U.S. Flag Official website of the Department of Homeland Security

Bulletin (SB10-200)

Vulnerability Summary for the Week of July 12, 2010

Original release date: July 19, 2010 | Last revised: November 06, 2012

The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information.

The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

  • High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0

  • Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9

  • Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9

Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.

High Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
2daybiz -- custom_t-shirt_design_script
Multiple SQL injection vulnerabilities in 2daybiz Custom T-Shirt Design Script allow remote attackers to execute arbitrary SQL commands via the (1) sbid parameter to products_details.php, (2) pid parameter to products/products.php, and (3) designid parameter to designview.php. 2010-07-12 7.5 CVE-2010-2691
XF
VUPEN
BID
MISC
EXPLOIT-DB
SECUNIA
OSVDB
OSVDB
OSVDB
customerparadigm -- pagedirector_cms
SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the sub_catid parameter. 2010-07-12 7.5 CVE-2010-2683
BID
EXPLOIT-DB
SECUNIA
MISC
OSVDB
customerparadigm -- pagedirector_cms
SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter. 2010-07-12 7.5 CVE-2010-2684
XF
VUPEN
BID
EXPLOIT-DB
SECUNIA
MISC
OSVDB
customerparadigm -- pagedirector_cms
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attacks to bypass intended restrictions and add administrative users via a direct request. 2010-07-12 7.5 CVE-2010-2685
VUPEN
OSVDB
EXPLOIT-DB
SECUNIA
MISC
edgephp -- clickbank_affiliate_marketplace_script
SQL injection vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script (CBQuick) allows remote attackers to execute arbitrary SQL commands via the search parameter. 2010-07-12 7.5 CVE-2010-2699
VUPEN
BID
EXPLOIT-DB
epicgames -- postal_2
Buffer overflow in the UGameEngine::UpdateConnectingMessage function in the Unreal engine 1, 2, and 2.5, as used in multiple games including Unreal Tournament 2004, Unreal tournament 2003, Postal 2, Raven Shield, and SWAT4, when downloads are enabled, allows remote attackers to execute arbitrary code via a long LEVEL field in a WELCOME response to a download request. 2010-07-12 9.3 CVE-2010-2702
XF
SECUNIA
OSVDB
MISC
MISC
esoftpro -- online_guestbook_pro
SQL injection vulnerability in ogp_show.php in Online Guestbook Pro allows remote attackers to execute arbitrary SQL commands via the display parameter. 2010-07-12 7.5 CVE-2009-4935
BID
fathsoft -- fathftp
Multiple buffer overflows in the FathFTP ActiveX control 1.7 allow remote attackers to execute arbitrary code via (1) the GetFromURL member or (2) a long argument to the RasIsConnected method. 2010-07-12 9.3 CVE-2010-2701
XF
EXPLOIT-DB
freebsd -- freebsd
FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call. 2010-07-13 7.2 CVE-2010-2693
VUPEN
SECTRACK
FREEBSD
BID
SECUNIA
internetdm -- webdm_cms
SQL injection vulnerability in cont_form.php in Internet DM WebDM CMS allows remote attackers to execute arbitrary SQL commands via the cf_id parameter. 2010-07-12 7.5 CVE-2010-2689
BID
EXPLOIT-DB
MISC
jooforge -- com_gamesbox
SQL injection vulnerability in the JOOFORGE Gamesbox (com_gamesbox) component 1.0.2, and possibly earlier, for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a consoles action to index.php. 2010-07-12 7.5 CVE-2010-2690
BID
EXPLOIT-DB
joomla -- com_sef
PHP remote file inclusion vulnerability in the SEF404x (com_sef) component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig.absolute.path parameter to index.php. 2010-07-12 7.5 CVE-2010-2681
VUPEN
BID
EXPLOIT-DB
linux-ipv6 -- umip
Multiple buffer overflows in ha.c in the mipv6 daemon in UMIP 0.4 allow remote attackers to have an unspecified impact via a crafted (1) ND_OPT_PREFIX_INFORMATION or (2) ND_OPT_HOME_AGENT_INFO packet. 2010-07-13 10.0 CVE-2010-2523
MLIST
BID
MLIST
MLIST
MLIST
MLIST
oracle -- opensolaris
Unspecified vulnerability in Oracle OpenSolaris 8, 9, and 10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. 2010-07-13 7.6 CVE-2010-0083
CONFIRM
oracle -- timesten_in-memory_database
Unspecified vulnerability in the Data Server component in Oracle TimesTen In-Memory Database 7.0.6.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. 2010-07-13 10.0 CVE-2010-0873
CONFIRM
oracle -- secure_backup
Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. 2010-07-13 10.0 CVE-2010-0898
CONFIRM
oracle -- secure_backup
Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2010-0898, CVE-2010-0907, and CVE-2010-0906. 2010-07-13 9.0 CVE-2010-0899
CONFIRM
oracle -- database_server
Unspecified vulnerability in the Net Foundation Layer component in Oracle Database Server 9.2.0.8, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1, when running on Windows, allows remote attackers to affect availability via unknown vectors. 2010-07-13 7.8 CVE-2010-0903
CONFIRM
oracle -- secure_backup
Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. 2010-07-13 9.0 CVE-2010-0906
CONFIRM
oracle -- secure_backup
Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2010-0898, CVE-2010-0899, CVE-2010-0904, and CVE-2010-0906. 2010-07-13 10.0 CVE-2010-0907
CONFIRM
oracle -- e-business_suite
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. 2010-07-13 7.5 CVE-2010-0908
CONFIRM
oracle -- database_server
Unspecified vulnerability in the Listener component in Oracle Database Server 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote attackers to affect availability via unknown vectors. 2010-07-13 7.8 CVE-2010-0911
CONFIRM
phpaa -- phpaacms
SQL injection vulnerability in show.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter. 2010-07-13 7.5 CVE-2010-2719
XF
VUPEN
BID
EXPLOIT-DB
SECUNIA
OSVDB
phpaa -- phpaacms
SQL injection vulnerability in list.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information. 2010-07-13 7.5 CVE-2010-2720
XF
VUPEN
BID
EXPLOIT-DB
SECUNIA
OSVDB
realtyna -- com_realtyna
Directory traversal vulnerability in the Realtyna Translator (com_realtyna) component 1.0.15 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. 2010-07-12 7.5 CVE-2010-2682
XF
BID
EXPLOIT-DB
MISC
redcomponent -- com_redshop
SQL injection vulnerability in the redSHOP Component (com_redshop) 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter to index.php. 2010-07-12 7.5 CVE-2010-2694
VUPEN
BID
EXPLOIT-DB
SECUNIA
rich_kavanagh -- psnews
Multiple SQL injection vulnerabilities in PsNews 1.3 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) ndetail.php and (2) print.php. 2010-07-13 7.5 CVE-2010-2716
XF
BID
EXPLOIT-DB
MISC
rightinpoint -- lyrics_engine
SQL injection vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to execute arbitrary SQL commands via the artist_id parameter in an addalbum action. 2010-07-13 7.5 CVE-2010-2721
XF
VUPEN
BID
EXPLOIT-DB
SECUNIA
MISC
OSVDB
ruby-lang -- ruby
Buffer overflow in Ruby 1.9.x before 1.9.1-p429 on Windows might allow local users to gain privileges via a crafted ARGF.inplace_mode value that is not properly handled when constructing the filenames of the backup files. 2010-07-12 7.2 CVE-2010-2489
CONFIRM
XF
BID
OSVDB
MLIST
MLIST
CONFIRM
CONFIRM
SECUNIA
MLIST
sijio -- community_software
SQL injection vulnerability in gallery/index.php in Sijio Community Software allows remote attackers to execute arbitrary SQL commands via the parent parameter. 2010-07-12 7.5 CVE-2010-2696
XF
VUPEN
EXPLOIT-DB
OSVDB
site2nite -- boat_classifieds
SQL injection vulnerability in printdetail.asp in Site2Nite Boat Classifieds allows remote attackers to execute arbitrary SQL commands via the Id parameter. 2010-07-12 7.5 CVE-2010-2687
XF
BID
OSVDB
EXPLOIT-DB
SECUNIA
MISC
site2nite -- boat_classifieds
SQL injection vulnerability in detail.asp in Site2Nite Boat Classifieds allows remote attackers to execute arbitrary SQL commands via the ID parameter. 2010-07-12 7.5 CVE-2010-2688
XF
VUPEN
BID
OSVDB
EXPLOIT-DB
SECUNIA
MISC
sweetphp -- totalcalendar
PHP remote file inclusion vulnerability in config.php in TotalCalendar 2.4 allows remote attackers to execute arbitrary PHP code via a URL in the inc_dir parameter, a different vector than CVE-2006-1922 and CVE-2006-7055. 2010-07-12 7.5 CVE-2009-4928
BID
sweetphp -- totalcalender
admin/manage_users.php in TotalCalendar 2.4 does not require administrative authentication, which allows remote attackers to change arbitrary passwords via the newPW1 and newPW2 parameters. 2010-07-12 7.5 CVE-2009-4929
BID
SECUNIA
tcwonline -- tcw_php_album
SQL injection vulnerability in photos/index.php in TCW PHP Album 1.0 allows remote attackers to execute arbitrary SQL commands via the album parameter. 2010-07-13 7.5 CVE-2010-2714
XF
VUPEN
BID
EXPLOIT-DB
topmanage -- olk_module
Multiple SQL injection vulnerabilities in clientes.asp in TopManage OLK module 1.91.30 for SAP allow remote attackers to execute arbitrary SQL commands via the (1) PriceFrom, (2) PriceTo, and (3) InvFrom parameters, as reachable from olk/c_p/searchCart.asp, and other unspecified vectors when performing an advanced search. NOTE: some of these details are obtained from third party information. 2010-07-12 7.5 CVE-2010-2686
BID
BUGTRAQ
BUGTRAQ
SECUNIA
webmobo -- wbnews
WB News 2.1.2 allows remote attackers to bypass authentication and gain administrative access via a modified WBNEWS cookie, as demonstrated by setting this cookie to 1. 2010-07-12 7.5 CVE-2009-4927
BID
SECUNIA
winterwebs -- ezwebitor
Multiple SQL injection vulnerabilities in login.php in EZ Webitor allow remote attackers to execute arbitrary SQL commands via the (1) txtUserId (Username) and (2) txtPassword (Password) parameters. NOTE: some of these details are obtained from third party information. 2010-07-12 7.5 CVE-2009-4933
XF
BID
SECUNIA
Back to top

Medium Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
2daybiz -- custom_t-shirt_design_script
Cross-site scripting (XSS) vulnerability in 2daybiz Custom T-Shirt Design Script allows remote attackers to inject arbitrary web script or HTML via a review comment. 2010-07-12 4.3 CVE-2010-2692
XF
MISC
SECUNIA
OSVDB
apache -- tomcat
Apache Tomcat 5.5.0 through 5.5.29, 6.0.0 through 6.0.27, and 7.0.0 beta does not properly handle an invalid Transfer-Encoding header, which allows remote attackers to cause a denial of service (application outage) or obtain sensitive information via a crafted header that interferes with "recycling of a buffer." 2010-07-13 6.4 CVE-2010-2227
CONFIRM
CONFIRM
CONFIRM
XF
BID
BUGTRAQ
CONFIRM
CONFIRM
CONFIRM
SECTRACK
bestwebsharing -- groovy_media_player
Stack-based buffer overflow in Groovy Media Player 1.1.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a .m3u playlist file. 2010-07-12 6.8 CVE-2009-4931
XF
BID
creasito -- creasito_e-commerce_content_manager
Multiple SQL injection vulnerabilities in Portale e-commerce Creasito (aka creasito e-commerce content manager) 1.3.16, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the username parameter to (1) admin/checkuser.php and (2) checkuser.php. 2010-07-12 6.8 CVE-2009-4925
BID
BUGTRAQ
MILW0RM
SECUNIA
cruxsoftware -- cruxcms
Cross-site scripting (XSS) vulnerability in manager/login.php in CruxSoftware CruxCMS 3.0, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the txtusername parameter. 2010-07-13 4.3 CVE-2010-2717
VUPEN
BUGTRAQ
MISC
cruxsoftware -- cruxpa
Multiple cross-site scripting (XSS) vulnerabilities in CruxSoftware CruxPA 2.00, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) txtusername parameter to login.php, (2) todo parameter to newtodo.php, and unspecified vectors to (3) newtelephone.php and (4) newappointment.php. 2010-07-13 4.3 CVE-2010-2718
VUPEN
BID
BUGTRAQ
MISC
MISC
MISC
MISC
MISC
edgephp -- clickbank_affiliate_marketplace_script
Cross-site scripting (XSS) vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script (CBQuick) allows remote attackers to inject arbitrary web script or HTML via the search parameter. 2010-07-12 4.3 CVE-2010-2700
BID
EXPLOIT-DB
esoftpro -- online_contact_manager
Multiple cross-site scripting (XSS) vulnerabilities in Online Contact Manager (formerly EContact PRO) 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) showGroup parameter to (a) index.php and the (2) id parameter to (b) view.php, (c) email.php, (d) edit.php, and (e) delete.php. 2010-07-12 4.3 CVE-2009-4926
BID
SECUNIA
MISC
esoftpro -- online_photo_pro
Cross-site scripting (XSS) vulnerability in index.php in Online Photo Pro 2.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter. 2010-07-12 4.3 CVE-2009-4934
BID
SECUNIA
MISC
harmistechnology -- com_jesectionfinder
Directory traversal vulnerability in the JExtensions JE Section/Property Finder (jesectionfinder) component for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the view parameter to index.php. 2010-07-12 6.8 CVE-2010-2680
XF
BID
EXPLOIT-DB
MISC
lsoft -- listserv
Cross-site scripting (XSS) vulnerability in LISTSERV 15 and 16 allows remote attackers to inject arbitrary web script or HTML via the T parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. 2010-07-13 4.3 CVE-2010-2723
BID
SECUNIA
mpesch3.de1 -- 1by1
Stack-based buffer overflow in 1by1 1.67 (aka 1.6.7.0) allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a .m3u playlist file. 2010-07-12 6.8 CVE-2009-4932
XF
BID
SECUNIA
oracle -- opensso_enterprise
Unspecified vulnerability in the Access Manager / OpenSSO component in Oracle OpenSSO Enterprise 7.1, 7, 2005Q4, and 8.0 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 4.3 CVE-2009-3763
CONFIRM
oracle -- opensso_enterprise
Unspecified vulnerability in the OpenSSO component in Oracle OpenSSO Enterprise 8.0 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 4.3 CVE-2009-3764
CONFIRM
oracle -- opensso_enterprise
Unspecified vulnerability in Oracle OpenSSO Enterprise 8.0 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 4.3 CVE-2009-3762
CONFIRM
oracle -- fusion_middleware
Unspecified vulnerability in the Wireless component in Oracle Fusion Middleware 10.1.2.3 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 4.3 CVE-2010-0835
CONFIRM
oracle -- database_server
Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2.0.00.27 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 4.3 CVE-2010-0892
CONFIRM
oracle -- database_server
Unspecified vulnerability in the Oracle OLAP component in Oracle Database Server 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. 2010-07-13 6.0 CVE-2010-0902
CONFIRM
oracle -- secure_backup
Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 5.0 CVE-2010-0904
CONFIRM
oracle -- e-business_suite
Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2 and 12.0.4 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 4.3 CVE-2010-0905
CONFIRM
oracle -- timesten_in-memory_database
Unspecified vulnerability in the Data Server component in Oracle TimesTen In-Memory Database 7.0.6.0 and 11.2.1.4.1 allows remote attackers to affect availability via unknown vectors. 2010-07-13 5.0 CVE-2010-0910
CONFIRM
oracle -- e-business_suite
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 4.3 CVE-2010-0912
CONFIRM
oracle -- e-business_suite
Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 4.3 CVE-2010-0913
CONFIRM
oracle -- sun_convergence
Unspecified vulnerability in Oracle Sun Convergence 1.0 allows remote attackers to affect confidentiality via unknown vectors related to Mail, Calendar, Address Book, and Instant Messaging. 2010-07-13 5.0 CVE-2010-0914
CONFIRM
oracle -- e-business_suite
Unspecified vulnerability in the Oracle Advanced Product Catalog component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. 2010-07-13 5.5 CVE-2010-0915
CONFIRM
oracle -- opensolaris
Unspecified vulnerability in Oracle OpenSolaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to rdist. 2010-07-13 6.2 CVE-2010-0916
CONFIRM
oracle -- fusion_middleware
Unspecified vulnerability in the Oracle Business Process Management component in Oracle Fusion Middleware 5.7 MP3, 6.0 MP5, and 10.3 MP2 allows remote attackers to affect integrity, related to BPM. 2010-07-13 4.3 CVE-2010-2370
CONFIRM
oracle -- supply_chain_products_suite
Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1.1 allows remote attackers to affect integrity via unknown vectors, a different vulnerability than CVE-2010-2371. 2010-07-13 4.3 CVE-2010-2372
CONFIRM
oracle -- enterprise_manager_grid_control
Unspecified vulnerability in the Console component in Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5 allows remote attackers to affect integrity via unknown vectors. 2010-07-13 4.3 CVE-2010-2373
CONFIRM
oracle -- weblogic_server
Package/Privilege: Plugins for Apache, Sun and IIS web servers Unspecified vulnerability in the WebLogic Server component in Oracle Fusion Middleware 7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, 10.0 MP2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality and integrity, related to IIS. 2010-07-13 6.4 CVE-2010-2375
CONFIRM
oracle -- peoplesoft_and_jdedwards_product_suite
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.27 and 8.50.10 allows remote authenticated users to affect integrity via unknown vectors. 2010-07-13 4.0 CVE-2010-2377
CONFIRM
oracle -- peoplesoft_and_jdedwards_suite_hcm
Unspecified vulnerability in the PeopleSoft Enterprise HCM - Time & Labor component in Oracle PeopleSoft and JDEdwards Suite HCM 9.0 Bundle #13 and HCM 9.1 Bundle #2 allows remote authenticated users to affect confidentiality via unknown vectors. 2010-07-13 4.0 CVE-2010-2379
CONFIRM
oracle -- peoplesoft_and_jdedwards_suite_scm
Unspecified vulnerability in the PeopleSoft Enterprise FSCM component in Oracle PeopleSoft and JDEdwards Suite SCM 8.9 Bundle #37, SCM 9.0 Bundle #30, and SCM 9.1 Bundle #4 allows local users to affect confidentiality, integrity, and availability via unknown vectors. 2010-07-13 4.3 CVE-2010-2380
CONFIRM
rightinpoint -- lyrics_engine
Cross-site scripting (XSS) vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to inject arbitrary web script or HTML via the artist_id parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. 2010-07-13 4.3 CVE-2010-2722
SECUNIA
sungard -- banner_student
Cross-site scripting (XSS) vulnerability in the twbkwbis.P_SecurityQuestion (aka Change Security Question) page in SunGard Banner Student System 7.4 allows remote attackers to inject arbitrary web script or HTML via the New Question field. 2010-07-12 4.3 CVE-2009-4930
BID
BUGTRAQ
tcwonline -- tcw_php_album
Cross-site scripting (XSS) vulnerability in photos/index.php in TCW PHP Album 1.0 allows remote attackers to inject arbitrary web script or HTML via the album parameter. 2010-07-13 4.3 CVE-2010-2715
XF
VUPEN
BID
EXPLOIT-DB
ubuntu -- ubuntu_linux
pam_motd (aka the MOTD module) in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules before 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on .cache in a user's home directory, related to "user file stamps" and the motd.legal-notice file. 2010-07-12 6.9 CVE-2010-0832
BID
XF
VUPEN
UBUNTU
OSVDB
MISC
EXPLOIT-DB
MISC
SECUNIA
xlightftpd -- xlight_ftp_server
Directory traversal vulnerability in the SFTP/SSH2 virtual server in Xlight FTP Server 3.5.0, 3.5.5, and possibly other versions before 3.6 allows remote authenticated users to read, overwrite, or delete arbitrary files via .. (dot dot) sequences in the (1) ls, (2) rm, (3) rename, and other unspecified commands. 2010-07-12 6.5 CVE-2010-2695
CONFIRM
XF
BUGTRAQ
SECUNIA
OSVDB
Back to top

Low Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
linux-ipv6 -- umip
The mipv6 daemon in UMIP 0.4 does not verify that netlink messages originated in the kernel, which allows local users to spoof netlink socket communication via a crafted unicast message. 2010-07-132.1 CVE-2010-2522
MLIST
BID
MLIST
MLIST
MLIST
MLIST
mysql -- mysql
MySQL before 5.1.48 allows remote authenticated users with alter database privileges to cause a denial of service (server crash and database loss) via an ALTER DATABASE command with a #mysql50# string followed by a . (dot), .. (dot dot), ../ (dot dot slash) or similar sequence, and an UPGRADE DATA DIRECTORY NAME command, which causes MySQL to move certain directories to the server data directory. 2010-07-133.5 CVE-2010-2008
SECTRACK
BID
SECUNIA
CONFIRM
CONFIRM
oracle -- fusion_middleware
Unspecified vulnerability in the Application Server Control component in Oracle Fusion Middleware 10.1.2.3 and 10.1.4.0.1 allows remote authenticated users to affect integrity via unknown vectors. 2010-07-133.5 CVE-2010-0081
CONFIRM
oracle -- e-business_suite
Unspecified vulnerability in the Oracle Knowledge Management component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote attackers to affect integrity via unknown vectors. 2010-07-132.6 CVE-2010-0836
CONFIRM
oracle -- database_server
Unspecified vulnerability in the Network Layer component in Oracle Database Server 9.2.0.8, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1, when running on Windows, allows remote attackers to affect availability via unknown vectors. 2010-07-132.6 CVE-2010-0900
CONFIRM
oracle -- database_server
Unspecified vulnerability in the Export component in Oracle Database Server 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Select Any Dictionary. 2010-07-132.1 CVE-2010-0901
CONFIRM
oracle -- e-business_suite
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote authenticated users to affect confidentiality via unknown vectors. 2010-07-133.5 CVE-2010-0909
CONFIRM
oracle -- supply_chain_products_suite
Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1.1 allows local users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2010-2372. 2010-07-131.9 CVE-2010-2371
CONFIRM
oracle -- solaris_studio
Unspecified vulnerability in Solaris Studio 12 update 1 allows local users to affect confidentiality and integrity via unknown vectors. 2010-07-133.0 CVE-2010-2374
CONFIRM
oracle -- solaris
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Management Console. 2010-07-133.2 CVE-2010-2376
CONFIRM
oracle -- peoplesoft_and_jdedwards_suite_crm
Unspecified vulnerability in the PeopleSoft Enterprise CRM component in Oracle PeopleSoft and JDEdwards Suite CRM 9.0 Bundle #28 and CRM 9.1 Bundle #4 allows local users to affect confidentiality and integrity via unknown vectors. 2010-07-133.0 CVE-2010-2378
CONFIRM
oracle -- fusion_middleware
Unspecified vulnerability in the Application Server Control component in Oracle Fusion Middleware 10.1.2.3 and 10.1.4.0.1 allows remote authenticated users to affect integrity via unknown vectors. 2010-07-133.5 CVE-2010-2381
CONFIRM
oracle -- solaris
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors. 2010-07-133.2 CVE-2010-2382
CONFIRM
sijio -- community_software
Cross-site scripting (XSS) vulnerability in Sijio Community Software allows remote authenticated users to inject arbitrary web script or HTML via the title parameter when adding a new blog, related to edit_blog/index.php. NOTE: some of these details are obtained from third party information. 2010-07-123.5 CVE-2010-2697
XF
VUPEN
EXPLOIT-DB
SECUNIA
OSVDB
sijio -- community_software
Multiple cross-site scripting (XSS) vulnerabilities in Sijio Community Software allow remote authenticated users to inject arbitrary web script or HTML via the title parameter when (1) editing a new blog, (2) adding an album, or (3) editing an album. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. 2010-07-123.5 CVE-2010-2698
XF
EXPLOIT-DB
SECUNIA
OSVDB
wimleers -- hierarchical_select
Cross-site scripting (XSS) vulnerability in the Hierarchical Select module 5.x before 5.x-3.2 and 6.x before 6.x-3.2 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via unspecified vectors in the hierarchical_select form. 2010-07-132.1 CVE-2010-2724
BID
CONFIRM
XF
SECUNIA
OSVDB
znc -- znc
znc.cpp in ZNC before 0.092 allows remote authenticated users to cause a denial of service (crash) by requesting traffic statistics when there is an active unauthenticated connection, which triggers a NULL pointer dereference, as demonstrated using (1) a traffic link in the web administration pages or (2) the traffic command in the /znc shell. 2010-07-123.5 CVE-2010-2448
CONFIRM
MISC
VUPEN
BID
DEBIAN
CONFIRM
SECUNIA
FEDORA
FEDORA
FEDORA
CONFIRM
Back to top

This product is provided subject to this Notification and this Privacy & Use policy.

Was this document helpful?  Yes  |  Somewhat  |  No

Back to Top