Monthly Archive: October 2007

** DISPUTED ** Cisco AS5350 IOS 12.2(11)T with access control lists (ACLs) applied and possibly with ssh running allows remote attackers to cause a denial of service (crash) via a port scan, possibly due...

Cross-site scripting (XSS) vulnerability in AN HTTP 1.41d allows remote attackers to inject arbitrary web script or HTML via a colon (:) in the query string, which is inserted into the resulting error page....

Cross-site scripting (XSS) vulnerability in addentry.cgi in ZAP 1.0.3 allows remote attackers to inject arbitrary SSi directives, web script, and HTML via the entry field. Date published : 2007-10-31 http://www.securityfocus.com/bid/5130 http://www.securityfocus.com/bid/5131

Cross-site scripting (XSS) vulnerability in E-Guest_sign.pl in E-Guest 1.1 allows remote attackers to inject arbitrary SSI directives, web script, and HTML via the (1) full name, (2) email, (3) homepage, and (4) location parameters....

Directory traversal vulnerability in CommuniGate Pro 4.0b4 and possibly earlier versions allows remote attackers to list the contents of the WebUser directory and its parent directory via a (1) .. (dot dot) or (2)...

Unspecified vulnerability in pprosetup in Sun PatchPro 2.0 has unknown impact and attack vectors related to "unsafe use of temporary files." Date published : 2007-10-31 http://www.securityfocus.com/bid/5540 http://sunsolve.sun.com/search/document.do?assetkey=1-21-113176-01-1&searchclause=113176

The default configuration of the TCP/IP printer configuration utility in Apple LaserWriter 12/640 PS printer contains a blank Telnet password, which allows remote attackers to gain access. Date published : 2007-10-31 http://www.securityfocus.com/bid/6052 http://www.securityfocus.com/archive/1/297250

The telnet server in Infoprint 21 running controller software before 1.056007 allows remote attackers to cause a denial of service (crash) via a long username, possibly due to a buffer overflow. Date published :...

Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to cause a denial of service (crash) via a packet containing the device’s hardware address as the source MAC address in the DLC header. Date...

SWS web server 0.0.4, 0.0.3 and 0.1.0 allows remote attackers to cause a denial of service (crash) via a URL request that does not end with a newline. Date published : 2007-10-31 http://www.securityfocus.com/bid/5664 http://archives.neohapsis.com/archives/bugtraq/2002-09/0011.html

Perception LiteServe 2.0 allows remote attackers to read password protected files via a leading "/./" in a URL. Date published : 2007-10-31 http://www.securityfocus.com/bid/6042 http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-10/0372.html

Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function in...

Off-by-one buffer overflow in NEC SOCKS5 1.0 r11 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long hostname. Date published : 2007-10-31 http://www.securityfocus.com/bid/5149 http://archives.neohapsis.com/archives/bugtraq/2002-07/0033.html

Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors...