|
|
Colapse all |
Post message
[ GLSA 200604-17 ] Ethereal: Multiple vulnerabilities in protocol dissectors 2006-04-27 Sune Kloppenborg Jeppesen (jaervosz gentoo org) [security bulletin] HPSBUX02108 SSRT061133 rev.9 - HP-UX running Sendmail, Remote Execution of Arbitrary Code 2006-04-27 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00629555 Version: 9 HPSBUX02108 SSRT061133 rev.9 - HP-UX running Sendmail, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted upon as soon as po [ more ] [ reply ] Land Down Under 802 and below version Path Disclosure Vulnerability 2006-04-27 Advisory Aria-Security net Land Down Under 802 and below version Path Disclosure Vulnerability #----------------------------------------------------------------------- -------------------------------------------------------- #Aria-Security.net Advisory #Discovered by:R@1D3N (amin emami) #date:21/04/2006 #original advi [ more ] [ reply ] [USN-274-1] MySQL vulnerability 2006-04-27 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-274-1 April 27, 2006 mysql-dfsg vulnerability CVE-2006-0903 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog) Ub [ more ] [ reply ] =?iso-8859-1?q??= 2006-04-27 Yannick von Arx (security slashdot ch) Firefox, and IE are not a problem. The problem is the AppleWebKit 417.9, and this is "only" used by Safari. An example: TextEdit is also using the WebKit. Post the code into a document and open it with Apple's TextEdit... <- will slow down and crash ;-) the same is with SubEthaEdit... <- both bas [ more ] [ reply ] MyBB 1.1.1 Local SQL Injections 2006-04-27 o y 6 hotmail com MyBB Local SQL Injections .. [ This Local Injections Only For Admin ] * 1 * [code] adminfunctions.php , line 730 $db->query("INSERT INTO ".TABLE_PREFIX."adminlog (uid,dateline,scriptname,action,querystring,ipaddress) VALUES ('".$mybbadmin['uid']."','".$now."','".$scriptname."','".$mybb- [ more ] [ reply ] [EEYEB-20060227] Juniper Networks SSL-VPN Client Buffer Overflow 2006-04-26 eEye Advisories (Advisories eeye com) Juniper Networks SSL-VPN Client Buffer Overflow Release Date: April 25, 2006 Date Reported: February 27, 2006 Patch Development Time (In Days): 57 Days Severity: High (Remote Code Execution) Vendor: Juniper Networks Software Affected: Juniper SSL-VPN JuniperSetup Control Operating Systems Aff [ more ] [ reply ] Re: Invision Vulnerabilities, including remote code execution 2006-04-26 Steven M. Christey (coley mitre org) > sources/action_public/search.php line 1261 > $this->output = preg_replace( > "#(value=[\"']{$this->ipsclass->input['lastdate']}[\"'])#i", "\\1 > selected='selected'", > $this->output ); > >... >an #e modifier is added and then %00 used which will be parsed as a >null byte and truncate the st [ more ] [ reply ] Re: Apple Mac OS X Safari 2.0.3 Vulnerability 2006-04-26 jens mac com (1 replies) All this does is cause Safari to allocate oodles of memory. It won't crash or hang the OS, just cause it to slow down due to VM paging. Wait a bit and the force-quit alert will appear (and/or Safari will crash when it runs out of address space.) Seems more of an annoyance than an actual security pro [ more ] [ reply ] Re: Apple Mac OS X Safari 2.0.3 Vulnerability 2006-04-26 Aaron Phillips (Aaron systech-computers com) Local XXS Attack On CuteNews 2006-04-26 outlaw aria-security net Local XSS attack: http://localhost/cutenews/index.php?mod=%3E%3Cscript%3Ealert(document.co okie)%3C/script%3E%3C!-- http://localhost/cutenews/index.php?mod=editnews&action=list&source=<scr ipt>alert (document.cookie)</script><!-- advisory:http://www.aria-security.net/advisory/portals/cutenews.txt [ more ] [ reply ] XXS Attack On FarsiNews 2006-04-26 outlaw aria-security net XSS attack: http://[target]/[farsinews_path ]/index.php?month=%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E%3C! --&year=%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E%3C!-- http://[target]/[farsinews_path]/admin.php?mod=%3E%3Cscript%3Ealert(docu ment.cookie)%3C/script%3E%3C !-- Original Ad [ more ] [ reply ] SQL Injection On DUportal 2006-04-26 outlaw aria-security net Proof of Concept: /News/cat.asp?iCat=' [SQL INJECTION]&iChannel=1&nChannel=News /Articles/cat.asp?iCat=' [SQL INJECTION]&iChannel=2&nChannel=Articles /Pictures/cat.asp?iCat=' [SQL INJECTION]&iChannel=3&nChannel=Pictures Original advisory:http://www.aria-security.net/advisory/duportal.txt [ more ] [ reply ] [eVuln] warforge.NEWS SQL Injection and Multiple XSS Vulnerabilities 2006-04-26 alex evuln com New eVuln Advisory: warforge.NEWS SQL Injection and Multiple XSS Vulnerabilities http://evuln.com/vulns/125/summary.html --------------------Summary---------------- eVuln ID: EV0125 CVE: CVE-2006-1817 CVE-2006-1818 Software: warforge.NEWS Sowtware's Web Site: http://www.thewarforge.com/ Versions: 1 [ more ] [ reply ] ZDI-06-011: Mozilla Firefox Table Rebuilding Code Execution Vulnerability 2006-04-26 zdi-disclosures 3com com ZDI-06-011: Mozilla Firefox Table Rebuilding Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-011.html April 25, 2006 -- CVE ID: CVE-2006-0748 -- Affected Vendor: Mozilla -- Affected Products: Firefox 1.5 - 1.5.0.1 Firefox 1.0 - 1.0.7 Thunderbird 1.5 - 1.5.0.1 Thund [ more ] [ reply ] [SECURITY] [DSA 1043-1] New abcmidi packages fix arbitrary code execution 2006-04-26 joey infodrom org (Martin Schulze) Secunia Research: SpeedProject Products ACE Archive HandlingBuffer Overflow 2006-04-26 Secunia Research (remove-vuln secunia com) [SECURITY] [DSA 1044-1] New Mozilla Firefox packages fix several vulnerabilities 2006-04-26 joey infodrom org (Martin Schulze) [ GLSA 200604-16 ] xine-lib: Buffer overflow vulnerability 2006-04-26 Sune Kloppenborg Jeppesen (jaervosz gentoo org) [ GLSA 200604-15 ] xine-ui: Format string vulnerabilities 2006-04-26 Sune Kloppenborg Jeppesen (jaervosz gentoo org) MySmartBB<---v 1.1.x SQL Injection/XSS 2006-04-26 BoNy-m hotmail com >>>>>>>------------------------<<<<<<< foud by BoNy-m :::..alshmokh team..:: Site: http://www.alshmokh.com >>>>>>>------------------------<<<<<<< ----example: http://www.target.com/forums/misc.php?profile=1&id=[SQL]&[XSS] http://www.target.com/forums/misc.php?profile=1&username=[SQL]&[XSS] ---- [ more ] [ reply ] [SECURITY] [DSA 1044-1] New Mozilla Firefox packages fix several vulnerabilities 2006-04-26 joey infodrom org (Martin Schulze) Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack 2006-04-26 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack Advisory ID: cisco-sa-20060126-vpn http://www.cisco.com/warp/public/707/cisco-sa-20060126-vpn.shtml Revision 2.0 Last Updated 26 April 2006 1600 UTC (GMT) For [ more ] [ reply ] |
|
Privacy Statement |
Simple SQL injection in func_msg.php on line 448. to_by_id is not properly sanitized. It's passed to the class via an instance of the messenger class, which takes it from the ipb sanitized
[ more ] [ reply ]