SecurityFocus

Digitalus 1.10.0 Alpha2 Arbitrary File Upload vulnerability.txt 2010-12-01
eidelweiss windowslive com

########################################################

Digitalus 1.10.0 Alpha2 Arbitrary File Upload vulnerability

########################################################

____ __ __ __

/\ _`\ /\ \ __

[ more ] [ reply ]

[eVuln.com] Multiple XSS in Alguest 2010-12-01
bt evuln com

New eVuln Advisory:
Multiple XSS in Alguest
Summary: http://evuln.com/vulns/151/summary.html
Details: http://evuln.com/vulns/151/description.html

-----------Summary-----------
eVuln ID: EV0151
Software: Alguest
Vendor: n/a
Version: 1.1c-patched
Critical Level: low
Type: Cross Site Scripting
Statu

[ more ] [ reply ]

[ MDVSA-2010:246 ] krb5 2010-12-01
security mandriva com

[ MDVSA-2010:245 ] krb5 2010-12-01
security mandriva com

CORE-2010-1109 - Multiple vulnerabilities in BugTracker.Net 2010-11-30
CORE Security Technologies Advisories (advisories coresecurity com)

Core Security Technologies - CoreLabs Advisory
http://corelabs.coresecurity.com/

Multiple vulnerabilities in BugTracker.Net

1. *Advisory Information*

Title: Multiple vulnerabilities in BugTracker.Net
Advisory Id: CORE-2010-1109
Advisory URL:
[http://www.coresecu

[ more ] [ reply ]

MITKRB5-SA-2010-007 Multiple checksum handling vulnerabilities [CVE-2010-1324 CVE-2010-1323 CVE-2010-4020 CVE-2010-4021] 2010-11-30
Tom Yu (tlyu mit edu)

[USN-1024-1] OpenJDK vulnerability 2010-11-30
Marc Deslauriers (marc deslauriers canonical com)

===========================================================
Ubuntu Security Notice USN-1024-1 November 30, 2010
openjdk-6 vulnerability
CVE-2010-3860
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 8.04 LTS
Ubuntu

[ more ] [ reply ]

[ MDVSA-2010:244 ] phpmyadmin 2010-11-30
security mandriva com

[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues 2010-11-27
dann frazier (dannf debian org)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- ----------------------------------------------------------------------
Debian Security Advisory DSA-2126-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ dann frazier
November 26, 2010

[ more ] [ reply ]

'Orbis CMS' Arbitrary Script Execution Vulnerability (CVE-2010-4313) 2010-11-30
Mark Stanislav (mark stanislav gmail com)

'Orbis CMS' Arbitrary Script Execution Vulnerability (CVE-2010-4313)
Mark Stanislav - mark.stanislav (at) gmail (dot) com [email concealed]

I. DESCRIPTION
---------------------------------------
A vulnerability exists in the 'Orbis CMS' fileman_file_upload.php script that allows any authenticated user to upload a PHP script a

[ more ] [ reply ]

[eVuln.com] Multiple SQL injections in Wernhart Guestbook 2010-11-29
bt evuln com

New eVuln Advisory:
Multiple SQL injections in Wernhart Guestbook
Summary: http://evuln.com/vulns/149/summary.html
Details: http://evuln.com/vulns/149/description.html

-----------Summary-----------
eVuln ID: EV0149
Software: Wernhart Guestbook
Vendor: Carl A. Wernhart
Version: 2001.03.28
Critical

[ more ] [ reply ]

[eVuln.com] Multiple XSS inj in Wernhart Guestbook 2010-11-30
bt evuln com

New eVuln Advisory:
Multiple XSS in Wernhart Guestbook
Summary: http://evuln.com/vulns/150/summary.html
Details: http://evuln.com/vulns/150/description.html

-----------Summary-----------
eVuln ID: EV0150
Software: Wernhart Guestbook
Vendor: Carl A. Wernhart
Version: 2001.03.28
Critical Level: low

[ more ] [ reply ]

Pandora FMS Authentication Bypass and Multiple Input Validation Vulnerabilities 2010-11-30
Juan Galiana Lara (jgaliana 48bits com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Pandora FMS Authentication Bypass and Multiple Input Validation
Vulnerabilities

CVE IDs in this security advisory:

1) Authentication bypass - CVE-2010-4279
2) OS Command Injection - CVE-2010-4278
3) SQL Injection - CVE-2010-4280
4) Blind SQL Injection

[ more ] [ reply ]

VMSA-2010-0017 VMware ESX third party update for Service Console kernel 2010-11-30
VMware Security Team (security vmware com)

[CVE-2010-3449] Apache Archiva CSRF Vulnerability 2010-11-29
Deng Ching (oching apache org)

CVE-2010-3449: Apache Archiva CSRF Vulnerability

Severity: Important

Vendor:
The Apache Software Foundation

Versions Affected:
Archiva 1.0 to 1.0.3 (end of life)
Archiva 1.1 to 1.1.4 (end of life)
Archiva 1.2 to 1.2.2 (end of life)
Archiva 1.3 to 1.3.1

Description:
Apache Archiva doesn't check w

[ more ] [ reply ]

FreeBSD Security Advisory FreeBSD-SA-10:10.openssl 2010-11-29
FreeBSD Security Advisories (security-advisories freebsd org)

[ MDVSA-2010:243 ] libxml2 2010-11-29
security mandriva com

n.runs-SA-2010.003 - Hewlett Packard LaserJet MFP devices - Directory Traversal in PJL interface 2010-11-29
security nruns com

n.runs AG
http://www.nruns.com/ security(at)nruns.com
n.runs-SA-2010.003 16-Nov-2010
________________________________________________________________________

Vendor: Hewlett-Packard, http://www.hp.com
Affected Products: Various H

[ more ] [ reply ]

[ MDVSA-2010:242 ] wireshark 2010-11-28
security mandriva com

[SECURITY] [DSA-2127-1] New wireshark packages fix denial of service 2010-11-28
Stefan Fritsch (sf debian org)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------

Debian Security Advisory DSA-2127-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Stefan Fritsch
November 28, 2010

[ more ] [ reply ]

SQL injection and Path Disclosure Auth Bypass in 4images 1.7.X 2010-11-27
u6q hotmail com

-----------Summary-----------
eVuln ID: 200
Software: "Powered by 4images"
Vendor: PHP Web Scripts
Version: 4images 1.7.X
dork: "Powered by 4images"
Critical Level: medium
Type: SQL injection and Path Disclosure
Status: Unpatched. No reply from developer(s)
PoC: Available
Solution: Not available
Dis

[ more ] [ reply ]

Google Desktop Insecure Library Loading Vulnerability 2010-11-27
apa-iutcert nsec ir

A vulnerability has been discovered in Google Desktop, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to the application loading libraries in an insecure manner.
Libraries list called is as follows:
? schannel.dll
This can be exploited to lo

[ more ] [ reply ]

Vulnerabilities in Joomla 2010-11-28
MustLive (mustlive websecurity com ua)

Hello Bugtraq!

I want to warn you about Insufficient Anti-automation and Abuse of
Functionality vulnerabilities in Joomla. Vulnerabilities exist in component
com_contact, which is a core component of Joomla.

SecurityVulns ID: 11272.

-------------------------
Affected products:
-------------------

[ more ] [ reply ]

AOL Instant Messenger Insecure Library Loading Vulnerability 2010-11-27
apa-iutcert nsec ir

A vulnerability has been discovered in AOL Instant Messenger, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to the application loading libraries in an insecure manner.

Libraries list called is as follows:

? dwmapi.dll

This can be exploi

[ more ] [ reply ]

jQuery Lightweight Rich Text Editor (lwrte) Plugin uploader.php Arbitrary File Upload 2010-11-27
underground stockholm (underground-stockholm operamail com)

TITLE: jQuery Lightweight Rich Text Editor (lwrte) Plugin uploader.php Arbitrary File Upload
PRODUCT: jQuery Lightweight Rich Text Editor (lwrte) Plugin
PRODUCT URL 1: http://code.google.com/p/lwrte/
PRODUCT URL 2: http://plugins.jquery.com/project/lwRTE
CHECKED VERSIONS: 1.2
RESEARCHERS: undergroun

[ more ] [ reply ]

Re: [Full-disclosure] Simple kernel attack using socketpair. easy, 100% reproductiblle, works under guest. no way to protect :( 2010-11-26
Dan Rosenberg (dan j rosenberg gmail com)

It's funny to me that this should get special attention over any of
the several dozen local DoS vulnerabilities that have been made public
this year, starting with:

CVE-2010-2954: NULL pointer dereference in IRDA
CVE-2010-2960: NULL pointer dereference in keyctl
CVE-2010-3066: NULL pointer derefere

[ more ] [ reply ]

[eVuln.com] SQL injection Auth Bypass in Easy Banner Free 2010-11-26
bt evuln com

New eVuln Advisory:
SQL injection Auth Bypass in Easy Banner Free
Summary: http://evuln.com/vulns/147/summary.html
Details: http://evuln.com/vulns/147/description.html

-----------Summary-----------
eVuln ID: EV0147
Software: Easy Banner Free
Vendor: PHP Web Scripts
Version: 2009.05.18
Critical Le

[ more ] [ reply ]

XSS vulnerability in Frog CMS 2010-11-25
advisory htbridge ch

Vulnerability ID: HTB22682
Reference: http://www.htbridge.ch/advisory/xss_vulnerability_in_frog_cms.html
Product: Frog CMS
Vendor: Philippe Archambault ( http://www.madebyfrog.com/ )
Vulnerable Version: 0.9.5 and probably prior versions
Vendor Notification: 09 November 2010
Vulnerability Type: Sto

[ more ] [ reply ]

XSRF (CSRF) in Wolf CMS 2010-11-25
advisory htbridge ch

Vulnerability ID: HTB22681
Reference: http://www.htbridge.ch/advisory/xsrf_csrf_in_wolf_cms.html
Product: Wolf CMS
Vendor: Wolf CMS team ( http://www.wolfcms.org/ )
Vulnerable Version: 0.6.0b and probably prior versions
Vendor Notification: 09 November 2010
Vulnerability Type: CSRF (Cross-Site Req

[ more ] [ reply ]

[eVuln.com] URL XSS in Easy Banner Free 2010-11-26
bt evuln com

New eVuln Advisory:
URL XSS in Easy Banner Free
Summary: http://evuln.com/vulns/148/summary.html
Details: http://evuln.com/vulns/148/description.html

-----------Summary-----------
eVuln ID: EV0148
Software: Easy Banner Free
Vendor: PHP Web Scripts
Version: 2009.05.18
Critical Level: low
Type: Cro

[ more ] [ reply ]