FreeBSD Kernel Arbitrary Memory Disclosure

Network Security News – Tuesday, October 11, 2005 Events

FreeBSD Kernel Arbitrary Memory Disclosure

FreeBSD contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the kernel copies variable-length strings into fixed-length buffers without zeroing the unused portion of the buffer. This can allow a malicious user to obtain sensitive information, such as portions of the file cache or terminal buffers, resulting in a loss of confidentiality.. Read more at osvdb.org/16091

ACNews db.inc Path Disclosure

ACNews contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker makes a direct request to the 'db.inc.' file, which will disclose the installation path of the database resulting in a loss of confidentiality.. Read more at osvdb.org/19021

Adobe Acrobat Reader Malformed PDF Overflow DoS

A remote overflow exists in Adobe Acrobat Reader. The application fails to perform proper bounds checking resulting in a buffer overflow. With a malformed PDF file, a remote attacker can cause the application to crash resulting in a loss of availability.. Read more at osvdb.org/15850

HOCR -i Parameter Local Overflow

A local overflow exists in HOCR. The library fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long string to the -i parameter, a malicious user can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/19253

Kaspersky Anti-Virus cab.ppl CAB Archive Handling Overflow

A remote overflow exists in Kapersky Anti-Virus. The 'cab.ppl' engine fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted CAB archive, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/19850

JaguarEditControl ActiveX Control Overflow

A remote overflow exists in JaguarEditControl. The 'JaguarEditControl.dll' fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long string to the 'Jtext' parameter, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/18773

Solaris Xsun Unspecified Local Privilege Escalation

Solaris contains a flaw related to the Xsun program that may allow an attacker to escalate privileges. No further details have been provided.. Read more at osvdb.org/19699

PHP-Fusion photogallery.php Multiple Variable SQL Injection

PHP-Fusion contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the photogallery.php script not properly sanitizing user-supplied input to the album or photo variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/19841

Gravity Board X editcss.php Template Edit Arbitrary Command Execution

Gravity Board X contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'editcss.php' not properly sanitizing user input supplied. This may allow a remote attacker to arbitrary manipulate the template and execute arbitrary commands resulting in a loss of integrity.. Read more at osvdb.org/18628

lucidCMS index.php XSS

lucidCMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate variables upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/19743

Vuln: SGI IRIX Runpriv Local Privilege Escalation Vulnerability

SGI IRIX Runpriv Local Privilege Escalation Vulnerability. Read more at securityfocus.com/bid/15055

Vuln: Kaspersky Anti-Virus Engine CHM File Parser Remote Buffer Overflow Vulnerability

Kaspersky Anti-Virus Engine CHM File Parser Remote Buffer Overflow Vulnerability. Read more at securityfocus.com/bid/15054

Vuln: PHPMyAdmin Local File Include Vulnerability

PHPMyAdmin Local File Include Vulnerability

. Read more at securityfocus.com/bid/15053

Vuln: BEA WebLogic Server and WebLogic Express Multiple Vulnerabilities

BEA WebLogic Server and WebLogic Express Multiple Vulnerabilities. Read more at securityfocus.com/bid/15052

[USN-199-1] Linux kernel vulnerabilities

[USN-199-1] Linux kernel vulnerabilities. Read more at securityfocus.com/archive/1/412889

[USN-198-1] cfengine vulnerabilities

[USN-198-1] cfengine vulnerabilities. Read more at securityfocus.com/archive/1/412888

[USN-197-1] Shorewall vulnerability

[USN-197-1] Shorewall vulnerability

. Read more at securityfocus.com/archive/1/412887

[USN-196-1] Xine library vulnerability

[USN-196-1] Xine library vulnerability. Read more at securityfocus.com/archive/1/412886