Network Security News – Saturday, April 30, 2005 Events
Uphotogallery uphotogallery.mdb Remote Information Disclosure
Uphotogallery contains a flaw that may lead to an unauthorized information disclosure. Өe issue is triggered when a remote attacker directly requests the 'uphotogallery.mdb' file, which will disclose user login and password information resulting in a loss of confidentiality.. Read more at osvdb.org/15994
Uguestbook guestbook.mdb Remote Information Disclosure
Ugestbook contains a flaw that may lead to an unauthorized information disclosure. Өe issue is triggered when a remote attacker directly requests the 'guestbook.mdb' file, which will disclose user login and password information resulting in a loss of confidentiality.. Read more at osvdb.org/15995
Ublog blog.msb Remote Information Disclosure
Ublog contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker directly requests the 'blog.msb' file, which will disclose user login and password information resulting in a loss of confidentiality.. Read more at osvdb.org/15996
Koobi Standard index.php Multiple Variable SQL Injection
Koobi CMS contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'p' and 'q' variables in the 'index.php' script not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15997
Les Commentaires derniers_commentaires.php Remote File Inclusion
Les Commentaires contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'derniers_commentaires.php' not properly sanitizing user input supplied to the 'rep' variable. This may allow a remote attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/15990
Les Commentaires admin.php Remote File Inclusion
Les Commentaires contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'admin.php' not properly sanitizing user input supplied to the 'rep' variable. This may allow a remote attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/15991
MaxDB Web Tool getLockTokenHeader() Function Remote Overflow
A remote overflow exists in MaxDB. MaxDB fails to perform adequate bounds checking in the WebDAV functionality of the web administration service tool resulting in a stack-based overflow. With a specially crafted HTTP request with the unlock method, along with a long Lock-Token string, a remote attacker can execute arbitrary code with SYSTEM privileges resulting in a loss of integrity.. Read more at osvdb.org/15817
dBpowerAMP Music Converter Path Subversion Privilege Escalation
dBpowerAMP contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is caused due to weak default directory permissions and is triggered when "auxiliary.exe" invokes the "sndvol32.exe" utility when configuring the input source, allowing a local attacker to execute arbitrary code on the system with elevated privileges and leading to a loss of integrity. In order to exploit this vulnerability, the application must have been installed in a non-default location.. Read more at osvdb.org/15825
Ecomm Professional Guestbook verify.asp AdminPWD Variable SQL Injection
Professional Guestbook contains a flaw that allows a remote SQL injection attack. This flaw exists because the application does not validate AdminPWD variables upon submission to the verify.asp script. This could allow a user to create a specially crafted request that would execute arbitrary code, leading to a loss of integrity.. Read more at osvdb.org/15967
Ocean12 Mailing List Manager Pro Login Panel SQL Injection
Mailing List Manager Pro contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the Admin_id and Admin_Password variables in the Login Panel script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries. Furthermore, the flaw allows anyone to login as admin, resulting in a loss of confidentiality and integrity.. Read more at osvdb.org/15959
Cocktail Admin Password Disclosure Vulnerability
Cocktail is a collection of maintenance tools and interface tweaks for Mac OS X.Cocktail is prone to a password disclosure vulnerability. When the application is lau…. Read more at securityfocus.com/bid/13449?ref=rss
SNMPPD SNMP Proxy Daemon Remote Format String Vulnerability
SNMPPD SNMP Proxy Daemon is a simple network management protocol proxy daemon for the UNIX and Linux platform.A remote format string vulnerability affects the SNMPPD SN…. Read more at securityfocus.com/bid/13348?ref=rss
IBM Lotus Notes Local NOTES.INI Buffer Overflow Vulnerability
Lotus Notes is affected by a local buffer overflow vulnerability. This issue is due to a failure of the application to properly validate the length of user-supplied strin…. Read more at securityfocus.com/bid/13447?ref=rss
IBM Lotus Domino Server Notes Remote Procedure Call Remote Format String Vulnerability
IBM Lotus Domino Server is an application framework for Web-based collaborative software. It runs on multiple platforms including Microsoft Windows and Unix.A remote fo…
. Read more at securityfocus.com/bid/13446?ref=rss
FilePocket Local Information Disclosure Vulnerability
FilePocket is file sharing software.FilePocket is prone to a local information disclosure vulnerability. The application stores plaintext proxy passwords in the windows…. Read more at securityfocus.com/bid/13445?ref=rss
GoText Local Information Disclosure Vulnerability
GotText is an Address Book application.GoText is prone to a local information disclosure vulnerability. The application stores plaintext configuration information in th…. Read more at securityfocus.com/bid/13443?ref=rss
Apache hacks (./atac, d0s.txt)
Sender: Andrew Y Ng [ayn at AndrewNg dot com]
. Read more at securityfocus.com/archive/1/397236?ref=rss
Mac OS X Cocktail 3.5.4 admin password disclosure
Sender: sonderling [sonderling at hushmail dot com]. Read more at securityfocus.com/archive/1/397233?ref=rss
Snmppd SNMP proxy daemon format string exploit
Sender: [cybertronic at gmx dot net]. Read more at securityfocus.com/archive/1/397234?ref=rss
Re: [bugtraq] Re: Borland Security Contact
Sender: Markus Stenzel [olray-dragon at allanime dot org]
. Read more at securityfocus.com/archive/1/397226?ref=rss
Leave a Reply