Monthly Archive: February 2005

Multiple SQL injection vulnerabilities in MyPHP Forum 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the fid in forum.php, (2) the member parameter in member.php, (3) the email parameter in forgot.php,...

Cross-site scripting (XSS) vulnerability in Spidean PostWrap allows remote attackers to inject arbitrary HTML and web script via the page parameter. Date published : 2005-02-14 http://archives.neohapsis.com/archives/fulldisclosure/2005-02/0065.html http://securitytracker.com/id?1013130

CitrusDB 0.3.5 and earlier stores the newfile.txt temporary data file under the web root, which allows remote attackers to steal credit card information via a direct request to newfile.txt. Date published : 2005-02-14 http://www.securityfocus.com/bid/12402...

Monit 1.4 to 4.1 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request with a negative Content-Length field. Date published : 2005-02-13 http://www.securityfocus.com/bid/9098 http://www.securityfocus.com/archive/1/345417

Stack-based buffer overflow in Monit 1.4 to 4.1 allows remote attackers to execute arbitrary code via a long HTTP request. Date published : 2005-02-13 http://www.securityfocus.com/bid/9099 http://www.securityfocus.com/archive/1/345417

Unknown vulnerability in Serviceguard A.11.13 through A.11.16.00 and Cluster Object Manager A.01.03 and B.01.04 through B.03.00.01 on HP-UX, Serviceguard A.11.14.04 and A.11.15.04 and Cluster Object Manager B.02.01.02 and B.02.02.02 on HP Linux, allow remote...

Buffer overflow in the TFTP client in InetUtils 1.4.2 allows remote malicious DNS servers to execute arbitrary code via a large DNS response that is handled by the gethostbyname function. Date published : 2005-02-13...

Format string vulnerability in the _msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to...

Multiple unknown vulnerabilities in the ActiveX and HTML file browsers in Symantec Clientless VPN Gateway 4400 Series 5.0 have unknown attack vectors and unknown impact. Date published : 2005-02-13 http://www.securityfocus.com/bid/10903 http://www.kb.cert.org/vuls/id/760256

The sbuf_getmsg function in BNC incorrectly handles backspace characters, which could allow remote attackers to bypass authentication and gain access to arbitrary scripts. Date published : 2005-02-13 http://www.securityfocus.com/bid/11355 http://www.gotbnc.com/changes.html#2.8.9

Integer overflow in pnen3260.dll in RealPlayer 8 through 10.5 (6.0.12.1040) and earlier, and RealOne Player 1 or 2 on Windows or Mac OS, allows remote attackers to execute arbitrary code via a SMIL file...

Unknown vulnerability in the management station in HP StorageWorks Command View XP 1.8B and earlier allows remote attackers to bypass access restrictions. Date published : 2005-02-13 http://www.securityfocus.com/bid/11249 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=PSD_HPSBST01071

JRun 4.0 does not properly generate and handle the JSESSIONID, which allows remote attackers to perform a session fixation attack and hijack a user’s HTTP session. Date published : 2005-02-13 http://www.securityfocus.com/bid/11245 http://marc.info/?l=bugtraq&m=109621995623823&w=2

Cross-site scripting (XSS) vulnerability in the Management Console in JRun 4.0 allows remote attackers to execute arbitrary web script or HTML and possibly hijack a user’s session. Date published : 2005-02-13 http://www.securityfocus.com/bid/11245 http://marc.info/?l=bugtraq&m=109621995623823&w=2