IRIX nsd NIS Master UDP Port Scan DoS

Network Security News – Wednesday, April 26, 2006 Events

IRIX nsd NIS Master UDP Port Scan DoS

IRIX contains a flaw that may allow a remote denial of service. The issue is triggered when a malicious attacker performs a UDP port scan to cause the name service daemon (nsd) to crash, and will result in loss of availability for the service.. Read more at osvdb.org/8583

IRIX rpc.mountd Unprivileged Remote Port Mount

IRIX contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious attacker is able to mount a file system via an unprivileged port even if rpc.mountd is started with the '-n' option. This flaw may lead to a loss of integrity.. Read more at osvdb.org/8553

Oracle Database Spatial Unspecified Registry Unspecified Issue

Oracle Database Server contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an unspecified action occurs, resulting in a loss of confidentiality.. Read more at osvdb.org/24861

SL_site gallerie.php rep Variable Traversal Arbitrary Directory Listing

SL_site contains a flaw that allows a remote attacker to list images outside of the web path. The issue is due to the gallerie.php not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'rep' variable.. Read more at osvdb.org/24897

SL_site page.php id_page Variable SQL Injection

SL_site contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the page.php script not properly sanitizing user-supplied input to the 'id_page' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/24896

SL_site recherche.php recherche Variable XSS

SL_site contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'recherche' variable upon submission to the recherche.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/24898

Winny File Transfer Port Unspecified Remote Overflow

A remote overflow exists in Winny. Winny fails to perform proper bounds checking of unspecified file transfer port commands resulting in a heap-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution in the context of the user who executed the Winny, resulting in a loss of integrity.. Read more at osvdb.org/24883

Scry index.php p Variable Path Disclosure

Scry contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker requests a non existant directory via the 'p' variable in index.php, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.. Read more at osvdb.org/24890

Scry index.php p Variable Traversal Arbitrary File Access

Scry contains a flaw that allows a remote attacker to access arbitrary files outside of the web path. The issue is due to index.php not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'p' variable.. Read more at osvdb.org/24889

Scry index.php p Variable XSS

Scry contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'p' variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/24891

Vuln: Microsoft Windows Shell COM Object Remote Code Execution Vulnerability

Microsoft Windows Shell COM Object Remote Code Execution Vulnerability. Read more at securityfocus.com/bid/17464

Vuln: Zlib Compression Library Buffer Overflow Vulnerability

Zlib Compression Library Buffer Overflow Vulnerability. Read more at securityfocus.com/bid/14162

Vuln: Mozilla Suite And Firefox XPInstall JavaScript Object Instance Validation Vulnerability

Mozilla Suite And Firefox XPInstall JavaScript Object Instance Validation Vulnerability. Read more at securityfocus.com/bid/13232

DCForumLite V 3.0<–XSS/SQL Injection

DCForumLite V 3.0<–XSS/SQL Injection. Read more at securityfocus.com/archive/1/432010

Fenice – Open Media Streaming Server remote BOF exploit

Fenice – Open Media Streaming Server remote BOF exploit

. Read more at securityfocus.com/archive/1/432002

[SECURITY] [DSA 1042-1] New Cyrus SASL packages fix denial of service

[SECURITY] [DSA 1042-1] New Cyrus SASL packages fix denial of service. Read more at securityfocus.com/archive/1/431995

Instant Photo Gallery <= Multiple XSS

Instant Photo Gallery <= Multiple XSS. Read more at securityfocus.com/archive/1/432024