Информационная безопасность
[RU] switch to English


Многочисленные уязвимости безопасности в PHP
Опубликовано:27 сентября 2010 г.
Источник:
SecurityVulns ID:11165
Тип:библиотека
Уровень опасности:
6/10
Описание:Утечка информации через phar, утечка информации через SPLObjectStorage, утечка информации через сообщения об ошибке, подмена переменных.
Затронутые продукты:PHP : PHP 5.2
 PHP : PHP 5.3
CVE:CVE-2010-3065 (The default session serializer in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 does not properly handle the PS_UNDEF_MARKER marker, which allows context-dependent attackers to modify arbitrary session variables via a crafted session variable name.)
 CVE-2010-2950 (Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows context-dependent attackers to obtain sensitive information (memory contents) and possibly execute arbitrary code via a crafted phar:// URI that is not properly handled by the phar_stream_flush function, leading to errors in the php_stream_wrapper_log_error function. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-2094.)
 CVE-2010-2531 (The var_export function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3 flushes the output buffer to the user when certain fatal errors occur, even if display_errors is off, which allows remote attackers to obtain sensitive information by causing the application to exceed limits for memory, execution time, or recursion.)
 CVE-2010-2225 (Use-after-free vulnerability in the SplObjectStorage unserializer in PHP 5.2.x and 5.3.x through 5.3.2 allows remote attackers to execute arbitrary code or obtain sensitive information via serialized data, related to the PHP unserialize function.)
Оригинальный текстdocumentUBUNTU, [USN-989-1] PHP vulnerabilities (27.09.2010)

DoS против Cisco Unified Presence / Cisco Unified Communications Manager
дополнено с 30 августа 2010 г.
Опубликовано:27 сентября 2010 г.
Источник:
SecurityVulns ID:11105
Тип:удаленная
Уровень опасности:
5/10
Описание:Отказ при разборе сообщений SIP.
Затронутые продукты:CISCO : Unified Communications Manager 6.1
 CISCO : Unified Communications Manager 7.1
 CISCO : Unified Communications Manager 8.0
 CISCO : Unified Presence 6.0
 CISCO : Unified Presence 7.0
CVE:CVE-2010-2840 (The Presence Engine (PE) service in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) does not properly handle an erroneous Contact field in the header of a SIP SUBSCRIBE message, which allows remote attackers to cause a denial of service (process failure) via a malformed message, aka Bug ID CSCtd39629.)
 CVE-2010-2839 (SIPD in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) allows remote attackers to cause a denial of service (stack memory corruption and process failure) via a malformed SIP message, aka Bug ID CSCtd14474.)
 CVE-2010-2838 (The SendCombinedStatusInfo implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.0SU before 7.0(2a)SU3, 7.1 before 7.1(5), and 8.0 before 8.0(3) allows remote attackers to cause a denial of service (process failure) via a malformed SIP REGISTER message, aka Bug ID CSCtf66305.)
 CVE-2010-2837 (The SIPStationInit implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.1SU before 6.1(5)SU1, 7.0SU before 7.0(2a)SU3, 7.1SU before 7.1(3b)SU2, 7.1 before 7.1(5), and 8.0 before 8.0(1) allows remote attackers to cause a denial of service (process failure) via a malformed SIP message, aka Bug ID CSCtd17310.)
 CVE-2010-2835 (Cisco IOS 12.2 through 12.4 and 15.0 through 15.1, Cisco IOS XE 2.5.x and 2.6.x before 2.6.1, and Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5), 7.0 before 7.0(2a)su3, 7.1su before 7.1(3b)su2, 7.1 before 7.1(5), and 8.0 before 8.0(1) allow remote attackers to cause a denial of service (device reload or voice-services outage) via a SIP REFER request with an invalid Refer-To header, aka Bug IDs CSCta20040 and CSCta31358.)
 CVE-2010-2834 (Cisco IOS 12.2 through 12.4 and 15.0 through 15.1, Cisco IOS XE 2.5.x and 2.6.x before 2.6.1, and Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5)SU1, 7.x before 7.1(5), and 8.0 before 8.0(2) allow remote attackers to cause a denial of service (device reload or voice-services outage) via crafted SIP registration traffic over UDP, aka Bug IDs CSCtf72678 and CSCtf14987.)
Оригинальный текстdocumentCISCO, Cisco Security Advisory: Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerabilities (27.09.2010)
 documentCISCO, Cisco Security Advisory: Cisco Unified Presence Denial of Service Vulnerabilities (30.08.2010)
 documentCISCO, Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities (30.08.2010)

Cводка уязвимостей безопасности в Web-приложениях (PHP, ASP, JSP, CGI, Perl)
Опубликовано:27 сентября 2010 г.
Источник:
SecurityVulns ID:11164
Тип:удаленная
Уровень опасности:
5/10
Описание:Инъекции PHP, инъекции SQL, обратный путь в каталогах, межсайтовый скриптинг, модификация файлов, утечка информации и т.д.
Затронутые продукты:E107 : e107 0.7
 ENTRANS : Entrans 0.3
 COLLABNET : Subversion Edge 1.2
 MOTORITO : Motorito 2.0
 FREEPBX : FreePBX 2.8
 HORDE : imp 4.3
CVE:CVE-2010-3490 (Directory traversal vulnerability in page.recordings.php in the System Recordings component in the configuration interface in FreePBX 2.8.0 and earlier allows remote authenticated administrators to create arbitrary files via a .. (dot dot) in the usersnum parameter to admin/config.php, as demonstrated by creating a .php file under the web root.)
Оригинальный текстdocumentMoritz Naumann, XSS in Horde IMP <=4.3.7, fetchmailprefs.php (27.09.2010)
 documentTrustwave Advisories, TWSL2010-005: FreePBX recordings interface allows remote code execution (27.09.2010)
 documentISecAuditors Security Advisories, [ISecAuditors Security Advisories] SQL Injection and XSS in Motorito < v2.0 Ni 483 (27.09.2010)
 documentsk, CollabNet Subversion Edge Log Parser XSS/Code Injection Vulnerability (27.09.2010)
 documentHigh-Tech Bridge Security Research, SQL injection vulnerability in Entrans (27.09.2010)
 documentHigh-Tech Bridge Security Research, SQL injection vulnerability in Entrans (27.09.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Entrans (27.09.2010)
 documentHigh-Tech Bridge Security Research, SQL injection vulnerability in e107 (27.09.2010)
 documentMustLive, Уязвимости в CMS MYsite (27.09.2010)

DoS против HP OpenView Network Node Manager
Опубликовано:27 сентября 2010 г.
Источник:
SecurityVulns ID:11166
Тип:удаленная
Уровень опасности:
5/10
Затронутые продукты:HP : OpenView Network Node Manager 7.51
 HP : OpenView Network Node Manager 7.53
CVE:CVE-2010-3285 (Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to cause a denial of service via unknown vectors.)
Оригинальный текстdocumentHP, [security bulletin] HPSBMA02585 SSRT100256 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS) (27.09.2010)

Многочисленные уязвимости безопасности в HP System Management Homepage
дополнено с 17 сентября 2010 г.
Опубликовано:27 сентября 2010 г.
Источник:
SecurityVulns ID:11152
Тип:удаленная
Уровень опасности:
5/10
Описание:Утечка информации, межсайтовый скриптинг.
Затронутые продукты:HP : HP System Management Homepage 6.0
 HP : HP System Management Homepage 6.1
CVE:CVE-2010-3284 (Unspecified vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to obtain sensitive information via unknown vectors.)
 CVE-2010-3283 (Open redirect vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.)
 CVE-2010-3009 (Unspecified vulnerability in HP System Management Homepage (SMH) for Linux 6.0 and 6.1 allows remote authenticated users to obtain sensitive information and gain root privileges via unknown vectors.)
 CVE-2010-1586 (Open redirect vulnerability in red2301.html in HP System Management Homepage (SMH) 2.x.x.x allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the RedirectUrl parameter.)
Оригинальный текстdocumentHP, [security bulletin] HPSBMA02583 SSRT100070 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote URL Redirection (27.09.2010)
 documentHP, [security bulletin] HPSBMA02578 SSRT100069 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Information Disclosure (27.09.2010)
 documentHP, [security bulletin] HPSBMA02584 SSRT100230 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote URL Redirection (27.09.2010)
 documentHP, [security bulletin] HPSBMA02568 SSRT100219 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS), HTTP Response Splitting, and Other Vulnerabilities (17.09.2010)
 documentHP, [security bulletin] HPSBMA02566 SSRT100045 rev.1 - HP System Management Homepage (SMH) for Linux, Remote Disclosure of Sensitive Information (17.09.2010)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород