Novell Nsure Audit webadmin.exe ASN.1 Message Parsing DoS

Network Security News – Tuesday, April 26, 2005 Events

Novell Nsure Audit webadmin.exe ASN.1 Message Parsing DoS

The 'webadmin.exe' service in Novell Nsure Audit contains a flaw that may allow a remote denial of service. The issue is triggered when parsing malformed ASN.1 messages. By sending a malformed ASN.1 message to the service, a remote attacker could cause the system to crash resulting in a loss of availability.. Read more at osvdb.org/15805

Store Portal default.asp Multiple Variable SQL Injection

Store Portal contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to multiple variables in the 'default.asp' script are not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15770

Affix affix_sock_register() Local Privilege Escalation

A local underflow exists in Affix. The 'affix_sock_register()' function fails to perform proper bounds checking resulting in an integer underflow. By supplying a negative protocol value when creating a socket for the 'PF_AFFIX' communication domain, it is possible for a malicious user to gain access to root privileges resulting in a loss of integrity.. Read more at osvdb.org/15783

ASP Nuke select.asp code Variable XSS

ASP Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'code' variable upon submission to the select.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/15803

ASP Nuke profile.asp username Variable XSS

ASP Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'username' variable upon submission to the profile.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/15802

ASP Nuke article.asp articleid Variable SQL Injection

ASP Nuke contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the 'articleid' variable in the article.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15801

ASP Nuke detail.asp taskid Variable SQL Injection

ASP Nuke contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the 'taskid' variable in the detail.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15800

ASP Nuke comments.asp taskid Variable SQL Injection

ASP Nuke contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the 'taskid' variable in the comments.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15799

BK Forum register.asp Multiple Field SQL Injection

BK Forum contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to each registration field in the register.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15786

BK Forum forum.asp forum Variable SQL Injection

BK Forum contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the 'forum' variable in the forum.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15785

CVS Unspecified Buffer Overflow And Memory Access Vulnerabilities

CVS is the concurrent versions system. CVS is a freely available, open source software development package for the Unix, Linux, and Microsoft Windows platforms.CVS is p…

. Read more at securityfocus.com/bid/13217?ref=rss

HP-UX ICMP PMTUD Remote Denial Of Service Vulnerability

Path MTU Discovery (PMTUD) functionality is supported within the ICMP protocol. When this functionality is used by network hosts, the 'hard' error Type 3, code 4 (Fragmen…

. Read more at securityfocus.com/bid/13367?ref=rss