Monthly Archive: July 2005

Directory traversal vulnerability in PhpAuction 2.5 allows remote attackers to read arbitrary files, include local PHP files, or obtain sensitive path information via ".." sequences in the lan parameter to (1) index.php or (2)...

Multiple cross-site scripting (XSS) vulnerabilities in PhpAuction 2.5 allow remote attackers to inject arbitrary web script or HTML via the lan parameter to (1) index.php or (2) admin/index.php, or (3) the auction_id parameter to...

SQL injection vulnerability in PhpAuction 2.5 allow remote attackers to modify SQL queries via the category parameter to adsearch.php. NOTE: there is evidence that viewnews.php may not be part of the PhpAuction product, so...

PhpAuction 2.5 allows remote attackers to bypass authentication and gain privileges as another user by setting the PHPAUCTION_RM_ID cookie to the user ID. Date published : 2005-07-13 http://securitytracker.com/id?1014423 http://secunia.com/advisories/15967

PHP remote file inclusion vulnerability in secure.php in PHPSecurePages (phpSP) 0.28beta and earlier allows remote attackers to execute arbitrary code via the cfgProgDir parameter, a variant of CVE-2001-1468. Date published : 2005-07-13 http://www.securityfocus.com/bid/14201 https://www.exploit-db.com/exploits/2452

Buffer overflow in Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execute arbitrary code via a long filename in an OBEX file share. Date published : 2005-07-13 http://www.securityfocus.com/bid/14230...

Multiple unknown vulnerabilities in Jinzora 2.0.1 have unknown impact and attack vectors, possibly involving a PHP file inclusion vulnerability. Date published : 2005-07-13 http://freshmeat.net/projects/jinzora/?branch_id=43140&release_id=200390 http://secunia.com/advisories/15952

Directory traversal vulnerability in DownloadProtect before 1.0.3 allows remote attackers to read files above the download folder. Date published : 2005-07-13 http://www.securityfocus.com/bid/14211 http://secunia.com/advisories/16003

options_identities.php in SquirrelMail 1.4.4 and earlier uses the extract function to process the $_POST variable, which allows remote attackers to modify or read the preferences of other users, conduct cross-site scripting XSS) attacks, and...

Multiple unknown vulnerabilities in Moodle before 1.5.1 have unknown impact and attack vectors. Date published : 2005-07-12 http://moodle.org/doc/?frame=release.html http://secunia.com/advisories/16028

Multiple PHP remote file inclusion vulnerabilities in iPhotoAlbum 1.1 allow remote attackers to execute arbitrary code via the (1) doc_path parameter to getpage.php or (2) set_menu parameter to lib/static/header.php. Date published : 2005-07-12 http://www.securityfocus.com/bid/14229...

Unknown vulnerability in F5 BIG-IP 9.0.2 through 9.1 allows attackers to "subvert the authentication of SSL transactions," via unknown attack vectors, possibly involving NATIVE ciphers. Date published : 2005-07-12 http://www.securityfocus.com/bid/14215 http://tech.f5.com/home/bigip-next/solutions/security/sol4944.html

The aupair service (aupair.exe) in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to execute arbitrary code or corrupt memory via crafted...

Memory leak in inetinfo.exe in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1, when Multi Level Admin (MLA) is enabled, allows remote attackers to cause...