Computer Security

Search:Vulnerability:30.12.2006
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:30.12.2006
Source:
SecurityVulns ID:6980
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:AC4P : Mobilelib GOLD 2
 ORACLE : Oracle Portal 10g
 TDIARY : tDiary 2.0
Original documentdocumentSECUNIA, [SA23465] tDiary Unspecified Ruby Code Execution Vulnerability (30.12.2006)
 documentduchaikhtn_(at)_gmail.com, XSS with default page parameter in Oracle Portal 10g (30.12.2006)
 documentstarext_(at)_msn.com, LDU <= 8.x (journal.php) SQL Injection Vulnerability (30.12.2006)
 documentstarext_(at)_msn.com, DoceboLMS Xss Vuln. (30.12.2006)
 documentgamr-14_(at)_hotmail.com, XSS in script Mobilelib GOLD v2 (30.12.2006)
Discuss:Read or add your comments to this news (0 comments)

Multiple OpenSER vulnerabilities
updated since 29.12.2006
Published:30.12.2006
Source:BUGTRAQ
SecurityVulns ID:6979
Type:remote
Level:6/10
Description:Memory corruption on SMS parsing, buffer overflow on OSP parsing, on QuickCAM objects parsing.
Affected:OPENSER : OpenSER 1.1
Original documentdocumentsapheal_(at)_hack.pl, QuickCam linux device driver allows arbitrary code execution (30.12.2006)
 documentsapheal_(at)_hack.pl, SMS handling OpenSER remote code executing (29.12.2006)
 documentsapheal_(at)_hack.pl, OpenSER OSP Module remote code execution (29.12.2006)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru