Network Security News – Monday, July 17, 2006 Events
Microsoft IE FolderItem Object NULL Dereference
Internet Explorer contains a flaw that may allow a remote attacker to crash the browser. The issue is triggered when accessing the object reference of the FolderItem controls causing a NULL dereference and crashing the browser.. Read more at osvdb.org/27059
Microsoft IE MHTMLFile Multiple Property NULL Dereference
Internet explorer contains a flaw that may allow a remote denial of service. The issue is triggered when setting the "location" property of the 'MHTMLFile' ActiveX object occurs, causing a NULL dereference. This will result in loss of availability for the browser.. Read more at osvdb.org/27108
AdPlug s3m.cpp S3M File Processing Overflow
A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted S3M files when unpacking them resulting in an heap overflow. A length value read directly in the header of the S3M file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the file allowing for the execution of arbitrary code.. Read more at osvdb.org/27046
Photocycle photocycle Script phpage Variable XSS
Photocycle contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'phpage' variable upon submission to the 'photocycle' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/27093
AdPlug u6m.cpp U6M File Unpacking Overflow
A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted U6M files when unpacking them resulting in an heap overflow. A length value read directly in the header of the U6M file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the file allowing for the execution of arbitrary code.. Read more at osvdb.org/27047
AdPlug mtk.cpp MTK File Unpacking Overflow
A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted MTK files when unpacking them resulting in an heap overflow. A length value read directly in the header of the MTK file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the file allowing for the execution of arbitrary code.. Read more at osvdb.org/27043
AdPlug dmo.cpp DMO File Unpacking Overflow
A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted DMO files when unpacking them resulting in an heap overflow. A length value read directly in the header of the DMO file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the file allowing for the execution of arbitrary code.. Read more at osvdb.org/27044
AdPlug cff.cpp CFF File Unpacking Overflow
A local overflow exists in AdPlug . AdPlug fails to handle specialy crafted CFF files when unpacking them resulting in an heap overflow. A length value read directly in the header of the CFF file is not properly checked or sanitized when being used to allocate a buffer. A heap overflow could occur while unpacking the CFF file allowing for the execution of arbitrary code.. Read more at osvdb.org/27042
Actinic Catalog Unspecified .pl Files XSS
Actinic Catalog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified variable(s) upon submission to unspecified Perl script(s). This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/27095
Actinic Catalog ss000007.pl PRODREF Variable XSS
Actinic Catalog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'PRODREF' variable upon submission to the ss000007.pl script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/27097
Vuln: Buddy Zone Multiple HTML Injection Vulnerabilities
Buddy Zone Multiple HTML Injection Vulnerabilities. Read more at securityfocus.com/bid/18759
Leave a Reply