Cross Site Cooking attack
Published:		30.01.2006
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5712
Type:		client
Level:		5/10
Description:		There are few possibilities to set cookie for different site.

Original document

Michal Zalewski, [Full-disclosure] Cross Site Cooking (30.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		30.01.2006
Source:
SecurityVulns ID:		5713
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		UEBIMIAU : UebiMiau 2.7
		MININUKE : Mininuke 1.8
		MYBB : MyBB 1.02
		SUBDREAMER : Subdreamer CMS 2.2
		CRELOADED : CRE Loaded 6.15

Original document		night_warrior771_(at)_hotmail.com, sPaiz-Nuke Cross-Site Scripting Vulnerability (30.01.2006)
		zeus olimpusklan, [Full-disclosure] ashnews Cross-Site Scripting Vulnerability (30.01.2006)
		Hessam Salehi, [xpl#2] MiniNuke 1.8.2 - change member's passwrod < Perl > (30.01.2006)
		o.y.6_(at)_hotmail.com, MyBB 1.2 usercp2.php [ $url ] CrossSiteScripting ( XSS ) (30.01.2006)
		Preben Nylokken, EasyCMS vulnerable to XSS injection. (30.01.2006)
		neset_(at)_wakiza.com, UebiMiau Webmail System Security Vulnerability (30.01.2006)
		SECUNIA, [SA18648] CRE Loaded "files.php" File Upload Security Issue (30.01.2006)
		JET, Subdreamer CMS (Pro 2.2.3 and Light 2.2.0.1) security bug ;) (30.01.2006)

Files:		Exploits MiniNuke 1.8.2 - change member's passwrod vulnerability
Discuss:		Read or add your comments to this news (0 comments)

Pioneers game server DoS
Published:		30.01.2006
Source:		SECUNIA
SecurityVulns ID:		5714
Type:		remote
Level:		5/10
Description:		Oversized chat message causes game server to crash.

Affected:

PIONEERS : Pioneers 0.9

Original document

SECUNIA, [SA18647] Pioneers Long Chat Message Denial of Service Vulnerability (30.01.2006)

Discuss:

Read or add your comments to this news (0 comments)

WinAmp player buffer overflow updated since 30.01.2006
Published:		25.02.2006
Source:		FSIRT
SecurityVulns ID:		5711
Type:		client
Level:		7/10
Description:		Buffer overflow on oversized computer name in UNC path of .pls on .m3u file entry. Buffer overflow on oversized WMA playlist file entry. Vulnerability can be exploited for hidden trojan installation.

Affected:		NULLSOFT : Winamp 5.12
		NULLSOFT : Winamp 5.13

Original document		advisories_(at)_irmplc.com, IRM 018: Winamp 5.13 m3u Playlist Buffer Overflow (25.02.2006)
		NSFOCUS, NSFOCUS SA2006-01 : Winamp m3u File Processing Buffer Overflow Vulnerability (24.02.2006)
		Sowhat ., [Full-disclosure] Winamp .m3u fun again ;) (16.02.2006)
		b0f www . b0f . net, New winamp m3u/pls .WMA & .M3U Extension overflows (14.02.2006)
		IDEFENSE, iDefense Security Advisory 02.01.06: Winamp m3u Parsing Stack Overflow Vulnerability (02.02.2006)
		IDEFENSE, iDefense Security Advisory 02.01.06: Winamp m3u/pls .WMA Extension Buffer Overflow Vulnerability (02.02.2006)
		CERT, US-CERT Technical Cyber Security Alert TA06-032A -- Winamp Playlist Buffer Overflow (02.02.2006)

Files:		Winamp 5.12 Remote Buffer Overflow Universal Exploit
		Winamp 5.12 Playlist UNC Path Computer Name Overflow Perl Exploit
Discuss:		Read or add your comments to this news (0 comments)