Monthly Archive: November 2006

The ReiserFS functionality in Linux kernel 2.6.18, and possibly other versions, allows local users to cause a denial of service via a malformed ReiserFS file system that triggers memory corruption when a sync is...

Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses...

Apple Mac OS X allows local users to cause a denial of service (memory corruption) via a crafted Mach-O binary with a malformed load_command data structure. Date published : 2006-11-26 http://www.securityfocus.com/bid/21272 http://projects.info-pull.com/mokb/MOKB-23-11-2006.html

Heap-based buffer overflow in the wireless driver (WG311ND5.SYS) 2.3.1.10 for NetGear WG311v1 wireless adapter allows remote attackers to execute arbitrary code via an 802.11 management frame with a long SSID. Date published : 2006-11-26...

Cross-site scripting (XSS) vulnerability in SeleniumServer Web Server 1.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained...

Coppermine Photo Gallery (CPG) 1.4.8 stable, with register_globals enabled, allows remote attackers to bypass XSS protection and set arbitrary variables via a query string that causes the variable to be defined in global space,...

Multiple buffer overflows in TIN before 1.8.2 have unspecified impact and attack vectors, a different vulnerability than CVE-2006-0804. Date published : 2006-11-26 http://www.gentoo.org/security/en/glsa/glsa-200611-18.xml https://exchange.xforce.ibmcloud.com/vulnerabilities/30564

Acer Notebook LunchApp.APlunch ActiveX control allows remote attackers to execute arbitrary commands by calling the Run method. Date published : 2006-11-26 http://www.securityfocus.com/bid/21207 http://www.us-cert.gov/cas/techalerts/TA07-128A.html

mmgallery 1.55 allows remote attackers to obtain sensitive information via a direct request for thumbs.php, which reveals the installation path in various error messages. Date published : 2006-11-26 http://www.securityfocus.com/archive/1/452558/100/0/threaded http://securitytracker.com/id?1017283

Cross-site scripting (XSS) vulnerability in thumbs.php in mmgallery 1.55 allows remote attackers to inject arbitrary web script or HTML via the page parameter. Date published : 2006-11-26 http://www.securityfocus.com/bid/21281 http://www.securityfocus.com/archive/1/452558/100/0/threaded

SQL injection vulnerability in index1.asp in fipsGallery 1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the which parameter. Date published : 2006-11-26 http://www.securityfocus.com/bid/21254 https://www.exploit-db.com/exploits/2829

SQL injection vulnerability in default2.asp in fipsForum 2.6 and earlier allows remote attackers to execute arbitrary SQL commands via the kat parameter. Date published : 2006-11-26 http://www.securityfocus.com/bid/21253 https://www.exploit-db.com/exploits/2830

SQL injection vulnerability in index.asp in fipsCMS 4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the fid parameter. Date published : 2006-11-26 http://www.securityfocus.com/bid/21258 https://www.exploit-db.com/exploits/2828

Multiple SQL injection vulnerabilities in Alan Ward A-Cart Pro 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) productid parameter in product.asp or (2) search parameter in search.asp. NOTE: the category.asp...