Информационная безопасность
[RU] switch to English


Cводка уязвимостей безопасности в Web-приложениях (PHP, ASP, JSP, CGI, Perl)
Опубликовано:8 августа 2010 г.
Источник:
SecurityVulns ID:11041
Тип:удаленная
Уровень опасности:
5/10
Описание:Инъекции PHP, инъекции SQL, обратный путь в каталогах, межсайтовый скриптинг, модификация файлов, утечка информации и т.д.
Затронутые продукты:WORDPRESS : WordPress 2.8
 DATAFACE : Dataface 1.0
 DT : DT Centrepiece 4.5
 HULIHAN : Amethyst 0.1
 HULIHAN : BXR 0.6
 HULIHAN : DiamondList 0.1
 OPENBLOG : Open blog 1.2
 PRADOPORTAL : Prado Portal 1.2
 MANTIS : MantisBT 1.2
 ZEUSCART : ZeusCart 3.0
CVE:CVE-2010-2574 (Cross-site scripting (XSS) vulnerability in manage_proj_cat_add.php in MantisBT 1.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via the name parameter in an Add Category action.)
Оригинальный текстdocumentMustLive, CSRF, Information Leakage and Full path disclosure vulnerabilities in WordPress (08.08.2010)
 documentSECUNIA, Secunia Research: MantisBT "Add Category" Script Insertion Vulnerability (08.08.2010)
 documentSecPod Research, ZeusCart Ecommerce Shopping Cart Software Cross-Site scripting Vulnerability (08.08.2010)
 documentHigh-Tech Bridge Security Research, SQL injection vulnerability in BXR (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Prado Portal (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in DT Centrepiece (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in DiamondList (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSRF (CSRF) in DiamondList (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in BXR search (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Open Blog (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Open blog (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSRF (CSRF) in Open blog (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in SiteLoom CMS (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in DiamondList (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Amethyst (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in BXR (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSRF (CSRF) in BXR (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in BXR (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Amethyst (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Amethyst (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSRF (CSRF) in Amethyst (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in DT Centrepiece (08.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in DT Centrepiece (08.08.2010)
 documentHigh-Tech Bridge Security Research, Application Logic Error in DT Centrepiece (08.08.2010)
 documentHigh-Tech Bridge Security Research, Application Logic Error in DT Centrepiece (08.08.2010)
 documentMustLive, Vulnerabilities in Dataface Web Application Framework (08.08.2010)

DoS против RSA enVision
Опубликовано:8 августа 2010 г.
Источник:
SecurityVulns ID:11038
Тип:удаленная
Уровень опасности:
5/10
Затронутые продукты:RSA : enVision 3.7
CVE:CVE-2010-2634 (RSA enVision before 3.7 SP1 allows remote authenticated users to cause a denial of service via unspecified vectors.)
Оригинальный текстdocumentEMC, ESA-2010-013: RSA, The Security Division of EMC, informs about potential security vulnerability in RSA enVision® versions prior to 3.7 SP1 (08.08.2010)

Переполнение буфера в Citrix Presentation Server Client
дополнено с 5 августа 2010 г.
Опубликовано:8 августа 2010 г.
Источник:
SecurityVulns ID:11034
Тип:клиент
Уровень опасности:
6/10
Описание:Переполнение буфера при разборе ответа ICA сервера.
Затронутые продукты:CITRIX : Presentation Server Client 10.150
Оригинальный текстdocumentIDEFENSE, iDefense Security Advisory 08.03.10: Citrix ICA Client ActiveX Memory Corruption Vulnerabillity (08.08.2010)
 documentdisclosure_(at)_contextis.co.uk, Heap Offset Overflow in Citrix ICA Clients (05.08.2010)

Многочисленные уязвимости безопасности в Apple Webkit / Safari
дополнено с 8 августа 2010 г.
Опубликовано:14 августа 2010 г.
Источник:
SecurityVulns ID:11040
Тип:библиотека
Уровень опасности:
9/10
Описание:Утечки информации, межсайтовый доступ, многочисленные переполнения буфера и повреждения памяти.
Затронутые продукты:APPLE : Safari 5.0
 APPLE : Safari 4.1
CVE:CVE-2010-1796 (The AutoFill feature in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to obtain sensitive Address Book Card information via JavaScript code that forces keystroke events for input fields.)
 CVE-2010-1793 (Multiple use-after-free vulnerabilities in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a (1) font-face or (2) use element in an SVG document.)
 CVE-2010-1792 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression.)
 CVE-2010-1791 (Integer signedness error in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving a JavaScript array index.)
 CVE-2010-1790 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, does not properly handle just-in-time (JIT) compiled JavaScript stubs, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document, related to a "reentrancy issue.")
 CVE-2010-1789 (Heap-based buffer overflow in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a JavaScript string object.)
 CVE-2010-1788 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a use element in an SVG document.)
 CVE-2010-1787 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a floating element in an SVG document.)
 CVE-2010-1786 (Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a foreignObject element in an SVG document.)
 CVE-2010-1785 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, accesses uninitialized memory during processing of the (1) :first-letter and (2) :first-line pseudo-elements in an SVG text element, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted document.)
 CVE-2010-1784 (The counters functionality in the Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.)
 CVE-2010-1783 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, does not properly handle dynamic modification of a text node, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document.)
 CVE-2010-1782 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to the rendering of an inline element.)
 CVE-2010-1780 (Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to element focus.)
 CVE-2010-1778 (Cross-site scripting (XSS) vulnerability in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via an RSS feed.)
Оригинальный текстdocumentZDI, ZDI-10-154: Apple Webkit Button First-Letter Style Rendering Remote Code Execution Vulnerability (14.08.2010)
 documentZDI, ZDI-10-153: Apple Webkit SVG Floating Text Element Remote Code Execution Vulnerability (14.08.2010)
 documentZDI, ZDI-10-152: Apple WebKit RTL LineBox Overflow Remote Code Execution Vulnerability (14.08.2010)
 documentZDI, ZDI-10-144: Apple Webkit Rendering Counter Remote Code Execution Vulnerability (11.08.2010)
 documentZDI, ZDI-10-146: Apple Webkit Anchor Tag Mouse Click Event Dispatch Remote Code Execution Vulnerability (11.08.2010)
 documentZDI, ZDI-10-141: Apple Webkit SVG ForeignObject Rendering Layout Remote Code Execution Vulnerability (08.08.2010)
 documentZDI, ZDI-10-142: Apple Webkit SVG First-Letter Style Remote Code Execution Vulnerability (08.08.2010)
 documentAPPLE, About the security content of Safari 5.0.1 and Safari 4.1.1 (08.08.2010)

Многочисленные уязвимости безопасности в Novell iPrint
дополнено с 8 августа 2010 г.
Опубликовано:25 августа 2010 г.
Источник:
SecurityVulns ID:11039
Тип:удаленная
Уровень опасности:
7/10
Описание:Переполнения буфера, несанкционированный доступ к файлам, выполнение кода и т.д. в iPrint Client Browser Plugin и iPrint Server.
Оригинальный текстdocumentZDI, TPTI-10-08: Novell iPrint Client Browser PluginGetDriverFile Uninitialized Pointer Remote Code Execution Vulnerability (25.08.2010)
 documentZDI, ZDI-10-140: Novell iPrint Client Browser Plugin operation Parameter Remote Code Execution Vulnerability (08.08.2010)
 documentZDI, ZDI-10-138: Novell iPrint Server Queue Name Remote Code Execution Vulnerability (08.08.2010)
 documentZDI, TPTI-10-06: Novell iPrint Client Browser Plugin ExecuteRequest debug Parameter Remote Code Execution Vulnerability (08.08.2010)
 documentZDI, TPTI-10-05: Novell iPrint Client Browser Plugin Remote File Deletion Vulnerability (08.08.2010)
 documentZDI, ZDI-10-139: Novell iPrint Client Browser Plugin Parameter Name Remote Code Execution (08.08.2010)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород