Cisco CSS ArrowPoint Cookie Service Identifier Field Internal IP Disclosure

Network Security News – Thursday, August 24, 2006 Events

Cisco CSS ArrowPoint Cookie Service Identifier Field Internal IP Disclosure

Cisco 11000 series Content Service Switches contain a flaw that may lead to an unauthorized information disclosure. Өe issue is triggered when the device injects an ArrowPoint cookie for user tracking and management. If no value is explicitly set by an administrator for the string option, the device will insert the internal IP address instead. When a cookie is sent to the end user, this will disclose the internal IP address scheme for the protected or internal network.. Read more at osvdb.org/28121

UHP for Mambo uninstall.uhp.php mosConfig_absolute_path Variable Remote File Inclusion

UHP for Mambo and Joomla contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to uninstall.uhp.php not properly sanitizing user input supplied to the "mosConfig_absolute_path" variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28113

UHP for Mambo functions.php mosConfig_absolute_path Variable Remote File Inclusion

UHP for Mambo and Joomla contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to functions.php not properly sanitizing user input supplied to the "mosConfig_absolute_path" variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28112

UHP for Mambo install.uhp.php mosConfig_absolute_path Variable Remote File Inclusion

UHP for Mambo and Joomla contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to install.uhp.php not properly sanitizing user input supplied to the "mosConfig_absolute_path" variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28111

Thomson SpeedTouch 500 Series LocalNetwork Page name Variable XSS

SpeedTouch 500 Series contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'name' variables upon submission to the /cgi/b/intfs/_intf_/ov/ script (LocalNetwork page). This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/23527

PhpHostBot order/index.php page Variable Remote File Inclusion

IDevSpot PhpHostBot contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to order/index.php not properly sanitizing user input supplied to the 'page' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/27411

SonicWALL SOHO Firewall username Variable Logfile Script Injection

Some SonicWALL Firewall devices contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'uName' variables upon submission to the auth.cgi script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/15262

SonicWALL SOHO Firewall Server XSS

SonicWALL SOHO/10 Firewall Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate query string upon submission to the webroot. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/15261

TikiWiki tiki-searchindex.php highlight Variable XSS

TikiWiki contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'highlight' variable upon submission to the tiki-searchindex.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/28071

mtg_myhomepage For Mambo install.lmtg_homepage.php mosConfig_absolute_path Variable Remote File Inclusion

Mambo Communities Pty Ltd. Mambo contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to install.lmtg_homepage.php not properly sanitizing user input supplied to the 'mosConfig_absolute_path' variable. This may allow an attacker to include the shell from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28087