Monthly Archive: July 2005

Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and earlier and 6.1 SP1 and earlier, and Application Server 7 Update 4 and earlier, allows remote attackers to cause a denial of service...

RXVT-Unicode 3.4 and 3.5 does not properly close file descriptors, which allows local users to access the terminals of other users and possibly gain privileges. Date published : 2005-07-17 http://www.securityfocus.com/bid/10959 http://cvs.schmorp.de/browse/rxvt-unicode/Changes?view=markup

Mbedthis AppWeb HTTP server before 1.1.3 allows remote attackers to bypass access restrictions via a URI with mixed case characters. Date published : 2005-07-17 http://www.securityfocus.com/bid/10673 http://www.mbedthis.com/products/appWeb/doc/product/newFeatures.html

Mbedthis AppWeb HTTP server before 1.1.3 allows remote attackers to obtain the source code for scripts via a (1) trailing dot (".") or (2) trailing space in an HTTP request. Date published : 2005-07-17...

YabbSE 1.5.5c allows remote attackers to obtain sensitive information via a direct request to ssi_examples.php, which reveals the path. Date published : 2005-07-17 http://marc.info/?l=bugtraq&m=112137300014760&w=2

NetPanzer 0.8 and earlier allows remote attackers to cause a denial of service (infinite loop) via a packet with a zero datablock size. Date published : 2005-07-17 http://www.securityfocus.com/bid/14257 http://marc.info/?l=bugtraq&m=112129258221823&w=2

Oracle Forms 4.5, 6.0, 6i, and 9i on Unix, when a large number of records are retrieved by an Oracle form, stores a copy of the database tables in a world-readable temporary file, which...

Oracle Formsbuilder 9.0.4 stores database usernames and passwords in a temporary file, which is not deleted after it is used, which allows local users to obtain sensitive information. Date published : 2005-07-17 http://marc.info/?l=bugtraq&m=112129452232307&w=2 http://www.oracle.com/technology/deploy/security/pdf/cpujul2005.html

Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 stores cleartext passwords in (1) IDEConnections.xml, (2) XSQLConfig.xml and (3) settings.xml, which allows local users to obtain sensitive information. Date published : 2005-07-17 http://marc.info/?l=bugtraq&m=112129177927502&w=2 http://www.oracle.com/technology/deploy/security/pdf/cpujul2005.html

Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 passes the cleartext password as a parameter when starting sqlplus, which allows local users to gain sensitive information. Date published : 2005-07-17 http://marc.info/?l=bugtraq&m=112129082323341&w=2 http://www.red-database-security.com/advisory/oracle_jdeveloper_passes_plaintext_password.html

wps_shop.cgi in WPS Web Portal System 0.7.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) art and (2) cat variables. Date published : 2005-07-17 http://www.securityfocus.com/bid/14245 http://marc.info/?l=bugtraq&m=112128870110418&w=2

PHPCounter 7.2 allows remote attackers to obtain sensitive information via a direct request to prelims.php, which reveals the path in an error message. Date published : 2005-07-17 http://marc.info/?l=bugtraq&m=112129495128834&w=2 http://securitytracker.com/id?1014478

Cross-site scripting (XSS) vulnerability in PHPCounter 7.2 allows remote attackers to inject arbitrary web script or HTML via the EpochPrefix parameter. Date published : 2005-07-17 http://www.securityfocus.com/bid/14256 http://marc.info/?l=bugtraq&m=112129495128834&w=2

SoftiaCom wMailServer 1.0 and 2.0 allows remote attackers to cause a denial of service (application crash) via a large TCP packet with a leading space, possibly triggering a buffer overflow. Date published : 2005-07-17...