SecurityFocus

[ MDVSA-2009:177 ] postgresql 2009-09-30
security mandriva com

[ MDVSA-2009:176 ] postgresql 2009-09-30
security mandriva com

C4 SCADA Security Advisory - OSISoft PI Server Authentication Weakness 2009-09-30
Eyal Udassin (eyal udassin c4-security com)

Background
-----------------
Vendor product information, from www.osisoft.com :
The PI SystemT brings all operational data into a single system that can
deliver it to users at all levels of the company - from the plant floor to
the enterprise level. The PI System keeps business-critical data always

[ more ] [ reply ]

MD5 hash extension attack breaks API authentication of Flickr and others 2009-09-30
Juliano Rizzo (netiferasnospam netifera com)

Flickr's API Signature Forgery Vulnerability

http://netifera.com/research/flickr_api_signature_forgery.pdf

September 29, 2009

--Affected Web Sites

A lot of web sites provide API service whose architecture is the same
as Flickr's API. They are potentially vulnerable.
We don't have a complete list

[ more ] [ reply ]

FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution 2009-09-29
Giuseppe Fuggiano (giuseppe fuggiano gmail com)

Security Advisory
-----------------
FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution

Researcher Information
----------------------
Discovered by: Giuseppe `Zmax` Fuggiano
Website: http://www.giusef.net
Contact: giuseppe(dot)fuggiano(at)gmail(dot)com

Product Information
--

[ more ] [ reply ]

Adobe Photoshop Elements 8.0 Active File Monitor Service Bad Security Descriptor Local Elevation Of Privileges 2009-09-29
nospam gmail it

Adobe Photoshop Elements 8.0 Active File Monitor Service Bad Security Descriptor Local Elevation Of Privileges
by Nine:Situations:Group::bellick
site: http://retrogod.altervista.org/

Tested on Microsoft Windows XP SP3

The "Adobe Active File Monitor V8" service is installed with an improper securit

[ more ] [ reply ]

WinRAR v3.80 - ZIP Filename Spoofing 2009-09-29
chr1x (chr1x sectester net)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

+-----------------------------------------------------------------------
-+
| ....... |
| ..''xxxxxxxxxxxxxxx'... |
| ..'xxx

[ more ] [ reply ]

Cross-Site Scripting vulnerability in eCaptcha 2009-09-28
MustLive (mustlive websecurity com ua)

Hello Bugtraq!

I want to warn you about Cross-Site Scripting vulnerability in eCaptcha
(plugin for E107). I found this hole in July 2008 and disclosed it at
25.09.2008.

XSS:

POST query at page
http://site/path/ecaptcha/?key=b7c9bf99e763252105f047a5ca5681d0

<script>alert(document.cookie)</scri

[ more ] [ reply ]

[security bulletin] HPSBMA02461 SSRT090187 rev.1 - HP Remote Graphics Software (RGS) Sender, Remote Unauthorized Access 2009-09-28
security-alert hp com

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c01859457
Version: 1

HPSBMA02461 SSRT090187 rev.1 - HP Remote Graphics Software (RGS) Sender, Remote Unauthorized Access

NOTICE: The information in this Security Bulletin should be acted upon as

[ more ] [ reply ]

[SECURITY] [DSA 1896-1] New Shibboleth 1.x packages fix potential code execution 2009-09-28
Florian Weimer (fw deneb enyo de)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------

Debian Security Advisory DSA-1896-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Florian Weimer
September 28, 2009

[ more ] [ reply ]

Local privilege escalation vulnerability in Trustport security software 2009-09-28
ss_contacts hotmail com

ShineShadow Security Report 28092009-10

TITLE

Local privilege escalation vulnerability in Trustport security software

BACKGROUND

TrustPort is a major producer of software solutions for secure communication and reliable data protection. TrustPort products are characterized by a comprehe

[ more ] [ reply ]

[DSECRG-09-043] SAP GUI 7.1 Insecure Method 2009-09-28
Alexandr Polyakov (alexandr polyakov dsec ru)

Digital Security Research Group [DSecRG] Advisory #DSECRG-09-043

Application: EAI WebViewer2D (EnjoySAP, SAP GUI for Windows 6.4 and 7.1)
Versions Affected: Tested on 7100.2.7.1038 PL 7
Vendor URL: http://SAP.com
Bugs:

[ more ] [ reply ]

[USN-838-1] Dovecot vulnerabilities 2009-09-28
Marc Deslauriers (marc deslauriers canonical com)

===========================================================
Ubuntu Security Notice USN-838-1 September 28, 2009
dovecot vulnerabilities
CVE-2008-4577, CVE-2008-5301, CVE-2009-2632, CVE-2009-3235
===========================================================

A security issue affects the followi

[ more ] [ reply ]

[ MDVSA-2009:249 ] newt 2009-09-27
security mandriva com

Re: Regular Expression Denial of Service 2009-09-28
hackerwebzine gmail com

Alex, it isn't a new technique in web-application security. If you queried Google, or did some research on recent (2007) Blackhat talks, you'll probably noticed that this is very well known and understood technique. Even Charles Miller talked about it (on the OSX Safari exploits). So the claim that

[ more ] [ reply ]

[MajorSecurity Advisory #57]PHP <=5.3 - preg_match() full path disclosure 2009-09-27
David Vieira-Kurz (david majorsecurity info)

[MajorSecurity Advisory #57]PHP <=5.3 - preg_match() full path disclosure

Details
=======
Product: PHP <=5.3
Security-Risk: moderated
Remote-Exploit: yes
Vendor-URL: http://www.php.net/
Vendor-Status: informed
Advisory-Status: published

Credits
============
Discovered by: David Vieira-Kurz
http://

[ more ] [ reply ]

[SECURITY] [DSA 1897-1] New horde3 packages fix arbitrary code execution 2009-09-28
Nico Golde (nion debian org)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA-1897-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Nico Golde
September 28th, 2009

[ more ] [ reply ]

(edited) [DSECRG-09-044] SAP GUI 7.1 Insecure Methods 2009-09-28
Alexandr Polyakov (alexandr polyakov dsec ru)

Digital Security Research Group [DSecRG] Advisory #DSECRG-09-044

Application: EnjoySAP, SAP GUI for Windows 6.4 and 7.1
Versions Affected: Tested on 7100.2.7.1038 PL 7
Vendor URL: http://SAP.com
Bugs: inse

[ more ] [ reply ]

[MajorSecurity Advisory #59]PHP <=5.3 - mysqli_real_escape_string() full path disclosure 2009-09-28
David Vieira-Kurz (david majorsecurity info)

[MajorSecurity Advisory #59]PHP <=5.3 - mysqli_real_escape_string() full
path disclosure

Details
=======
Product: PHP <=5.3
Security-Risk: low
Remote-Exploit: yes
Vendor-URL: http://www.php.net/
Vendor-Status: informed
Advisory-Status: published

Credits
============
Discovered by: David Vieira-Ku

[ more ] [ reply ]

Vulnerabilities in E107 2009-09-26
MustLive (mustlive websecurity com ua)

Hello Bugtraq!

I want to warn you about Insufficient Anti-automation and Cross-Site
Scripting vulnerabilities in E107. I found XSS holes in October 2006 and
Insufficient Anti-automation in November 2007, and disclosed them at
30.01.2009.

Insufficient Anti-Automation:

Vulnerability is in captcha a

[ more ] [ reply ]

Multiple Vulnerabilities 2009-09-26
Jerome Athias (jerome athias free fr)

Author: Francis Provencher (Protek Research Lab's)

########################################################################
#############

Application: Adobe ShockWave Player (11.5.1.601)

Platforms: Windows XP Professional French SP2 and SP3

crash: IE 6.0.2900.2180

E

[ more ] [ reply ]

[ MDVSA-2009:248 ] php 2009-09-25
security mandriva com

[ MDVSA-2009:247 ] php 2009-09-25
security mandriva com

[ MDVSA-2009:246 ] php 2009-09-25
security mandriva com

[ GLSA 200909-20 ] cURL: Certificate validation error 2009-09-25
Alex Legler (a3li gentoo org)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200909-20
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - -

[ more ] [ reply ]

Multiple Vulnerabilities 2009-09-25
Dr_IDE (dr_ide hushmail com)

Usually I submit via milw0rm but it has been unresponsive all week.

Here are a few new vulnerabilities and updates.

-Dr_IDE#!/usr/bin/env python

########################################################################
#############################

#

# CuteFTP v8.3.3 Home/Pro/Lite Create New S

[ more ] [ reply ]

COMPENG 2010 - Extended Submission Deadline 2009-09-25
Federico Maggi (federico maggi gmail com)

Please note that the Submission Deadline has been EXTENDED to:

October 15, 2009

---------------------------------------------------------------------
IEEE Italy Section International Workshop
COMPENG 2010
Complexity in Engineering

[ more ] [ reply ]

Cisco ACE XML Gateway <= 6.0 Internal IP disclosure 2009-09-25
nitrØus (nitrousenador gmail com)