Woltlab Burning Board misc.php percent Variable XSS (Myth/Fake)

Network Security News – Tuesday, September 05, 2006 Events

Woltlab Burning Board misc.php percent Variable XSS (Myth/Fake)

Woltlab Burning Board was reported to contain a flaw that allows a remote cross site scripting attack. This flaw supposedly exists because the application does not validate the 'percent' variable upon submission to the misc.php script. Further discussion revealed that this flaw requires a valid administrator login in order to access the misc.php script, and a valid administrator session id in order to craft a URL for an administrator to click.. Read more at osvdb.org/28455

Microsoft IE US-ASCII Character Set Filter Bypass XSS

Microsoft Internet Explorer contains a flaw related to the encoding Internet transmitted content into ASCII that may allow an attacker to bypass security filters, such as intrusion detection systems.. Read more at osvdb.org/28376

Microsoft IE ActiveX SaveFile Handling DoS

Microsoft Internet Explorer contains a flaw that may allow a remote denial of service. The issue is triggered when a user accesses a malicious web page that contains instructions to run a specific ActiveX control, and will result in a crash of the browser and therefore loss of availability.. Read more at osvdb.org/28381

OpenVMS NET$SESSION_CONTROL Module Cleartext Password Local Disclosure

OpenVMS contains a flaw that may lead to an unauthorized password exposure. It is possible for passwords to be written to the audit log in cleartext due to an error in the 'NET$SESSION_CONTROL' module when a connection attempt with a correct password is made after a 'network breakin' event, which may lead to a loss of confidentiality.. Read more at osvdb.org/28272

OpenVPN –management Option No Authentication

OpenVPN contains a flaw that may allow a malicious user to gain access to the management interface. The issue is triggered when openVPN is used with –management command line option and a listening address different from 127.0.0.1. An attacker can gain access without authentication by simply issuing a telnet on port 7505. It is possible that the flaw may allow reconfiguring openVPN software resulting in a loss of integrity.. Read more at osvdb.org/25660

OpenVPN TCP Mode accept() Function Failure NULL Dereference DoS

OpenVPN contains a flaw that may allow a remote denial of service. The issue is triggered when handling specially crafted TCP packets, and will result in loss of availability for the service by a NULL dereference (coredump) in the openVPN daemon.. Read more at osvdb.org/20416

EFF Tor First Node Malformed Input DoS

Tor contains a flaw that may allow a remote denial of service. The issue is triggered due to two unspecified errors in the communication handling, and will result in loss of availability for the network or the client.. Read more at osvdb.org/28277

Indexu new.php theme_path Variable Remote File Inclusion

Indexu contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the new.php script not properly sanitizing user input supplied to the 'theme_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28413

Indexu pick.php theme_path Variable Remote File Inclusion

Indexu contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the pick.php script not properly sanitizing user input supplied to the 'theme_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28415

Indexu user_detail.php theme_path Variable Remote File Inclusion

Indexu contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the user_detail.php script not properly sanitizing user input supplied to the 'theme_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28426

Vuln: ImageMagick Sun Bitmap Image File Remote Unspecified Buffer Overflow Vulnerability

ImageMagick Sun Bitmap Image File Remote Unspecified Buffer Overflow Vulnerability. Read more at securityfocus.com/bid/19699

Vuln: ImageMagick XCF Image File Remote Unspecified Buffer Overflow Vulnerability

ImageMagick XCF Image File Remote Unspecified Buffer Overflow Vulnerability. Read more at securityfocus.com/bid/19697

Vuln: MySQL Privilege Elevation and Security Bypass Vulnerabilities

MySQL Privilege Elevation and Security Bypass Vulnerabilities

. Read more at securityfocus.com/bid/19559

Vuln: SoftBB Page Parameter Cross-Site Scripting Vulnerability

SoftBB Page Parameter Cross-Site Scripting Vulnerability. Read more at securityfocus.com/bid/19847

[SECURITY] [DSA 1167-1] New apache packages fix several vulnerabilities

[SECURITY] [DSA 1167-1] New apache packages fix several vulnerabilities. Read more at securityfocus.com/archive/1/445080

The Amazing Little Poll Admin Pwd

The Amazing Little Poll Admin Pwd

. Read more at securityfocus.com/archive/1/445081

Re: TinyWebGallery v1.5 ( image ) Remote Include Vulnerability

Re: TinyWebGallery v1.5 ( image ) Remote Include Vulnerability. Read more at securityfocus.com/archive/1/445089

AnywhereUSB/5 1.80.00 Drivers Integer Overflow

AnywhereUSB/5 1.80.00 Drivers Integer Overflow. Read more at securityfocus.com/archive/1/445088