Network Security News – Saturday, October 15, 2005 Events
Microsoft Windows XP Wireless Zero Configuration Credential/Key Disclosure
Microsoft Windows XP Home & Professional contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a local non-privileged user is allowed to retrieve configured wireless profiles using the "WZCQueryInterface()" API via the Wireless Zero Configuration service, which will disclose configured SSIDs, WEP keys, or the PMK (Pairwise Master Key) that is used for pre-shared key authentication in WPA (Wi-Fi Protected Access), resulting in a loss of confidentiality.. Read more at osvdb.org/19873
vBulletin /admincp/usertools.php thread Variable SQL Injection
vBulletin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /admincp/usertools.php script not properly sanitizing user-supplied input to the 'thread' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/19990
vBulletin /admincp/template.php dostyleid Variable SQL Injection
vBulletin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /admincp/template.php script not properly sanitizing user-supplied input to the 'dostyleid' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/19989
vBulletin /admincp/thread.php Multiple Variable SQL Injection
vBulletin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /admincp/thread.php script not properly sanitizing user-supplied input to multiple variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/19988
YaPiG Image-related Comment Homepage Field XSS
YaPiG contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate JavaScript when adding an image-related comment to the 'homepage' form field. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/19958
Leave a Reply