Network Security News – Sunday, February 12, 2006 Events
Adventia Chat Server Pro main_frame.asp XSS
Adventia Chat Server Pro 3.0 contains a flaw that allows remote and static cross site scripting attack. This flaw exists because the application does not validate user-supplied input upon submission to the main_frame.asp script. This could allow a user to insert a script that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/15156
TMSPublisher search.cfm q Variable XSS
TMSPublisher contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'q' variable upon submission to the 'search.cfm' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/23014
FarsiNews index.php archive Variable Traversal Arbitrary File Access
FarsiNews contains a flaw that allows a remote attacker to view files outside of the web path. The issue is due to the index.php not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the 'archive' variable. This may lead to an unauthorized password exposure. It is possible to gain access to plain text passwords, which may lead to a loss of confidentiality.. Read more at osvdb.org/23021
FarsiNews index.php Malformed archive Variable Path Disclosure
FarsiNews contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sets the 'archive' variable to an invalid value, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.. Read more at osvdb.org/23020
FarsiNews show_archives.php template Variable Traversal Arbitrary File Access
FarsiNews contains a flaw that allows a remote attacker to view files outside of the web path. The issue is due to the show_archives.php not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the 'template' variable. This may lead to an unauthorized password exposure. It is possible to gain access to plain text passwords, which may lead to a loss of confidentiality.. Read more at osvdb.org/23022
Borland C++ Builder (BCB) Compiler sizeof Calculation Weakness
Borland C++ Builder contains a flaw that may have security implications on programs compiled with it. The compiler fails to return unsigned values for the sizeof() macro, resulting in a potential integer overflows in the objects it compiles.. Read more at osvdb.org/22953
Tiny C Compiler sizeof Calculation Weakness
Tiny C Compiler contains a flaw that may have security implications on programs compiled with it. The compiler fails to return unsigned values for the sizeof() macro, resulting in a potential integer overflows in the objects it compiles.. Read more at osvdb.org/22956
Hosting Controller AddGatewaySettings.asp tblGatewayCustomize Variable SQL Injection
Hosting Controller contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'AddGatewaySettings.asp' script not properly sanitizing user-supplied input to the 'tblGatewayCustomize' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/22982
Neomail neomail.pl date Variable XSS
Neomail contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'date' variable upon submission to the 'neomail.pl' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/22978
Hosting Controller IPManager.asp tblIPManager Variable SQL Injection
Hosting Controller contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'IPManager.asp' script not properly sanitizing user-supplied input to the 'tblIPManager' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/22983
Leave a Reply