Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:29.04.2008
Source:
SecurityVulns ID:8955
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:SUGARCRM : SugarCRM 4.5
 SUGARCRM : SugarCRM 5.0
Original documentdocumentRoberto Suggi, [Full-disclosure] SugarCRM Community Edition Local File Disclosure Vulnerability (29.04.2008)
 documenterdc_(at)_echo.or.id, [ECHO_ADV_89$2008] Softbiz Web Host Directory Script (search_result.php host_id) Blind Sql Injection Vulnerability (29.04.2008)
 documenterdc_(at)_echo.or.id, [ECHO_ADV_88$2008] Prozilla Hosting Index (directory.php cat_id) Blind Sql Injection Vulnerability (29.04.2008)

Multiple antivirus and firewall memory corruption
Published:29.04.2008
Source:
SecurityVulns ID:8956
Type:local
Threat Level:
5/10
Description:Memory corruptions on SSDR hooked functions argument processing.
Affected:COMODO : Comodo Firewall Pro 2.4
 BITDEFENDER : BitDefender Antivirus 2008
 SOPHOS : Sophos Antivirus 7.0
 RISING : Rising Antivirus 19.60
 RISING : Rising Antivirus 19.66
CVE:CVE-2008-1738
 CVE-2008-1737
 CVE-2008-1736
 CVE-2008-1735
Original documentdocumentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2008-0320 - Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls (29.04.2008)

KDE start_kdeinit privilege escalation
Published:29.04.2008
Source:
SecurityVulns ID:8957
Type:local
Threat Level:
6/10
Description:It's possible to execute code with root privileges or send signals to privileged processes.
Affected:KDE : KDE 3.5
CVE:CVE-2008-1671
Original documentdocumentGENTOO, [Full-disclosure] [ GLSA 200804-30 ] KDE start_kdeinit: Multiple vulnerabilities (29.04.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod