Cisco IOS MMP Stack Group Bidding Protocol Crafted UDP Packet Remote DoS

Network Security News – Wednesday, January 25, 2006 Events

Cisco IOS MMP Stack Group Bidding Protocol Crafted UDP Packet Remote DoS

Cisco routers contain a flaw that may allow a remote denial of service. The issue is triggered when the device enables Multilink PPP (MLP) via the Stack Group Bidding Protocol (SGBP) and receives a crafted UDP packet sent to port 9900. This may cause the device to free and stop responding to traffic until the watchdog process resets the device.. Read more at osvdb.org/22624

myBloggie login.php username Variable Null Character SQL Injection

myBloggie contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.php script not properly sanitizing user-supplied input beginning with a null character to the 'username' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/19935

Tftpd32 Error Message Remote Format String

A remote format string vulnerability in Tftpd32 can be triggered when the server uses the filename passed in TFTP requests to construct an error message. With a specially crafted filename, an attacker can cause arbitrary code execution, resulting in a loss of integrity.. Read more at osvdb.org/22661

RTIS WebAdmin Login Multiple Field SQL Injection

WebAdmin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login script not properly sanitizing user-supplied input to the 'username' and 'password' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/20327

WebspotBlogging login.php Username Field SQL Injection

WebspotBlogging contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.php script not properly sanitizing user-supplied input to the 'username' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/22670

RCBlog data Directory Direct Access User Account Information Disclosure

RCBlog contains a flaw that may lead to an unauthorized information disclosure including unauthorized password exposure. The issue is triggered by a request in the /config/ or /data/ directories, which may disclose sensitive information including encrypted passwords, resulting in a loss of confidentiality.. Read more at osvdb.org/22679