CA Technologies Support is alerting customers to potential risks with CA Single Sign-On (CA SSO), formerly known as CA SiteMinder. Michael Brooks of BishopFox alerted CA to vulnerabilities that can allow a remote attacker to cause a denial of service or possibly gain sensitive information. CA has fixes that address the vulnerabilities.
e4d264a08af7ea40239a2e704d5c538492c6b233c83ff5f9941ca85ac6a5f151This is a whitepaper is called Bypassing Microsoft's Internet Explorer Cross Site Scripting Filter.
1d5e74f1e5da2f90ef88920e1f7b0170ec0523060a97714408048591e6e8d1f9Using the attacks in this paper allows you to bypass all of PHPIDS's rule sets, which defeats all protection PHPIDS can provide. Furthermore, on a default install of PHPIDS the log file can be used to drop a PHP backdoor. This can use PHPIDS as a vital steping stone in turning an LFI vulnerability into remote code execution. The end result is that use of PHPIDS 0.6.5 can make you less secure. All of these issues have been fixed in version 0.7.
4e80f010f2e100b6cc954b44c4b4a7f65f2ce4d15ff9f32967990f6eb5333cabYaws Wiki version 1.88-1 suffers from a cross site scripting vulnerability.
1f374675ae48d1dc0f7ffc30211d4eb74f2db13dd83c8891eb148daf6def0fffMajordomo2 versions 20110121 and below suffer from a directory traversal vulnerability.
a03c592e69350b16a93f9e9d471931b2f2bb19ca8569287d69b3f7af51ae46c6Pligg version 1.1.2 suffers from cross site scripting and remote SQL injection vulnerabilities.
a4b977de49aa1f010340248f34dafceb8357165d75c9d7d5b3a405ab75de0860OpenClassifieds version 1.7.0.3 chained exploit that leverages CAPTCHA bypass, remote SQL injection, and persistent cross site scripting on Frontpage.
6821ebbc330e3b9f6d23a296ea9c5198596f11f20095f0d1a2423f3880e93a21GetSimple CMS versions 2.01 and 2.02 suffers from an administrative credential disclosure vulnerability.
4f2cab67a00184623c4601b895f14d993c995f4f22d02cbed31a60189e9fcd95PHPVidz version 0.9.5 suffers from a remote database disclosure vulnerability that provides the administrative password.
13afc380fbe2f485708f0b5b58c5ceb90752f8a4515388259f15713d30026452PHP-Nuke versions 7.0, 8.1 and 8.1.35 wormable remote code execution exploit.
709a6c983caf633169b35361a482b76b0516defa5dcf6ea97d1514615379d27bcTorrent version 1.3.4 and dTorrent version 3.3.2 buffer overflow exploit that creates a malicious .torrent file.
0cabf0dc05b816f20a1c1c32fd253540eca55c949086c52a7967e4ace6f0749fCross site request forgery exploit for the Zoom VoIP Phone Adapter ATA1+1.
b7a879af0e63dfc674bbe105d6e012812a973586e3a3408e57c389415d5f7ed3The D-Link VoIP Phone Adapter suffers from cross site request forgery and cross site scripting vulnerabilities.
c4e3b913ff8a3c1893e65e9fa06fdd4a1a81f7006e219e1c4da73116200e008eThe Profense Web Application Firewall version 2.6.2 suffers from cross site request forgery and cross site scripting vulnerabilities.
e2a80022e6d97b0ffaba3c466cf310edea2d3ed7f1509bfd3a56e0f4ec83d8d6The ManageEngine Firewall Analyzer version 5 suffers from cross site request forgery and cross site scripting vulnerabilities.
7897aa4279f91b85b886624aad78a74b4f657e1ac4d19971e1fa69bcc7279628Pligg version 9.9.5 cross site request forgery protection bypass and captcha bypass exploits.
05b604f400a79dfbb253f411cc153b0e6fcbbe1b7f206be771ad35f433e998a6Coppermine Photo Gallery version 1.4.19 suffers from a remote PHP file upload vulnerability.
b34c883c7280e4986196f02cc4c43ed2172a37b9cf67b47279be752c4a0556d3WOW - Web On Windows Active-X control version 2 remote code execution exploit.
8a62e6e8ee1b220696af9d8e99fad8c546353389727e07afaec40abe37633df7PHPepperShop version 1.4 suffers from four reflective cross site scripting vulnerabilities.
59d7d0c55a6e204217214485974834d11f9822f2250e9ffc6eb282478cf6ebb7PrestaShop version 1.1.0.3 suffers from a cross site scripting vulnerability.
54da5e1958764afe41b5ce67562353b39442f87ef11574611cc5b569e748c4f9phpMyAdmin version 3.1.0 suffers from a SQL injection vulnerability that can be leveraged via a cross site request forgery vulnerability.
6fea7c89f574af0d28b9bebdb2cdd757f68eb0587fa6b37c18ae7ac1c782cfd5Simple Directory Listing version 2.1 beta 1 suffers from a cross site file upload vulnerability.
d41b2657c76cd59cd7b128d92c25922e04bdfc553a395a9b214d7bc493cb743bXAMPP version 1.6.8 cross site request forgery exploit that changes the administrative password.
ec3a73d7d95b2c2beed4df05ae39dcd55297c2a015022002311391168d66da31DD-WRT version 24-sp1 cross site request forgery exploit that lets you execute code as root.
ea1750995b85d3fb72b396b9c3ebcc78250d8ea8531d28a92405edb81be28e87Tool that demonstrates the breaking of Simple Machine Forum's audio CAPTCHA.
4f20ba1d9a129152b8734b2e97bf6cddea6a9ca57ba17b3256a30b29ccdcf527
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed