Total Commander UNACEV2.DLL ACE Filename Overflow

Network Security News – Friday, March 31, 2006 Events

Total Commander UNACEV2.DLL ACE Filename Overflow

A local overflow exists in Total Commander. The product fails to perform boundary checking on filenames in ACE archives resulting in a stack-based buffer overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/24269

MPlayer libmpdemux/asfheader.c asf_descrambling() Function ASF Processing Overflow

A remote overflow exists in MPlayer. MPlayer fails to properly handle a specially crafted ASF file in 'libmpdemux/asfheader.c' resulting in a integer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity and/or availability.. Read more at osvdb.org/24246

MPlayer libmpdemux/aviheader.c AVI indx Chunk Processing Overflow

A remote overflow exists in MPlayer. MPlayer fails to properly sanitize the "thewLongsPerEntry" and "nEntriesInUse" values in the "indx" chunk in an AVI file in "libmpdemux/aviheader.c" resulting in a heap-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity and/or availability.. Read more at osvdb.org/24247

VNews news.php Multiple Variable XSS

VNews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'autorkomentarza' or 'tresckomentarza' variables upon submission to the news.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/24275

VNews news.php Multiple Variable SQL Injection

VNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the news.php script not properly sanitizing user-supplied input to the 'news' and 'nom' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/24274

VNews admin/config.php Arbitrary PHP Code Execution

[V]Book contains a flaw that may allow a remote attacker to execute arbitrary code. The issue occurs because program administrators are allowed to edit the admin/config.php file. By placing custom PHP code and then calling it, the code will be executed with the privileges of the web server.. Read more at osvdb.org/24276

VNews admin/admin.php loginvar Variable SQL Injection

VNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin/admin.php script not properly sanitizing user-supplied input to the 'loginvar' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/24273

phpNewsManager poll.php SQL Injection

phpNewsManager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the poll.php script not properly sanitizing user-supplied input to unspecified variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/24268

phpNewsManager gallery.php SQL Injection

phpNewsManager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the gallery.php script not properly sanitizing user-supplied input to unspecified variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/24267

phpNewsManager category.php SQL Injection

phpNewsManager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the category.php script not properly sanitizing user-supplied input to unspecified variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/24266

Vuln: O2PHP Oxygen Post.PHP SQL Injection Vulnerability

O2PHP Oxygen Post.PHP SQL Injection Vulnerability. Read more at securityfocus.com/bid/17324

Vuln: MediaSlash Gallery Index.PHP Remote File Include Vulnerability

MediaSlash Gallery Index.PHP Remote File Include Vulnerability. Read more at securityfocus.com/bid/17323

Vuln: VNews Multiple Cross-Site Scripting Vulnerabilities

VNews Multiple Cross-Site Scripting Vulnerabilities

. Read more at securityfocus.com/bid/17317

Vuln: X-Changer Multiple SQL Injection Vulnerabilities

X-Changer Multiple SQL Injection Vulnerabilities. Read more at securityfocus.com/bid/17322

MediaSlash Gallery ‘rub’ variable Remote File inlcusion Vulnerability

MediaSlash Gallery ‘rub’ variable Remote File inlcusion Vulnerability. Read more at securityfocus.com/archive/1/429395

[security bulletin] HPSBUX02102 SSRT051078 rev.2 – HP-UX usermod(1M) Local Unauthorized Access.

[security bulletin] HPSBUX02102 SSRT051078 rev.2 – HP-UX usermod(1M) Local Unauthorized Access.

. Read more at securityfocus.com/archive/1/429389

[security bulletin] HPSBUX02103 SSRT5953 rev.2 – HP-UX passwd(1) Local Denial of Service (DoS)

[security bulletin] HPSBUX02103 SSRT5953 rev.2 – HP-UX passwd(1) Local Denial of Service (DoS). Read more at securityfocus.com/archive/1/429388

Smurfable Linux Kernel

Smurfable Linux Kernel. Read more at securityfocus.com/archive/1/429362