Computer Security

Search:Vulnerability:28.01.2011

back  news / advisories / software / search /  forward
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:28.01.2011
Source:
SecurityVulns ID:11382
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:BLOGCMS : BLOG:CMS 4.2
 HYCUS : Hycus CMS 1.0
 KAIBB : KaiBB 1.0
 VANILLAFORUMS : Vanilla Forums 2.0
 LOMTEC : ActiveWeb 3.0
 PRTG : PRTG 8.1
Original documentdocumentJoshua Gimer, PRTG V8.1.2.1809 XSS Bugs in login.htm and error.htm (28.01.2011)
 documentSteno Plasma, Lomtec ActiveWeb Professional 3.0 CMS Allows Arbitrary File Upload and Execution as SYSTEM in ColdFusion (2010-WEB-002) (CERT VU#528212) (28.01.2011)
 documentYGN Ethical Hacker Group, Multiple Web Applications | Full Path Disclosure (28.01.2011)
 documentYGN Ethical Hacker Group, Vanilla Forums 2.0.16 <= Cross Site Scripting Vulnerability (28.01.2011)
 documentHigh-Tech Bridge Security Research, HTB22797: Path disclousure in BLOG:CMS (28.01.2011)
 documentHigh-Tech Bridge Security Research, HTB22796: Path disclousure in DBHcms (28.01.2011)
 documentHigh-Tech Bridge Security Research, HTB22795: Path disclosure in Hycus CMS (28.01.2011)
 documentHigh-Tech Bridge Security Research, HTB22793: XSRF (CSRF) in KaiBB (28.01.2011)

Cisco Content Services Gateway multiple security vulnerabilities
Published:28.01.2011
Source:
SecurityVulns ID:11383
Type:remote
Threat Level:
5/10
Description:Protection bypass, DoS.
Affected:CISCO : IOS 12.4
CVE:CVE-2011-0350 (Unspecified vulnerability in Cisco IOS 12.4(24)MD before 12.4(24)MD2 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to cause a denial of service (device hang or reload) via crafted TCP packets, aka Bug ID CSCth41891, a different vulnerability than CVE-2011-0349.)
 CVE-2011-0349 (Unspecified vulnerability in Cisco IOS 12.4(24)MD before 12.4(24)MD2 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to cause a denial of service (device hang or reload) via crafted TCP packets, aka Bug ID CSCth17178, a different vulnerability than CVE-2011-0350.)
 CVE-2011-0348 (Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD before 12.4(24)MD3, 12.4(22)MDA before 12.4(22)MDA5, and 12.4(24)MDA before 12.4(24)MDA3 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to bypass intended access restrictions and intended billing restrictions by sending HTTP traffic to a restricted destination after sending HTTP traffic to an unrestricted destination, aka Bug ID CSCtk35917.)
Original documentdocumentCISCO, Cisco Security Advisory: Cisco Content Services Gateway Vulnerabilities (28.01.2011)

Huawei HG520 / HG530 wireless routers weak default keys
Published:28.01.2011
Source:
SecurityVulns ID:11384
Type:remote
Threat Level:
5/10
Description:Default WPA/WEP key is generated from the MAC address.
Affected:HUAWEI : Huawei HG520
 HUAWEI : Huawei HG530
Original documentdocumentPedro Joaquín, Huawei HG default WEP/WPA generator (28.01.2011)

Novell GroupWise buffer overflow
Published:28.01.2011
Source:
SecurityVulns ID:11385
Type:remote
Threat Level:
7/10
Description:Buffer overflow on oversized VCALENDAR TZID variable.
Affected:NOVELL : GroupWise 8.02
CVE:CVE-2010-4325 (Buffer overflow in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP2 allows remote attackers to execute arbitrary code via a crafted TZID variable in a VCALENDAR message.)
Original documentdocumentVUPEN Security Research, VUPEN Security Research - Novell GroupWise "TZID" Variable Remote Buffer Overflow Vulnerability (VUPEN-SR-2011-004) (28.01.2011)

Microsoft IIS code execution
Published:28.01.2011
Source:
SecurityVulns ID:11387
Type:local
Threat Level:
4/10
Description:Files placed inside folder with lodername ending with .asp are treated as ASP files regardless of extension.
Affected:MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
Original documentdocumentinfo_(at)_securitylab.ir, Microsoft IIS 6 parsing directory “x.asp” Vulnerability (28.01.2011)

HP OpenView Storage Data Protector DoS
Published:28.01.2011
Source:
SecurityVulns ID:11388
Type:remote
Threat Level:
5/10
Affected:HP : OpenView Storage Data Protector 6.00
 HP : OpenView Storage Data Protector 6.10
 HP : OpenView Storage Data Protector 6.11
CVE:CVE-2011-0275 (Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote attackers to cause a denial of service via unknown vectors.)
Original documentdocumentHP, [security bulletin] HPSBMA02626 SSRT100301 rev.1 - HP OpenView Storage Data Protector, Remote Denial of Service (DoS) (28.01.2011)

EMC NetWorker address spoofing
updated since 28.01.2011
Published:17.05.2011
Source:
SecurityVulns ID:11386
Type:remote
Threat Level:
6/10
Description:librpc.dll library accepts RPC commands in UDP packets with spoofed IPs.
Affected:EMC : EMC NetWorker 7.5
 EMC : Emc Networker 7.6
CVE:CVE-2011-1210
 CVE-2011-0321 (librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2 does not properly mitigate the possibility of a spoofed localhost source IP address, which allows remote attackers to (1) register or (2) unregister RPC services, and consequently cause a denial of service or obtain sensitive information from interprocess communication, via crafted UDP packets containing service commands.)
Original documentdocumentZDI, ZDI-11-168: Multiple Vendor librpc.dll Remote Information Disclosure Vulnerability (17.05.2011)
 documentEMC, ESA-2011-003: EMC NetWorker librpc.dll spoofing vulnerability. (28.01.2011)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod