Информационная безопасность
[RU] switch to English


Обход аутентификации в видеорегистраторе Everfocus EDR1600
Опубликовано:22 октября 2009 г.
Источник:
SecurityVulns ID:10342
Тип:удаленная
Уровень опасности:
6/10
Описание:Возможно обойти механизм аутентификации.
Затронутые продукты:EVERFOCUS : Everfocus EDR1600
Оригинальный текстdocumentAndrea Fabrizi, Everfocus EDR1600 remote authentication bypass (22.10.2009)

Многочисленные уязвимости безопасности в Websense Email Security
Опубликовано:22 октября 2009 г.
Источник:
SecurityVulns ID:10338
Тип:удаленная
Уровень опасности:
5/10
Описание:Межсайтовый скриптинг и DoS в интерфейсе администрирования.
Затронутые продукты:WEBSENSE : Websense Email Security 7.1
 WEBSENSE : Personal Email Manager 7.1
Оригинальный текстdocumentNSO Research, NSOADV-2009-003: Websense Email Security Cross Site Scripting (22.10.2009)
 documentNSO Research, NSOADV-2009-002: Websense Email Security Web Administrator DoS (22.10.2009)

Переполнение буфера в игре AlienArena
Опубликовано:22 октября 2009 г.
Источник:
SecurityVulns ID:10341
Тип:удаленная
Уровень опасности:
6/10
Описание:Переполнение буфера при разборе пакета UDP/27901.
Затронутые продукты:ALIENARENA : Alien Arena 7.30
Оригинальный текстdocumentjason_(at)_ngssoftware.com, Anonymous Remote Arbitrary Code Execution in Alien Arena 7.30 (22.10.2009)

Межсайтовый скриптинг в Web-сервере TwonkyMedia
Опубликовано:22 октября 2009 г.
Источник:
SecurityVulns ID:10340
Тип:удаленная
Уровень опасности:
5/10
Описание:Межсайтовый скриптинг при выдаче сообщения об ошибке.
Затронутые продукты:TWONKYMEDIA : TwonkyMedia Server 4.4
 TWONKYMEDIA : TwonkyMedia Server 5.0
Оригинальный текстdocumentDavide Canali, TwonkyMedia Server Multiple Cross-Site Scripting Vulnerabilities (22.10.2009)

Cводка уязвимостей безопасности в Web-приложениях (PHP, ASP, JSP, CGI, Perl)
дополнено с 22 октября 2009 г.
Опубликовано:23 октября 2009 г.
Источник:
SecurityVulns ID:10339
Тип:удаленная
Уровень опасности:
5/10
Описание:Инъекции PHP, инъекции SQL, обратный путь в каталогах, межсайтовый скриптинг, модификация файлов, утечка информации и т.д.
Затронутые продукты:JOOMLA : Joomla 1.5
 VIVVO : Vivvo CMS 4.1
CVE:CVE-2009-2281 (Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via (1) a crafted Content-Length HTTP header or (2) a large HTTP request, related to an integer overflow that triggers a heap-based buffer overflow. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2009-0840.)
 CVE-2009-0843 (The msLoadQuery function in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to determine the existence of arbitrary files via a full pathname in the queryfile parameter, which triggers different error messages depending on whether this pathname exists.)
 CVE-2009-0842 (mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to read arbitrary invalid .map files via a full pathname in the map parameter, which triggers the display of partial file contents within an error message, as demonstrated by a /tmp/sekrut.map symlink.)
 CVE-2009-0841 (Directory traversal vulnerability in mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2, when running on Windows with Cygwin, allows remote attackers to create arbitrary files via a .. (dot dot) in the id parameter.)
 CVE-2009-0840 (Heap-based buffer underflow in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to have an unknown impact via a negative value in the Content-Length HTTP header.)
 CVE-2009-0839 (Stack-based buffer overflow in mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2, when the server has a map with a long IMAGEPATH or NAME attribute, allows remote attackers to execute arbitrary code via a crafted id parameter in a query action.)
Оригинальный текстdocumentDEBIAN, [SECURITY] [DSA 1914-1] New mapserver packages fix serveral vulnerabilities (23.10.2009)
 documentMustLive, Cross-Site Scripting vulnerability in Joomla (23.10.2009)
 documentJanek Vind, [waraxe-2009-SA#075] - Remote File Disclosure in Vivvo CMS 4.1.5.1 (22.10.2009)

Многочисленные уязвимости безопасности в Oracle
дополнено с 22 октября 2009 г.
Опубликовано:30 ноября 2009 г.
Источник:
SecurityVulns ID:10337
Тип:удаленная
Уровень опасности:
8/10
Описание:Очередное ежеквартальное обновление закрывает около 40 уязвимостей во всех продуктах Oracle.
Затронутые продукты:ORACLE : WebLogic Server 7.0
 ORACLE : Oracle 9i
 ORACLE : Oracle 10g
 ORACLE : Oracle E-Business Suite 11i
 ORACLE : WebLogic Portal 8.1
 ORACLE : WebLogic Server 8.1
 ORACLE : WebLogic Portal 9.2
 ORACLE : Oracle Application Server 10g
 ORACLE : Oracle 11g
 ORACLE : WebLogic Server 10.0
 ORACLE : WebLogic Server 9.2
 ORACLE : Oracle E-Business Suite 12
 ORACLE : JRockit 27.6
 ORACLE : Oracle Business Intelligence Enterprise Edition 10.1
 ORACLE : AutoVue 19.3
 ORACLE : Agile Engineering Data Management 6.1
 ORACLE : PeopleSoft PeopleTools 8.49
 ORACLE : PeopleSoft Enterprise HCM 9.0
 ORACLE : JDEdward Tools 8.98
 ORACLE : WebLogic Portal 10.3
CVE:CVE-2009-3409 (Unspecified vulnerability in the PeopleSoft Enterprise HCM (TAM) component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 9.0 Bundle 10 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.)
 CVE-2009-3408 (Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.)
 CVE-2009-3407 (Unspecified vulnerability in the Portal component in Oracle Application Server 10.1.2.3 and 10.1.4.2 allows remote attackers to affect integrity via unknown vectors.)
 CVE-2009-3406 (Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.98.2.1 allows remote authenticated users to affect confidentiality via unknown vectors.)
 CVE-2009-3405 (Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.98.1.4 allows remote authenticated users to affect integrity and availability via unknown vectors.)
 CVE-2009-3404 (Unspecified vulnerability in the PeopleSoft PeopleTools & Enterprise Portal component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.23 allows remote authenticated users to affect integrity via unknown vectors.)
 CVE-2009-3403 (Unspecified vulnerability in the JRockit component in BEA Product Suite R27.6.4: JRE/JDK, 1.4.2, 5, and, and 6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this issue subsumes CVE-2009-2670, CVE-2009-2671, CVE-2009-2672, CVE-2009-2673, CVE-2009-2674, CVE-2009-2675, and CVE-2009-2676.)
 CVE-2009-3402 (Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.1 allows remote authenticated users to affect confidentiality via unknown vectors.)
 CVE-2009-3401 (Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.1 allows local users to affect confidentiality via unknown vectors.)
 CVE-2009-3400 (Unspecified vulnerability in the Oracle Advanced Benefits component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.)
 CVE-2009-3399 (Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 7.0.6 and 8.1.5 allows remote attackers to affect integrity, related to WLS Console.)
 CVE-2009-3397 (Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.0.6 and 12.1.1 allows remote attackers to affect confidentiality via unknown vectors.)
 CVE-2009-3396 (Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.0, 9.1, 9.2.3, 10.0.1, and 10.3 allows remote attackers to affect integrity, related to WLS Console.)
 CVE-2009-3395 (Unspecified vulnerability in the AutoVue component in Oracle E-Business Suite 19.3.2 allows remote attackers to affect availability via unknown vectors.)
 CVE-2009-3393 (Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors.)
 CVE-2009-3392 (Unspecified vulnerability in the Agile Engineering Data Management (EDM) component in Oracle E-Business Suite 6.1.0.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.)
 CVE-2009-2625 (XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 and JDK and JRE 5.0 before Update 20, and in other products, allows remote attackers to cause a denial of service (infinite loop and application hang) via malformed XML input, as demonstrated by the Codenomicon XML fuzzing framework.)
 CVE-2009-2002 (Unspecified vulnerability in the WebLogic Portal component in BEA Product Suite 8.1.6, 9.2.3, 10.0.1, 10.2.1, and 10.3.1.0.0 allows remote attackers to affect integrity via unknown vectors.)
 CVE-2009-2001 (Unspecified vulnerability in the PL/SQL component in Oracle Database 10.2.0.4 and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.)
 CVE-2009-2000 (Unspecified vulnerability in the Authentication component in Oracle Database 11.1.0.7 allows remote attackers to affect confidentiality via unknown vectors.)
 CVE-2009-1999 (Unspecified vulnerability in the Business Intelligence Enterprise Edition component in unspecified Oracle Application Server versions allows remote attackers to affect integrity via unknown vectors.)
 CVE-2009-1998 (Unspecified vulnerability in the Oracle Communications Order and Service Management component in Oracle Industry Applications 2.8.0, 6.2.0, 6.3.0, and 6.3.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.)
 CVE-2009-1997 (Unspecified vulnerability in the Authentication component in Oracle Database 10.2.0.3 and 11.1.0.7 allows remote attackers to affect confidentiality via unknown vectors.)
 CVE-2009-1995 (Unspecified vulnerability in the Advanced Queuing component in Oracle Database 10.2.0.4 and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMS_AQ_INV.)
 CVE-2009-1994 (Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability, related to MDSYS.PRVT_CMT_CBK.)
 CVE-2009-1993 (Unspecified vulnerability in the Application Express component in Oracle Database 3.0.1 allows remote authenticated users to affect confidentiality and integrity, related to FLOWS_030000.WWV_EXECUTE_IMMEDIATE.)
 CVE-2009-1992 (Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.)
 CVE-2009-1991 (Unspecified vulnerability in the Oracle Text component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to CTXSYS.DRVXTABC. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an established researcher that this is for multiple SQL injection vulnerabilities via the (1) idx_owner or (2) idx_name parameters to the create_tables procedure.)
 CVE-2009-1990 (Unspecified vulnerability in the Business Intelligence Enterprise Edition component in Oracle Application Server 10.1.3.4.1 allows local users to affect confidentiality via unknown vectors.)
 CVE-2009-1985 (Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.)
 CVE-2009-1979 (Unspecified vulnerability in the Network Authentication component in Oracle Database 10.1.0.5 and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an independent researcher that this is related to improper validation of the AUTH_SESSKEY parameter length that leads to arbitrary code execution.)
 CVE-2009-1972 (Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect integrity, related to DBMS_SYS_SQL and DBMS_SQL.)
 CVE-2009-1971 (Unspecified vulnerability in the Data Pump component in Oracle Database 10.1.0.5, 10.2.0.3, and 11.1.0.7 allows remote authenticated users to affect integrity via unknown vectors.)
 CVE-2009-1965 (Unspecified vulnerability in the Net Foundation Layer component in Oracle Database 9.2.0.8 and 10.1.0.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.)
 CVE-2009-1964 (Unspecified vulnerability in the Workspace Manager component in Oracle Database 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.)
 CVE-2009-1018 (Unspecified vulnerability in the Workspace Manager component in Oracle Database 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LTRIC (WMSYS.LTRIC).)
 CVE-2009-1007 (Unspecified vulnerability in the Data Mining component in Oracle Database 10.2.0.4 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYS.DMP_SYS.)
 CVE-2009-0217 (The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; (2) the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6; (3) Mono before 2.4.2.2; (4) XML Security Library before 1.2.12; (5) IBM WebSphere Application Server Versions 6.0 through 6.0.2.33, 6.1 through 6.1.0.23, and 7.0 through 7.0.0.1; (6) Sun JDK and JRE Update 14 and earlier; (7) Microsoft .NET Framework 3.0 through 3.0 SP2, 3.5, and 4.0; and other products uses a parameter that defines an HMAC truncation length (HMACOutputLength) but does not require a minimum for this length, which allows attackers to spoof HMAC-based signatures and bypass authentication by specifying a truncation length with a small number of bits.)
Оригинальный текстdocumentAndrea Purificato, Oracle exploit for CTXSYS.DRVXTABC.CREATE_TABLES and others (30.11.2009)
 documentACROS Security, ACROS Security: HTML Injection in Oracle WebLogic Server Console (ASPR #2009-10-30-1) (02.11.2009)
 documentDennis Yurichev, CVE-2009-1979 (Oracle RDBMS) (30.10.2009)
 documentDSecRG, [DSECRG-09-010] Oracle 10g CTXSYS.DRVXTABC - plsql injection (28.10.2009)
 documentORACLE, US-CERT Technical Cyber Security Alert TA09-294A -- Oracle Updates for Multiple Vulnerabilities (22.10.2009)
 documentCERT, US-CERT Technical Cyber Security Alert TA09-294A -- Oracle Updates for Multiple Vulnerabilities (22.10.2009)
Файлы:CVE-2009-1979 PoC. Working at least on Oracle 10.2.0.4 win32

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород