Top Web Vulnerabilities

Top Five Web Application Vulnerabilities 4/28/08 - 5/11/08 12 May 08 02:28 PM | mep | 0 Comments

1) SAP Internet Transaction Server Multiple Cross-Site Scripting Vulnerabilities

SAP Internet Transaction Server is susceptible to multiple instances of Cross-Site Scripting. If exploited, these vulnerabilities could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. A solution is reported to be available in SAP note 1052053. Contact the vendor for further details.

http://www.securityfocus.com/bid/29103

2) Sun Java System Web Server Search Module Cross-Site Scripting Vulnerability

Sun Java System Web Server Search Module is susceptible to a Cross-Site Scripting vulnerability. If successfully exploited, this vulnerability could allow an attacker to steal confidential information and cookie-based authentication credentials, and possibly lead to execution of arbitrary code in the browser of an unsuspecting user. A fix has been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/29087

3) Sun Java System Directory Proxy Server Remote Unauthorized Access Vulnerability

Sun Java System Directory Proxy Server is susceptible to a remote unauthorized access vulnerability. An attacker can leverage this vulnerability to gain administrative access to the affected server. An advisory and fixes for this issue have been released. Contact the vendor for more details.

http://www.securityfocus.com/bid/28941/discuss

4) Sun Java System Application Server and Web Server JSP Information Disclosure Vulnerability

Sun Java System Application Server and Web Server are prone to an information-disclosure vulnerability. An attacker could leverage this issue to obtain sensitive information which could possibly be used to orchestrate more dangerous attacks. An advisory and updates which address this issue have been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/29088

5) Zen Cart 'keyword' parameter SQL Injection and Cross-Site Scripting Vulnerabilities

Zen Cart is susceptible to SQL Injection and Cross-Site Scripting vulnerabilities. If exploited, these vulnerabilities could lead to compromise of the application, the theft of confidential information and authentication credentials, or be utilized in conducting additional database attacks. A fix has not yet been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/29020

Top Five Web Application Vulnerabilities 4/14/08 - 4/27/08 28 April 08 04:08 PM | mep | 0 Comments

1) IBM Lotus Expeditor URI Handler Command Execution Vulnerability

IBM Lotus Expeditor is susceptible to a remote command-execution vulnerability because user-supplied input is not properly sanitized. Attackers who successfully exploit this issue can execute arbitrary commands in the context of victims who follow malicious URI's. A fix has not yet been released. Contact IBM for more information.

http://www.securityfocus.com/bid/28926

2) F5 Networks FirePass 4100 SSL VPN 'installControl.php3' Cross-Site Scripting Vulnerability

F5 Networks FirePass 4100 SSL VPN is susceptible to a Cross-Site Scripting vulnerability. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. An update which resolves this vulnerability has been released. Contact the vendor for additional details.

http://www.securityfocus.com/bid/28902

3) HP OpenView Network Node Manager Running Apache Multiple Vulnerabilities

HP OpenView Network Node Manager when running Apache is vulnerable to multiple vulnerabilities including Cross-Site Scripting and Denial-of Service attacks. If successfully exploited, these vulnerabilities could allow an attacker to steal confidential information and cookie-based authentication credentials, possibly lead to execution of arbitrary code in the browser of an unsuspecting users, and be used to deny access to legitimate users. Patches which resolve these issues have been released. Contact the vendor for more details.

http://www.securityfocus.com/archive/1/491026

4) Novell GroupWise HTML Injection and Denial-of-Service Vulnerabilities

Novell GroupWise is susceptible to HTML Injection and Denial-of-Service vulnerabilities. HTML Injection can be leveraged to add content into a web server’s response, which can then be used to steal cookie-based authentication credentials, execute arbitrary code in context of the site, or simply alter how the site appears. Denial-of-Service attacks can be exploited to crash the application and deny access to legitimate users. A fix has not yet been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/28944

5) RSA Authentication Agent for Web URI Redirection Vulnerability

RSA Authentication Agent for Web is susceptible to a remote URI-redirection vulnerability because inadequate data sanitization is performed on user-supplied input. Exploitation of this vulnerability could aid in phishing-style attacks. RSA Authentication Agent for Web 5.3.3.378 resolves this issue. Contact the vendor for specific upgrade information.

http://www.securityfocus.com/bid/28907

Top Five Web Application Vulnerabilities 3/31/08 - 4/13/08 14 April 08 05:16 PM | mep | 0 Comments

1) F5 BIG-IP Web Management Interface 'NEW_VALUE' Parameter Remote Code Injection Vulnerability

F5 BIG-IP Web Management Interface is susceptible to a remote code injection vulnerability. Attackers who successfully exploit this vulnerability could execute arbitrary code with the privileges of the user of the affected application. A fix has not yet been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/28639/

2) Cisco Unified Communication Manager Multiple Vulnerabilities

Cisco Unified Communication Manager is susceptible to multiple remote vulnerabilities including instances of SQL Injection, information disclosure, and unauthorized access. If exploited, these vulnerabilities could lead to compromise of the application, leveraged to gain unauthorized application access, or utilized to obtain sensitive information. A fix has not yet been released. Contact Cisco for further details.

http://www.securityfocus.com/bid/28690

3) Drupal Menu System Security Bypass Vulnerabilities

Drupal is susceptible to multiple security-bypass vulnerabilities via the menu system because the application fails to properly control access to certain pages. Successful exploitation would give an attacker access to sensitive information which could likely be utilized in orchestrating more damaging attacks. Updates which resolve these issues have been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/28714

4) Microsoft SharePoint Server Picture Source HTML Injection Vulnerability

Microsoft SharePoint Server is susceptible to an HTML Injection vulnerability. HTML Injection is used to add content into a web server’s response, which can then be used to steal cookie-based authentication credentials, execute arbitrary code in context of the site, or simply alter how the site appears. An attacker needs to utilize a user account with page editing privileges to successfully exploit this vulnerability. A fix has not yet been released. Contact Microsoft for additional details.

http://www.securityfocus.com/bid/28706

5) SAP NetWeaver Filesystem Feedbacks Cross-Site Scripting Vulnerability

SAP NetWeaver is susceptible to a Cross-Site Scripting vulnerability. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. Note that this issue can be resolved by activating 'Secure Editing' in the Portal. Contact the vendor for more information.
http://www.securityfocus.com/bid/28699

Top Five Web Application Vulnerabilities 3/17/08 - 3/30/08 01 April 08 05:03 PM | mep | 0 Comments

1) Webutil 'webutil.pl' Multiple Remote Command Execution Vulnerabilities

Webutil is susceptible to multiple command execution vulnerabilities which remote attackers can leverage to execute arbitrary commands. Successful exploitation can lead to a complete compromise of the affected application and underlying system. A fix has not yet been released. Contact the vendor for additional details.

http://www.securityfocus.com/bid/28393

2) IBM Rational ClearQuest Multiple Parameters Multiple Cross-Site Scripting Vulnerabilities

IBM Rational ClearQuest is susceptible to multiple instances of Cross-Site Scripting. If successfully exploited, these vulnerabilities could allow an attacker to steal confidential information and cookie-based authentication credentials, and possibly lead to execution of arbitrary code in the browser of an unsuspecting user. Patches which resolve these issues have been released. Contact IBM for further information.

http://www.securityfocus.com/bid/28296

3) Imperva SecureSphere Cross-Site Scripting Vulnerability

Imperva SecureSphere is susceptible to a Cross-Site Scripting vulnerability. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. An update which addresses this issue has been released. Contact the vendor for additional details.

http://www.securityfocus.com/bid/28279

4) Joomla! and Mambo Components Multiple SQL Injection Vulnerabilities

Multiple Joomla! and Mambo components are susceptible to SQL Injection vulnerabilities. SQL Injection can give an attacker full access to a backend database, and in certain circumstances can be utilized to take complete control of a system. No fixes have yet been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/28410

Top Five Web Application Vulnerabilities 3/3/08 - 3/16/08 17 March 08 04:52 PM | mep | 0 Comments

1) Dokeos Multiple Remote Code Execution and Cross-Site Scripting Vulnerabilities

Dokeos is susceptible to multiple remote code execution and Cross-Site Scripting vulnerabilities. Exploitation of these vulnerabilities could lead to a complete compromise of the affected application and underlying system, and also be used to steal cookie based authentication credentials. Dokeos 1.8.4 SP3 has been released to address these issues. Contact the vendor for further information.

http://www.securityfocus.com/bid/28121

2) Adobe ColdFusion Multiple Cross-Site Scripting Vulnerabilities

Adobe ColdFusion is susceptible to multiple instances of Cross-Site Scripting. If successfully exploited, these vulnerabilities could allow an attacker to steal confidential information and cookie-based authentication credentials, and possibly lead to execution of arbitrary code in the browser of an unsuspecting user. Adobe has released advisory APSB08-06 and APSB08-07 to address these issues. Contact the vendor for additional details.

http://www.securityfocus.com/bid/28205

3) F5 BIG-IP Web Management Interface Console HTML Injection Vulnerability

F5 BIG-IP is susceptible to an HTML Injection vulnerability. When exploited, this vulnerability will allow an attacker to execute arbitrary script code in the browser of an unsuspecting victim in context of the affected device. This could possibly lead to theft of cookie-based authentication credentials or be utilized to launch other attacks. A fix has not yet been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/28151

4) Adobe LiveCycle Workflow Management Login Page Cross-Site Scripting Vulnerability

Adobe LiveCycle Workflow is susceptible to a Cross-Site Scripting vulnerability. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. Adobe has released advisory APSB0-10 to address this issue. Contact the vendor for further details.

http://www.securityfocus.com/bid/28209/

5) Ruby WEBrick Remote Directory Traversal and Information Disclosure Vulnerabilities

Ruby WEBrick is susceptible to directory traversal and information disclosure vulnerabilities. Remote attackers can leverage these vulnerabilities to access the contents of arbitrary files, gathering information which will likely be utilized in orchestrating more dangerous attacks. Fixes which resolve these issues have been released. Contact the vendor for additional details.

http://www.securityfocus.com/bid/28123/

Top Five Web Application Vulnerabilities 2/18/2008 - 3/02/2008 03 March 08 05:21 PM | mep | 0 Comments

1) IBM Lotus QuickPlace 'Main.nsf' Cross-Site Scripting Vulnerability

IBM Lotus QuickPlace is susceptible to a Cross-Site Scripting vulnerability. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. A fix has not yet been released. Contact IBM for additional details.

http://www.securityfocus.com/bid/27871

2) PHP Nuke Multiple Modules SQL Injection

Multiple PHP Nuke modules contain SQL Injection vulnerabilities. Successful exploitation could give an attacker the means to access or modify backend database contents, or in some circumstances be utilized to take control of the server hosting the database. No fixes have yet to be released. Contact the vendor for further information.

http://www.securityfocus.com/bid/27863
http://www.securityfocus.com/bid/27879
http://www.securityfocus.com/bid/27894
http://www.securityfocus.com/bid/27897
http://www.securityfocus.com/bid/27909
http://www.securityfocus.com/bid/27912
http://www.securityfocus.com/bid/27886
http://www.securityfocus.com/bid/27932
http://www.securityfocus.com/bid/27930
http://www.securityfocus.com/bid/27930
http://www.securityfocus.com/bid/27930
http://www.securityfocus.com/bid/27952
http://www.securityfocus.com/bid/27958
http://www.securityfocus.com/bid/27955
http://www.securityfocus.com/bid/27957
http://www.securityfocus.com/bid/27980
http://www.securityfocus.com/bid/27991
http://www.securityfocus.com/bid/28030
http://www.securityfocus.com/bid/28063

3) Joomla! and Mambo Components Multiple SQL Injection Vulnerabilities

Multiple Joomla! and Mambo components are susceptible to SQL Injection vulnerabilities. SQL Injection can give an attacker full access to a backend database, and in certain circumstances can be utilized to take complete control of a system. No fixes have yet been released. Contact the vendor for more information.

4) Spyce Sample Scripts Multiple Input Validation Vulnerabilities

Spyce Sample Scripts are susceptible to multiple input validation vulnerabilities including Cross-Site Scripting and Path Disclosure. An attacker could possibly execute arbitrary script code in the browser of an unsuspecting user in context of the affected site, and could also retrieve the server's web root path. A fix has not yet been released. Contact the vendor for more details.

http://www.securityfocus.com/bid/27898

5) Drupal Multiple HTML Injection Vulnerabilities

Drupal is susceptible to multiple HTML Injection vulnerabilities. HTML Injection can be leveraged to add content into a web server’s response, which can then be used to steal cookie-based authentication credentials, execute arbitrary code in context of the site, or simply alter how the site appears. An update that addresses these issues has been released. Contact the vendor further details.

http://www.securityfocus.com/bid/28026

Top Five Web Application Vulnerabilities 2/4/2008 - 2/17/2008 19 February 08 04:43 PM | mep | 0 Comments

1) Microsoft Internet Information Services ASP Remote Code-Execution Vulnerability

IIS is susceptible to a remote code-execution vulnerability that can be exploited via malicious input to vulnerable ASP pages. Attackers who successfully exploit this vulnerability could execute arbitrary code in context of the Worker Process Identity, which has Network Services privileges by default. Security bulletins which resolve this issue have been released for both IIS 5.1 and 6.0. Contact Microsoft for additional details.

http://www.securityfocus.com/bid/27676/

2) WordPress 'wp-admin/options.php' Remote Code-Execution Vulnerability

WordPress is susceptible to a remote code-execution vulnerability due to a failure of the application to properly sanitize data. A remote attacker can leverage this vulnerability to execute arbitrary PHP code in context of the application, possibly leading to a complete compromise of the affected system. WordPress MU 1.3.2 has been released to correct this issue. Contact WordPress for further information.

http://www.securityfocus.com/bid/27633/

3) Cisco Unified Communications Manager 'key' Parameter SQL Injection Vulnerability

Cisco Unified Communications Manager is susceptible to a SQL Injection vulnerability. Successful exploitation could give an attacker the means to access or modify backend database contents, or in some circumstances be utilized to take control of the server hosting the database. An advisory which addresses this issue has been released. Contact Cisco for more information.

http://www.securityfocus.com/bid/27775

4) IBM Lotus Quickr Unspecified Cross-Site Scripting Vulnerability

IBM Lotus Quickr is susceptible to a Cross-Site Scripting vulnerability. Successful exploitation of Cross-Site Scripting could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. Fixes which address this issue have been released. Contact IBM for additional details.

http://www.securityfocus.com/bid/27840

5) Joomla! and Mambo Components Multiple SQL Injection Vulnerabilities

Multiple Joomla! and Mambo components are susceptible to SQL Injection vulnerabilities. SQL Injection can give an attacker full access to a backend database, and in certain circumstances can be utilized to take complete control of a system. No fixes have yet been released. Contact the vendor for more information.

Top Five Web Application Vulnerabilities 1/19/08 - 2/03/08 04 February 08 05:18 PM | mep | 0 Comments

1) Coppermine Photo Gallery Multiple Remote Command Execution Vulnerabilities

Coppermine Photo Gallery is susceptible to multiple remote command execution vulnerabilties. Remote attackers can exploit this vulnerability to execute arbitrary commands with the privileges of the affected application, possibly leading to compromise of the application and the underlying web server. Coppermine Photo Gallery 1.4.15 has been released to resolve these and other issues. Contact the vendor for additonal information.

http://www.securityfocus.com/bid/27512

2) PHP-Nuke Search Module 'sid' Parameter SQL Injection Vulnerability

PHP-Nuke is susceptible to a SQL Injection vulnerability. SQL Injection can allow an attacker full access to a backend database, and in certain circumstances can be utilized to take complete control of a system. A fix has not yet been released. Contact the vendor for further details.

http://www.securityfocus.com/bid/27408

3) Novell GroupWise WebAccess Multiple Cross-Site Scripting Vulnerabilities

Novell GroupWise WebAccess is susceptible to multiple instances of Cross-Site Scripting. If successful, Cross-Site Scripting vulnerabilities can be exploited to manipulate or steal cookies, create requests that can be mistaken for those of a valid user, compromise confidential information, or execute malicious code on end user systems. Fixes which address these issues have been released. Contact the vendor for more details.

http://www.securityfocus.com/bid/27582

4) WordPress Plug-ins Multiple Vulnerabilities

Several WordPress plug-ins are susceptible to vulnerabilities including SQL Injection and Cross-Site Scripting. If successfully exploited, these vulnerabilities could allow an attacker to steal confidential information and cookie-based authentication credentials, and possibly lead to execution of arbitrary code in the browser of an unsuspecting user. No upgrade or patch has yet been released to resolve these issues. Contact the vendor for additional information.

5) Drupal Modules Multiple Vulnerabilities

Several Drupal modules are susceptible to vulnerabilities including Authentication Bypass, Cross-Site Scripting, and HTML Injection. Successful exploitation can lead to escalation of privileges, alter how the site appears, steal authentication credentials, or execute malicious scripts in the browsers of unsuspecting users. Upgrades which resolve these issues have been released. Contact the vendor for further information.

http://www.securityfocus.com/bid/27545

http://www.securityfocus.com/bid/27544

http://www.securityfocus.com/bid/27543

http://www.securityfocus.com/bid/27444

http://www.securityfocus.com/bid/27436

Top Five Web Application Vulnerabilities 7/30/07 - 8/12/07 15 August 07 10:33 AM | mep | 0 Comments

1) Help Center Live Administration Multiple Security Bypass Vulnerabilities

Help Center Live is susceptible to multiple administration bypass security vulnerabilities. An attacker who leverages these vulnerabilities could gain unauthorized access to administrative pages and compromise the vulnerable application. A fix has not yet been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/25225

2) FrontAccounting Config.PHP Remote File Include Vulnerability

FrontAccounting is susceptible to a remote file-include vulnerability. An attacker could conceivably exploit this vulnerability to compromise the application and underlying system. Other attacks are likely possible. A fix has not yet been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/25229

3) Sun Java System Web Server Multiple HTTP Redirect Vulnerabilities

Sun Java System Web Server is susceptible to multiple HTTP redirect vulnerabilities including HTTP-response splitting and HTTP-header injection. Exploitation could give an attacker the means to inject arbitrary cookie attributes into a session cookie and launch attacks on active web sessions, or to misrepresent how web content is served, cached, or interpreted. Service packs and updates have been released to address these issues. Contact the vendor for further details.

http://www.securityfocus.com/bid/25190/

4) Apache Tomcat Error Message Reporting Cross-Site Scripting Vulnerability

Apache Tomcat is susceptible to a Cross-Site Scripting vulnerability. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. An update which addresses this issue has been released. Contact the vendor for additional details.

http://www.securityfocus.com/bid/25174

5) Novell GroupWise WebAccess User.Id Parameter Cross-Site Scripting Vulnerability

Novell GroupWise WebAccess is susceptible to a Cross-Site Scripting vulnerability. If successful, Cross-Site Scripting vulnerabilities can be exploited to manipulate or steal cookies, create requests that can be mistaken for those of a valid user, compromise confidential information, or execute malicious code on end user systems. A fix has not yet been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/25126

Top Five Web Application Vulnerabilities 7/14/07 - 7/29/07 31 July 07 10:34 AM | mep | 0 Comments

1) Joomla! Search Component Remote Command Execution Vulnerability

Joomla is susceptible to a remote command execution vulnerability. Remote attackers can exploit this vulnerability to execute arbitrary commands with the privileges of the affected application, possibly leading to compromise of the application and the underlying web server. Other attacks are also likely. A fix has been released. Contact the vendor for further details.

http://www.securityfocus.com/bid/24997

2) Sun Java System Application Server JSP Source Code Disclosure Vulnerability

Sun Java System Application Server on Microsoft Windows is susceptible to a remote vulnerability that could allow attackers to obtain sensitive JSP source code, which would likely aid in conducting more dangerous attacks. An alert and fixes which address this issue have been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/25058

3) Trend Micro OfficeScan Management Console Authentication Bypass Vulnerability

Trend Micro OfficeScan is susceptible to an authentication bypass vulnerability. An attacker could exploit this vulnerability to gain unauthorized access to the web-based management console. Successful exploitation will compromise the application. Fixes which address this issue have been released. Contact the vendor for further information.

http://www.securityfocus.com/bid/24935/

4) Apache Tomcat SendMailServlet Cross-Site Scripting Vulnerability

Apache Tomcat is susceptible to a Cross-Site Scripting vulnerability. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. Note that this is an example application, and not intended for production environments. This issue has been resolved in Apache Tomcat 4.1.HEAD. Contact the vendor for more information.

http://www.securityfocus.com/bid/24999/

5) PhpHostBot Authorize.PHP Remote File Include Vulnerability

PhpHostBot is susceptible to a remote file include vulnerability. An attacker could conceivably exploit this vulnerability to compromise the application and underlying system. Other attacks are likely possible. A fix has not yet been released. Contact the vendor for additional details.

http://www.securityfocus.com/bid/25073/

Top Five Web Application Vulnerabilities 7/02/07 - 7/13/07 13 July 07 03:48 PM | mep | 0 Comments

1) Fujitsu ServerView DBASCIIAccess Remote Command Execution Vulnerability

Fujitsu ServerView is susceptible to a remote command execution vulnerability. A remote attacker can leverage this vulnerability to execute arbitrary code in context of the application, possibly leading to a complete compromise of the affected system. Fixes which resolve this issue have been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/24762/

2) Microsoft .Net Framework Multiple Null Byte Injection Vulnerabilities

Microsoft .NET Framework is susceptible to multiple NULL-byte injection vulnerabilities. Attackers can exploit these issues to gain access to sensitive information that would likely aid in conducting further attacks. Updates which resolve these issues have been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/24791

3) IBM Proventia Sensor Appliance Multiple Input Validation Vulnerabilities

The IBM Proventia Sensor appliance is susceptible to multiple input validation vulnerabilities including Cross-Site Scripting and several remote file-include issues. An attacker can leverage these issues to obtain cookie-based authentication credentials, execute arbitrary server-side script code on an affected device in the context of the webserver process, or launch other attacks. A fix has not yet been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/24864/

4) Hitachi JP1/NETM/DM Manager Products Unspecified SQL Injection Vulnerability

Multiple Hitachi JP1/NETM/DM Manager products are susceptible to a SQL Injection vulnerability. When successfully exploited, SQL Injection can allow an attacker full access to a backend database, and in certain circumstances can be utilized to take complete control of a system. Updates which resolve this issue have been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/24903

5) JP1/HiCommand Series products Cross-Site Scripting Vulnerability

JP1/HiCommand Series Products are susceptible to a Cross-Site Scripting vulnerability. If successful, Cross-Site Scripting vulnerabilities can be exploited to manipulate or steal cookies, create requests that can be mistaken for those of a valid user, compromise confidential information, or execute malicious code on end user systems. Fixes which resolve this issue have been released. Contact the vendor for further details.

http://www.securityfocus.com/bid/24797

Top Five Web Application Vulnerabilities 6/18/07 - 7/01/07 03 July 07 01:10 PM | mep | 0 Comments

1) Sun Java Web Start Arbitrary File Overwrite Privilege Escalation Vulnerability

Java Web Start is susceptible to a file overwrite privilege escalation vulnerability that can allow an attacker to execute arbitrary code with the privileges of the user running the application. This affects client systems, and not servers. An advisory and fixes which address this issue have been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/24695

2) Trend Micro OfficeScan Server CGI Modules Multiple Vulnerabilities

Trend Micro OfficeScan Server is susceptible to multiple security vulnerabilities in its web-based administration interface. These vulnerabilities can be used to bypass authentication, and to execute arbitrary code with administrative privileges within the context of the OfficeScan Server application. Complete server compromise might also be possible. A patch which resolves this issues has been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/24641

3) Apache Mod_Mem_Cache Information Disclosure Vulnerability

Apache is susceptible to a remote path-information-disclosure vulnerability. Attackers can exploit this issue to gain information which can be utilized in conducting more damaging attacks. A fix has not yet been released. Contact the vendor for additional details.

http://www.securityfocus.com/bid/24553

4) SAP Internet Communication Framework Multiple Cross-Site Scripting Vulnerabilities

SAP Internet Communication Framework is susceptible to multiple instances of Cross-Site Scripting. If successfully exploited, these vulnerabilities could allow an attacker to steal confidential information and cookie-based authentication credentials, and possibly lead to execution of arbitrary code in the browser of an unsuspecting user. Fixes which resolve these issues have been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/24674/

5) Oracle Rapid Install Web Server Secondary Login Page Cross Site Scripting Vulnerability

Oracle Rapid Install Web Server is susceptible to a Cross-Site Scripting vulnerability. If successful, Cross-Site Scripting can be exploited to manipulate or steal cookies, create requests that can be mistaken for those of a valid user, compromise confidential information, or execute malicious code on end user systems. A fix has not yet been released. Contact the vendor for further details.

http://www.securityfocus.com/bid/24697

Top Five Web Application Vulnerabilities 6/04/07 - 6/17/07 20 June 07 02:09 PM | mep | 0 Comments

1) Wordpress XMLRPC.PHP SQL Injection Vulnerability

Wordpress is susceptible to a SQL Injection vulnerability. An attacker could leverage this vulnerability to execute script code in context of the affected site, steal cookie based authentication credentials, control how the site is rendered, or conduct other attacks. An upgrade which resolves this issue has been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/24344/

2 Apache Tomcat Manager and Host Manager Upload Script Cross-Site Scripting Vulnerability

Apache Tomcat Manager and Host Manager are susceptible to a Cross-Site Scripting vulnerability. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. A fix has not yet been released. Contact the vendor for additional details.

http://www.securityfocus.com/bid/24475

3) 3Com OfficeConnect Secure Router Tk Parameter Cross-Site Scripting Vulnerability

OfficeConnect Secure Router is susceptible to a Cross-Site Scripting vulnerability. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. A solution has not yet been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/24374/

4) HP System Management Homepage Remote Privilege Escalation Vulnerability

HP System Management Homepage is susceptible to a privilege escalation vulnerability. An attacker could leverage this issue to gain “superuser” access to the affected application and possibly launch additional attacks. Upgrades which resolve this issue have been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/24486

5) Sun Java System Directory Server Attributes List Information Disclosure Vulnerability

Sun Java System Directory Server is susceptible to an information disclosure vulnerability that can be exploited to extract potentially sensitive information and result in a loss of confidentially. This information could also be utilized when orchestrating more dangerous attacks. An advisory and fixes which address this issue have been released. Contact the vendor for further details.

http://www.securityfocus.com/bid/24467/

Top Five Web Application Vulnerabilities 5/21/07 - 6/03/07 05 June 07 01:39 PM | mep | 0 Comments

1) Inout Metasearch Engine Create_Engine.PHP Remote PHP Code Execution Vulnerability

The Inout Metasearch Engine is susceptible to a remote PHP code execution vulnerability because the application improperly sanitizes user input. Exploitation of this vulnerability could lead to a complete compromise of the affected application and underlying system as well as be utilized in perpetrating other attacks. A fix has not yet been released. Contact the vendor for further details.

http://www.securityfocus.com/bid/24189/

2) Ruby on Rails To_JSON Script Injection Vulnerability

Ruby on Rails is susceptible to a JSON script injection vulnerability. An attacker could leverage this vulnerability to execute script code in context of the affected site, steal cookie based authentication credentials, control how the site is rendered, or conduct other attacks. A fix has not yet been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/24161

3) Wordpress Admin-Ajax.PHP SQL Injection Vulnerability

Wordpress is susceptible to a SQL Injection vulnerability. If exploited, SQL injection can give an attacker the means to access backend database contents, remotely execute system commands, or in some circumstances take control of the server hosting the database. A fix has not yet been released. Contact the vendor for more details.

http://www.securityfocus.com/bid/24076

4) Hitachi Collaboration Portal Products Cross-Site Scripting Vulnerabilities

Hitachi Collaboration Portal Products are vulnerable to multiple instances of Cross-Site Scripting. If exploited, these vulnerabilities could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. An update which resolves these issues has been released. Contact the vendor for further information.

http://www.securityfocus.com/bid/24263/

5) Cisco CallManager Search Form Cross Site Scripting Vulnerability

Cisco CallManager is susceptible to a Cross-Site Scripting vulnerability. If successful, Cross-Site Scripting vulnerabilities can be exploited to manipulate or steal cookies, create requests that can be mistaken for those of a valid user, compromise confidential information, or execute malicious code on end user systems. Updates which resolve this issue have been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/24119/

Top Five Web Application Vulnerabilities 5/07/07 - 5/20/07 22 May 07 10:52 AM | mep | 0 Comments

1) Multiple BEA WebLogic Applications Multiple Vulnerabilities

Multiple BEA WebLogic applications are susceptible to a number of vulnerabilities including Cross-Site Scripting, HTML injection, information disclosure, denial-of-service and brute force attacks, directory traversal, and security bypass issues. Successful attacks could lead to a complete compromise of the affected system, theft of authentication credentials, or disclosure of information which could be utilized in conducting more dangerous attacks. A patch which resolves these issues has been released. Contact the vendor for additional information.

http://www.securityfocus.com/bid/23979

2) Apache Tomcat Documentation Sample Application Multiple Cross-Site Scripting Vulnerabilities

The Apache Tomcat documentation web application includes a sample application which is prone to multiple instances of Cross-Site Scripting. If successfully exploited, these vulnerabilities could allow an attacker to steal confidential information and cookie-based authentication credentials, and possibly lead to execution of arbitrary code in the browser of an unsuspecting user. Fixes which address these issues have been released. Contact the vendor for further details.

http://www.securityfocus.com/bid/24058

3) Microsoft SharePoint Server Cross-Site Scripting Vulnerability

Microsoft SharePoint Server is susceptible to a Cross-Site Scripting vulnerability. If successful, Cross-Site Scripting vulnerabilities can be exploited to manipulate or steal cookies, create requests that can be mistaken for those of a valid user, compromise confidential information, or execute malicious code on end user systems. Although unverified as of publication, it is possible that this issue only affects the SharePoint test server. A fix has not yet been released. Contact the vendor for more information.

http://www.securityfocus.com/bid/23832

4) Novell GroupWise Mobile Server Multiple Vulnerabilities

Novell GroupWise Mobile Server when powered by Nokia Intellisync Mobile Suite is susceptible to multiple vulnerabilities including Cross-Site Scripting and denial-of-service attacks. Successful exploitation may give an attacker the means to obtain sensitive information including authentication credentials or deny access to legitimate users. A fix has not yet been released. Contact the vendor for additional details.

http://www.securityfocus.com/bid/23889

5) SquirrelMail Multiple Cross Site Scripting Vulnerabilities

SquirrelMail is susceptible to multiple Cross-Site Scripting vulnerabilities. If exploited, this vulnerability could give an attacker the means to perform account hijacking, execute malicious scripts, or steal proprietary information. A fix which addresses these issues has been released. Contact the vendor for further information.

http://www.securityfocus.com/bid/23910

Top Web Vulnerabilities

Search

This Blog

Tags

Navigation

Archives

Syndication