Microsoft Investigating New IIS Zero Day

Microsoft is investigating reports of a new zero-day vulnerability in its IIS Web server software, and says that the flaw is a problem mainly on servers that are poorly configured. The vulnerability, which first surfaced last week, exists in versions 6.0 and earlier of IIS, according to an adviso...

Microsoft Acknowledges IE7 Flaw

Microsoft has acknowledged a new unpatched vulnerability in Internet Explorer 6 and 7, and said that the company is investigating methods for fixing the flaw. The company said that although there is public exploit code available for the vulnerability, it has not seen any evidence of ongoing attac...

Palm Pre WebOS 1.0.4 Remote execution of arbitrary HTML code vulnerability

I. Description The Palm Pre WebOS version 1.0.4 and below allows a remote attacker to execute arbitrary HTML code on the phone via certain applications. The affected applications involve the native email client via the notifications system as well as the native calendar application. The vendor ha...

Adobe quarterly patch release should serve as an example

Adobe has become the third major software vendor to begin shipping its security updates on a regular schedule. Following the lead of Microsoft and Oracle, who have been releasing patches on a set schedule for many years, Adobe now will ship its patches once per quarter. It’s a move that’s overdue...

[Bkis-04-2009] GOM Encoder Heap-based Buffer Overflow

GOM Encoder Heap-based Buffer Overflow 1. General Information GOM Encoder is a video transcoder that can work with a lot of video formats. One of its functions is embedding subtitles to the video, which means you can see subtitles on the resulting video even if your device doesn't support subtitl...

Cisco Unity 7.0存在多个漏洞

BUGTRAQ ID: 31642 CNCAN ID：CNCAN-2008100906 Cisco Unity是一款面向企业级机构的统一通信解决方案。 Cisco Unity存在多个安全问题，包括： -Unity监听在动态UDP端口的多个服务处理特殊报文存在拒绝服务攻击。 -Unity server共享目录可泄漏信息给所有域用户。 -Unity server的会话管理看起来受限制，允许恶意用户使用所有可用户会话对合法管理者进行拒绝服务访问。要恢复新会话功能需要重新启动系统，重新启动默认WEB将不奏效。 -存在输入验证问题，导致多个跨站脚本攻击。 Cisco Unity 7.0...

iDefense Security Advisory 06.11.08: Multiple Vendor X Server MIT-SHM Extension Information Disclosure Vulnerability

iDefense Security Advisory 06.11.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 11, 2008 I. BACKGROUND The X Window System is a graphical windowing system based on a client/server model. More information about about The X Window system is available at the following link...

XSS and CSRF vulnerability on Cpanel 11

DESCRIPTION OF THE SOFTWARE cPanel is a hosting automation tool. WHM interface provides access to the heart of the cPanel and WHM package and allows a Server Administrator to simply configure a few options and be on their way to hosting web sites. 2. DESCRIPTION OF THE VULNERABILITY There are...

reddot-sql.txt

RedDot CMS SQL injection vulnerability CVE Number: CVE-2008-1613 http://www.irmplc.com/index.php/167-Advisory-026 Vulnerability Type/Importance: SQL injection/Critical Problem Discovered: 12 February 2008 Vendor Contacted: 19 February 2008 Advisory Published: 21 April 2008 Abstract: The RedDot CM...

Simple PHP Blog Multiple Vulnerabilities

Secure Network - Security Research Advisory Vuln name: Simple PHP Blog Multiple Vulnerabilities Systems affected: simplePHPBlog 0.5.0.1, simplePHPBlog 0.4.8 and all previous versions Systems not affected: - Severity: Medium Local/Remote: Remote Vendor URL: http://www.simplephpblog.com/ Authors:...

Microsoft Office Malformed Record Memory Corruption Vulnerability

Microsoft Office Malformed Record Memory Corruption Vulnerability By Sowhat of Nevis Labs 2006.10.10 http://www.nevisnetworks.com http://secway.org/advisory/AD20061010.txt Vendor Microsoft Inc. Affected: Microsoft Office 2000 Service Pack 3 Microsoft Office XP Service Pack 3 Microsoft Office 2003...

NOD32 local privilege escalation vulnerability

NOD32 local privilege escalation vulnerability Not affected: Version 2.51.26 Tested on: Winxp sp2 Risk: Average To escalate the system privilage, the option 'quarentine a file' in NOD32 can be exploited & a malicious file can be copied to the quarentine and using the 'restore to...' option it can...

Pubcookie application server modules contain cross-site scripting vulnerabilities

Overview Cross-site scripting vulnerabilities in the Pubcookie application server modules could allow a remote attacker to gain access to sensitive information. Description Pubcookie is a software package that provides intra-institutional single-sign-on authentication for end-users over the web...

OS2A-1001.txt

OS2A ePing Arbitrary File Creation/Command Execution Vulnerability OS2A ID: OS2A1001 Status Published: 08/04/2005 Updated : 08/05/2005 Patch Released Class: File Creation/Command Execution Severity: CRITICAL Overview: ePing is a ping utility plugin for e107, a PHP-based content management system...

BusMail_SMTPDOS.pl.txt

Summary: Buffer overflow in BusinessMail email server system 4.60.00 http://www.netcplus.com/ Details: Input to the SMTP HELO and MAIL FROM: commands is not properly checked and/or filtered. Issuing a long argument to the HELO and MAIL FROM: commands will cause the corresponding process to die...

FTPshellDoS.txt

Summary: Denial of service vulnerability in FTPshell Server Version 3.38 http://www.ftpshell.com/ Details: Logging into the FTP server successfully and then closing the connection without using the QUIT command 39 times will cause the ftpshelld.exe process will die. Vulnerable Versions: FTPshell...

[AppSecInc Advisory WEBSP05-V0098] Remote Buffer overflow in WebSphere Application Server Administrative Console

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Remote Buffer overflow in WebSphere Application Server Administrative Console AppSecInc Team SHATTER Security Advisory WEBSP05-V0098 http://www.appsecinc.com/resources/alerts/general/WEBSPHERE-001.html June 07, 2005 Risk level: HIGH Credits: This...

BizMail 2.1 Spam Exploit

Greetings all, Over the course of the last few months I've been the victim of repeated abuses of a web-based form commonly used for customer requests. This form can be downloaded here : http://www.bizmailform.com This form allowed a hacker to directly call the cgi, forge a referer url, and, with...

HP-UX PHCO_24868 : HP-UX running rlpdaemon, Remote Unauthorized Access, Increased Privilege (HPSBUX00163 SSRT071386 rev.2)

s700800 11.20 lpspool subsystem patch : Buffer overflow in rlpdaemon. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO24868. The text itself is copyright C Hewlett-Packard Development Company, L.P...

Multiple high risk vulnerabilities in Oracle RDBMS 10g/9i

Researchers at NGSSoftware have discovered multiple high risk vulnerabilities in the Oracle Database Server. Versions affected include Oracle Database 10g - All Releases Oracle9i Database Server - All Releases The vulnerabilities include PL/SQL Injection vulnerabilities that allow low privileged...