Computer Security
[EN] securityvulns.ru no-pyccku


2wire routers DoS
Published:30.10.2009
Source:
SecurityVulns ID:10361
Type:remote
Threat Level:
5/10
Description:It's possible to reboot device via TCP/50001 https Web interface without authorization.
Affected:2WIRE : 2wire 1701HG
 2WIRE : 2wire 2071
 2WIRE : 2wire 1800HW
 2WIRE : 2wire 2700HG
 2WIRE : 2wire 2701HG-T
Original documentdocumentPedro Joaquin, 2wire Remote Denial of Service (30.10.2009)

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:30.10.2009
Source:
SecurityVulns ID:10362
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:PSART : PSArt 1.2
 CUBECART : CubeCart 4.3
 JOOMLA : Jumi 2.0
 MURACMS : Mura CMS 5.1
Original documentdocumentONSEC, Mura CMS (30.10.2009)
 documentJan van Niekerk, com_jumi / jumi 2.0.5 for joomla 1.5 backdoored (30.10.2009)
 documentBogdan Calin, CubeCart 4 Session Management Bypass (30.10.2009)
 documentinfo_(at)_securitylab.ir, PSAtr v1.2 Sql Injection (30.10.2009)

BSD systems printf buffer overflows
Published:30.10.2009
Source:
SecurityVulns ID:10363
Type:library
Threat Level:
6/10
Description:Multiple vulnerabilities on %f format specificator parsing.
Affected:NETBSD : NetBSD 5.0
 OPENBSD : OpenBSD 4.6
Original documentdocumentMaksymilian Arciemowicz, SecurityReason: Multiple BSD printf(1) and multiple dtoa/*printf(3) vulnerabilities (30.10.2009)

Microsoft Windows Media Player information leak
Published:30.10.2009
Source:
SecurityVulns ID:10364
Type:client
Threat Level:
5/10
Description:Windows Media Player plugin allows to detect local file existance.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 MICROSOFT : Windows Vista
 MICROSOFT : Windows 2008 Server
Original documentdocumentrenard-volant_(at)_hotmail.com, Windows Media Player Plugin: Local File Detection Vulnerability (30.10.2009)

libhtml-parser-perl library DoS
Published:30.10.2009
Source:
SecurityVulns ID:10365
Type:library
Threat Level:
6/10
Description:Infinite loop on HTML parsing.
CVE:CVE-2009-3627 (The decode_entities function in util.c in HTML-Parser before 3.63 allows context-dependent attackers to cause a denial of service (infinite loop) via an incomplete SGML numeric character reference, which triggers generation of an invalid UTF-8 character.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1923-1] New libhtml-parser-perl packages fix denial of service (30.10.2009)

SafeNet SoftRemote buffer overflow
Published:30.10.2009
Source:
SecurityVulns ID:10366
Type:local
Threat Level:
5/10
Description:Buffer overflow on policy file parsing.
Affected:SAFENET : SoftRemote 10.8
Original documentdocumentSense of Security, SafeNet SoftRemote Local Buffer Overflow - Security Advisory - SOS-09-008 (30.10.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod