SecurityFocus

TWSL2011-002:Vulnerabilities in Comcast DOCSIS 3.0 Business Gateways (SMCD3G-CCR) 2011-02-05
Trustwave Advisories (trustwaveadvisories trustwave com)

Trustwave's SpiderLabs Security Advisory TWSL2011-002:
Vulnerabilities in Comcast DOCSIS 3.0 Business Gateways
(SMCD3G-CCR)

https://www.trustwave.com/spiderlabs/advisories/TWSL2011-002.txt

Published: 2011-02-04
Version: 1.0

Vendor: Comcast (http://comcast.com) and SMC (http://www.smc.com)
Product

[ more ] [ reply ]

Re: [DSECRG-09-038] Sun Glassfish Woodstock Project - Linked XSS Vulnerability 2011-02-04
simpsoed us ibm com

The link to the fix does not take you to a valid site. Please provide link that details what is needed to correct the issue.

https://woodstock.dev.java.net/servlets/ReadMsg?list=cvs&msgNo=4041

Thanks, Ed Simpson

[ more ] [ reply ]

[SECURITY] [DSA-2157-1] PostgreSQL security update 2011-02-03
Florian Weimer (fw deneb enyo de)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
-
Debian Security Advisory DSA-2157-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Florian Weimer
February 03, 2011

[ more ] [ reply ]

[USN-1058-1] PostgreSQL vulnerability 2011-02-04
Steve Beattie (sbeattie ubuntu com)

===========================================================
Ubuntu Security Notice USN-1058-1 February 03, 2011
postgresql-8.1, postgresql-8.3, postgresql-8.4 vulnerability
CVE-2010-4015
===========================================================

A security issue affects the following Ubunt

[ more ] [ reply ]

(TAD-2011-001) Vulnerability in HTC Peep: Twitter Credentials Disclosure 2011-02-04
Raul Siles (raul taddong com)

+ Vulnerability in HTC Peep: Twitter Credentials Disclosure

http://blog.taddong.com/2011/02/vulnerability-in-htc-peep-twitter.html

Title: Twitter credentials disclosure in HTC Peep mobile app (default HTC Twitter client)
Vulnerability ID: TAD-2011-001
Credits: This vulnerability was discovered b

[ more ] [ reply ]

ZDI-11-039: BMC PATROL Agent Service Daemon BGS_MULTIPLE_READS Remote Code Execution Vulnerability 2011-02-03
ZDI Disclosures (zdi-disclosures tippingpoint com)

ZDI-11-039: BMC PATROL Agent Service Daemon BGS_MULTIPLE_READS Remote Code Execution Vulnerability

http://www.zerodayinitiative.com/advisories/ZDI-11-039

February 3, 2011

-- CVSS:
10, (AV:N/AC:L/Au:N/C:C/I:C/A:C)

-- Affected Vendors:
BMC Software

-- Affected Products:
BMC Software Patrol

-- Vu

[ more ] [ reply ]

[ MDVSA-2011:020 ] pango 2011-02-03
security mandriva com

[USN-1057-1] Linux kernel vulnerabilities 2011-02-03
Kees Cook (kees ubuntu com)

===========================================================
Ubuntu Security Notice USN-1057-1 February 03, 2011
linux-source-2.6.15 vulnerabilities
CVE-2010-2943, CVE-2010-3297, CVE-2010-4072
===========================================================

A security issue affects the following

[ more ] [ reply ]

HTB22802: XSS in Podcast Generator 2011-02-03
advisory htbridge ch

Vulnerability ID: HTB22802
Reference: http://www.htbridge.ch/advisory/xss_in_podcast_generator.html
Product: Podcast Generator
Vendor: Alberto Betella ( http://podcastgen.sourceforge.net/ )
Vulnerable Version: 1.3
Vendor Notification: 20 January 2011
Vulnerability Type: XSS (Cross Site Scripting)

[ more ] [ reply ]

HTB22810: SQL Injection in ReOS 2011-02-03
advisory htbridge ch

Vulnerability ID: HTB22810
Reference: http://www.htbridge.ch/advisory/sql_injection_in_reos_3.html
Product: ReOS
Vendor: IT ELAZOS S.L. ( http://reos.elazos.com/ )
Vulnerable Version: 2.0.5
Vendor Notification: 20 January 2011
Vulnerability Type: SQL Injection
Risk level: High
Credit: High-Tech B

[ more ] [ reply ]

HTB22807: SQL Injection in ReOS 2011-02-03
advisory htbridge ch

Vulnerability ID: HTB22807
Reference: http://www.htbridge.ch/advisory/sql_injection_in_reos_1.html
Product: ReOS
Vendor: IT ELAZOS S.L. ( http://reos.elazos.com/ )
Vulnerable Version: 2.0.5
Vendor Notification: 20 January 2011
Vulnerability Type: SQL Injection
Risk level: High
Credit: High-Tech B

[ more ] [ reply ]

HTB22806: SQL Injection in ReOS 2011-02-03
advisory htbridge ch

Vulnerability ID: HTB22806
Reference: http://www.htbridge.ch/advisory/sql_injection_in_reos.html
Product: ReOS
Vendor: IT ELAZOS S.L. ( http://reos.elazos.com/ )
Vulnerable Version: 2.0.5
Vendor Notification: 20 January 2011
Vulnerability Type: SQL Injection
Risk level: High
Credit: High-Tech Bri

[ more ] [ reply ]

HTB22800: Path disclosure in Podcast Generator 2011-02-03
advisory htbridge ch

Vulnerability ID: HTB22800
Reference: http://www.htbridge.ch/advisory/path_disclosure_in_podcast_generator.htm
l
Product: Podcast Generator
Vendor: Alberto Betella ( http://podcastgen.sourceforge.net/ )
Vulnerable Version: 1.3
Vendor Notification: 20 January 2011
Vulnerability Type: Path disclosure

[ more ] [ reply ]

HTB22808: Local File Inclusion in ReOS 2011-02-03
advisory htbridge ch

Vulnerability ID: HTB22808
Reference: http://www.htbridge.ch/advisory/local_file_inclusion_in_reos.html
Product: ReOS
Vendor: IT ELAZOS S.L. ( http://reos.elazos.com/ )
Vulnerable Version: 2.0.5
Vendor Notification: 20 January 2011
Vulnerability Type: Local File Inclusion
Risk level: High
Credit:

[ more ] [ reply ]

HTB22801: Local File Inclusion in Podcast Generator 2011-02-03
advisory htbridge ch

Vulnerability ID: HTB22801
Reference: http://www.htbridge.ch/advisory/local_file_inclusion_in_podcast_generato
r.html
Product: Podcast Generator
Vendor: Alberto Betella ( http://podcastgen.sourceforge.net/ )
Vulnerable Version: 1.3
Vendor Notification: 20 January 2011
Vulnerability Type: Local File

[ more ] [ reply ]

Majordomo2 - Directory Traversal (SMTP/HTTP) 2011-02-03
mike sitewat ch

Original Advisory: https://sitewat.ch/en/Advisory/View/1

Credit: Michael Brooks (https://sitewat.ch)

Vulnerability: Directory Traversal

Software: Majordomo2

Identifier:CVE-2011-0049

Vendor: http://www.mj2.org/

Affected Build: 20110121 and prior

Special thanks to Dave Miller, Reed Loden a

[ more ] [ reply ]

HTB22809: SQL Injection in ReOS 2011-02-03
advisory htbridge ch

Vulnerability ID: HTB22809
Reference: http://www.htbridge.ch/advisory/sql_injection_in_reos_2.html
Product: ReOS
Vendor: IT ELAZOS S.L. ( http://reos.elazos.com/ )
Vulnerable Version: 2.0.5
Vendor Notification: 20 January 2011
Vulnerability Type: SQL Injection
Risk level: High
Credit: High-Tech B

[ more ] [ reply ]

WOOT '11 Call for Papers 2011-02-03
Michal Zalewski (lcamtuf coredump cx)

The CFP for the 5th USENIX Workshop on Offensive Technologies is now
available at:
http://www.usenix.org/events/woot11/cfp/

Progress in the field of computer security is driven by a symbiotic
relationship between our understandings of attack and of defense. The
USENIX Workshop on Offensive Technolo

[ more ] [ reply ]

Cisco Security Advisory: Default Credentials for Root Account on Tandberg E, EX and C Series Endpoints 2011-02-02
Cisco Systems Product Security Incident Response Team (psirt cisco com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Cisco Security Advisory: Default Credentials for Root Account on
Tandberg E, EX and C Series Endpoints

Advisory ID: cisco-sa-20110202-tandberg

Revision 1.0

For Public Release 2011 February 2 1600 UTC (GMT)

+----------------------------------------

[ more ] [ reply ]

[USN-1055-1] OpenJDK vulnerabilities 2011-02-01
Steve Beattie (sbeattie ubuntu com)

===========================================================
Ubuntu Security Notice USN-1055-1 February 01, 2011
openjdk-6, openjdk-6b18 vulnerabilities
CVE-2010-4351, CVE-2011-0025
===========================================================

A security issue affects the following Ubuntu rele

[ more ] [ reply ]

[USN-1054-1] Linux kernel vulnerabilities 2011-02-01
Kees Cook (kees ubuntu com)

===========================================================
Ubuntu Security Notice USN-1054-1 February 01, 2011
linux, linux-ec2 vulnerabilities
CVE-2010-0435, CVE-2010-4165, CVE-2010-4169, CVE-2010-4249
===========================================================

A security issue affects th

[ more ] [ reply ]

fix for Nvidia CUDA drivers security breach 2011-02-01
Massimo Bernaschi (massimo bernaschi gmail com)

The bug that let Nvidia CUDA drivers pin memory without initializing
it to zero has been fixed.
See
http://forums.nvidia.com/index.php?showtopic=190303
for further details

--
--- Massimo Bernaschi: Istituto Applicazioni del Calcolo ----
| IAC-CNR | e-mail: m.bernaschi (at) iac.cnr (dot) it [email concealed]

[ more ] [ reply ]

Cisco Security Advisory: Multiple Cisco WebEx Player Vulnerabilities 2011-02-01
Cisco Systems Product Security Incident Response Team (psirt cisco com)

Aruba Mobility Controller - multiple advisories: DoS and authentication bypass 2011-02-01
Robbie Gill (rgill arubanetworks com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ADVISORY NUMBER 013111

Advisory # 1:

TITLE

Malformed 802.11 Probe Request frame causes Denial of Service condition
on an Access Point.

SUMMARY

A Denial of Service (DoS) vulnerability was discovered during standard
bug reporting procedures. A malf

[ more ] [ reply ]

HTB22805: Path disclosure in Redaxscript 2011-02-01
advisory htbridge ch

Vulnerability ID: HTB22805
Reference: http://www.htbridge.ch/advisory/path_disclosure_in_redaxscript.html
Product: Redaxscript
Vendor: http://redaxscript.com/ ( http://redaxscript.com/ )
Vulnerable Version: 0.3.2
Vendor Notification: 18 January 2011
Vulnerability Type: Path disclosure
Status: Fixe

[ more ] [ reply ]

TinyWebGallery: XSS + Directory Traversal 2011-02-01
Yam Mesicka (yammesicka gmail com)

Date: 01/02/2011 (dd/MM/yyyy)
Script: TinyWebGallery
Version: 1.8.3 (No fixes yet, might work on other versions too).
Home: http://www.tinywebgallery.com

--

Vulnerability: Non-persistent XSS
Where:
~ File: /admin/index.php
~ Parameters: sview, tview, dir, item.

Examples:
http://localhost/twg183/a

[ more ] [ reply ]

HTB22804: SQL Injection in Redaxscript 2011-02-01
advisory htbridge ch

Vulnerability ID: HTB22804
Reference: http://www.htbridge.ch/advisory/sql_injection_in_redaxscript.html
Product: Redaxscript
Vendor: http://redaxscript.com/ ( http://redaxscript.com/ )
Vulnerable Version: 0.3.2
Vendor Notification: 18 January 2011
Vulnerability Type: SQL Injection
Status: Fixed by

[ more ] [ reply ]

ZDI-11-037: Symantec IM Manager Administrative Interface IMAdminSchedTask.asp Eval Code Injection Remote Code Execution Vulnerability 2011-01-31
ZDI Disclosures (zdi-disclosures tippingpoint com)

ZDI-11-037: Symantec IM Manager Administrative Interface IMAdminSchedTask.asp Eval Code Injection Remote Code Execution Vulnerability

http://www.zerodayinitiative.com/advisories/ZDI-11-037

January 31, 2011

-- CVE ID:
CVE-2010-3719

-- CVSS:
8.5, (AV:N/AC:M/Au:S/C:C/I:C/A:C)

-- Affected Vendors:

[ more ] [ reply ]

HTB22798: Path disclosure in Pluck CMS 2011-02-01
advisory htbridge ch

Vulnerability ID: HTB22798
Reference: http://www.htbridge.ch/advisory/path_disclosure_in_pluck_cms.html
Product: Pluck
Vendor: Pluck CMS ( http://www.pluck-cms.org )
Vulnerable Version: 4.6.4
Vendor Notification: 18 January 2011
Vulnerability Type: Path disclosure
Risk level: Low
Credit: High-Tec

[ more ] [ reply ]

ZDI-11-036: IBM DB2 db2dasrrm receiveDASMessage Remote Code Execution Vulnerability 2011-01-31
ZDI Disclosures (zdi-disclosures tippingpoint com)

ZDI-11-036: IBM DB2 db2dasrrm receiveDASMessage Remote Code Execution Vulnerability

http://www.zerodayinitiative.com/advisories/ZDI-11-036

January 31, 2011

-- CVSS:
9, (AV:N/AC:L/Au:N/C:P/I:P/A:C)

-- Affected Vendors:
IBM

-- Affected Products:
IBM DB2 Universal Database

-- Vulnerability Detail

[ more ] [ reply ]