Computer Security
[EN] securityvulns.ru no-pyccku


libtiff multiple security vulnerabilities
updated since 23.06.2010
Published:29.06.2010
Source:
SecurityVulns ID:10950
Type:library
Threat Level:
7/10
Description:Multiple memory corruptions on tiff files parsing.
Affected:LIBTIFF : libtiff 3.9
CVE:CVE-2010-2067 (Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirread.c in LibTIFF before 3.9.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long EXIF SubjectDistance field in a TIFF file.)
 CVE-2010-2065 (Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.)
 CVE-2010-1411 (Multiple integer overflows in the Fax3SetupState function in tif_fax3.c in the FAX3 decoder in LibTIFF before 3.9.3, as used in ImageIO in Apple Mac OS X 10.5.8 and Mac OS X 10.6 before 10.6.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF file that triggers a heap-based buffer overflow.)
Original documentdocumentIDEFENSE, iDefense Security Advisory 06.21.10: Multiple Vendor LibTIFF 3.9.2 Stack Buffer Overflow Vulnerability (29.06.2010)
 documentBUNTU, [USN-954-1] tiff vulnerabilities (23.06.2010)

Nuance OmniPage multiple security vulnerabilities
Published:29.06.2010
Source:
SecurityVulns ID:10960
Type:library
Threat Level:
5/10
Description:Current versions of Microsoft Windows libraries are replaces with outdated ones during installation process.
Affected:NUANCE : OmniPage 16
Original documentdocumentStefan Kanthak, Nuance OmniPage 16 Professional installs multiple vulnerable Microsoft runtime libraries (29.06.2010)

D-Link DAP-1160 routers unauthroized access
Published:29.06.2010
Source:
SecurityVulns ID:10962
Type:remote
Threat Level:
6/10
Description:Uhauthorized remote configuration is possible via DCC (D-Link Click'n'Connect) protocol and Web interface.
Affected:DLINK : D-Link DAP-1160
Original documentdocumentCristofaro Mune, IS-2010-005 - D-Link DAP-1160 Authentication Bypass (29.06.2010)
 documentCristofaro Mune, IS-2010-004 - D-Link DAP-1160 Unauthenticated Remote Configuration (29.06.2010)

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:29.06.2010
Source:
SecurityVulns ID:10963
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:TOMATOCMS : TomatoCMS 2.0
 WORDPRESS : Cimy Counter 0.9
 TORNADOSTORE : TornadoStore 1.4
 LATEK : PortalApp 4.0
 GRAFIKPOWER : Grafik CMS 1.1
 TASKFREAK : TaskFreak 0.6
CVE:CVE-2010-1521 (SQL injection vulnerability in include/classes/tzn_user.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to execute arbitrary SQL commands via the password parameter to login.php.)
 CVE-2010-1520 (Cross-site scripting (XSS) vulnerability in logout.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter.)
 CVE-2010-1328 (Multiple cross-site scripting (XSS) vulnerabilities in TornadoStore 1.4.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) tipo or (2) destino parameter to login_registrese.php3 in the Services section, (3) the rubro parameter to precios.php3 in the Products section, (4) the arti parameter to recomenda_articulo.php3 in the Products section, (5) the descrip parameter in a profile action to control/abm_det.php3 in the e-Commerce section, (6) the tit parameter in a delivery_courier action to control/abm_list.php3 in the e-Commerce section, or (7) the tit parameter in an usuario action to control/abm_det.php3 in the e-Commerce section.)
 CVE-2010-1327 (Multiple SQL injection vulnerabilities in TornadoStore 1.4.3 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the marca parameter to precios.php3 or (2) the where parameter in a delivery_courier action to control/abm_list.php3.)
Original documentdocumentSECUNIA, Secunia Research: TaskFreak "tznMessage" Cross-Site Scripting Vulnerability (29.06.2010)
 documentSECUNIA, Secunia Research: TaskFreak "password" SQL Injection Vulnerability (29.06.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Grafik CMS (29.06.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in PortalApp (29.06.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in PortalApp (29.06.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Grafik CMS (29.06.2010)
 documentHigh-Tech Bridge Security Research, SQL injection vulnerability in Grafik CMS (29.06.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in PortalApp (29.06.2010)
 documentHigh-Tech Bridge Security Research, SQL injection vulnerability in TomatoCMS (29.06.2010)
 documentBonsai - Information Security, Multiple XSS in TornadoStore 1.4.3 (29.06.2010)
 documentBonsai - Information Security, Multiple SQL Injection in TornadoStore 1.4.3 (29.06.2010)

kvirc IRC client multiple security vulnerabilities
updated since 29.06.2010
Published:14.08.2010
Source:
SecurityVulns ID:10961
Type:remote
Threat Level:
5/10
Description:Directory traversal, format string vulnerability.
Affected:KVIRC : kvirc 4.0
CVE:CVE-2010-2785 (The IRC Protocol component in KVIrc 3.x and 4.x before r4693 does not properly handle \ (backslash) characters, which allows remote authenticated users to execute arbitrary CTCP commands via vectors involving \r and \40 sequences, a different vulnerability than CVE-2010-2451 and CVE-2010-2452.)
 CVE-2010-2452 (Directory traversal vulnerability in the DCC functionality in KVIrc 3.4 and 4.0 allows remote attackers to overwrite arbitrary files via unknown vectors.)
 CVE-2010-2451 (Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have unspecified impact and remote attack vectors.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2078-1] New kvirc packages fix arbitrary IRC command execution (14.08.2010)
 documentDEBIAN, [SECURITY] [DSA 2065-1] New kvirc packages fix several vulnerabilities (29.06.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod