Dominion SX /bin/busybox Permission Weakness Privilege Escalation

Network Security News – Tuesday, July 05, 2005 Events

Dominion SX /bin/busybox Permission Weakness Privilege Escalation

Dominion SX contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is due to the /bin/busybox file having default permissions of world-writable, which may allow an attacker replace the file causing arbitrary code execution with another user's privileges.. Read more at osvdb.org/17621

Dominion SX /etc/shadow Permission Weakness Hashed Password Disclosure

Dominion SX contains a flaw that may lead to an unauthorized information disclosure. The issue is due to the /etc/shadow file having world-readable permissions by default, which will disclose the root user's password hash resulting in a loss of confidentiality.. Read more at osvdb.org/17620

Sun Solaris Runtime Linker (ld.so.1) Arbitrary Privileged Code Execution

A local overflow exists in Sun Solaris Runtime Linker. The runtime linker, ld.so.1, fails to check the LD_AUDIT environment variable resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary code with elevated privileges resulting in a loss of confidentiality and/or integrity.. Read more at osvdb.org/17614

Microsoft Site Server VsTmPr.asp Information Disclosure

Microsoft Site Server contains a flaw that may lead to an unauthorized information disclosure. Өe issue is triggered when using the 'LDAP_Anonymous' account and accessing the 'VsTmPr.asp' script, which will disclose certain LDAP service and backend configuration parameters resulting in a loss of confidentiality. While not considered critical, this information can lead to more focused and precise attacks.. Read more at osvdb.org/17660

Microsoft Site Server VsPrAuoEd.asp Information Disclosure

Microsoft Site Server contains a flaw that may lead to an unauthorized information disclosure. Өe issue is triggered when using the 'LDAP_Anonymous' account and accessing the 'VsPrAuoEd.asp' script, which will disclose certain LDAP service and backend configuration parameters resulting in a loss of confidentiality. While not considered critical, this information can lead to more focused and precise attacks.. Read more at osvdb.org/17662

Microsoft Site Server VsLsLpRd.asp Information Disclosure

Microsoft Site Server contains a flaw that may lead to an unauthorized information disclosure. Өe issue is triggered when using the 'LDAP_Anonymous' account and accessing the 'VsLsLpRd.asp' script, which will disclose certain LDAP service and backend configuration parameters resulting in a loss of confidentiality. While not considered critical, this information can lead to more focused and precise attacks.. Read more at osvdb.org/17661

Microsoft Site Server vs.asp Information Disclosure

Microsoft Site Server contains a flaw that may lead to an unauthorized information disclosure. Өe issue is triggered when using the 'LDAP_Anonymous' account and accessing the 'vs.asp' script, which will disclose certain LDAP service and backend configuration parameters resulting in a loss of confidentiality. While not considered critical, this information can lead to more focused and precise attacks.. Read more at osvdb.org/17659

Microsoft Site Server viewcode.asp Information Disclosure

Microsoft Site Server contains a flaw that may lead to an unauthorized information disclosure. Өe issue is triggered when accessing the 'viewcode.asp' script, which will disclose the source code resulting in a loss of confidentiality. While not considered critical, this information can lead to more focused and precise attacks.. Read more at osvdb.org/17671

Microsoft Site Server Multiple Sample Sites SQL Injection

Microsoft Site Server contains a flaw that may allow a remote attacker to carry out a SQL injection attack. The issue is due to various scripts in the /clocktower/, /vc30/, /mspress30/, and /market/ directories not properly sanitizing user-supplied input. This may allow a remote attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/17670

Microsoft Site Server formslogin.asp XSS

Microsoft Site Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate user-supplied input upon submission to the 'formslogin.asp' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/17666

Vuln: ASPJar Guestbook Multiple Remote Vulnerabilities

ASPJar Guestbook Multiple Remote Vulnerabilities. Read more at securityfocus.com/bid/12521

Vuln: Sun Solaris Runtime Linker LD_AUDIT Privilege Escalation Vulnerability

Sun Solaris Runtime Linker LD_AUDIT Privilege Escalation Vulnerability. Read more at securityfocus.com/bid/14074

Vuln: Vipul Razor-agents Multiple Unspecified Denial Of Service Vulnerabilities

Vipul Razor-agents Multiple Unspecified Denial Of Service Vulnerabilities

. Read more at securityfocus.com/bid/13984

Vuln: PHPGroupWare Addressbook Unspecified Vulnerability

PHPGroupWare Addressbook Unspecified Vulnerability. Read more at securityfocus.com/bid/14141

a new sql injection for aspjar guestbook

a new sql injection for aspjar guestbook. Read more at securityfocus.com/archive/1/404156

UPDATE: [ GLSA 200506-17 ] SpamAssassin 3, Vipul’s Razor: Denial of Service vulnerability

UPDATE: [ GLSA 200506-17 ] SpamAssassin 3, Vipul’s Razor: Denial of Service vulnerability. Read more at securityfocus.com/archive/1/404152

pam_ldap/nss_ldap password leak in a master+slave+start_tls LDAP setup

pam_ldap/nss_ldap password leak in a master+slave+start_tls LDAP setup

. Read more at securityfocus.com/archive/1/404147

[SECURITY] [DSA 725-2] New ppxp packages fix local root exploit

[SECURITY] [DSA 725-2] New ppxp packages fix local root exploit. Read more at securityfocus.com/archive/1/404145