Internet Security Update 102306
Internet Security Advisory 102306
These security advisories are validated and verified in many differentways e.g. by downloading the software and performing comprehensive
tests, by reviewing source code, or by validating the credibility of
the source from which the vulnerability report was issued.
Security Advisory in Brief
Peter Vreugdenhil has reported a vulnerability in Macromedia ShockWave
Player, which can be exploited by malicious people to compromise a
user's system.
For additional details please refer to the referenced Secunia advisory
below.
Top Most Read Security Advisories
1. Mac OS X File Association Meta Data Shell Script
Execution
2. Macromedia ShockWave Player ActiveX Installer Buffer
Overflow
3. IBM Lotus Notes Multiple Vulnerabilities
4. WinACE RAR and TAR Directory Traversal Vulnerability
5. Mozilla / Mozilla Firefox Frame Injection Vulnerability
6. The Bat! Email Subject Header Buffer Overflow
Vulnerability
7. Website Generator PHP Code Injection Vulnerability
8. StuffIt / ZipMagic Directory Traversal Vulnerability
9. ArGoSoft Mail Server Pro Multiple Vulnerabilities
10. iCal "Calendar Text" Script Insertion Vulnerability
Internet Security Summary Listings
Windows:
Macromedia ShockWave Player ActiveX Installer Buffer
Overflow
Mail Transport System Professional Mail Relay Vulnerability
StoreBot 2002 Standard Edition "ShipMethod" Script Insertion
SPiD scan_lang_insert.php File Inclusion Vulnerability
Pentacle In-Out Board SQL Injection Vulnerabilities
StoreBot 2005 Professional Edition "Pwd" SQL Injection
iCal "Calendar Text" Script Insertion Vulnerability
bttlxeForum "err_txt" Cross-Site Scripting Vulnerability
Parodia "AG_ID" Cross-Site Scripting Vulnerability
WinACE RAR and TAR Directory Traversal Vulnerability
StuffIt / ZipMagic Directory Traversal Vulnerability
SpeedProject Products ZIP and JAR Directory Traversal
HP System Management Homepage Directory Traversal
M4 Project enigma-suite Default Account Password Weakness
Internet Explorer Iframe Folder Deletion Weakness
UNIX/Linux:
Mandriva update for metamail
Flex Unspecified Scanner Vulnerabilities
Debian update for gpdf
Sun Solaris update for Perl
iGENUS Webmail File Inclusion Vulnerability
Gentoo update for graphicsmagick
Debian update for bmv
Debian update for pdftohtml
Trustix update for sudo / tar
SUSE Updates for Multiple Packages
Zoo "fullpath()" File Name Handling Buffer Overflow
Ubuntu update for tar
NuFW TLS Socket Handling Denial of Service
SUSE update for kernel
Ubuntu update for postgresql
FreeBSD "nfsd" NFS Mount Request Denial of Service
Trustix update for postgresql
SUSE update for heimdal
Sun Solaris HSFS File System Privilege Escalation
Vulnerability
Gentoo update for noweb
Other:
Thomson SpeedTouch 500 Series Cross-Site Scripting
Compex NetPassage WPE54G Denial of Service Vulnerability
Cross Platform:
RunCMS phpRPC Library Arbitrary Code Execution Vulnerability
PeHePe Membership Management System Two Vulnerabilities
ShoutLIVE Multiple Vulnerabilities
phpRPC Library Arbitrary Code Execution Vulnerability
freeForum Multiple Vulnerabilities
N8cms Cross-Site Scripting and SQL Injection Vulnerabilities
d3jeeb Pro "catid" SQL Injection Vulnerabilities
MyBB "comma" Parameter SQL Injection Vulnerability
sendcard Unspecified SQL Injection Vulnerabilities
DirectContact Directory Traversal Vulnerability
LanSuite LanParty Intranet System "fid" SQL Injection
EKINboard Multiple Vulnerabilities
CrossFire "oldsocketmode" Denial of Service Vulnerability
PwsPHP "sondage" Module SQL Injection Vulnerability
PEAR Auth DB / LDAP Multiple Injection Vulnerabilities
Calcium "EventText" Script Insertion Vulnerability
Simple Machines Forum "X-Forwarded-For" Script Insertion
iUser Ecommerce Unspecified Vulnerabilities
TOPo "gTopNombre" Parameter Cross-Site Scripting
Vulnerability
CGI Calendar Cross-Site Scripting Vulnerabilities
MyPHPNuke Cross-Site Scripting Vulnerabilities
WordPress Cross-Site Scripting Vulnerabilities
PunBB "header.php" Cross-Site Scripting Vulnerability
JFacets "ProfileID" Profile Change Vulnerability
4images "template" Parameter File Inclusion Vulnerability
Website Generator PHP Code Injection Vulnerability
PEAR Archive_Tar Directory Traversal Vulnerability
MySQL Query Logging Bypass Security Issue
Issue Dealer Unpublished Content Disclosure Weakness
Separate Internet Security Advisories
Windows:--
Macromedia ShockWave Player ActiveX Installer Buffer
Overflow
Critical: Highly critical
Where: From remote
Impact: System access
Peter Vreugdenhil has reported a vulnerability in Macromedia ShockWave
Player, which can be exploited by malicious people to compromise a
user's system.
Mail Transport System Professional Mail Relay Vulnerability
Critical: Moderately critical
Where: From remote
Impact: Security Bypass
A vulnerability has been reported in Mail Transport System (MTS)
Professional, which can be exploited by malicious people to use it as
an open mail relay.
StoreBot 2002 Standard Edition "ShipMethod" Script Insertion
Critical: Moderately critical
Where: From remote
Impact: Cross Site Scripting
KeyShore and Yog have reported a vulnerability in StoreBot 2002
Standard Edition, which can be exploited by malicious people to conduct
script insertion attacks.
SPiD scan_lang_insert.php File Inclusion Vulnerability
Critical: Moderately critical
Where: From remote
Impact: Exposure of sensitive information
Nemesis Security Audit Group has discovered a vulnerability in SPiD,
which can be exploited by malicious people to disclose potentially
sensitive information.
Pentacle In-Out Board SQL Injection Vulnerabilities
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
Mustafa Can Bjorn has discovered two vulnerability in Pentacle In-Out
Board, which can be exploited by malicious people to conduct SQL
injection attacks.
StoreBot 2005 Professional Edition "Pwd" SQL Injection
Critical: Moderately critical
Where: From remote
Impact: Security Bypass, Manipulation of data
KeyShore and Yog have reported a vulnerability in StoreBot 2005
Professional Edition, which can be exploited by malicious people to
conduct SQL injection attacks.
iCal "Calendar Text" Script Insertion Vulnerability
Critical: Moderately critical
Where: From remote
Impact: Cross Site Scripting
KeyShore and Yog have discovered a vulnerability in iCal, which can be
exploited by malicious people to conduct script insertion attacks.
bttlxeForum "err_txt" Cross-Site Scripting Vulnerability
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
runvirus has reported a vulnerability in bttlxeForum, which can be
exploited by malicious people to conduct cross-site scripting attacks.
Parodia "AG_ID" Cross-Site Scripting Vulnerability
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting, Exposure of system information
KeyShore and Yog have reported a vulnerability in Parodia, which can be
exploited by malicious people to conduct cross-site scripting attacks.
WinACE RAR and TAR Directory Traversal Vulnerability
Critical: Less critical
Where: From remote
Impact: System access
Hamid Ebadi has discovered a vulnerability in WinACE, which potentially
can be exploited by malicious people to compromise a user's system.
StuffIt / ZipMagic Directory Traversal Vulnerability
Critical: Less critical
Where: From remote
Impact: System access
Hamid Ebadi has reported a vulnerability in StuffIt and ZipMagic, which
potentially can be exploited by malicious people to compromise a user's
system.
SpeedProject Products ZIP and JAR Directory Traversal
Critical: Less critical
Where: From remote
Impact: System access
Hamid Ebadi has reported a vulnerability in various SpeedProject
products, which potentially can be exploited by malicious people to
compromise a user's system.
HP System Management Homepage Directory Traversal
Critical: Less critical
Where: From local network
Impact: Exposure of system information, Exposure of sensitive
information
A vulnerability has been reported in HP System Management Homepage,
which can be exploited by malicious people to gain knowledge of
potentially sensitive information.
M4 Project enigma-suite Default Account Password Weakness
Critical: Less critical
Where: Local system
Impact: Security Bypass
A weakness has been reported in M4 Project enigma-suite, which can be
exploited by malicious, local users to bypass certain security
restrictions.
Internet Explorer Iframe Folder Deletion Weakness
Critical: Not critical
Where: From remote
Impact: Manipulation of data
cyber flash has discovered a weakness in Internet Explorer, which can
be exploited by malicious people to trick users into deleting local
folders.
UNIX/Linux:--
Mandriva update for metamail
Critical: Highly critical
Where: From remote
Impact: DoS, System access
Mandriva has issued an update for metamail. This fixes a vulnerability,
which potentially can be exploited by malicious people to compromise a
user's system.
Flex Unspecified Scanner Vulnerabilities
Critical: Moderately critical
Where: From remote
Impact: Unknown
Some vulnerabilities have been reported in Flex, which has an unknown
impact.
Debian update for gpdf
Critical: Moderately critical
Where: From remote
Impact: Unknown
Sun Solaris update for Perl
Critical: Moderately critical
Where: From remote
Impact: DoS, System access
Sun has issued an update for perl. This fixes a vulnerability, which
can be exploited by malicious people to cause a DoS (Denial of Service)
and potentially compromise a vulnerable Perl application.
iGENUS Webmail File Inclusion Vulnerability
Critical: Moderately critical
Where: From remote
Impact: Exposure of sensitive information
rgod has reported a vulnerability in iGENUS Webmail, which can be
exploited by malicious people to disclose potentially sensitive
information.
Gentoo update for graphicsmagick
Critical: Moderately critical
Where: From remote
Impact: System access
Gentoo has issued an update for graphicsmagick. This fixes a
vulnerability, which potentially can be exploited by malicious people
to compromise a user's system.
Debian update for bmv
Critical: Moderately critical
Where: From remote
Impact: System access
Debian has issued an update for bmv. This fixes a vulnerability, which
potentially can be exploited by malicious people to compromise a user's
system.
Debian update for pdftohtml
Critical: Moderately critical
Where: From remote
Impact: Unknown
Trustix update for sudo / tar
Critical: Moderately critical
Where: From remote
Impact: Privilege escalation, DoS, System access
Trustix has issued updates for sudo and tar. These fix some
vulnerabilities, which can be exploited by malicious, local users to
gain escalated privileges, and malicious people to cause a DoS (Denial
of Service) or compromise a user's system.
SUSE Updates for Multiple Packages
Critical: Moderately critical
Where: From remote
Impact: Security Bypass, Cross Site Scripting, DoS, System access
SUSE has issued an update for multiple packages. This fixes some
vulnerabilities, which can be exploited by malicious people to conduct
cross-site scripting and HTTP response splitting attacks, cause a DoS
(Denial of Service), and potentially to compromise a user's system.
Zoo "fullpath()" File Name Handling Buffer Overflow
Critical: Moderately critical
Where: From remote
Impact: DoS, System access
Jean-Sébastien Guay-Leroux has discovered a vulnerability in zoo, which
can be exploited by malicious people to cause a DoS (Denial of Service)
and potentially to compromise a user's system.
Ubuntu update for tar
Critical: Moderately critical
Where: From remote
Impact: DoS, System access
Ubuntu has issued an update for tar. This fixes a vulnerability, which
potentially can be exploited by malicious people to cause a DoS (Denial
of Service) and to compromise a user's system.
NuFW TLS Socket Handling Denial of Service
Critical: Less critical
Where: From remote
Impact: DoS
A vulnerability has been reported in NuFW, which can be exploited by
malicious users to cause a DoS (Denial of Service).
SUSE update for kernel
Critical: Less critical
Where: From remote
Impact: Security Bypass, Exposure of sensitive information, DoS
SUSE has issued an update for the kernel. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
gain knowledge of potentially sensitive information, bypass certain
security restrictions and cause a DoS (Denial of Service), and by
malicious people to cause a DoS.
Ubuntu update for postgresql
Critical: Less critical
Where: From local network
Impact: DoS
Ubuntu has issued an update for PostgreSQL. This fixes a vulnerability,
which can be exploited by malicious users to cause a DoS (Denial of
Service).
FreeBSD "nfsd" NFS Mount Request Denial of Service
Critical: Less critical
Where: From local network
Impact: DoS
Evgeny Legerov has reported a vulnerability in FreeBSD, which can be
exploited by malicious people to cause a DoS (Denial of Service).
Trustix update for postgresql
Critical: Less critical
Where: From local network
Impact: Privilege escalation, DoS
Trustix has issued an update for postgresql. This fixes two
vulnerabilities, which can be exploited by malicious users to cause a
DoS (Denial of Service) or gain escalated privileges.
SUSE update for heimdal
Critical: Less critical
Where: From local network
Impact: Privilege escalation, DoS
SUSE has issued an update for heimdal. This fixes multiple
vulnerabilities, which can be exploited by malicious, local users to
gain escalated privileges or by malicious people to cause a DoS (Denial
of Service).
Sun Solaris HSFS File System Privilege Escalation
Vulnerability
Critical: Less critical
Where: Local system
Impact: Privilege escalation, DoS
A vulnerability has been reported in Solaris, which can be exploited by
malicious, local users to cause a DoS (Denial of Service) or gain
escalated privileges.
Gentoo update for noweb
Critical: Less critical
Where: Local system
Impact: Privilege escalation
Gentoo has issued an update for noweb. This fixes a vulnerability,
which can be exploited by malicious, local users to perform certain
actions on a vulnerable system with escalated privileges.
Other:--
Thomson SpeedTouch 500 Series Cross-Site Scripting
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
Preben Nyløkken has reported a vulnerability in Thomson SpeedTouch 500
Series, which can be exploited by malicious people to conduct
cross-site scripting attacks.
Compex NetPassage WPE54G Denial of Service Vulnerability
Critical: Less critical
Where: From local network
Impact: DoS
/dev/0id has reported a vulnerability Compex NetPassage WPE54G, which
can be exploited by malicious people to cause a DoS (Denial of
Service).
Cross Platform:--
RunCMS phpRPC Library Arbitrary Code Execution Vulnerability
Critical: Highly critical
Where: From remote
Impact: System access
James Bercegay has reported a vulnerability in RunCMS, which can be
exploited by malicious people to compromise a vulnerable system.
PeHePe Membership Management System Two Vulnerabilities
Critical: Highly critical
Where: From remote
Impact: Cross Site Scripting, System access
Yunus Emre Yilmaz has reported two vulnerabilities in PeHePe Membership
Management System, which can be exploited by malicious people to conduct
cross-site scripting attacks and compromise a vulnerable system.
ShoutLIVE Multiple Vulnerabilities
Critical: Highly critical
Where: From remote
Impact: Cross Site Scripting, System access
Aliaksandr Hartsuyeu has reported some vulnerabilities in ShoutLIVE,
which can be exploited by malicious people to conduct script insertion
attacks and to compromise a vulnerable system.
phpRPC Library Arbitrary Code Execution Vulnerability
Critical: Highly critical
Where: From remote
Impact: System access
James Bercegay has reported a vulnerability in phpRPC, which can be
exploited by malicious people to compromise a vulnerable system.
freeForum Multiple Vulnerabilities
Critical: Highly critical
Where: From remote
Impact: Cross Site Scripting, System access
Aliaksandr Hartsuyeu has reported some vulnerabilities in freeForum,
which can be exploited by malicious people to conduct script insertion
attacks and to compromise a vulnerable system.
N8cms Cross-Site Scripting and SQL Injection Vulnerabilities
Critical: Moderately critical
Where: From remote
Impact: Cross Site Scripting, Manipulation of data
Liz0ziM has discovered some vulnerabilities in N8cms, which can be
exploited by malicious people to conduct cross-site scripting and SQL
injection attacks.
d3jeeb Pro "catid" SQL Injection Vulnerabilities
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
SAUDI has reported two vulnerabilities in d3jeeb Pro, which can be
exploited by malicious people to conduct SQL injection attacks.
MyBB "comma" Parameter SQL Injection Vulnerability
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
D3vil-0x1 has discovered a vulnerability in MyBB, which can be
exploited by malicious people to conduct SQL injection attacks.
sendcard Unspecified SQL Injection Vulnerabilities
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
Sumit Siddharth has reported some vulnerabilities in sendcard, which
can be exploited by malicious people to conduct SQL injection attacks.
DirectContact Directory Traversal Vulnerability
Critical: Moderately critical
Where: From remote
Impact: Exposure of system information, Exposure of sensitive
information
Donato Ferrante has discovered a vulnerability in DirectContact, which
can be exploited by malicious people to gain knowledge of potentially
sensitive information.
LanSuite LanParty Intranet System "fid" SQL Injection
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
x128 has discovered a vulnerability in LanSuite LanParty Intranet
System, which can be exploited by malicious people to conduct SQL
injection attacks.
EKINboard Multiple Vulnerabilities
Critical: Moderately critical
Where: From remote
Impact: Security Bypass, Cross Site Scripting, Manipulation of
data
Aliaksandr Hartsuyeu has reported some vulnerabilities in EKINboard,
which can be exploited by malicious people to conduct SQL injection and
script insertion attacks.
CrossFire "oldsocketmode" Denial of Service Vulnerability
Critical: Moderately critical
Where: From remote
Impact: DoS
Luigi Auriemma has reported a vulnerability in CrossFire, which can be
exploited by malicious people to cause a DoS (Denial of Service).
PwsPHP "sondage" Module SQL Injection Vulnerability
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data, Exposure of sensitive information
papipsycho has reported a vulnerability in PwsPHP, which can be
exploited by malicious people to conduct SQL injection attacks.
PEAR Auth DB / LDAP Multiple Injection Vulnerabilities
Critical: Moderately critical
Where: From remote
Impact: Security Bypass, Manipulation of data
Matt Van Gundy has reported some vulnerabilities in PEAR Auth, which
can be exploited by malicious people to bypass certain security
restrictions.
Calcium "EventText" Script Insertion Vulnerability
Critical: Moderately critical
Where: From remote
Impact: Cross Site Scripting
KeyShore and KeyYog have discovered a vulnerability in Calcium, which
can be exploited by malicious people to conduct script insertion
attacks.
Simple Machines Forum "X-Forwarded-For" Script Insertion
Critical: Moderately critical
Where: From remote
Impact: Cross Site Scripting
Aliaksandr Hartsuyeu has reported a vulnerability in Simple Machines
Forum, which can be exploited by malicious people to conduct script
insertion attacks.
iUser Ecommerce Unspecified Vulnerabilities
Critical: Moderately critical
Where: From remote
Impact: Unknown
Some vulnerabilities with unknown impacts have been reported in iUser
Ecommerce.
TOPo "gTopNombre" Parameter Cross-Site Scripting
Vulnerability
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
Yunus Emre Yilmaz has discovered a vulnerability in TOPo, which can be
exploited by malicious people to conduct cross-site scripting attacks.
CGI Calendar Cross-Site Scripting Vulnerabilities
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
Revnic Vasile has discovered some vulnerabilities in CGI Calendar,
which can be exploited by malicious people to conduct cross-site
scripting attacks.
MyPHPNuke Cross-Site Scripting Vulnerabilities
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
Mustafa Can Bjorn has reported some vulnerabilities in MyPHPNuke, which
can be exploited by malicious people to conduct cross-site scripting
attacks.
WordPress Cross-Site Scripting Vulnerabilities
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting, Exposure of system information
K4P0 has discovered two vulnerabilities in WordPress, which can be
exploited by malicious people to conduct cross-site scripting attacks.
PunBB "header.php" Cross-Site Scripting Vulnerability
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
A vulnerability has been reported in PunBB, which can be exploited by
malicious people to conduct cross-site scripting attacks.
JFacets "ProfileID" Profile Change Vulnerability
Critical: Less critical
Where: From remote
Impact: Security Bypass
A vulnerability has been reported in JFacets, which can be exploited by
malicious users to bypass certain security restrictions.
4images "template" Parameter File Inclusion Vulnerability
Critical: Less critical
Where: From remote
Impact: Exposure of sensitive information
rgod has reported a vulnerability in 4images, which can be exploited by
malicious people to disclose potentially sensitive information.
Website Generator PHP Code Injection Vulnerability
Critical: Less critical
Where: From remote
Impact: Security Bypass
Nemesis Security Audit Group has discovered a vulnerability in Website
Generator, which can be exploited by malicious users to bypass certain
security restrictions.
PEAR Archive_Tar Directory Traversal Vulnerability
Critical: Less critical
Where: From remote
Impact: System access
Hamid Ebadi has discovered a vulnerability in PEAR Archive_Tar, which
potentially can be exploited by malicious people to compromise a user's
system.
MySQL Query Logging Bypass Security Issue
Critical: Less critical
Where: Local system
Impact: Security Bypass
1dt.w0lf has discovered a security issue in MySQL, which can be
exploited by malicious users to bypass certain security restrictions.
Issue Dealer Unpublished Content Disclosure Weakness
Critical: Not critical
Where: From remote
Impact: Security Bypass
A weakness has been reported in Issue Dealer, which can be exploited by
malicious people to bypass certain security restrictions.
