Network Security News – Thursday, September 07, 2006 Events
Microsoft Windows INETCOMM.DLL mhtml: URI Overflow
A remote overflow exists in Microsoft Windows. Microsoft Windows fails to perform proper boundary checks in inetcomm.dll when processing URLs with the "mhtml:" URI handler resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary remote code execution resulting in a loss of integrity.. Read more at osvdb.org/25949
Microsoft IE Chained CSS Imports Memory Corruption
Microsoft Internet Explorer contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a user visits a malicious web page that contains chained cascading style sheets (CSS). It is possible that the flaw may allow to execute arbitrary code resulting in a loss of integrity.. Read more at osvdb.org/27854
WebAdmin useredit_account.wdm Module MDaemon Account Access
MDaemon contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to the 'useredit_account.wdm' module not properly protecting access to the details of the MDaemon account, which will disclose MDaemon account information resulting in a loss of confidentiality.. Read more at osvdb.org/28548
Web Dictate Null Password Authentication Bypass
Web Dictate contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious user logs into the 'Admin' account with a null password. This flaw may lead to a loss of integrity.. Read more at osvdb.org/28547
Tr Forum /membres/modif_profil.php id Variable Arbitrary Profile Modification
Tr Forum contains a flaw that may allow a malicious user to bypass certain security restrictions. The issue is triggered due to missing access verification when updating the profile. It is possible that the flaw may allow modifing other users' settings by changing the 'id' parameter passed to modif_profil.php resulting in a loss of integrity.. Read more at osvdb.org/28542
Tr Forum /membres/change_mdp.php Unauthorized Password Modification
Tr Forum contains a flaw that may allow a malicious user to bypass certain security restrictions. The issue is triggered due to missing access verification when updating the profile. It is possible that the flaw may allow modifing other users' settings by changing the 'id' parameter passed to change_mdp.php resulting in a loss of integrity.. Read more at osvdb.org/28543
Tr Forum /admin/insert_admin.php Authentication Bypass
Tr Forum contains a flaw that may allow a malicious user to bypass certain security restrictions. The issue is triggered due to missing authentication verification in admin/insert_admin.php. It is possible that the flaw may allow creating an administrator account with limited privileges resulting in a loss of integrity.. Read more at osvdb.org/28544
PwsPHP profil.php aff_news_form Variable Arbitrary SQL Injection
PwsPHP contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'profil.php' script not properly sanitizing user-supplied input to the 'aff_news_form' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/28444
OpenSSL RSA Signature Forgery
OpenSSL contains a flaw that may allow a malicious user to bypass certain security restrictions. The issue is triggered due to an error within the verification of certain signatures, if an RSA key with exponent 3 is used it may be possible
to forge a PKCS #1 v1.5 signature signed by that key. It is possible that the flaw may allow bypassing security restrictions resulting in a loss of integrity.. Read more at osvdb.org/28549
C-News commentaires.php path Variable Remote File Inclusion
C-News contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to commentaires.php not properly sanitizing user input supplied to the 'path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/28552
Vuln: ISC BIND Multiple Remote Denial of Service Vulnerabilities
ISC BIND Multiple Remote Denial of Service Vulnerabilities. Read more at securityfocus.com/bid/19859
Vuln: OpenSSL PKCS Padding RSA Signature Forgery Vulnerability
OpenSSL PKCS Padding RSA Signature Forgery Vulnerability. Read more at securityfocus.com/bid/19849
Leave a Reply