Toshiba ACPI BIOS MBR Boot Order Issue (Myth/Fake)

Network Security News – Saturday, April 23, 2005 Events

Toshiba ACPI BIOS MBR Boot Order Issue (Myth/Fake)

Toshiba ACPI BIOS contains a flaw that may allow a local denial of service. The issue is due to an error, which causes the BIOS to only check the first slot in the MBR table for a bootable partition. It is possible for a malicious user to arbitrary specify a different slot in the MBR table, which prevents the system from booting resulting in a loss of availability.. Read more at osvdb.org/15734

XAMPP guestbook-en.pl Input XSS

XAMPP contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the input field variables upon submission to the guestbook-en.pl script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/15633

procps pwdx Process ID Matching Local Overflow

A local overflow exists in procps. The pwdx application fails to validate arguments resulting in a buffer overflow. With a specially crafted request, a malicious user can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/15733

OneWorldStore chksettings.asp Direct Request DoS

OneWorldStore contains a flaw that may allow a remote denial of service. The issue is triggered when a remote user directly calls the /owConnections/chksettings.asp script, which will crash the store and results in a loss of availability for the aplication.. Read more at osvdb.org/15724

Oracle Database Server Change Data Capture Component DBMS_CDC_ISUBSCRIBE SUBSCRIPTION_NAME Parameter SQL Injection

Oracle Database Server contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'SUBSCRIPTION_NAME' parameter in the 'DBMS_CDC_ISUBSCRIBE' package not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15735

Oracle Database Server Change Data Capture Component DBMS_CDC_SUBSCRIBE SUBSCRIPTION_NAME Parameter SQL Injection

Oracle Database Server contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'SUBSCRIPTION_NAME' parameter in the 'DBMS_CDC_SUBSCRIBE' package not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15553

Oracle Database Server Data Pump Component DBMS_METADATA OBJECT_TYPE Parameter SQL Injection

Oracle Database Server contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'OBJECT_TYPE' parameter in the 'DBMS_METADATA' package not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15554

Oracle Database Server Intermedia Component ORDDoc Object Remote DoS

Oracle Database Server contains a flaw that may allow a remote denial of service. The issue is triggered due to improper validation of 'ORDDoc' objects. By creating a specially crafted file, a remote attacker could cause the process to consume all available CPU resources resulting in a loss of availabilitiy.. Read more at osvdb.org/15736

Oracle Database Server Intermedia Component ORDImage Object Remote DoS

Oracle Database Server contains a flaw that may allow a remote denial of service. The issue is triggered due to improper validation of 'ORDImage' objects. By creating a specially crafted file, a remote attacker could cause the process to consume all available CPU resources resulting in a loss of availabilitiy.. Read more at osvdb.org/15555