Web applications security vulnerabilities (PHP, ASP, CGI, Perl, etc)
Published:		29.11.2005
Source:
SecurityVulns ID:		5487
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, mb_send_mail() message headers modification, etc.

Affected:		JTR : Jax Calendar 1.34
		GUPPY : Guppy 4.5
		SOFTBIZSCRIPTS : SoftBiz FAQ 1.1
		SOFTBIZSCRIPTS : Softbiz B2B trading Marketplace 1.1
		SOCKETKB : SocketKB 1.1
		SENSATIONDESIGNS : KBase Express 1.0
		GREYWYVERN : Orca Knowledgebase 2.1
		GREYWYVERN : Orca Blog 1.3
		GREYWYVERN : Orca Ringmaker 2.3
		RETRAN : phpWTF 0.2
		ILYAV : FAQ System 1.1
		ILYAV : Survey System 1.1
		CODEWALKERS : ltwCalendar 4.
		PHPLITE : Calendar Express 2
		88SCRIPTS : Event Calendar 2.0
		AG0NY : O-Kiraku Nikki 1.3
		WEBMIN : Webmin 1.24
		AMPACHE : ampache 3.3
		RANDSHOP : randshop 1.1

Original document		SECUNIA, [SA17779] Ampache Snoopy "_httpsrequest()" Command Injection Vulnerability (29.11.2005)
		advisory_(at)_dyadsecurity.com, [Full-disclosure] Webmin miniserv.pl format string vulnerability (29.11.2005)
		:) :), Randshop all versiyon Sql İnjection (29.11.2005)
		retrogod_(at)_aliceposta.it, Guppy <= 4.5.9 Remote code execution (29.11.2005)
		r0t, SoftBiz FAQ Script Multiple SQL vuln. (29.11.2005)
		r0t, Softbiz B2B trading Marketplace Script SQL inj (29.11.2005)
		r0t, SocketKB 1.1.x Vuln. (29.11.2005)
		r0t, KBase Express SQL inj. vuln. (29.11.2005)
		r0t, Orca Knowledgebase SQL vuln. (29.11.2005)
		r0t, Orca Blog SQL inj. vuln. (29.11.2005)
		r0t, Orca Ringmaker SQL inj. vuln. (29.11.2005)
		r0t, phpWTF Full Path Disclosure vuln. (29.11.2005)
		r0t, FAQ System 1.1 SQL inj. vuln. (29.11.2005)
		r0t, Survey System 1.1 SQL inj. vuln. (29.11.2005)
		r0t, Codewalkers ltwCalendar 4.x SQL inj. vuln (29.11.2005)
		r0t, Jax Calendar 1.34 vuln. (29.11.2005)
		r0t, Calendar Express 2 SQL inj. vuln. (29.11.2005)
		r0t, 88Script's Event Calendar v2.0 SQL inj. vuln. (29.11.2005)
		r0t, O-Kiraku Nikki v1.3 SQL inj. vuln. (29.11.2005)

Discuss:

Read or add your comments to this news (0 comments)

Cisco IOS HTTP server crossite scripting updated since 29.11.2005
Published:		02.12.2005
Source:		BUGTRAQ
SecurityVulns ID:		5490
Type:		remote
Level:		4/10
Description:		There is no characters filtering on memory buffers displaying.

Original document		CISCO, Cisco Security Advisory: IOS HTTP Server Command Injection Vulnerability (02.12.2005)
		Hugo, - Cisco IOS HTTP Server code injection/execution vulnerability- (29.11.2005)

Discuss:

Read or add your comments to this news (0 comments)

Sun Java JRE sandbox protection bypass updated since 29.11.2005
Published:		20.12.2005
Source:		BUGTRAQ
SecurityVulns ID:		5488
Type:		client
Level:		9/10
Description:		Few vulnerabilities allow applets to write local files and execute applications.

Affected:		SUN : JRE 1.3
		SUN : JDK 1.3
		SUN : JDK 1.4
		ORACLE : JRE 1.4
		SUN : JRE 1.5
		IBM : Java SDK 1.3
		IBM : Java SDK 1.4
		SUN : JDK 1.5
		SUN : JRE 5.0
		ORACLE : JDK 5.0

Original document		SECUNIA, [SA18092] IBM Java SDK JRE Sandbox Security Bypass Vulnerabilities (20.12.2005)
		SECUNIA, [SA17748] Sun Java JRE Sandbox Security Bypass Vulnerabilities (29.11.2005)

Discuss:

Read or add your comments to this news (0 comments)

NuFW transparent firewall DoS updated since 29.11.2005
Published:		28.02.2006
Source:		SECUNIA
SecurityVulns ID:		5489
Type:		remote
Level:		5/10
Description:		Service crash on packet parsing, hangs on TLS traffic flood.

Affected:		NUFW : NuFW 1.0
		NUFW : NuFW 1.1

Original document		SECUNIA, [SA19046] NuFW TLS Socket Handling Denial of Service (28.02.2006)
		SECUNIA, [SA17754] NuFW Packet Parsing Denial of Service Vulnerability (29.11.2005)

Discuss:

Read or add your comments to this news (0 comments)