Monthly Archive: December 2005

Spb Kiosk Engine 1.0.0.1 allows local users to bypass restrictions on allowed applications via (1) removable media containing a program that will execute because of the autorun setting and (2) applications that are able...

Spb Kiosk Engine 1.0.0.1 stores the administrator’s passcode in the registry in plaintext, which allows local users to obtain the passcode. Date published : 2005-12-30 http://www.securityfocus.com/archive/1/420258/100/0/threaded http://www.airscanner.com/security/05083101_kioskpass.htm

Cross-site scripting (XSS) vulnerability in Koobi 5 allows remote attackers to inject arbitrary web script or HTML via nested, malformed url BBCode tags. NOTE: the provenance of this information is unknown; the details are...

Juniper NetScreen-Security Manager (NSM) 2004 FP2 and FP3 allow remote attackers to cause a denial of service (crash or hang of server components that are automatically restarted) via a long crafted string on (1)...

Multiple SQL injection vulnerabilities in PHPSurveyor before 0.991 allow remote attackers to execute arbitrary SQL commands via the (1) sql parameter in browse.php and the (2) sid, (3) lid, (4) gid, and (5) token...

Unspecified vulnerability in the GTP dissector for Ethereal 0.9.1 to 0.10.13 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. Date published : 2005-12-29 http://www.securityfocus.com/bid/16076 http://www.ethereal.com/appnotes/enpa-sa-00022.html

BZFlag server 2.0.4 and earlier allows remote attackers to cause a denial of service (application crash) via a callsign that is not followed by a NULL () character. Date published : 2005-12-29 http://www.securityfocus.com/bid/16066 http://aluigi.altervista.org/adv/bzflagboom-adv.txt

Unspecified vulnerability in the Management Interface in VMware ESX Server 2.x up to 2.5.x before 24 December 2005 allows "remote code execution in the Web browser" via unspecified attack vectors, probably related to cross-site...

Electric Sheep 2.6.3 does not require authentication or integrity checks from the server to the client, which allows remote attackers to download and display arbitrary MPEG movie files via (1) DNS spoofing, (2) a...

Buffer overflow in Electric Sheep 2.6.3 client allows local users to execute arbitrary code via a long window-id parameter. NOTE: because the program is not setuid and not normally called from remote programs, there...

Cross-site scripting (XSS) vulnerability in Day Communique 4 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search. Date published : 2005-12-29 http://www.securityfocus.com/bid/16072 http://pridels0.blogspot.com/2005/12/communiqu-4-xss-vuln.html

Multiple HTTP response splitting vulnerabilities in Hitachi Business Logic – Container (BLC) P-2443-9114 01-00 through 02-06 on Windows, and P-1M43-9111 01-01 through 02-00 on AIX, allow remote attackers to inject arbitrary HTTP headers via...

Multiple SQL injection vulnerabilities in Hitachi Business Logic – Container (BLC) P-2443-9114 01-00 through 02-06 on Windows, and P-1M43-9111 01-01 through 02-00 on AIX, allow remote attackers to execute arbitrary SQL commands via unknown...

Multiple cross-site scripting (XSS) vulnerabilities in Hitachi Business Logic – Container (BLC) P-2443-9114 01-00 through 02-06 on Windows, and P-1M43-9111 01-01 through 02-00 on AIX, allow remote attackers to inject arbitrary web script or...