Computer Security

Search:Vulnerability:30.10.2009
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:30.10.2009
Source:
SecurityVulns ID:10362
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:PSART : PSArt 1.2
 CUBECART : CubeCart 4.3
 JOOMLA : Jumi 2.0
 MURACMS : Mura CMS 5.1
Original documentdocumentONSEC, Mura CMS (30.10.2009)
 documentJan van Niekerk, com_jumi / jumi 2.0.5 for joomla 1.5 backdoored (30.10.2009)
 documentBogdan Calin, CubeCart 4 Session Management Bypass (30.10.2009)
 documentinfo_(at)_securitylab.ir, PSAtr v1.2 Sql Injection (30.10.2009)
Discuss:Read or add your comments to this news (0 comments)

libhtml-parser-perl library DoS
Published:30.10.2009
Source:BUGTRAQ
SecurityVulns ID:10365
Type:library
Level:6/10
Description:Infinite loop on HTML parsing.
CVE:CVE-2009-3627 (The decode_entities function in util.c in HTML-Parser before 3.63 allows context-dependent attackers to cause a denial of service (infinite loop) via an incomplete SGML numeric character reference, which triggers generation of an invalid UTF-8 character.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1923-1] New libhtml-parser-perl packages fix denial of service (30.10.2009)
Discuss:Read or add your comments to this news (0 comments)

2wire routers DoS
Published:30.10.2009
Source:BUGTRAQ
SecurityVulns ID:10361
Type:remote
Level:5/10
Description:It's possible to reboot device via TCP/50001 https Web interface without authorization.
Affected:2WIRE : 2wire 1701HG
 2WIRE : 2wire 2071
 2WIRE : 2wire 1800HW
 2WIRE : 2wire 2700HG
 2WIRE : 2wire 2701HG-T
Original documentdocumentPedro Joaquin, 2wire Remote Denial of Service (30.10.2009)
Discuss:Read or add your comments to this news (0 comments)

BSD systems printf buffer overflows
Published:30.10.2009
Source:BUGTRAQ
SecurityVulns ID:10363
Type:library
Level:6/10
Description:Multiple vulnerabilities on %f format specificator parsing.
Affected:NETBSD : NetBSD 5.0
 OPENBSD : OpenBSD 4.6
Original documentdocumentMaksymilian Arciemowicz, SecurityReason: Multiple BSD printf(1) and multiple dtoa/*printf(3) vulnerabilities (30.10.2009)
Discuss:Read or add your comments to this news (0 comments)

Microsoft Windows Media Player information leak
Published:30.10.2009
Source:BUGTRAQ
SecurityVulns ID:10364
Type:client
Level:5/10
Description:Windows Media Player plugin allows to detect local file existance.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 MICROSOFT : Windows Vista
 MICROSOFT : Windows 2008 Server
Original documentdocumentrenard-volant_(at)_hotmail.com, Windows Media Player Plugin: Local File Detection Vulnerability (30.10.2009)
Discuss:Read or add your comments to this news (0 comments)

SafeNet SoftRemote buffer overflow
Published:30.10.2009
Source:BUGTRAQ
SecurityVulns ID:10366
Type:local
Level:5/10
Description:Buffer overflow on policy file parsing.
Affected:SAFENET : SoftRemote 10.8
Original documentdocumentSense of Security, SafeNet SoftRemote Local Buffer Overflow - Security Advisory - SOS-09-008 (30.10.2009)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server