Monthly Archive: May 2005

BEA WebLogic Server and WebLogic Express 7.0 through Service Pack 5 does not log out users when an application is redeployed, which allows those users to continue to access the application without having to...

BEA WebLogic Server and WebLogic Express 8.1 through Service Pack 3 and 7.0 through Service Pack 5 does not properly handle when a security provider throws an exception, which may cause WebLogic to use...

BEA WebLogic Server and WebLogic Express 8.1 SP2 and SP3 allows users with the Monitor security role to "shrink or reset JDBC connection pools." Date published : 2005-05-24 http://dev2dev.bea.com/pub/advisory/125 http://www.securityfocus.com/bid/13717

Gearbox Software Halo: Combat Evolved 1.6 allows remote attackers to cause a denial of service (infinite loop) via malformed data. Date published : 2005-05-24 http://www.securityfocus.com/bid/13728 http://www.securityfocus.com/archive/1/398833

fixproc in Net-snmp 5.x before 5.2.1-r1 creates temporary files insecurely, which allows local users to modify the contents of those files to execute arbitrary commands, or overwrite arbitrary files via a symlink attack. Date...

The XWD Decoder in ImageMagick before 6.2.2.3, and GraphicsMagick before 1.1.6-r1, allows remote attackers to cause a denial of service (infinite loop) via an image with a zero color mask. Date published : 2005-05-24...

Format string vulnerability in the logPrintBadfile function in delbadfiles.c Iron Bars SHell (ibsh) before 0.3d allows users to "access files outside the home directory" and possibly execute arbitrary code via certain inputs that are...

Multiple unknown vulnerabilities in PROMS 0.11 allow "non-authorized users" to (1) view or modify the project member list or (2) modify the todos list. Date published : 2005-05-24 http://projects.electricmonk.nl//files/PROMS/proms-0.11.tar.gz http://projects.electricmonk.nl/proms.php?action=ReleaseOverview&project_id=2&release_id=91

PROMS 0.11 does not properly handle "certain combinations of rights," which gives more rights to users than intended. Date published : 2005-05-24 http://projects.electricmonk.nl//files/PROMS/proms-0.11.tar.gz http://projects.electricmonk.nl/proms.php?action=ReleaseOverview&project_id=2&release_id=91

Multiple cross-site scripting (XSS) vulnerabilities in PROMS before 0.11 allow remote attackers to inject arbitrary web script or HTML via unknown vectors. Date published : 2005-05-24 http://projects.electricmonk.nl//files/PROMS/proms-0.11.tar.gz http://projects.electricmonk.nl/proms.php?action=ReleaseOverview&project_id=2&release_id=91

Multiple SQL injection vulnerabilities in PROMS before 0.11 allow remote attackers to execute arbitrary SQL commands via unknown vectors. Date published : 2005-05-24 http://projects.electricmonk.nl//files/PROMS/proms-0.11.tar.gz http://projects.electricmonk.nl/proms.php?action=ReleaseOverview&project_id=2&release_id=91

Cookie Cart stores the password file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and encrypted passwords via a direct request to passwd.txt. Date published :...

Cookie Cart allows remote attackers to read the Order Notification list via the testmycgi and path parameters to testmy.cgi. Date published : 2005-05-24 http://marc.info/?l=bugtraq&m=111686721022831&w=2 http://www.soulblack.com.ar/repo/papers/cookiec_advisory.txt

Unknown vulnerability in ALWIL avast! antivirus 4 (4.6.6230) and earlier, when running on Windows NT 4.0, does not properly detect certain viruses. Date published : 2005-05-24 http://www.avast.com/eng/av4_revision_history.html http://securitytracker.com/id?1013991