[ISN] Secunia Weekly Summary - Issue: 2008-4

From: InfoSec News (alerts@private)
Date: Thu Jan 24 2008 - 22:27:19 PST


========================================================================

                  The Secunia Weekly Advisory Summary                  
                        2008-01-17 - 2008-01-24                        

                       This week: 79 advisories                        

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4.......................................Vulnerabilities Summary Listing
5.......................................Vulnerabilities Content Listing

========================================================================
1) Word From Secunia:

The Secunia PSI reached an important milestone - a quarter of a million
users!

Read the full blog:
http://secunia.com/blog/19/

Join the many Secunia PSI users:
https://psi.secunia.com/

========================================================================
2) This Week in Brief:

Secunia Research has discovered two vulnerabilities in Winamp, which
can be exploited by malicious people to compromise a user's system.

The vulnerabilities are caused due to boundary errors in in_mp3.dll
within the construction of stream titles when parsing Ultravox
streaming metadata. This can be exploited to cause stack-based buffer
overflows via overly long "<artist>" and "<name>" tag values in the
<metadata> section.

Successful exploitation allows execution of arbitrary code.

Two vulnerabilities and a security issue have been reported in Apple
iPhone and iPod touch, which can be exploited by malicious people to
conduct cross-site scripting attacks, bypass certain security
restrictions, or to compromise a vulnerable device.

Reference:
http://secunia.com/advisories/27865

 --

VIRUS ALERTS:

During the past week Secunia collected 315 virus descriptions from the
Antivirus vendors. However, none were deemed MEDIUM risk or higher
according to the Secunia assessment scale.

========================================================================
3) This Weeks Top Ten Most Read Advisories:

1.  [SA28506] Microsoft Excel File Handling Code Execution
2.  [SA27865] Winamp Ultravox Streaming Metadata Parsing Buffer
              Overflows
3.  [SA28417] Microsoft Visual FoxPro ActiveX Controls Insecure Methods
4.  [SA28533] uTorrent Peer Client Denial of Service Vulnerability
5.  [SA28550] Sun Solaris X Window System and X Server Multiple
              Vulnerabilities
6.  [SA28492] RTSP MPEG4 SP Control ActiveX Control "MP4Prefix"
              Property Buffer Overflow
7.  [SA28484] Mahara HTML File Upload Script Insertion Vulnerability
8.  [SA28560] Clever Copy SQL Injection and Cross-Site Scripting
9.  [SA28561] cPanel Leech Protect "rurl" Cross-Site Scripting
10. [SA28524] 8e6 R3000 Internet Filter URL Filter Bypass Vulnerability

========================================================================
4) Vulnerabilities Summary Listing

Windows:
[SA28599] Lycos FileUploader Module File Upload Component ActiveX
Control Buffer Overflow
[SA28595] HP Virtual Rooms Install HPVirtualRooms14 Class ActiveX
Control Buffer Overflow
[SA28557] Toshiba Surveillix RecordSend Class ActiveX Control Buffer
Overflows
[SA28563] Microsoft Visual Basic ".dsr" File Handling Buffer Overflows
[SA28639] Web Wiz Rich Text Editor "sub" Directory Traversal
Vulnerability
[SA28601] Web Wiz Forums Directory Traversal Vulnerabilities
[SA28586] IBM WebSphere Business Modeler Repository Deletion Security
Issue
[SA28578] BitDefender Update Server HTTP Server Directory Traversal
Vulnerability

UNIX/Linux:
[SA28590] Citadel SMTP "makeuserkey()" Buffer Overflow Vulnerability
[SA28587] Fedora update for clamav
[SA28570] Gentoo update for netscape-flash
[SA28631] HTTP File Server Multiple Vulnerabilities
[SA28614] Debian update for libvorbis
[SA28612] HP-UX ARPA Transport Unspecified Denial of Service
Vulnerability
[SA28610] Debian update for exiv2
[SA28602] Gentoo update for tikiwiki
[SA28583] Red Hat update for wireshark
[SA28564] Red Hat update for wireshark
[SA28555] Mandriva update for cairo
[SA28548] Debian update for flac
[SA28546] Debian update for horde3
[SA28607] Avaya Products httpd Multiple Vulnerabilities
[SA28591] Fedora update for mantis
[SA28589] ELOG Script Insertion and Denial of Service Vulnerabilities
[SA28569] Gentoo update for libcdio
[SA28551] Debian update for mantis
[SA28549] Debian update for tomcat5.5
[SA28545] Fedora update for boost
[SA28541] Fedora update for e2fsprogs
[SA28643] Red Hat update for kernel
[SA28592] Fedora update for xorg-x11-server
[SA28616] Mandriva update for x11-server-xgl
[SA28609] IBM AIX Multiple Vulnerabilities
[SA28571] Mandriva update for libxfont
[SA28559] rPath update for mysql
[SA28558] rPath update for kernel
[SA28550] Sun Solaris X Window System and X Server Multiple
Vulnerabilities
[SA28544] Red Hat update for libXfont
[SA28543] Red Hat update for xorg-x11-server
[SA28542] Red Hat update for XFree86
[SA28540] SUSE update for Xorg and XFree
[SA28539] Debian update for xorg-server
[SA28574] Ubuntu update for apt-listchanges

Other:
[SA28625] Cisco PIX and ASA Time-To-Live Denial of Service
Vulnerability
[SA28553] OKI C5510MFP Configuration Interface Security Issues

Cross Platform:
[SA28580] phpAutoVideo File Inclusion and Cross-Site Scripting
[SA28568] Small Axe Weblog linkbar.php File Inclusion Vulnerabilities
[SA28556] HP Oracle for OpenView Multiple Vulnerabilities
[SA28640] SDL_image Two Buffer Overflow Vulnerabilities
[SA28624] PHP-Nuke "modules/Search/index.php" SQL Injection
[SA28619] Liquid-Silver CMS "update" Local File Inclusion
[SA28617] aconon Mail "template" Information Disclosure
[SA28606] Interstage HTTP Server Multiple Vulnerabilities
[SA28605] PacerCMS Multiple Vulnerabilities
[SA28594] aflog SQL Injection and Script Insertion Vulnerabilities
[SA28588] WebSphere Application Server Two Vulnerabilities
[SA28581] AlstraSoft Forum Pay Per Post Exchange "catid" SQL Injection
Vulnerability
[SA28576] IBM WebSphere Application Server
serveServletsByClassnameEnabled Vulnerability
[SA28572] MyBB SQL Injection and Cross-Site Request Forgery
Vulnerabilities
[SA28567] WordPress WP-Forum Plugin "user" SQL Injection
[SA28566] Famp3 "id" SQL Injection Vulnerability
[SA28565] FaPersianHack "id" SQL Injection Vulnerability
[SA28560] Clever Copy SQL Injection and Cross-Site Scripting
[SA28547] Openfire Jetty Information Disclosure Vulnerability
[SA28562] AXIGEN Mail Server AXIMilter Format String Vulnerability
[SA28633] Drupal Workflow Module Workflow Message Script Insertion
[SA28632] Drupal Archive Module Unspecified Cross-Site Scripting
[SA28629] MediaWiki Cross-Site Scripting Vulnerability
[SA28622] Mozilla Firefox "chrome:" Directory Traversal Security Issue
[SA28593] WordPress Permalinks Migration Plugin Cross-Site Request
Forgery
[SA28582] OZJournals "id" Information Disclosure Vulnerability
[SA28579] ISC BIND libbind "inet_network()" Off-By-One Vulnerability
[SA28577] Mantis "Most Active" Script Insertion Vulnerability
[SA28573] singapore "gallery" Cross-Site Scripting Vulnerability
[SA28561] cPanel Leech Protect "rurl" Cross-Site Scripting
[SA28604] IBM Tivoli Provisioning Manager for OS Deployment HTTP Server
Denial of Service
[SA28603] IBM Tivoli Business Service Manager Password Disclosure
[SA28613] Kayako SupportSuite "syncml/index.php" Information
Disclosure
[SA28552] Apache Tomcat SingleSignOn Information Disclosure

========================================================================
5) Vulnerabilities Content Listing

Windows:--

[SA28599] Lycos FileUploader Module File Upload Component ActiveX
Control Buffer Overflow

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2008-01-23

Elazar Broad has discovered a vulnerability in Lycos FileUploader
Module, which can be exploited by malicious people to compromise a
user's system.

Full Advisory:
http://secunia.com/advisories/28599/

 --

[SA28595] HP Virtual Rooms Install HPVirtualRooms14 Class ActiveX
Control Buffer Overflow

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2008-01-22

Elazar Broad has discovered a vulnerability in HP Virtual Rooms
Install, which can be exploited by malicious people to compromise a
user's system.

Full Advisory:
http://secunia.com/advisories/28595/

 --

[SA28557] Toshiba Surveillix RecordSend Class ActiveX Control Buffer
Overflows

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2008-01-21

retrogod has discovered two vulnerabilities in the Toshiba Surveillix
RecordSend Class ActiveX control, which can be exploited by malicious
people to compromise a user's system.

Full Advisory:
http://secunia.com/advisories/28557/

 --

[SA28563] Microsoft Visual Basic ".dsr" File Handling Buffer Overflows

Critical:    Moderately critical
Where:       From remote
Impact:      System access
Released:    2008-01-21

shinnai has discovered two vulnerabilities in Microsoft Visual Basic,
which can be exploited by malicious people to compromise a user's
system.

Full Advisory:
http://secunia.com/advisories/28563/

 --

[SA28639] Web Wiz Rich Text Editor "sub" Directory Traversal
Vulnerability

Critical:    Less critical
Where:       From remote
Impact:      Exposure of system information, Exposure of sensitive
information
Released:    2008-01-24

AmnPardaz Security Research Team has reported a vulnerability in Web
Wiz Rich Text Editor, which can be exploited by malicious people to
disclose sensitive information.

Full Advisory:
http://secunia.com/advisories/28639/

 --

[SA28601] Web Wiz Forums Directory Traversal Vulnerabilities

Critical:    Less critical
Where:       From remote
Impact:      Exposure of system information, Exposure of sensitive
information
Released:    2008-01-24

AmnPardaz Security Research Team has reported some vulnerabilities in
Web Wiz Forums, which can be exploited by malicious users and malicious
people to disclose potentially sensitive information.

Full Advisory:
http://secunia.com/advisories/28601/

 --

[SA28586] IBM WebSphere Business Modeler Repository Deletion Security
Issue

Critical:    Less critical
Where:       From local network
Impact:      Manipulation of data
Released:    2008-01-22

A security issue has been reported in IBM WebSphere Business Modeler,
which can be exploited by malicious users to manipulate certain data.

Full Advisory:
http://secunia.com/advisories/28586/

 --

[SA28578] BitDefender Update Server HTTP Server Directory Traversal
Vulnerability

Critical:    Less critical
Where:       From local network
Impact:      Exposure of system information, Exposure of sensitive
information
Released:    2008-01-21

Oliver Karow has discovered a vulnerability in BitDefender Update
Server, which can be exploited by malicious people to disclose
sensitive information.

Full Advisory:
http://secunia.com/advisories/28578/


UNIX/Linux:--

[SA28590] Citadel SMTP "makeuserkey()" Buffer Overflow Vulnerability

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2008-01-22

prdelka has discovered a vulnerability in Citadel, which can be
exploited by malicious people to compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/28590/

 --

[SA28587] Fedora update for clamav

Critical:    Highly critical
Where:       From remote
Impact:      Unknown, DoS, System access
Released:    2008-01-23

Fedora has issued an update for clamav. This fixes some
vulnerabilities, where one vulnerability has an unknown impact and
others can be exploited by malicious people to cause a DoS (Denial of
Service) or compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/28587/

 --

[SA28570] Gentoo update for netscape-flash

Critical:    Highly critical
Where:       From remote
Impact:      Unknown, Security Bypass, Cross Site Scripting,
Manipulation of data, Exposure of sensitive information, Privilege
escalation, DoS, System access
Released:    2008-01-21

Gentoo has issued an update for netscape-flash. This fixes some
vulnerabilities, where one vulnerability has an unknown impact and
others can be exploited by malicious, local users to gain escalated
privileges and by malicious people to bypass certain security
restrictions, conduct cross-site scripting and HTTP request splitting
attacks, disclose sensitive information, cause a Denial of Service
(DoS), or to potentially compromise a user's system.

Full Advisory:
http://secunia.com/advisories/28570/

 --

[SA28631] HTTP File Server Multiple Vulnerabilities

Critical:    Moderately critical
Where:       From remote
Impact:      Cross Site Scripting, Spoofing, Manipulation of data,
Exposure of system information, DoS, System access
Released:    2008-01-24

Felipe Aragon and Alec Storm have reported some vulnerabilities and
security issues in HTTP File Server, which can be exploited by
malicious people to disclose system information, conduct spoofing and
cross-site scripting attacks, bypass certain security restrictions,
manipulate data, and potentially compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/28631/

 --

[SA28614] Debian update for libvorbis

Critical:    Moderately critical
Where:       From remote
Impact:      DoS, System access
Released:    2008-01-22

Debian has issued an update for libvorbis. This fixes some
vulnerabilties, which can be exploited by malicious people to cause a
DoS (Denial of Service) and potentially compromise an application using
the library.

Full Advisory:
http://secunia.com/advisories/28614/

 --

[SA28612] HP-UX ARPA Transport Unspecified Denial of Service
Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2008-01-24

A vulnerability has been reported in HP-UX, which can be exploited by
malicious people to cause a DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/28612/

 --

[SA28610] Debian update for exiv2

Critical:    Moderately critical
Where:       From remote
Impact:      DoS, System access
Released:    2008-01-24

Debian has issued an update for exiv2. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service) or potentially compromise an application using the library.

Full Advisory:
http://secunia.com/advisories/28610/

 --

[SA28602] Gentoo update for tikiwiki

Critical:    Moderately critical
Where:       From remote
Impact:      Unknown, Cross Site Scripting
Released:    2008-01-24

Gentoo has issued an update for tikiwiki. This fixes some
vulnerabilities, where some have unknown impacts and others can be
exploited by malicious people to conduct cross-site scripting attacks.

Full Advisory:
http://secunia.com/advisories/28602/

 --

[SA28583] Red Hat update for wireshark

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2008-01-21

Red Hat has issued an update for wireshark. This fixes some
vulnerabilities, which can be exploited by malicious people to cause a
DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/28583/

 --

[SA28564] Red Hat update for wireshark

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2008-01-21

Red Hat has issued an update for wireshark. This fixes some
vulnerabilities, which can be exploited by malicious people to cause a
DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/28564/

 --

[SA28555] Mandriva update for cairo

Critical:    Moderately critical
Where:       From remote
Impact:      System access
Released:    2008-01-22

Mandriva has issued an update for cairo. This fixes a vulnerability,
which potentially can be exploited by malicious people to compromise an
application using the library.

Full Advisory:
http://secunia.com/advisories/28555/

 --

[SA28548] Debian update for flac

Critical:    Moderately critical
Where:       From remote
Impact:      System access
Released:    2008-01-21

Debian has issued an update for flac. This fixes some vulnerabilities,
which can be exploited by malicious people to compromise a user's
system.

Full Advisory:
http://secunia.com/advisories/28548/

 --

[SA28546] Debian update for horde3

Critical:    Moderately critical
Where:       From remote
Impact:      Security Bypass, Cross Site Scripting, Manipulation of
data
Released:    2008-01-21

Debian has issued an update for horde3. This fixes a vulnerability,
which can be exploited by malicious people to bypass certain security
restrictions and manipulate data.

Full Advisory:
http://secunia.com/advisories/28546/

 --

[SA28607] Avaya Products httpd Multiple Vulnerabilities

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2008-01-22

Avaya has acknowledged some vulnerabilities in various Avaya products,
which can be exploited by malicious people to conduct cross-site
scripting attacks.

Full Advisory:
http://secunia.com/advisories/28607/

 --

[SA28591] Fedora update for mantis

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2008-01-23

Fedora has issued an update for mantis. This fixes a vulnerability,
which can be exploited by malicious users to conduct script insertion
attacks.

Full Advisory:
http://secunia.com/advisories/28591/

 --

[SA28589] ELOG Script Insertion and Denial of Service Vulnerabilities

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting, DoS
Released:    2008-01-22

Some vulnerabilities have been reported in ELOG, which can be exploited
by malicious users to cause a DoS (Denial of Service) and conduct script
insertion attacks.

Full Advisory:
http://secunia.com/advisories/28589/

 --

[SA28569] Gentoo update for libcdio

Critical:    Less critical
Where:       From remote
Impact:      System access
Released:    2008-01-21

Gentoo has issued an update for libcdio. This fixes some
vulnerabilities, which potentially can be exploited by malicious people
to compromise a user's system.

Full Advisory:
http://secunia.com/advisories/28569/

 --

[SA28551] Debian update for mantis

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting, Exposure of sensitive information
Released:    2008-01-21

Debian has issued an update for mantis. This fixes a vulnerability,
which can be exploited by malicious users to conduct script insertion
attacks, and a security issue, which can be exploited by malicious
people to disclose sensitive information.

Full Advisory:
http://secunia.com/advisories/28551/

 --

[SA28549] Debian update for tomcat5.5

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting, Exposure of sensitive information
Released:    2008-01-21

Debian has issued an update for tomcat5.5. This fixes a vulnerability,
which can be exploited by malicious people to conduct cross-site
scripting attacks, and a security issue, which can be exploited by
malicious people to disclose potentially sensitive information.

Full Advisory:
http://secunia.com/advisories/28549/

 --

[SA28545] Fedora update for boost

Critical:    Less critical
Where:       From remote
Impact:      DoS
Released:    2008-01-23

Fedora has issued an update for boost. This fixes some vulnerabilities,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

Full Advisory:
http://secunia.com/advisories/28545/

 --

[SA28541] Fedora update for e2fsprogs

Critical:    Less critical
Where:       From remote
Impact:      DoS, System access
Released:    2008-01-21

Fedora has issued an update for e2fsprogs. This fixes a some
vulnerabilities, which potentially can be exploited by malicious people
to compromise an application using the library.

Full Advisory:
http://secunia.com/advisories/28541/

 --

[SA28643] Red Hat update for kernel

Critical:    Less critical
Where:       From local network
Impact:      Security Bypass, Manipulation of data, Exposure of
sensitive information, DoS, System access
Released:    2008-01-24

Red Hat has issued an update for the kernel. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
cause a Denial of Service (DoS), disclose potentially sensitive
information, bypass certain security restrictions, and corrupt a file
system, and by malicious people to cause a DoS (Denial of Service) or
potentially compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/28643/

 --

[SA28592] Fedora update for xorg-x11-server

Critical:    Less critical
Where:       From local network
Impact:      Exposure of sensitive information, Privilege escalation,
DoS
Released:    2008-01-23

Fedora has issued an update for xorg-x11-server. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
cause a DoS (Denial of Service), disclose potentially sensitive
information, or to gain escalated privileges.

Full Advisory:
http://secunia.com/advisories/28592/

 --

[SA28616] Mandriva update for x11-server-xgl

Critical:    Less critical
Where:       Local system
Impact:      Exposure of sensitive information, Privilege escalation,
DoS
Released:    2008-01-24

Mandriva has issued an update for x11-server-xgl. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
cause a DoS (Denial of Service), disclose potentially sensitive
information, or to gain escalated privileges.

Full Advisory:
http://secunia.com/advisories/28616/

 --

[SA28609] IBM AIX Multiple Vulnerabilities

Critical:    Less critical
Where:       Local system
Impact:      Manipulation of data, Exposure of sensitive information,
Privilege escalation
Released:    2008-01-24

Some vulnerabilities have been reported in IBM AIX, which can be
exploited by malicious, local users to disclose potentially sensitive
information, manipulate certain files, or gain escalated privileges.

Full Advisory:
http://secunia.com/advisories/28609/

 --

[SA28571] Mandriva update for libxfont

Critical:    Less critical
Where:       Local system
Impact:      Privilege escalation
Released:    2008-01-24

Mandriva has issued an update for libxfont. This fixes a vulnerability,
which can be exploited by malicious, local users to gain escalated
privileges.

Full Advisory:
http://secunia.com/advisories/28571/

 --

[SA28559] rPath update for mysql

Critical:    Less critical
Where:       Local system
Impact:      Manipulation of data
Released:    2008-01-18

rPath has issued an update for mysql. This fixes a vulnerability, which
can be exploited by malicious, local users to manipulate certain data.

Full Advisory:
http://secunia.com/advisories/28559/

 --

[SA28558] rPath update for kernel

Critical:    Less critical
Where:       Local system
Impact:      Security Bypass, Manipulation of data
Released:    2008-01-18

rPath has issued an update for the kernel. This fixes a vulnerability,
which can be exploited by malicious, local users to bypass certain
security restrictions and corrupt a file system.

Full Advisory:
http://secunia.com/advisories/28558/

 --

[SA28550] Sun Solaris X Window System and X Server Multiple
Vulnerabilities

Critical:    Less critical
Where:       Local system
Impact:      Exposure of sensitive information, Privilege escalation,
DoS
Released:    2008-01-18

Sun has acknowledged some vulnerabilities in Solaris, which can be
exploited by malicious, local users to cause a DoS (Denial of Service),
disclose potentially sensitive information, or to gain escalated
privileges.

Full Advisory:
http://secunia.com/advisories/28550/

 --

[SA28544] Red Hat update for libXfont

Critical:    Less critical
Where:       Local system
Impact:      Privilege escalation
Released:    2008-01-18

Red Hat has issued an update for libXfont. This fixes a vulnerability,
which can be exploited by malicious, local users to gain escalated
privileges.

Full Advisory:
http://secunia.com/advisories/28544/

 --

[SA28543] Red Hat update for xorg-x11-server

Critical:    Less critical
Where:       Local system
Impact:      Exposure of sensitive information, Privilege escalation,
DoS
Released:    2008-01-18

Red Hat has issued an update for xorg-x11-server. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
cause a DoS (Denial of Service), disclose potentially sensitive
information or to gain escalated privileges.

Full Advisory:
http://secunia.com/advisories/28543/

 --

[SA28542] Red Hat update for XFree86

Critical:    Less critical
Where:       Local system
Impact:      Exposure of sensitive information, Privilege escalation,
DoS
Released:    2008-01-18

Red Hat has issued an update for XFree86. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
cause a DoS (Denial of Service), disclose potentially sensitive
information, or gain escalated privileges.

Full Advisory:
http://secunia.com/advisories/28542/

 --

[SA28540] SUSE update for Xorg and XFree

Critical:    Less critical
Where:       Local system
Impact:      Exposure of sensitive information, Privilege escalation,
DoS
Released:    2008-01-18

SUSE has issued an update for Xorg and XFree. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
cause a DoS (Denial of Service), disclose potentially sensitive
information, or gain escalated privileges.

Full Advisory:
http://secunia.com/advisories/28540/

 --

[SA28539] Debian update for xorg-server

Critical:    Less critical
Where:       Local system
Impact:      Exposure of sensitive information, Privilege escalation,
DoS
Released:    2008-01-18

Debian has issued an update for xorg-server. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
cause a DoS (Denial of Service), disclose potentially sensitive
information or to gain escalated privileges.

Full Advisory:
http://secunia.com/advisories/28539/

 --

[SA28574] Ubuntu update for apt-listchanges

Critical:    Not critical
Where:       Local system
Impact:      Privilege escalation
Released:    2008-01-21

Ubuntu has issued an update for apt-listchanges. This fixes a security
issue, which can be exploited by malicious, local users to gain
escalated privileges.

Full Advisory:
http://secunia.com/advisories/28574/


Other:--

[SA28625] Cisco PIX and ASA Time-To-Live Denial of Service
Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2008-01-24

Cisco has acknowledged a vulnerability in Cisco PIX and ASA appliances,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

Full Advisory:
http://secunia.com/advisories/28625/

 --

[SA28553] OKI C5510MFP Configuration Interface Security Issues

Critical:    Less critical
Where:       From local network
Impact:      Security Bypass, Exposure of sensitive information
Released:    2008-01-18

Compass Security AG has reported two security issues in OKI C5510MFP,
which can be exploited by malicious people to disclose sensitive
information and to bypass certain security restrictions.

Full Advisory:
http://secunia.com/advisories/28553/


Cross Platform:--

[SA28580] phpAutoVideo File Inclusion and Cross-Site Scripting

Critical:    Highly critical
Where:       From remote
Impact:      Cross Site Scripting, Exposure of system information,
Exposure of sensitive information, System access
Released:    2008-01-21

H-T Team have reported two vulnerabilities in phpAutoVideo, which can
be exploited by malicious people to conduct cross-site scripting
attacks, disclose sensitive information, or to compromise a vulnerable
system.

Full Advisory:
http://secunia.com/advisories/28580/

 --

[SA28568] Small Axe Weblog linkbar.php File Inclusion Vulnerabilities

Critical:    Highly critical
Where:       From remote
Impact:      Exposure of system information, Exposure of sensitive
information, System access
Released:    2008-01-21

Two vulnerabilities have been reported in Small Axe Weblog, which can
be exploited by malicious people to disclose sensitive information or
to compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/28568/

 --

[SA28556] HP Oracle for OpenView Multiple Vulnerabilities

Critical:    Highly critical
Where:       From remote
Impact:      Unknown
Released:    2008-01-18

HP has acknowledged some vulnerabilities with unknown impacts in HP OfO
(Oracle for Openview), which can be exploited by malicious users and
malicious people.

Full Advisory:
http://secunia.com/advisories/28556/

 --

[SA28640] SDL_image Two Buffer Overflow Vulnerabilities

Critical:    Moderately critical
Where:       From remote
Impact:      DoS, System access
Released:    2008-01-24

Two vulnerabilities have been reported in SDL_image, which can be
exploited by malicious people to cause a DoS (Denial of Service) or
potentially compromise an application using the library.

Full Advisory:
http://secunia.com/advisories/28640/

 --

[SA28624] PHP-Nuke "modules/Search/index.php" SQL Injection

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data, Exposure of sensitive information
Released:    2008-01-23

Foster & 1dt.w0lf have discovered a vulnerability in PHP-Nuke, which
can be exploited by malicious people to conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/28624/

 --

[SA28619] Liquid-Silver CMS "update" Local File Inclusion

Critical:    Moderately critical
Where:       From remote
Impact:      Exposure of system information, Exposure of sensitive
information
Released:    2008-01-24

Stack-Terrorist has discovered a vulnerability in Liquid-Silver CMS,
which can be exploited by malicious people to disclose sensitive
information.

Full Advisory:
http://secunia.com/advisories/28619/

 --

[SA28617] aconon Mail "template" Information Disclosure

Critical:    Moderately critical
Where:       From remote
Impact:      Exposure of system information, Exposure of sensitive
information
Released:    2008-01-24

Arno Tll has reported a vulnerability in aconon Mail, which can be
exploited by malicious people to disclose sensitive information.

Full Advisory:
http://secunia.com/advisories/28617/

 --

[SA28606] Interstage HTTP Server Multiple Vulnerabilities

Critical:    Moderately critical
Where:       From remote
Impact:      Cross Site Scripting, DoS
Released:    2008-01-22

Fujitsu has acknowledged some vulnerabilities in Interstage HTTP
Server, which can be exploited by malicious people to cause a DoS
(Denial of Service) or to conduct cross-site scripting attacks.

Full Advisory:
http://secunia.com/advisories/28606/

 --

[SA28605] PacerCMS Multiple Vulnerabilities

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data, Cross Site Scripting
Released:    2008-01-22

Some vulnerabilities have been reported in PacerCMS, which can be
exploited by malicious people to conduct script insertion attacks and
by malicious users to conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/28605/

 --

[SA28594] aflog SQL Injection and Script Insertion Vulnerabilities

Critical:    Moderately critical
Where:       From remote
Impact:      Cross Site Scripting, Manipulation of data
Released:    2008-01-23

shinmai has discovered some vulnerabilities in aflog, which can be
exploited by malicious users to conduct script insertion attacks, and
by malicious people to conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/28594/

 --

[SA28588] WebSphere Application Server Two Vulnerabilities

Critical:    Moderately critical
Where:       From remote
Impact:      Unknown
Released:    2008-01-22

Some vulnerabilities with unknown impact have been reported in
WebSphere Application Server.

Full Advisory:
http://secunia.com/advisories/28588/

 --

[SA28581] AlstraSoft Forum Pay Per Post Exchange "catid" SQL Injection
Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data
Released:    2008-01-22

t0pP8uZz & xprog have reported a vulnerability in AlstraSoft Forum Pay
Per Post Exchange, which can be exploited by malicious people to
conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/28581/

 --

[SA28576] IBM WebSphere Application Server
serveServletsByClassnameEnabled Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Unknown
Released:    2008-01-21

A vulnerability has been reported in IBM WebSphere Application Server,
which has an unknown impact.

Full Advisory:
http://secunia.com/advisories/28576/

 --

[SA28572] MyBB SQL Injection and Cross-Site Request Forgery
Vulnerabilities

Critical:    Moderately critical
Where:       From remote
Impact:      Cross Site Scripting, Manipulation of data
Released:    2008-01-21

Some vulnerabilities have been reported in MyBB, which can be exploited
by malicious users to conduct SQL injection or cross-site request
forgery attacks.

Full Advisory:
http://secunia.com/advisories/28572/

 --

[SA28567] WordPress WP-Forum Plugin "user" SQL Injection

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data, Exposure of sensitive information
Released:    2008-01-21

websec Team have discovered a vulnerability in the WP-Forum plugin for
WordPress, which can be exploited by malicious people to conduct SQL
injection attacks.

Full Advisory:
http://secunia.com/advisories/28567/

 --

[SA28566] Famp3 "id" SQL Injection Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data
Released:    2008-01-18

IRCRASH has discovered a vulnerability in Famp3, which can be exploited
by malicious people to conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/28566/

 --

[SA28565] FaPersianHack "id" SQL Injection Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data
Released:    2008-01-18

IRCRASH has discovered a vulnerability in FaPersianHack, which can be
exploited by malicious people to conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/28565/

 --

[SA28560] Clever Copy SQL Injection and Cross-Site Scripting

Critical:    Moderately critical
Where:       From remote
Impact:      Cross Site Scripting, Manipulation of data
Released:    2008-01-18

hadihadi has discovered some vulnerabilities in Clever Copy, which can
be exploited by malicious people to conduct cross-site scripting
attacks and SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/28560/

 --

[SA28547] Openfire Jetty Information Disclosure Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Exposure of sensitive information
Released:    2008-01-18

A vulnerability has been reported in Openfire, which can be exploited
by malicious people to disclose sensitive information.

Full Advisory:
http://secunia.com/advisories/28547/

 --

[SA28562] AXIGEN Mail Server AXIMilter Format String Vulnerability

Critical:    Moderately critical
Where:       From local network
Impact:      DoS, System access
Released:    2008-01-21

hempel has discovered a vulnerability in the AXIGEN Mail Server, which
can be exploited by malicious people to cause a DoS (Denial of Service)
or to potentially compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/28562/

 --

[SA28633] Drupal Workflow Module Workflow Message Script Insertion

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2008-01-24

A vulnerability has been reported in the Workflow module for Drupal,
which can be exploited by malicious users to conduct script insertion
attacks.

Full Advisory:
http://secunia.com/advisories/28633/

 --

[SA28632] Drupal Archive Module Unspecified Cross-Site Scripting

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2008-01-24

Some vulnerabilities have been reported in the Archive module for
Drupal, which can be exploited by malicious people to conduct
cross-site scripting attacks.

Full Advisory:
http://secunia.com/advisories/28632/

 --

[SA28629] MediaWiki Cross-Site Scripting Vulnerability

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2008-01-24

A vulnerability has been reported in MediaWiki, which can be exploited
by malicious people to conduct cross-site scripting attacks.

Full Advisory:
http://secunia.com/advisories/28629/

 --

[SA28622] Mozilla Firefox "chrome:" Directory Traversal Security Issue

Critical:    Less critical
Where:       From remote
Impact:      Security Bypass
Released:    2008-01-24

Gerry Eisenhaur has discovered a security issue in Mozilla Firefox,
which can be exploited by malicious people to bypass certain security
restrictions.

Full Advisory:
http://secunia.com/advisories/28622/

 --

[SA28593] WordPress Permalinks Migration Plugin Cross-Site Request
Forgery

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2008-01-24

g30rg3_x has discovered a vulnerability in the Permalinks Migration
plugin for WordPress, which can be exploited by malicious people to
conduct cross-site request forgery attacks.

Full Advisory:
http://secunia.com/advisories/28593/

 --

[SA28582] OZJournals "id" Information Disclosure Vulnerability

Critical:    Less critical
Where:       From remote
Impact:      Exposure of sensitive information
Released:    2008-01-22

shinmai has discovered a vulnerability in OZJournals, which can be
exploited by malicious people to disclose potentially sensitive
information.

Full Advisory:
http://secunia.com/advisories/28582/

 --

[SA28579] ISC BIND libbind "inet_network()" Off-By-One Vulnerability

Critical:    Less critical
Where:       From remote
Impact:      DoS, System access
Released:    2008-01-21

A vulnerability has been reported in ISC BIND, which can be exploited
by malicious people to cause a DoS (Denial of Service) or to
potentially compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/28579/

 --

[SA28577] Mantis "Most Active" Script Insertion Vulnerability

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2008-01-21

A vulnerability has been reported in Mantis, which can be exploited by
malicious users to conduct script insertion attacks.

Full Advisory:
http://secunia.com/advisories/28577/

 --

[SA28573] singapore "gallery" Cross-Site Scripting Vulnerability

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2008-01-21

Rubn Ventura Pia has discovered a vulnerability in singapore, which
can be exploited by malicious people to conduct cross-site scripting
attacks.

Full Advisory:
http://secunia.com/advisories/28573/

 --

[SA28561] cPanel Leech Protect "rurl" Cross-Site Scripting

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2008-01-18

Aria-Security Team have reported a vulnerability in cPanel, which can
be exploited by malicious people to conduct cross-site scripting
attacks.

Full Advisory:
http://secunia.com/advisories/28561/

 --

[SA28604] IBM Tivoli Provisioning Manager for OS Deployment HTTP Server
Denial of Service

Critical:    Less critical
Where:       From local network
Impact:      DoS
Released:    2008-01-22

A vulnerability has been reported in IBM Tivoli Provisioning Manager
for OS Deployment, which can be exploited by malicious people to cause
a DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/28604/

 --

[SA28603] IBM Tivoli Business Service Manager Password Disclosure

Critical:    Less critical
Where:       Local system
Impact:      Exposure of sensitive information
Released:    2008-01-22

Some security issues have been reported in IBM Tivoli Business Service
Manager, which potentially can be exploited by malicious, local users
to disclose sensitive information.

Full Advisory:
http://secunia.com/advisories/28603/

 --

[SA28613] Kayako SupportSuite "syncml/index.php" Information
Disclosure

Critical:    Not critical
Where:       From remote
Impact:      Exposure of system information
Released:    2008-01-22

Janek Vind has reported a vulnerability in Kayako SupportSuite, which
can be exploited by malicious people to disclose system information.

Full Advisory:
http://secunia.com/advisories/28613/

 --

[SA28552] Apache Tomcat SingleSignOn Information Disclosure

Critical:    Not critical
Where:       From local network
Impact:      Exposure of sensitive information
Released:    2008-01-21

A security issue has been reported in Apache Tomcat, which can be
exploited by malicious people to disclose potentially sensitive
information.

Full Advisory:
http://secunia.com/advisories/28552/



========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Subscribe:
http://secunia.com/secunia_weekly_summary/

Contact details:
Web	: http://secunia.com/
E-mail	: support@private
Tel	: +45 70 20 51 44
Fax	: +45 70 20 51 45


___________________________________________________      
Subscribe to InfoSec News
http://www.infosecnews.org/mailman/listinfo/isn 



This archive was generated by hypermail 2.1.3 : Thu Jan 24 2008 - 22:36:26 PST