Network Security News – Friday, August 25, 2006 Events
D-Link Routers UPnP M-SEARCH Request Overflow
A remote overflow exists in several D-Link Routers. These routers fail to handle some M-SEARCH UPnP requests resulting in a stack overflow. With a specially crafted UPnP request, an attacker can execute arbitrary code resulting in a loss of integrity.. Read more at osvdb.org/27333
Apache on Windows mod_alias URL Validation Canonicalization CGI Source Disclosure
Apache contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker requests a CGI script with a specially crafted URL, which will disclose the source code of the CGI script resulting in a loss of confidentiality.. Read more at osvdb.org/27913
Diesel Pay index.php read Variable XSS
Diesel Pay contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'read' variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/28074
Diesel Paid Mail getad.php ps Variable XSS
DieselScripts.com Diesel Paid Mail contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'ps' variables upon submission to the getad.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/28072
Diesel Job Site forgot.php Multiple Variable XSS
Diesel Job Site contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'uname' and 'SEmail' variables upon submission to the forgot.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/28073
bigAPE-Backup for Mambo Tar.php mosConfig_absolute_path Variable Remote File Inclusion
bigAPE-Backup for Mambo version 1.1 contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to Tar.php not properly sanitizing user input supplied to the 'mosConfig_absolute_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28032
mambo-phpShop mod_phpshop_featureprod.php mosConfig_absolute_path Variable Remote File Inclusion
mambo-phpShup contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to mod_phpshop_featureprod.php not properly sanitizing user input supplied to the 'mosConfig_absolute_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28154
mambo-phpShop mod_product_categories.php mosConfig_absolute_path Variable Remote File Inclusion
mambo-phpShop contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to mod_product_categories.php not properly sanitizing user input supplied to the 'mosConfig_absolute_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28156
mambo-phpShop mod_phpshop.php mosConfig_absolute_path Variable Remote File Inclusion
mambo-phpShop contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to mod_phpshop.php not properly sanitizing user input supplied to the 'mosConfig_absolute_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28151
mambo-phpShop mod_productscroller.php mosConfig_absolute_path Variable Remote File Inclusion
mambo-phpShop contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to mod_productscroller.php not properly sanitizing user input supplied to the 'mosConfig_absolute_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28157
Leave a Reply