Monthly Archive: October 2006

SQL injection vulnerability in pop_mail.asp in Snitz Forums 2000 3.4.06 allows remote attackers to execute arbitrary SQL commands via the RC parameter. NOTE: the provenance of this information is unknown; the details are obtained...

Unspecified vulnerability in the LDAP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via a crafted LDAP packet. Date published : 2006-10-27 http://www.securityfocus.com/bid/20762 http://www.securityfocus.com/archive/1/450307/100/0/threaded

Multiple memory leaks in xsupplicant before 1.2.6, and possibly other versions, allow attackers to cause a denial of service (memory consumption) via unspecified vectors. Date published : 2006-10-27 http://sourceforge.net/project/shownotes.php?release_id=421973&group_id=60236 http://www.mandriva.com/security/advisories?name=MDKSA-2006:189

Stack-based buffer overflow in the eap_do_notify function in eap.c in xsupplicant before 1.2.6, and possibly other versions, allows remote authenticated users to execute arbitrary code via unspecified vectors. Date published : 2006-10-27 http://www.securityfocus.com/bid/20775 http://open1x.cvs.sourceforge.net/open1x/xsupplicant/src/eap.c?r1=1.135&r2=1.136

Axalto Protiva 1.1, possibly only non-commercial versions, stores passwords in plaintext in files with insecure permissions, which allows local users to gain privileges by reading the passwords from (1) KeyToolkeytool.config or (2) webappsprotivaWEB-INFclassesauthserver.config. Date...

Cross-site scripting (XSS) vulnerability in Oracle Application Express (formerly HTML DB) before 2.2.1 allows remote attackers to inject arbitrary HTML or web script via the WWV_FLOW_ITEM_HELP package. NOTE: it is likely that this issue...

Cross-site scripting (XSS) vulnerability in index.php for GOOP Gallery 2.0, and possibly other versions before 2.0.3, allows remote attackers to inject arbitrary HTML or web script via the image parameter. Date published : 2006-10-27...

join.asp in MiniHTTP Web Forum & File Server PowerPack 4.0 allows remote attackers to add or modify arbitrary user accounts via modified (1) frmMailBox and (2) frmUserPass parameters. Date published : 2006-10-27 http://www.securityfocus.com/bid/20743 https://www.exploit-db.com/exploits/2651

Directory traversal vulnerability in the SSL server in AEP Smartgate 4.3b allows remote attackers to download arbitrary files via .. (dot dot backslash) sequences in an HTTP GET request. Date published : 2006-10-27 http://www.securityfocus.com/bid/20722...

Unspecified vulnerability in the AirPcap support in Wireshark (formerly Ethereal) 0.99.3 has unspecified attack vectors related to WEP key parsing. Date published : 2006-10-27 http://www.securityfocus.com/bid/20762 http://www.wireshark.org/security/wnpa-sec-2006-03.html

PHP remote file inclusion vulnerability in University of British Columbia iPeer 2.0, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: it is possible...

Buffer overflow in Desknet’s (niokeru) before 5.0J R1.0 might allow remote authenticated users to execute arbitrary code via unspecified vectors. NOTE: some of these details are obtained from third party information. Date published :...

Admin/adpoll.asp in PacPoll 4.0 and earlier allows remote attackers to bypass authentication by setting the polllog cookie value to "xx". Date published : 2006-10-27 http://www.securityfocus.com/bid/20742 http://www.securityfocus.com/archive/1/449668/100/0/threaded

Multiple SQL injection vulnerabilities in Admin/check.asp in PacPoll 4.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) uid and (2) pwd parameters. Date published : 2006-10-27 http://www.securityfocus.com/bid/20746 http://www.securityfocus.com/archive/1/449668/100/0/threaded