Particle Gallery viewalbum.php albumid Variable Traversal Arbitrary File Access

Network Security News – Friday, June 23, 2006 Events

Particle Gallery viewalbum.php albumid Variable Traversal Arbitrary File Access (Myth/Fake)

Particle Gallery has been reported to contain an arbitrary file access flaw in the viewalbum.php script. Subsequent testing of this software has determined the original report was incorrect, and this vulnerability does not exist.. Read more at osvdb.org/26650

Microsoft PowerPoint Malformed Record Arbitrary Code Execution

A local overflow exists in PowerPoint. The program fails to validate records resulting in a buffer overflow. With a specially crafted presentation containing malformed records, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/26435