Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:30.12.2006
Source:
SecurityVulns ID:6980
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:AC4P : Mobilelib GOLD 2
 ORACLE : Oracle Portal 10g
 TDIARY : tDiary 2.0
Original documentdocumentSECUNIA, [SA23465] tDiary Unspecified Ruby Code Execution Vulnerability (30.12.2006)
 documentduchaikhtn_(at)_gmail.com, XSS with default page parameter in Oracle Portal 10g (30.12.2006)
 documentstarext_(at)_msn.com, LDU <= 8.x (journal.php) SQL Injection Vulnerability (30.12.2006)
 documentstarext_(at)_msn.com, DoceboLMS Xss Vuln. (30.12.2006)
 documentgamr-14_(at)_hotmail.com, XSS in script Mobilelib GOLD v2 (30.12.2006)

Multiple OpenSER vulnerabilities
updated since 29.12.2006
Published:30.12.2006
Source:
SecurityVulns ID:6979
Type:remote
Threat Level:
6/10
Description:Memory corruption on SMS parsing, buffer overflow on OSP parsing, on QuickCAM objects parsing.
Affected:OPENSER : OpenSER 1.1
Original documentdocumentsapheal_(at)_hack.pl, QuickCam linux device driver allows arbitrary code execution (30.12.2006)
 documentsapheal_(at)_hack.pl, SMS handling OpenSER remote code executing (29.12.2006)
 documentsapheal_(at)_hack.pl, OpenSER OSP Module remote code execution (29.12.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod