Network Security News – Wednesday, April 13, 2005 Events
DC++ Nondescript Arbitrary File Data Append
An undisclosed flaw in DC++ allows an attacker to append arbitrary data to any file on the Direct Connect share drive.. Read more at osvdb.org/15433
Pine rpdump Symlink Arbitrary File Overwrite
Pine rdump contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious user causes rdump to write to a symlink. This allows the overwriting of arbitrary files with the privileges of the user running Pine. This flaw may lead to a loss of integrity.. Read more at osvdb.org/15456
PHP-Nuke Web_Links Multiple Variable SQL Injection
PHP-Nuke contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to multiple variables in the Web_Links Module not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15408
Mac OS X Bluetooth Setup Assistant Keyboardless Authorization Bypass
Mac OS X contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a local user is able to launch the Bluetooth Setup Assistant and gain access to unauthorized privileges. This flaw may lead to a loss of integrity.. Read more at osvdb.org/15008
Cisco IOS Secure Shell Server TACACS+ Authentication Failure Memory Exhaustion DoS
Cisco IOS contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker causes many failed logins to the device with SSH authentication using TACACS, which causes a memory leak to occur, and will result in loss of availability for the device.. Read more at osvdb.org/15303
paNews admin_setup.php Multiple Parameter Arbitrary PHP Code Injection
paNews contains a flaw that may allow an attacker to inject arbitrary PHP code. The issue is due to the $$comments or $$autapprove variables in the admin_setup.php script not being properly sanitized and may allow an attacker to inject PHP code. Other variables may also be effected.. Read more at osvdb.org/15452
QuikStore Malformed File Request Path Disclosure
QuikStore Shopping Cart contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malformed request passing a single quote (') occurs, which will generate an error message disclosing information resulting in a loss of confidentiality.. Read more at osvdb.org/15390
Leave a Reply