http://blog.cenzic.com/public/blog/202612Latest web application vulnerabilities integrated into the Cenzic product suite. <p>This blog features the latest vulnerabilities in web / website applications (custom, commercial, and open-source) that have been integrated into the Cenzic's website security product suite on a weekly basis. These web application vulnerabilities include cross site scripting, buffer overflow, path or directory traversal, SQL injection, HTTP response splitting, and other workflow types.</p> en-usCopyright (C) 2009 Cenzic, Inc--All Rights Reserved -- This channel is part of the Cenzic Security Blog blogsite--Powered by MyST Blogsite®.Thu, 01 May 2008 13:00:50 -0400Fri, 05 Mar 2010 14:18:32 -0500MySmartChannels V3.0 (MyST Web Service Platform V6.00.0828)http://blog.cenzic.com/styles/blogsite/Cenzic/images/rss.jpg3188http://blog.cenzic.com/public/blog/202612This blogsite contains information on all security topics ranging from web application security, security software, vulnerabilities, enterprise security, penetration testing and hacker news. Cross site request forgeryCSRFCross site ScriptingXSSBuffer overflowSession managementSession ID randomnessPrivilege escalationSession hijackingSQL Injection http://blog.cenzic.com/public/item/252094Weekly product update – Cenzic detects a PHP Validation Restriction-Bypass Vulnerability <p>As of March 5, 2010 Cenzic now detects a <a title="PHP Validation Restriction-Bypass Vulnerability" href="http://www.securityfocus.com/bid/38431/info" target="_blank"><strong><u>PHP 'tempnam()' 'safe_mode' Validation Restriction-Bypass Vulnerability</u></strong></a> (<strong>BugtraqID 38431</strong>).&nbsp; Successful exploits allow attackers to access files in unauthorized locations or create files in any writable directory. This vulnerability is an issue in shared-hosting configurations where multiple users can create and execute arbitrary PHP script code; the 'safe_mode' restrictions are assumed to isolate users from each other.&nbsp; PHP 5.2.12 and prior versions are affected.</p> <p><strong>Background on Cenzic&rsquo;s SmartAttacks</strong><br />Every week, Cenzic&rsquo;s suite of products is updated with the latest vulnerabilities (custom, commercial, and open-source) to better detect &quot;holes&quot; in Web applications.&nbsp; These Web application vulnerabilities include (but not limited to) cross site scripting, buffer overflow, path or directory traversal, SQL injection, HTTP response splitting, and other workflow types.</p> <p>by<br /><strong>Erin Swanson<br /></strong><a href="mailto:Eswanson@cenzic.com"><strong><u>Eswanson@cenzic.com</u></strong></a></p><h3>See Also</h3><ul><li><a href="http://www.securityfocus.com/bid/38431/info" target=%quot;_blank%quot;>PHP Validation Restriction-Bypass Vulnerability</a><br/>Learn more about this vulnerability on Security Focus</li></ul>http://blog.cenzic.com/public/item/252094Fri, 05 Mar 2010 12:21:58 -0500 PHP vulnerability http://blog.cenzic.com/public/item/251823Weekly product update – Cenzic detects a Sun Java System App Server HTTP TRACE Information Disclosure Vulnerability <p>As of February 26, 2010 Cenzic now detects a <a title="Sun Java System App Server HTTP TRACE Information Disclosure Vulnerability" href="http://www.securityfocus.com/bid/37995/info" target="_blank"><strong><u>Sun Java System App Server HTTP TRACE Information Disclosure Vulnerability</u></strong></a> (<strong>BugtraqID 37995</strong>).&nbsp; The Sun Java System Application Server is prone to a remote information-disclosure vulnerability.&nbsp; Attackers can exploit this issue to obtain potentially sensitive information that can aid in further attacks.</p> <p><strong>Background on Cenzic&rsquo;s SmartAttacks</strong><br />Every week, Cenzic&rsquo;s suite of products is updated with the latest vulnerabilities (custom, commercial, and open-source) to better detect &quot;holes&quot; in Web applications.&nbsp; These Web application vulnerabilities include (but not limited to) cross site scripting, buffer overflow, path or directory traversal, SQL injection, HTTP response splitting, and other workflow types.</p> <p>by<br /><strong>Erin Swanson<br /></strong><a href="mailto:Eswanson@cenzic.com"><strong><u>Eswanson@cenzic.com</u></strong></a></p><h3>See Also</h3><ul><li><a href="http://www.securityfocus.com/bid/37995/info" target=%quot;_blank%quot;>Sun Java System App Server HTTP TRACE Information Disclosure Vulnerability</a><br/>Learn more about this vulnerability on Security Focus</li></ul>http://blog.cenzic.com/public/item/251823Fri, 26 Feb 2010 12:55:14 -0500 information disclosure vulnerability http://blog.cenzic.com/public/item/251422Weekly product update – Cenzic detects a Sun Java System Web Server Denial Of Service Vulnerability<p>As of February 19, 2010 Cenzic now detects a <a title="Suna Java DOS Vulnerability" href="http://www.securityfocus.com/bid/37909/info" target="_blank"><u><strong>Sun Java System Web Server 'admin' Server Denial of Service Vulnerability</strong></u></a>&nbsp;(<strong>BugtraqID 37909</strong>).&nbsp; An attacker can exploit this issue to crash the effected application, denying service to legitimate users.&nbsp; Sun Java System Web Server 7.0 Update 6 is affected; other versions may also be vulnerable.</p> <p><strong>Background on Cenzic&rsquo;s SmartAttacks</strong><br />Every week, Cenzic&rsquo;s suite of products is updated with the latest vulnerabilities (custom, commercial, and open-source) to better detect &quot;holes&quot; in Web applications.&nbsp; These Web application vulnerabilities include (but not limited to) cross site scripting, buffer overflow, path or directory traversal, SQL injection, HTTP response splitting, and other workflow types.</p> <p>by<br /><strong>Erin Swanson<br /></strong><a href="mailto:Eswanson@cenzic.com"><strong><u>Eswanson@cenzic.com</u></strong></a></p><h3>See Also</h3><ul><li><a href="http://www.securityfocus.com/bid/37909/info" target=%quot;_blank%quot;>Sun Java System Web Server 'admin' Server Denial of Service Vulnerability</a><br/>Learn more about this vulnerability on Security Focus</li></ul>http://blog.cenzic.com/public/item/251422Fri, 19 Feb 2010 21:13:41 -0500 denial of service vulnerabilitySun http://blog.cenzic.com/public/item/250174Weekly product update – Cenzic detects an IBM WAS Security Bypass Vulnerability<p>As of February 12, 2010 Cenzic now detects an <a title="IBM WAS Security Bypass Vulnerability" href="http://www.securityfocus.com/bid/38122/info" target="_blank"><strong><u>IBM WebSphere Application Server 'Requires SSL' Option Security Bypass Vulnerability</u></strong></a> (<strong>BugtraqID 38122</strong>).&nbsp; IBM WebSphere Application Server (WAS) is prone to a security-bypass vulnerability.&nbsp; Successful exploits allow attackers to bypass certain security restrictions, which may lead to other attacks.&nbsp; This issue affects WAS 7.0 through 7.0.0.8.</p> <p><strong>Background on Cenzic&rsquo;s SmartAttacks</strong><br />Every week, Cenzic&rsquo;s suite of products is updated with the latest vulnerabilities (custom, commercial, and open-source) to better detect &quot;holes&quot; in Web applications.&nbsp; These Web application vulnerabilities include (but not limited to) cross site scripting, buffer overflow, path or directory traversal, SQL injection, HTTP response splitting, and other workflow types.</p> <p>Have a great 3-day weekend everyone!</p> <p>by<br /><strong>Erin Swanson<br /></strong><a href="mailto:Eswanson@cenzic.com"><strong><u>Eswanson@cenzic.com</u></strong></a></p><h3>See Also</h3><ul><li><a href="http://www.securityfocus.com/bid/38122/info" target=%quot;_blank%quot;>IBM WebSphere Application Server 'Requires SSL' Option Security Bypass Vulnerability</a><br/>Learn more about this vulnerability on Security Focus</li></ul>http://blog.cenzic.com/public/item/250174Fri, 12 Feb 2010 18:24:36 -0500 IBM http://blog.cenzic.com/public/item/249608Weekly product update – Cenzic detects an Apache Integer Overflow Vulnerability<p>As of February 5, 2010 Cenzic now detects an <a title="Apache Integer Overflow Vulnerability" href="http://www.securityfocus.com/bid/37966/info" target="_blank"><strong><u>Apache 1.3 mod_proxy HTTP Chunked Encoding Integer Overflow Vulnerability</u></strong></a> (<strong>BugtraqID 37966</strong>).&nbsp; An attacker can exploit&nbsp;the Apache remote integer overflow vulnerability&nbsp;and execute arbitrary code.&nbsp; Successful exploits will compromise affected computers.&nbsp; Failed exploit attempts will result in a denial-of-service condition.&nbsp; Note that this issue affects platforms on which 'sizeof(int)' is less than 'sizeof(long)'.&nbsp; In particular, this occurs on some 64-bit architectures.&nbsp; Versions prior to Apache 1.3.42 are vulnerable.<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <br /><strong>Background on Cenzic&rsquo;s SmartAttacks</strong><br />Every week, Cenzic&rsquo;s suite of products is updated with the latest vulnerabilities (custom, commercial, and open-source) to better detect &quot;holes&quot; in Web applications.&nbsp; These Web application vulnerabilities include (but not limited to) cross site scripting, buffer overflow, path or directory traversal, SQL injection, HTTP response splitting, and other workflow types.</p> <p>by<br /><strong>Erin Swanson<br /></strong><a href="mailto:Eswanson@cenzic.com"><strong><u>Eswanson@cenzic.com</u></strong></a></p><h3>See Also</h3><ul><li><a href="http://www.securityfocus.com/bid/37966/info" target=%quot;_blank%quot;>Apache 1.3 mod_proxy HTTP Chunked Encoding Integer Overflow Vulnerability</a><br/>Learn more about this vulnerability on Security Focus</li></ul>http://blog.cenzic.com/public/item/249608Fri, 05 Feb 2010 15:49:36 -0500 apache vulnerability