Информационная безопасность
[RU] switch to English


Cводка уязвимостей безопасности в Web-приложениях (PHP, ASP, JSP, CGI, Perl)
Опубликовано:2 июня 2011 г.
Источник:
SecurityVulns ID:11704
Тип:удаленная
Уровень опасности:
5/10
Описание:Инъекции PHP, инъекции SQL, обратный путь в каталогах, межсайтовый скриптинг, модификация файлов, утечка информации и т.д.
Затронутые продукты:ICINGA : Icinga 1.3
 NAGIOS : nagios 3.2
 ARSC : A Really Simple Chat 3.3
 ICINGA : Icinga 1.4
 POSTREV : Post Revolution 0.8
 RAILS : rails 2.3
 SERENDIPITY : serendipity_event_freetag 3.21
CVE:CVE-2011-1954 (Multiple cross-site request forgery (CSRF) vulnerabilities in Post Revolution 0.8.0c-2 and earlier allow remote attackers to hijack the authentication of arbitrary users for requests to (1) ajax-weblog-guardar.php, (2) verpost.php, (3) comments.php, or (4) perfil.php.)
 CVE-2011-1953 (Multiple cross-site scripting (XSS) vulnerabilities in common.php in Post Revolution before 0.8.0c-2 allow remote attackers to inject arbitrary web script or HTML via an attribute of a (1) P, a (2) STRONG, a (3) A, a (4) EM, a (5) I, a (6) IMG, a (7) LI, an (8) OL, a (9) VIDEO, or a (10) BLOCKQUOTE element.)
 CVE-2011-1952 (common.php in Post Revolution before 0.8.0c-2 allows remote attackers to cause a denial of service (infinite loop) via malformed HTML markup, as demonstrated by an a< sequence.)
 CVE-2011-1921 (The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is disabled, does not properly enforce permissions for files that had been publicly readable in the past, which allows remote attackers to obtain sensitive information via a replay REPORT operation.)
 CVE-2011-1783 (The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is enabled, allows remote attackers to cause a denial of service (infinite loop and memory consumption) in opportunistic circumstances by requesting data.)
 CVE-2011-1752 (The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.17, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request for a baselined WebDAV resource, as exploited in the wild in May 2011.)
 CVE-2011-0447 (Ruby on Rails 2.1.x, 2.2.x, and 2.3.x before 2.3.11, and 3.x before 3.0.4, does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via forged (1) AJAX or (2) API requests that leverage "combinations of browser plugins and HTTP redirects," a related issue to CVE-2011-0696.)
 CVE-2011-0446 (Multiple cross-site scripting (XSS) vulnerabilities in the mail_to helper in Ruby on Rails before 2.3.11, and 3.x before 3.0.4, when javascript encoding is used, allow remote attackers to inject arbitrary web script or HTML via a crafted (1) name or (2) email value.)
Оригинальный текстdocumentDEBIAN, [SECURITY] [DSA 2251-1] subversion security update (02.06.2011)
 documentDEBIAN, [SECURITY] [DSA 2247-1] rails security update (02.06.2011)
 documentJavier Bassi, Post Revolution 0.8.0c Multiple Remote Vulnerabilities (02.06.2011)
 documentsschurtz_(at)_t-online.de, Cross-Site Scripting vulnerability in Icinga (02.06.2011)
 documentsschurtz_(at)_t-online.de, Cross-Site Scripting vulnerability in Nagios (02.06.2011)
 documentHigh-Tech Bridge Security Research, HTB22999: Multiple SQL Injections in A Really Simple Chat (ARSC) (02.06.2011)
 documentHigh-Tech Bridge Security Research, HTB22997: XSS in A Really Simple Chat (ARSC) (02.06.2011)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород