WWWThread RC 3 MultBugs (20.04.2006)
		n0m3rcy_(at)_bsdmail.org, Shbablek Mail Vulnerablitiy - Cross-Site Scripting (20.04.2006)
		qex_(at)_bsdmail.org, ThWboard <= 3 Beta 2.84 SQL Injection (20.04.2006)
		info_(at)_g-0.org, RechnungsZentrale V2 - SQL injection and Remote PHP inclusion vulnerabilities (20.04.2006)
		Mustafa Can Bjorn IPEKCI, ASPSitem <= 1.83 Remote SQL Injection Vulnerability (20.04.2006)
		Aliaksandr Hartsuyeu, [eVuln] N.T. Version 1.1.0 XSS and PHP Code Insertion Vulnerabilities (20.04.2006)
		Aliaksandr Hartsuyeu, [eVuln] MD News Authentication Bypass and SQL Injection Vulnerabilities (20.04.2006)
		botan_(at)_linuxmail.org, EasyGallery Cross-Site Scripting (20.04.2006)
		r0t, W2B Online Banking vuln. (20.04.2006)
		r0t, Green Minute SQL inj. vuln. (20.04.2006)
		r0t, Net Clubs Pro XSS vuln (20.04.2006)
		r0t, Portal Pack 6 XSS vuln. (20.04.2006)
		r0t, IPB <= 2.1.5 SQL inj. vuln. (20.04.2006)

Files:		PCPIN Chat <= 5.0.4 "login/language" remote cmmnds xctn
		ASPSitem <= 1.83 Remote SQL Injection Exploit
		PHPSurveyor <= 0.995 'save.php/surveyid' remote cmmnds xctn
Discuss:		Read or add your comments to this news (0 comments)

Suid utilities (vixie-cron, shadow, ppp) user limits privilege escalation updated since 26.05.2006
Published:		06.07.2006
Source:		BUGTRAQ
SecurityVulns ID:		6191
Type:		local
Level:		8/10
Description:		setuid() return code is not checked. It makes it possible to execute code with root privileges by exhausting user limits.

Affected:		PPP : ppp 2.4
		Shadow : shadow 4.0
		VIXIE : cron 4.1

Original document		UBUNTU, [Full-disclosure] [USN-310-1] ppp vulnerability (06.07.2006)
		UBUNTU, [Full-disclosure] [USN-308-1] shadow vulnerability (06.07.2006)
		Justin M. Forbes, rPSA-2006-0082-1 vixie-cron (26.05.2006)

Discuss:

Read or add your comments to this news (0 comments)