Mac OS X Bluetooth Setup Assistant Passkey Generation Weakness

Network Security News – Friday, August 11, 2006 Events

Mac OS X Bluetooth Setup Assistant Passkey Generation Weakness

Mac OS X contains a flaw that may allow a malicious user to more easily compromise a Bluetooth pairing. The issue is due to an insufficient passkey length of only six characters. It is possible that the flaw may allow an attacker to more easily guess the passkey due to limited keyspace resulting in a loss of confidentiality.. Read more at osvdb.org/27734

McAfee Multiple Product SecurityCenter Subscription Manager ActiveX Control (McSubMgr.dll) IsAppExpired Overflow

An overflow exists in several McAfee products using SecurityCenter module. A part of this module called "SecurityCenter Subscription Manager ActiveX control" (McSubMgr.dll) fails to handle an overly long string (more than 3000 bytes) in its 'IsAppExpired' member resulting in a stack overflow. By tricking the user into opening a specially crafted web page, an attacker can execute arbitrary commands resulting in a loss of integrity, and/or availability.. Read more at osvdb.org/27698

Mac OS X ImageIO GIF Processing Overflow

A local overflow exists in Mac OS X. ImageIO fails to validate GIF images resulting in an integer overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/27742

Mac OS X ImageIO GIF Processing Memory Allocation Failure Arbitrary Code Execution

Mac OS X contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered by a specially crafted GIF file, which triggers an undetected memory allocation error. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/27741

Mac OS X Bom Zip Archive Handling Overflow

A local overflow exists in Mac OS X. Bom fails to validate zip files resulting in a heap overflow. With a specially crafted file, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/27735

Mac OS X DHCP bootpd Request Processing Overflow

A remote overflow exists in Mac OS X. The DHCP daemon fails to validate BOOTP requests received by bootpd resulting in a stack overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/27736

Mac OS X Image RAW Canon RAW Image Processing Overflow

A local overflow exists in Mac OS X. The image handling code fails to validate Canon RAW files resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/27739

ME Download System inc/datei.php Multiple Variable Remote File Inclusion

ME Download System contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to inc/datei.php not properly sanitizing user input supplied to the 'Vb6c4d0e18a204a63b38f', 'V18a78b93c3adaaae84e2' and 'V9ae5d2ca9e9e787969ff' variables. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/27768

ME Download System inc/sett_style.php Vb8878b936c2bd8ae0cab Variable Remote File Inclusion

ME Download System contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to inc/sett_style.php not properly sanitizing user input supplied to the 'Vb8878b936c2bd8ae0cab' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/27766

ME Download System header.php Vb8878b936c2bd8ae0cab Variable Remote File Inclusion

ME Download System contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to templates/header.php not properly sanitizing user input supplied to the 'Vb8878b936c2bd8ae0cab' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/27765

Vuln: Apache AB.C Web Benchmarking Buffer Overflow Vulnerability

Apache AB.C Web Benchmarking Buffer Overflow Vulnerability. Read more at securityfocus.com/bid/5996

Vuln: Apache AB.C Web Benchmarking Read_Connection() Buffer Overflow Vulnerability

Apache AB.C Web Benchmarking Read_Connection() Buffer Overflow Vulnerability. Read more at securityfocus.com/bid/5995