|
|
Prev week |
Colapse all |
Post message
Vanilla Forums 2.0.16 <= Cross Site Scripting Vulnerability 2011-01-27 YGN Ethical Hacker Group (lists yehg net) Re: Remote Code Execution in ICQ 7 2011-01-27 Daniel Seither (post tiwoc de) UPDATE: This week, ICQ 7.4 (build 4561) was released. Even though the original version of my exploit does not work anymore, the vulnerability was not resolved: ICQ only changed the product ID that is included in the path to the update file. If every ocurrence of "30009" in both python files (see or [ more ] [ reply ] PRTG V8.1.2.1809 XSS Bugs in login.htm and error.htm 2011-01-25 Joshua Gimer (jgimer gmail com) XSS (Reflected) Bugs in login.htm and error.htm ================================================================ PRTG V8.1.2.1809 (All OS Versions): http://www.paessler.com/ I have discovered two XSS bugs within PRTG version 8.1.2.1809. These bugs are in the login.htm and error.htm documents. Thes [ more ] [ reply ] IETF RFC on "the implementation of the TCP urgent mechanism" 2011-01-25 Fernando Gont (fernando gont gmail com) Folks, RFC 6093, entitled "On the Implementation of the TCP Urgent Mechanism" has just been published. It is available at: http://www.rfc-editor.org/rfc/rfc6093.txt This RFC has been motivated, to a large extent, by the behavior of some well-known firewalls. The Abstract of the RFC is: ---- cut [ more ] [ reply ] HTB22795: Path disclosure in Hycus CMS 2011-01-27 advisory htbridge ch Vulnerability ID: HTB22795 Reference: http://www.htbridge.ch/advisory/path_disclousure_in_hycus_cms.html Product: Hycus CMS Vendor: Hycus Web Development Team ( http://www.hycus.com/ ) Vulnerable Version: 1.0.3 and probably prior versions Vendor Notification: 13 January 2011 Vulnerability Type: Pa [ more ] [ reply ] VUPEN Security Research - Novell GroupWise "TZID" Variable Remote Buffer Overflow Vulnerability (VUPEN-SR-2011-004) 2011-01-26 VUPEN Security Research (advisories vupen com) VUPEN Security Research - Novell GroupWise VCALENDAR "TZID" Variable Remote Buffer Overflow Vulnerability (VUPEN-SR-2011-004) http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Novell GroupWise collaboration software is a premier collaboration tool for large enterpri [ more ] [ reply ] [USN-1052-1] OpenJDK vulnerability 2011-01-26 Steve Beattie (sbeattie ubuntu com) =========================================================== Ubuntu Security Notice USN-1052-1 January 26, 2011 openjdk-6, openjdk-6b18 vulnerability CVE-2010-4351 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 9.1 [ more ] [ reply ] Huawei HG default WEP/WPA generator 2011-01-25 Pedro Joaquín (pjoaquin gmail com) Hi, Huawei HG520 and HG530 routers are vulnerable to weak cipher attacks. It is possible to generate the default WEP/WPA key from the MAC address. The following documents detail the process of developing a key generator for these devices. English: http://websec.ca/blog/view/mac2wepkey_huawei Es [ more ] [ reply ] Microsoft IIS 6 parsing directory ?x.asp? Vulnerability 2011-01-25 info securitylab ir ############################################################ # Microsoft IIS 6 parsing directory Vulnerability ############################################################ #Discovered by: Pouya daneshmand whh_iran[AT]yahoo[DOT]com http://securitylab.ir/blog #Introduction: Using this vulne [ more ] [ reply ] [security bulletin] HPSBMA02626 SSRT100301 rev.1 - HP OpenView Storage Data Protector, Remote Denial of Service (DoS) 2011-01-26 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02699143 Version: 1 HPSBMA02626 SSRT100301 rev.1 - HP OpenView Storage Data Protector, Remote Denial of Service (DoS) NOTICE: The information in this Security Bulletin should be acted upon as so [ more ] [ reply ] [USN-1051-1] HPLIP vulnerability 2011-01-25 Marc Deslauriers (marc deslauriers canonical com) =========================================================== Ubuntu Security Notice USN-1051-1 January 25, 2011 hplip vulnerability CVE-2010-4267 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 9.10 [ more ] [ reply ] [DSECRG-00142] SAP Crystal Reports 2008 - actionNavjsp_xss 2011-01-25 Alexandr Polyakov (alexandr polyakov dsec ru) XSS vulnerability found in SAP Crystal Report Server 2008 Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://sap.com Bugs: Linked XSS Vulnerability Exploits: YES Reported: 04.03.2010 Vendor response: 05.03.2010 Date of SAPNOTE [ more ] [ reply ] [OVSA20110118] OpenVAS Manager Vulnerable To Command Injection 2011-01-25 Tim Brown (timb openvas org) Summary It has been identified that OpenVAS Manager is vulnerable to command injection due to insufficient validation of user supplied data when processing OMP requests. It has been identified that this vulnerability allows privilege escalation within the OpenVAS Manager but more complex injecti [ more ] [ reply ] [security bulletin] HPSBMA02624 SSRT100195 rev.2 - HP LoadRunner and HP Performace Center, Remote Execution of Arbitrary Code 2011-01-25 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02680678 Version: 2 HPSBMA02624 SSRT100195 rev.2 - HP LoadRunner and HP Performace Center, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted up [ more ] [ reply ] HTB22787: Path disclousure in Pligg CMS 2011-01-25 advisory htbridge ch Vulnerability ID: HTB22787 Reference: http://www.htbridge.ch/advisory/path_disclousure_in_pligg_cms.html Product: Pligg CMS Vendor: Pligg ( http://www.pligg.com/ ) Vulnerable Version: 1.1.3 Vendor Notification: 11 January 2011 Vulnerability Type: Path disclosure Status: Awaiting Vendor Response Ri [ more ] [ reply ] HTB22789: Path disclousure in Pivotx 2011-01-25 advisory htbridge ch Vulnerability ID: HTB22789 Reference: http://www.htbridge.ch/advisory/path_disclousure_in_pivotx.html Product: Pivotx Vendor: Pivotx Team ( http://pivotx.net/ ) Vulnerable Version: 2.2.0 Vendor Notification: 11 January 2011 Vulnerability Type: Path disclosure Status: Awaiting Vendor Solution Risk [ more ] [ reply ] [DSECRG-11-008] Open Edge RDBMS - Multiple architecture vulnerabilities (UNPATCHED) 2011-01-25 Alexandr Polyakov (alexandr polyakov dsec ru) HTB22790: XSS in Pivotx 2011-01-25 advisory htbridge ch Vulnerability ID: HTB22790 Reference: http://www.htbridge.ch/advisory/xss_in_pivotx_1.html Product: Pivotx Vendor: Pivotx Team ( http://pivotx.net/ ) Vulnerable Version: 2.2.0 Vendor Notification: 11 January 2011 Vulnerability Type: XSS (Cross Site Scripting) Status: Awaiting Vendor Solution Risk [ more ] [ reply ] HTB22792: XSS in Pixelpost 2011-01-25 advisory htbridge ch Vulnerability ID: HTB22792 Reference: http://www.htbridge.ch/advisory/xss_in_pixelpost.html Product: Pixelpost Vendor: Pixelpost ( http://www.pixelpost.org/ ) Vulnerable Version: 1.7.3 Vendor Notification: 11 January 2011 Vulnerability Type: XSS (Cross Site Scripting) Status: Awaiting Vendor Respo [ more ] [ reply ] [DSECRG-00145] SAP Crystal Reports 2008 - Directory Traversal 2011-01-25 Alexandr Polyakov (alexandr polyakov dsec ru) [DSECRG-11-005] Oracle Document Capture empop3.dll - insecure method 2011-01-25 Alexandr Polyakov (alexandr polyakov dsec ru) HTB22788: XSS in Pivotx 2011-01-25 advisory htbridge ch Vulnerability ID: HTB22788 Reference: http://www.htbridge.ch/advisory/xss_in_pivotx.html Product: Pivotx Vendor: Pivotx Team ( http://pivotx.net/ ) Vulnerable Version: 2.2.0 Vendor Notification: 11 January 2011 Vulnerability Type: XSS (Cross Site Scripting) Status: Awaiting Vendor Solution Risk le [ more ] [ reply ] [DSECRG-11-007] Oracle Document Capture ImportBodyText - read files 2011-01-25 Alexandr Polyakov (alexandr polyakov dsec ru) [DSECRG-11-006] Oracle Document Capture ActiveX - Insecure method, buffer overflow 2011-01-25 Alexandr Polyakov (alexandr polyakov dsec ru) [DSECRG-00153] Oracle Document Capture Actbar2.ocx - insecure method 2011-01-25 Alexandr Polyakov (alexandr polyakov dsec ru) [DSECRG-00143] SAP Crystal Reports 2008 - ActiveX insecure methods 2011-01-25 Alexandr Polyakov (alexandr polyakov dsec ru) [DSECRG-11-002] (Internal DSECRG-00143) SAP Crystal Report Server 2008 scriptinghelpers.dll ActiveX component - Insecure methods The component contains insecure methods by which you can overwrite any file in the OS, run the executable file, kill process, delete the file. Application: S [ more ] [ reply ] HTB22791: File Content Disclosure in Pixelpost 2011-01-25 advisory htbridge ch Vulnerability ID: HTB22791 Reference: http://www.htbridge.ch/advisory/file_content_disclosure_in_pixelpost.htm l Product: Pixelpost Vendor: Pixelpost ( http://www.pixelpost.org/ ) Vulnerable Version: 1.7.3 Vendor Notification: 11 January 2011 Vulnerability Type: File Content Disclosure Status: Awai [ more ] [ reply ] HTB22794: Path disclousure in Pixelpost 2011-01-25 advisory htbridge ch Vulnerability ID: HTB22794 Reference: http://www.htbridge.ch/advisory/path_disclousure_in_pixelpost.html Product: Pixelpost Vendor: Pixelpost ( http://www.pixelpost.org/ ) Vulnerable Version: 1.7.3 Vendor Notification: 11 January 2011 Vulnerability Type: Path disclousure Status: Awaiting Vendor Re [ more ] [ reply ] |
|
Privacy Statement |
======
Vanilla Forums 2.0.16 <= Cross Site Scripting Vulnerability
========================================================================
======
1. OVERVIEW
The Vanilla Forums 2.0.16 and lower versions were vulnerable to Cro
[ more ] [ reply ]