|
|
Colapse all |
Post message
SEC Consult SA-20051211-0 :: Several XSS issues in Horde Framework, Kronolith Calendar, Mnemo Notes, Nag Tasks and Turba Addressbook 2005-12-11 Johannes Greil (j greil sec-consult com) Re: Re: [KAPDA::#16] - SMF SQL Injection 2005-12-11 polnby yahoo com Take a better look at your \'Memberlist.php\' source code. // Select the members from the database. $request = db_query(\" SELECT mem.ID_MEMBER FROM {$db_prefix}members AS mem LEFT JOIN {$db_prefix}log_online AS lo ON (lo.ID_MEMBER = mem.ID_MEMBER) LEFT JOIN {$db_prefix}membergroups AS m [ more ] [ reply ] [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol implementation 2005-12-12 Thierry Carrez (koon gentoo org) oracle not only offeder - researchers NOT responsible? 2005-12-11 Gadi Evron (ge linuxbox org) The following is a very well researched text from Matthew Murphy's blog discussing the matter of disclosing vulnerabilities to many vendors (and specifically Microsoft). Further, as I understand it, he shows how vendors today use terms such as "responsible disclosure" to scare researchers and cl [ more ] [ reply ] [USN-227-1] xpdf vulnerabilities 2005-12-12 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-227-1 December 12, 2005 xpdf/cupsys/tetex-bin/kdegraphics/koffice vulnerabilities CVE-2005-3191, CVE-2005-3192, CVE-2005-3193 =========================================================== A security issue [ more ] [ reply ] Re: Re: [KAPDA::#16] - SMF SQL Injection 2005-12-10 retrogod aliceposta it [quote] I'm a developer from over at simplemachines and I do not see how this can pose an exploit? Let's examine the code piece by piece: The code is entered at this point: if (!is_numeric($_REQUEST['start'])) So, will be executed if $_REQUEST['start'] is a string. It's then used in the query. How [ more ] [ reply ] [scip_Advisory] NetGear RP114 Flooding Denial of Service 2005-12-12 Marc Ruef (maru scip ch) (1 replies) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NetGear RP114 TCP SYN Flooding Denial of Service scip AG Vulnerability (12/12/2005) I. INTRODUCTION NetGear is a popular manufacturer for network devices. Especially their SOHO and appliance boxes are widely in private use. One of the user products [ more ] [ reply ] Re: [Full-disclosure] [scip_Advisory] NetGear RP114 Flooding Denial ofService 2005-12-12 Morning Wood (se_cur_ity hotmail com) Guestserver guestbook system vulnerabilities 2005-12-11 jaakko ritke fi The poor security and input validation at Guestserver versions below 5 ( there are still lots of them out there ) allow all HTML tags inside a message and it can be exploited as much as you want to. http://www.stud.ntnu.no/~larsell/guestserver/ A Google Search for "Guestbook by Guestserver - v4. [ more ] [ reply ] [ GLSA 200512-03 ] phpMyAdmin: Multiple vulnerabilities 2005-12-11 Sune Kloppenborg Jeppesen (jaervosz gentoo org) IMOEL CMS Sql password discovery 2005-12-12 silversmith ashiyane com IMOEL CMS has the weakness to download the plain text sql password in the setting.php file */************************************* $setting['host']['username'] = 'sqlusername'; $setting['host']['password'] = 'sqlpassword'; *************************************** so u can download the setting.ph [ more ] [ reply ] [SECURITY] [DSA 919-1] New curl packages fix potential security problem 2005-12-12 joey infodrom org (Martin Schulze) DEFCON London group - DC4420 - inaugural meeting and Christmas Drinks! 2005-12-10 Major Malfunction (majormal pirate-radio org) calling all London based hackers, security professionals, feds, geeks, nerds, groupies and scene whores... on behalf of DC4420, i'm pleased to announce the inaugural meeting of the London DC group, and invite you to come and drink, talk and set the agenda for the year to come... the venue will b [ more ] [ reply ] Flatnuke 2.5.6 privilege escalation / remote commands execution exploit 2005-12-10 retrogod aliceposta it MDKSA-2005:206-1 - Updated openvpn packages fix multiple vulnerabilities 2005-12-10 Mandriva Security Team (security mandriva com) Re: [KAPDA::#16] - SMF SQL Injection 2005-12-10 grudge securityfocus com, simplemachines securityfocus com,org securityfocus com (1 replies) I'm a developer from over at simplemachines and I do not see how this can pose an exploit? Let's examine the code piece by piece: The code is entered at this point: if (!is_numeric($_REQUEST['start'])) So, will be executed if $_REQUEST['start'] is a string. It's then used in the query. However, it [ more ] [ reply ] Apani Network Response to ISAKMP cert-fi:7710 Alert 2005-12-09 mkuch apani securityfocus com APANI Networks EpiForce 1.9 and Earlier Potential Denial of Service in EpiForce Agent NOTICE: The information in this notice should be acted upon as soon as possible. All affected customers have already been contacted by Apani. Release Date: 2005-12-09 Potential Security Impact: Remote Denial [ more ] [ reply ] Torrential 1.2 Directory Traversal 2005-12-09 Shell (shell6 gmail com) I was poking around my own server because I had an installation of torrential and found this vuln. The problem lies in getdox.php. It works by taking an argument after a "/". This specifies a file. The DOX folder that it grabs the files from is located int /dox such that / is the directory that the [ more ] [ reply ] PGP Wipe Free Space, Lyris ListManager Flaws, Windows Timestamps, Sam Juicer 2005-12-09 H D Moore (sflist digitaloffense net) The Metasploit Project has released three new vulnerability sets and a password dumping extension to the Meterpreter payload. Enjoy! -HD [ PGP Desktop Wipe Free Space Flaw ] PGP Desktop includes a Wipe Free Space utility that claims to eliminate data in all the free space on your hard drive inc [ more ] [ reply ] iDefense Security Advisory 12.09.05: Ethereal OSPF Protocol Dissector Buffer Overflow Vulnerability 2005-12-09 labs-no-reply (at) idefense (dot) com [email concealed] (labs-no-reply idefense com) Ethereal OSPF Protocol Dissector Buffer Overflow Vulnerability iDefense Security Advisory 12.09.05 www.idefense.com/application/poi/display?id=349&type=vulnerabilities December 9, 2005 I. BACKGROUND Ethereal is a full featured open source network protocol analyzer. For more information, see http [ more ] [ reply ] MDKSA-2005:225 - Updated perl package fixes format string vulnerability 2005-12-08 Mandriva Security Team (security mandriva com) [SECURITY] [DSA 918-1] New osh packages fix privilege escalation 2005-12-09 joey infodrom org (Martin Schulze) MDKSA-2005:224 - Updated curl package fixes format string vulnerability 2005-12-08 Mandriva Security Team (security mandriva com) [USN-226-1] Courier vulnerability 2005-12-09 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-226-1 December 09, 2005 courier vulnerability CVE-2005-3532 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog) Ubunt [ more ] [ reply ] Re: 3com product security hole 2005-12-09 Juha-Matti Laurio (juha-matti laurio netti fi) For new list subscribers etc., was it the address 3Com_SRT [at] 3Com.com listed at http://csoweb4.3com.com/security/ or security [at] 3com.com listed at independent dictionary http://www.osvdb.org/vendor_dict.php?section=vendor&id=1210&c=% etc. If no, please try both of these! Regards, Juha-Matt [ more ] [ reply ] [KAPDA::#16] - SMF SQL Injection 2005-12-09 alireza hassani (trueend5 yahoo com) KAPDA New advisory Vendor: http://www.simplemachines.org/ Vulnerable Version:SMF 1.1 rc1, Other versions also may be affected. Bug: SQL Injection Exploitation: Remote with browser Description: -------------------- Simple Machines Forum is a most widely used PHP-based message board system that uses [ more ] [ reply ] |
|
Privacy Statement |
========================================================================
==
title: < Several XSS issues in Horde Framework, Kronolith
Calendar, Mnemo Notes, Nag Tasks and Turba
Addressbook >
[ more ] [ reply ]