New release of MySQL fixes security bugs

MySQL Community Server before 5.0.45 allows remote authenticated users to gain update privileges for a table in another database via a view that refers to this external table...

CVE-2007-4742

Claroline before 1.8.6 allows remote authenticated administrators to obtain sensitive information via an invalid value in the sort parameter to admin/adminusers.php, which reveals the path in an error message in some circumstances, as demonstrated by a parameter value containing an XSS sequence...

Design/Logic Flaw

The WebAdmin interface in TeamSpeak Server 2.0.20.1 allows remote authenticated users with the ServerAdmin flag to assign Registered users certain privileges, resulting in a privilege set that extends beyond that ServerAdmin's own servers, as demonstrated by the 1 AdminAddServer, 2...

CVE-2007-4529

The CVE concerns TeamSpeak Server 2.0.20.1 WebAdmin: remote authenticated users with the ServerAdmin flag can elevate privileges beyond their own servers. By issuing requests to .tscmd URIs with a modified serverid (e.g., add_server.tscmd, ask_delete_server.tscmd, start_server.tscmd, stop_server....

CVE-2007-4427

Unspecified vulnerability in the login page redirection logic in the Cache' Server Page CSP implementation in InterSystems Cache' 2007.1.0.369.0 and 2007.1.1.420.0 allows remote authenticated users to modify data on a server, related to encoding of certain parameter values by this redirection...

CVE-2007-4425

CVE-2007-4425 concerns buffer overflow vulnerabilities in Live for Speed (LFS) including the demo, S1 and S2 components. The issue arises from crafted network packets: an ID 3 packet with a long nickname field can trigger a server denial-of-service and likely remote code execution, while an ID 10...

CVE-2007-4410

ircu 2.10.12.05 and earlier does not properly synchronize a kick action in certain cross scenarios, which allows remote authenticated operators to prevent later kick or de-op actions from non-local ops...

Stack overflow

Stack-based buffer overflow in the IMAP service in SurgeMail 38k allows remote authenticated users to execute arbitrary code via a long argument to the SEARCH command. NOTE: this might overlap CVE-2007-4372...

Design/Logic Flaw

IBM Lotus Notes 5.x through 7.0.2 allows user-assisted remote authenticated administrators to obtain a cleartext notes.id password by setting the notes.ini 1 KFMShowEntropy and 2 DebugOutfile debug variables, a different vulnerability than CVE-2005-2696...

CVE-2007-4309

IBM Lotus Notes 5.x through 7.0.2 allows user-assisted remote authenticated administrators to obtain a cleartext notes.id password by setting the notes.ini 1 KFMShowEntropy and 2 DebugOutfile debug variables, a different vulnerability than CVE-2005-2696...

CVE-2007-4280

The Skinny channel driver chanskinny in Asterisk Open Source before 1.4.10, AsteriskNOW before beta7, Appliance Developer Kit before 0.7.0, and Appliance s800i before 1.0.3 allows remote authenticated users to cause a denial of service application crash via a CAPABILITIESRESMESSAGE packet with a...

CVE-2007-2407

CVE-2007-2407 concerns the Samba server on Apple Mac OS X 10.3.9 and 10.4.10 when Windows file sharing is enabled. The issue is that, after dropping privileges, disk quotas are not enforced, allowing remote authenticated users to use disk space beyond their quota. This is a network-facing vulnera...

CVE-2007-1354

The Access Control functionality JMXOpsAccessControlFilter in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by...

CVE-2007-1354

CVE-2007-1354 affects JBoss Application Server’s JMX Console (JBoss AS 4.0.2 and 4.0.5 before 20070416). The flaw is in JMXOpsAccessControlFilter, which stores the current user’s roles in a member variable, enabling a race condition where a remote authenticated administrator could log in during a...

CVE-2007-1354

The Access Control functionality JMXOpsAccessControlFilter in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by...

CVE-2007-3858

Multiple unspecified vulnerabilities in Oracle Database 10.2.0.3 allow remote authenticated users to have an unknown impact via 1 EXFSYS.DBMSRLMGRUTL in Rules Manager DB11 and 2 Program Interface DB13...

CVE-2007-3868

Multiple unspecified vulnerabilities in PeopleTools in Oracle PeopleSoft Enterprise 8.22.15, 8.47.13, 8.48.10, and 8.49.02 allows remote authenticated users or attackers to have an unknown impact via multiple vectors, aka 1 PSE01, 2 PSE02, and 3 PSE03...

CVE-2007-3782

CVE-2007-3782 affects MySQL Community Server up to version 5.0.44; remote authenticated users can gain update privileges for a table in another database through a view that refers to an external table. Root cause: a view cross-database reference allows privilege escalation. A fix is available in ...

CVE-2007-3781

MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure...

CVE-2007-3600

WordPlugin in the wordintegration component in vtiger CRM before 5.0.3 allows remote authenticated users to bypass field level security permissions and merge arbitrary fields in an Email template, as demonstrated by the fields in the Contact module...