Archiv für 8. Februar 2010

OTRS SQL Injection Vulnerabilities SECUNIA ADVISORY ID: SA38507 VERIFY ADVISORY: http://secunia.com/advisories/38507/ DESCRIPTION: Some vulnerabilities have been reported in OTRS (Open Ticket Request System), which can be exploited by malicious users to conduct SQL injection attacks. Unspecified input is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries [...]

Testa OTMS Multiple SQL Injection Vulnerabilities SECUNIA ADVISORY ID: SA38505 VERIFY ADVISORY: http://secunia.com/advisories/38505/ DESCRIPTION: Khashayar Fereidani has discovered some vulnerabilities in Testa OTMS, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the “uname” and “pass” parameters in index.php and admin/index.php is not properly sanitised before being used in [...]

evalSMSI Multiple Vulnerabilities SECUNIA ADVISORY ID: SA38478 VERIFY ADVISORY: http://secunia.com/advisories/38478/ DESCRIPTION: A weakness and some vulnerabilities have been discovered in evalSMSI, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct SQL injection, cross-site scripting attacks, and disclose sensitive information. 1) Input passed to the “query” parameter [...]

AudiStat Cross-Site Scripting and SQL Injection Vulnerabilities SECUNIA ADVISORY ID: SA38494 VERIFY ADVISORY: http://secunia.com/advisories/38494/ DESCRIPTION: Some vulnerabilities have been discovered in AudiStat, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks. 1) Input passed to the “year”, “month”, and “mday” parameters in index.php is not properly sanitised before being [...]

odlican.net CMS Arbitrary File Upload Security Issue SECUNIA ADVISORY ID: SA38488 VERIFY ADVISORY: http://secunia.com/advisories/38488/ DESCRIPTION: A security issue has been discovered in odlican.net CMS, which can be exploited by malicious people to compromise a vulnerable system. The security issue is caused due to missing access restrictions to the upload.php script. This can be exploited to [...]

Linux Kernel “do_pages_move()” Information Disclosure and Denial of Service SECUNIA ADVISORY ID: SA38502 VERIFY ADVISORY: http://secunia.com/advisories/38502/ DESCRIPTION: A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and disclose potentially sensitive information. The vulnerability is caused due to the “do_pages_move()” function [...]

Document Manager Unspecified Security Issue SECUNIA ADVISORY ID: SA38441 VERIFY ADVISORY: http://secunia.com/advisories/38441/ DESCRIPTION: A security issue with an unknown impact has been reported in Document Manager. The security issue is caused due to an unspecified error related to file rights. No further information is currently available. The security issue is reported in versions prior to [...]

DA Mailing List System “adm_login” and “adm_password” SQL Injection SECUNIA ADVISORY ID: SA38482 VERIFY ADVISORY: http://secunia.com/advisories/38482/ DESCRIPTION: Some vulnerabilities have been reported in DA Mailing List System, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the “adm_login” and “adm_password” parameters in admloginchk.asp is not properly sanitised before being [...]

CERT-Bund Meldung —————– KURZINFO CB-K10/0053 Titel: Standardkonfiguration in Samba ermöglicht Ausspähen von Informationen Datum: 08.02.2010 Software: Samba Plattform: Unix, Linux Auswirkung: Ausspähen von Informationen Remoteangriff: Ja Risiko: mittel Bezug: http://www.samba.org/samba/news/symlink_attack.html BESCHREIBUNG In der Standardkonfiguration erlaubt Samba, dass in SMB-Shares symbolische Verknüpfungen (Symlinks) erstellt werden können. Unix SMB-Clients lösen die Symlinks lokal auf, Windows-SMB-Clients nutzen den [...]

CERT-Bund Meldung —————– KURZINFO CB-K09/0363 UPDATE 9 Titel: SSL und TLS: Umgehen von Sicherheitsvorkehrungen möglich Datum: 08.02.2010 Software: Apache Apache Webserver , Cisco ACE Web Application Firewall , Cisco ASA (Adaptive Security Appliance) , Cisco Catalyst , Cisco IOS , Cisco Video Surveillance , Cisco Wireless Control System (WCS) , Cisco Wireless LAN Controllers , [...]