Monthly Archive: September 2008

The Microsoft Windows Image Acquisition Logger ActiveX control allows remote attackers to force the download of arbitrary files onto a client system via a URL in the first argument to the Open method, in...

orgchart.exe in Microsoft Organization Chart 2.00 allows user-assisted attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .opx file. Date published : 2008-09-09 http://www.securityfocus.com/bid/31059 http://www.nullcode.com.ar/ncs/crash/orgchart.htm

SQL injection vulnerability in index.php in Masir Camp E-Shop Module 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the ordercode parameter in a veiworderstatus page. Date published : 2008-09-09 http://www.securityfocus.com/bid/31046...

SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action. Date published : 2008-09-09 http://www.securityfocus.com/bid/31048 https://www.exploit-db.com/exploits/6396

SQL injection vulnerability in keyword_search_action.php in Vastal I-Tech Shaadi Zone 1.0.9 allows remote attackers to execute arbitrary SQL commands via the tage parameter. Date published : 2008-09-09 http://www.securityfocus.com/bid/31039 https://www.exploit-db.com/exploits/6385

SQL injection vulnerability in questions.php in EsFaq 2.0 allows remote attackers to execute arbitrary SQL commands via the idcat parameter. Date published : 2008-09-09 http://www.securityfocus.com/bid/31036 https://www.exploit-db.com/exploits/6383

SQL injection vulnerability in view_ann.php in Vastal I-Tech Agent Zone (aka The Real Estate Script) allows remote attackers to execute arbitrary SQL commands via the ann_id parameter. Date published : 2008-09-09 http://www.securityfocus.com/bid/31032 https://www.exploit-db.com/exploits/6371

Buffer overflow in nfsd in the Linux kernel before 2.6.26.4, when NFSv4 is enabled, allows remote attackers to have an unknown impact via vectors related to decoding an NFSv4 acl. Date published : 2008-09-09...

Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c. Date published : 2008-09-09 http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html http://www.securityfocus.com/bid/31051

Multiple memory leaks in freshclam/manager.c in ClamAV before 0.94 might allow attackers to cause a denial of service (memory consumption) via unspecified vectors related to "error handling logic". Date published : 2008-09-09 http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html http://www.securityfocus.com/bid/31051

libclamav in ClamAV before 0.94 allows attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an out-of-memory condition. Date published : 2008-09-09 http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html http://www.securityfocus.com/bid/31051

The driver for the Linksys WRT350N Wi-Fi access point with firmware 2.00.17 on the Atheros AR5416-AC1E chipset does not properly parse the Atheros vendor-specific information element in an association request, which allows remote authenticated...

SQL injection vulnerability in admin/users/self-2.php in XRMS allows remote attackers to execute arbitrary SQL commands and modify name and email fields via unspecified vectors. Date published : 2008-09-05 http://www.securityfocus.com/bid/31008 http://www.securityfocus.com/archive/1/495981/100/0/threaded

DCL (aka the CLI) in OpenVMS Alpha 8.3 allows local users to gain privileges via a long command line. Date published : 2008-09-05 http://deathrow.vistech.net/DEFCON16/VMS.PDF http://www.securitytracker.com/id?1020827