|
|
Written by Staff
|
|
Wednesday, 04 June 2008 |
I. BACKGROUND
Sun Java System Active Server Pages is a multi-platform ASP application
server. It provides provides ASP (Active Server Pages) functionality to
a web server. More information is available at the following URL.
http://www.sun.com/software/chilisoft/index.xml
II. DESCRIPTION
Remote exploitation of a buffer overflow vulnerability in Sun
Microsystem's Java System Active Server Pages allows attackers to
execute arbitrary code in the context of the ASP server...
Write Comment (0 Comments) |
|
Read more...
|
|
Written by Staff
|
|
Wednesday, 04 June 2008 |
I. BACKGROUND
Sun Java System Active Server Pages is a multi-platform ASP application
server. It provides provides ASP (Active Server Pages) functionality to
a web server. More information is available at the following URL.
http://www.sun.com/software/chilisoft/index.xml
II. DESCRIPTION
Remote exploitation of multiple command injection vulnerabilities in Sun
Microsystem's Java System Active Server Pages allows attackers to
execute arbitrary code with root privileges.
These vulnerabilities exist within several ASP applications that execute
shell commands. The problem lies in the fact that these applications do
not filter or escape the parameters passed to these commands. By
inserting shell meta-characters into an HTTP request, an attacker is
able to execute arbitrary shell commands...
Write Comment (0 Comments) |
|
Read more...
|
|
Written by Staff
|
|
Tuesday, 25 March 2008 |
Date Reported: 24 Mar 2008
Affected Packages:serendipity
Vulnerable: Yes
Security database references: In the Debian bugtracking system: Bug 469667. In the Bugtraq database (at SecurityFocus): BugTraq ID 28298. In Mitre's CVE dictionary: CVE-2007-6205, CVE-2008-0124.
- More information:
Peter Hüwe and Hanno Böck discovered that Serendipity, a weblog manager,
did not properly sanitise input to several scripts which allowed for
cross site scripting.
For the stable distribution (etch), this problem has been fixed in version
1.0.4-1+etch1.
The old stable distribution (sarge) does not contain a serendipity package.
For the unstable distribution (sid), this problem has been fixed in
version 1.3-1.
We recommend that you upgrade your serendipity package...
Write Comment (0 Comments) |
|
Read more...
|
|
Written by Staff
|
|
Tuesday, 25 March 2008 |
Date Reported: 24 Mar 2008- Affected Packages:debian-goodies
- Vulnerable:Yes
- Security database references: In the Debian bugtracking system: Bug 440411. In Mitre's CVE dictionary: CVE-2007-3912.
- More information:
Thomas de Grenier de Latour discovered that the checkrestart tool in the
debian-goodies suite of utilities, allowed local users to gain privileges
via shell metacharacters in the name of the executable file for a running
process.
For the stable distribution (etch), this problem has been fixed in
version 0.27+etch1.
For the old stable distribution (sarge), this problem has been fixed in
version 0.24+sarge1.
For the unstable distribution (sid), this problem has been fixed in
version 0.34.
We recommend that you upgrade your debian-goodies package....
Write Comment (0 Comments) |
|
Read more...
|
|
Written by Staff
|
|
Tuesday, 25 March 2008 |
|
Minded Security Labs: Advisory #MSA01240108
Microsoft Internet Explorer "Transfer-Encoding: chunked" allows Request
Splitting/Smuggling.
Tested Versions: Internet Explorer 7.0.5730.11
Tested OS: XP Professional SP2 Italian
Minded Security ReferenceID: MSA01240108
Credits: Discovery by
Stefano Di Paola of Minded Security
stefano.dipaola [_at_] mindedsecurity.com
Severity: Medium/High
Summary
Internet Explorer 7 allows setting of header "Transfer Encoding:
chunked" in setRequestHeader exposing the browser to Http Request Splitting/Smuggling attacks...
Write Comment (0 Comments) |
|
Read more...
|
|
|
<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
|
| Results 31 - 45 of 9522 |
ITsec Advisories 
