THE CENZIC BLOG

Securityvulns news channelSecurityvulns news channel

securityvulns.com vulnerabilities newsline

2003-2007 Securityvulns, All rights reserved


libHX library buffer overflow

Hep buffer overflow in HX_split function. Applications: libHX 3.5 (02.09.2010)

OpenSSL library double free vulnerability

Double free() in ECDH code. Applications: OpenSSL 0.9 (02.09.2010)

libwww-perl directory traversal

Directory traversal on file downloading in lwp-download. Applications: libwww-perl 5.834 (02.09.2010)

Microsoft Windows multiple applications DLL hijacking, updated since 26.08.2010

If application is launched via file type association, current path is set to the path file is located, making it's possible to place DLLs application tries to load dynamically into same directory. Applications: Windows 2000 Server, Windows 2000 Professional, Windows XP, Windows 2003 Server, Windows Vista, Windows 2008 Server, Windows 7 (02.09.2010)

Apple WebKit / Safari DoS

Crash on SGV style parameters parsing. Applications: Safari 5.0 (02.09.2010)

bogofilter DoS

Crash on message parsing. Applications: bogofilter 1.2 (02.09.2010)

libgdiplus / Mono multiple integer overflows

Multiple integer overflows on BPM, JPEG, TIFF parsing. Applications: libgdiplus 2.6 (02.09.2010)

Apple QuickTime code execution

Memory corruption in ActiveX control. (02.09.2010)

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Applications: Rumba CMS 2.4, Amiro.CMS 5.8, FCKEditor.NET 2.6, WebManager-Pro 8.1, WebManager-Pro 7.4 (02.09.2010)

Wireshark sniffer multiple security vulnerabilities, updated since 14.06.2010

Multiple DoS conditions, buffer overflow. Applications: Wireshark 1.2 (02.09.2010)

OpenOffice integer overflows

Integer overflows in Impress. Applications: OpenOffice 3.2 (31.08.2010)

Cisco Unified Presence / Cisco Unified Communications Manager DoS

Crash on SIP messages parsing. Applications: Unified Communications Manager 6.1, Unified Communications Manager 7.1, Unified Communications Manager 8.0, Unified Presence 6.0, Unified Presence 7.0 (30.08.2010)

Deepin TFTP Server directory traversal

Directory traversal on put / get operations. Applications: Deepin TFTP Server 1.25 (30.08.2010)

Multiple browsers certificates validation weakness

Wildmasks in certificates issued to IP address are enabled. Applications: Windows 2000 Server, Windows 2000 Professional, Windows XP, Windows 2003 Server, Windows Vista, Windows 2008 Server, Windows 7, Firefox 3.6, QT 4.7 (30.08.2010)

Cisco IOS XR BGP DoS

Router may issue invalid announce on receiving prefix with malformed attribute. Applications: IOS XR 3.4, IOS XR 3.5, IOS XR 3.6, IOS XR 3.7, IOS XR 3.8, IOS XR 3.9 (30.08.2010)

RealNetworks RealPlayer security vulnerabilities

Memory corruption on FLV and IVR formats parsing. (30.08.2010)

KDE okular buffer overflow

Dynamic memory overflow on PDB files processing. Applications: KDE 4.4, KDE 4.2 (30.08.2010)

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Applications: phpmyadmin 2.11, phpmyadmin 3.3, typo3 4.3, BugTracker.net 3.4, Webmatic 3.0 (30.08.2010)

Apple Mac OS X memory corruption

Memory corruption in Core Graphics on PDf files parsing. Applications: MacOS X 10.5, MacOS X 10.6 (29.08.2010)