Vulnerability Summary for the Week of July 12, 2010
Released
Jul 19, 2010
Document ID
SB10-200
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.
Vulnerabilities are based on the Common Vulnerabilities and Exposures (CVE) vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:
- High: vulnerabilities with a CVSS base score of 7.0–10.0
- Medium: vulnerabilities with a CVSS base score of 4.0–6.9
- Low: vulnerabilities with a CVSS base score of 0.0–3.9
Entries may include additional information provided by organizations and efforts sponsored by CISA. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletin is compiled from external, open-source reports and is not a direct result of CISA analysis.
High Vulnerabilities
| Primary Vendor -- Product | Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| 2daybiz -- custom_t-shirt_design_script | Multiple SQL injection vulnerabilities in 2daybiz Custom T-Shirt Design Script allow remote attackers to execute arbitrary SQL commands via the (1) sbid parameter to products_details.php, (2) pid parameter to products/products.php, and (3) designid parameter to designview.php. | 2010-07-12 | 7.5 | CVE-2010-2691 XF VUPEN BID MISC EXPLOIT-DB SECUNIA OSVDB OSVDB OSVDB |
| customerparadigm -- pagedirector_cms | SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the sub_catid parameter. | 2010-07-12 | 7.5 | CVE-2010-2683 BID EXPLOIT-DB SECUNIA MISC OSVDB |
| customerparadigm -- pagedirector_cms | SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter. | 2010-07-12 | 7.5 | CVE-2010-2684 XF VUPEN BID EXPLOIT-DB SECUNIA MISC OSVDB |
| customerparadigm -- pagedirector_cms | siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attacks to bypass intended restrictions and add administrative users via a direct request. | 2010-07-12 | 7.5 | CVE-2010-2685 VUPEN OSVDB EXPLOIT-DB SECUNIA MISC |
| edgephp -- clickbank_affiliate_marketplace_script | SQL injection vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script (CBQuick) allows remote attackers to execute arbitrary SQL commands via the search parameter. | 2010-07-12 | 7.5 | CVE-2010-2699 VUPEN BID EXPLOIT-DB |
| epicgames -- postal_2 | Buffer overflow in the UGameEngine::UpdateConnectingMessage function in the Unreal engine 1, 2, and 2.5, as used in multiple games including Unreal Tournament 2004, Unreal tournament 2003, Postal 2, Raven Shield, and SWAT4, when downloads are enabled, allows remote attackers to execute arbitrary code via a long LEVEL field in a WELCOME response to a download request. | 2010-07-12 | 9.3 | CVE-2010-2702 XF SECUNIA OSVDB MISC MISC |
| esoftpro -- online_guestbook_pro | SQL injection vulnerability in ogp_show.php in Online Guestbook Pro allows remote attackers to execute arbitrary SQL commands via the display parameter. | 2010-07-12 | 7.5 | CVE-2009-4935 BID |
| fathsoft -- fathftp | Multiple buffer overflows in the FathFTP ActiveX control 1.7 allow remote attackers to execute arbitrary code via (1) the GetFromURL member or (2) a long argument to the RasIsConnected method. | 2010-07-12 | 9.3 | CVE-2010-2701 XF EXPLOIT-DB |
| freebsd -- freebsd | FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call. | 2010-07-13 | 7.2 | CVE-2010-2693 VUPEN SECTRACK FREEBSD BID SECUNIA |
| internetdm -- webdm_cms | SQL injection vulnerability in cont_form.php in Internet DM WebDM CMS allows remote attackers to execute arbitrary SQL commands via the cf_id parameter. | 2010-07-12 | 7.5 | CVE-2010-2689 BID EXPLOIT-DB MISC |
| jooforge -- com_gamesbox | SQL injection vulnerability in the JOOFORGE Gamesbox (com_gamesbox) component 1.0.2, and possibly earlier, for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a consoles action to index.php. | 2010-07-12 | 7.5 | CVE-2010-2690 BID EXPLOIT-DB |
| joomla -- com_sef | PHP remote file inclusion vulnerability in the SEF404x (com_sef) component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig.absolute.path parameter to index.php. | 2010-07-12 | 7.5 | CVE-2010-2681 VUPEN BID EXPLOIT-DB |
| linux-ipv6 -- umip | Multiple buffer overflows in ha.c in the mipv6 daemon in UMIP 0.4 allow remote attackers to have an unspecified impact via a crafted (1) ND_OPT_PREFIX_INFORMATION or (2) ND_OPT_HOME_AGENT_INFO packet. | 2010-07-13 | 10.0 | CVE-2010-2523 MLIST BID MLIST MLIST MLIST MLIST |
| oracle -- opensolaris | Unspecified vulnerability in Oracle OpenSolaris 8, 9, and 10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 2010-07-13 | 7.6 | CVE-2010-0083 CONFIRM |
| oracle -- timesten_in-memory_database | Unspecified vulnerability in the Data Server component in Oracle TimesTen In-Memory Database 7.0.6.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 2010-07-13 | 10.0 | CVE-2010-0873 CONFIRM |
| oracle -- secure_backup | Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 2010-07-13 | 10.0 | CVE-2010-0898 CONFIRM |
| oracle -- secure_backup | Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2010-0898, CVE-2010-0907, and CVE-2010-0906. | 2010-07-13 | 9.0 | CVE-2010-0899 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the Net Foundation Layer component in Oracle Database Server 9.2.0.8, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1, when running on Windows, allows remote attackers to affect availability via unknown vectors. | 2010-07-13 | 7.8 | CVE-2010-0903 CONFIRM |
| oracle -- secure_backup | Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | 2010-07-13 | 9.0 | CVE-2010-0906 CONFIRM |
| oracle -- secure_backup | Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2010-0898, CVE-2010-0899, CVE-2010-0904, and CVE-2010-0906. | 2010-07-13 | 10.0 | CVE-2010-0907 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 2010-07-13 | 7.5 | CVE-2010-0908 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the Listener component in Oracle Database Server 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote attackers to affect availability via unknown vectors. | 2010-07-13 | 7.8 | CVE-2010-0911 CONFIRM |
| phpaa -- phpaacms | SQL injection vulnerability in show.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter. | 2010-07-13 | 7.5 | CVE-2010-2719 XF VUPEN BID EXPLOIT-DB SECUNIA OSVDB |
| phpaa -- phpaacms | SQL injection vulnerability in list.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information. | 2010-07-13 | 7.5 | CVE-2010-2720 XF VUPEN BID EXPLOIT-DB SECUNIA OSVDB |
| realtyna -- com_realtyna | Directory traversal vulnerability in the Realtyna Translator (com_realtyna) component 1.0.15 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php. | 2010-07-12 | 7.5 | CVE-2010-2682 XF BID EXPLOIT-DB MISC |
| redcomponent -- com_redshop | SQL injection vulnerability in the redSHOP Component (com_redshop) 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter to index.php. | 2010-07-12 | 7.5 | CVE-2010-2694 VUPEN BID EXPLOIT-DB SECUNIA |
| rich_kavanagh -- psnews | Multiple SQL injection vulnerabilities in PsNews 1.3 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) ndetail.php and (2) print.php. | 2010-07-13 | 7.5 | CVE-2010-2716 XF BID EXPLOIT-DB MISC |
| rightinpoint -- lyrics_engine | SQL injection vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to execute arbitrary SQL commands via the artist_id parameter in an addalbum action. | 2010-07-13 | 7.5 | CVE-2010-2721 XF VUPEN BID EXPLOIT-DB SECUNIA MISC OSVDB |
| ruby-lang -- ruby | Buffer overflow in Ruby 1.9.x before 1.9.1-p429 on Windows might allow local users to gain privileges via a crafted ARGF.inplace_mode value that is not properly handled when constructing the filenames of the backup files. | 2010-07-12 | 7.2 | CVE-2010-2489 CONFIRM XF BID OSVDB MLIST MLIST CONFIRM CONFIRM SECUNIA MLIST |
| sijio -- community_software | SQL injection vulnerability in gallery/index.php in Sijio Community Software allows remote attackers to execute arbitrary SQL commands via the parent parameter. | 2010-07-12 | 7.5 | CVE-2010-2696 XF VUPEN EXPLOIT-DB OSVDB |
| site2nite -- boat_classifieds | SQL injection vulnerability in printdetail.asp in Site2Nite Boat Classifieds allows remote attackers to execute arbitrary SQL commands via the Id parameter. | 2010-07-12 | 7.5 | CVE-2010-2687 XF BID OSVDB EXPLOIT-DB SECUNIA MISC |
| site2nite -- boat_classifieds | SQL injection vulnerability in detail.asp in Site2Nite Boat Classifieds allows remote attackers to execute arbitrary SQL commands via the ID parameter. | 2010-07-12 | 7.5 | CVE-2010-2688 XF VUPEN BID OSVDB EXPLOIT-DB SECUNIA MISC |
| sweetphp -- totalcalendar | PHP remote file inclusion vulnerability in config.php in TotalCalendar 2.4 allows remote attackers to execute arbitrary PHP code via a URL in the inc_dir parameter, a different vector than CVE-2006-1922 and CVE-2006-7055. | 2010-07-12 | 7.5 | CVE-2009-4928 BID |
| sweetphp -- totalcalender | admin/manage_users.php in TotalCalendar 2.4 does not require administrative authentication, which allows remote attackers to change arbitrary passwords via the newPW1 and newPW2 parameters. | 2010-07-12 | 7.5 | CVE-2009-4929 BID SECUNIA |
| tcwonline -- tcw_php_album | SQL injection vulnerability in photos/index.php in TCW PHP Album 1.0 allows remote attackers to execute arbitrary SQL commands via the album parameter. | 2010-07-13 | 7.5 | CVE-2010-2714 XF VUPEN BID EXPLOIT-DB |
| topmanage -- olk_module | Multiple SQL injection vulnerabilities in clientes.asp in TopManage OLK module 1.91.30 for SAP allow remote attackers to execute arbitrary SQL commands via the (1) PriceFrom, (2) PriceTo, and (3) InvFrom parameters, as reachable from olk/c_p/searchCart.asp, and other unspecified vectors when performing an advanced search. NOTE: some of these details are obtained from third party information. | 2010-07-12 | 7.5 | CVE-2010-2686 BID BUGTRAQ BUGTRAQ SECUNIA |
| webmobo -- wbnews | WB News 2.1.2 allows remote attackers to bypass authentication and gain administrative access via a modified WBNEWS cookie, as demonstrated by setting this cookie to 1. | 2010-07-12 | 7.5 | CVE-2009-4927 BID SECUNIA |
| winterwebs -- ezwebitor | Multiple SQL injection vulnerabilities in login.php in EZ Webitor allow remote attackers to execute arbitrary SQL commands via the (1) txtUserId (Username) and (2) txtPassword (Password) parameters. NOTE: some of these details are obtained from third party information. | 2010-07-12 | 7.5 | CVE-2009-4933 XF BID SECUNIA |
Medium Vulnerabilities
| Primary Vendor -- Product | Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| 2daybiz -- custom_t-shirt_design_script | Cross-site scripting (XSS) vulnerability in 2daybiz Custom T-Shirt Design Script allows remote attackers to inject arbitrary web script or HTML via a review comment. | 2010-07-12 | 4.3 | CVE-2010-2692 XF MISC SECUNIA OSVDB |
| apache -- tomcat | Apache Tomcat 5.5.0 through 5.5.29, 6.0.0 through 6.0.27, and 7.0.0 beta does not properly handle an invalid Transfer-Encoding header, which allows remote attackers to cause a denial of service (application outage) or obtain sensitive information via a crafted header that interferes with "recycling of a buffer." | 2010-07-13 | 6.4 | CVE-2010-2227 CONFIRM CONFIRM CONFIRM XF BID BUGTRAQ CONFIRM CONFIRM CONFIRM SECTRACK |
| bestwebsharing -- groovy_media_player | Stack-based buffer overflow in Groovy Media Player 1.1.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a .m3u playlist file. | 2010-07-12 | 6.8 | CVE-2009-4931 XF BID |
| creasito -- creasito_e-commerce_content_manager | Multiple SQL injection vulnerabilities in Portale e-commerce Creasito (aka creasito e-commerce content manager) 1.3.16, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the username parameter to (1) admin/checkuser.php and (2) checkuser.php. | 2010-07-12 | 6.8 | CVE-2009-4925 BID BUGTRAQ MILW0RM SECUNIA |
| cruxsoftware -- cruxcms | Cross-site scripting (XSS) vulnerability in manager/login.php in CruxSoftware CruxCMS 3.0, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the txtusername parameter. | 2010-07-13 | 4.3 | CVE-2010-2717 VUPEN BUGTRAQ MISC |
| cruxsoftware -- cruxpa | Multiple cross-site scripting (XSS) vulnerabilities in CruxSoftware CruxPA 2.00, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) txtusername parameter to login.php, (2) todo parameter to newtodo.php, and unspecified vectors to (3) newtelephone.php and (4) newappointment.php. | 2010-07-13 | 4.3 | CVE-2010-2718 VUPEN BID BUGTRAQ MISC MISC MISC MISC MISC |
| edgephp -- clickbank_affiliate_marketplace_script | Cross-site scripting (XSS) vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script (CBQuick) allows remote attackers to inject arbitrary web script or HTML via the search parameter. | 2010-07-12 | 4.3 | CVE-2010-2700 BID EXPLOIT-DB |
| esoftpro -- online_contact_manager | Multiple cross-site scripting (XSS) vulnerabilities in Online Contact Manager (formerly EContact PRO) 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) showGroup parameter to (a) index.php and the (2) id parameter to (b) view.php, (c) email.php, (d) edit.php, and (e) delete.php. | 2010-07-12 | 4.3 | CVE-2009-4926 BID SECUNIA MISC |
| esoftpro -- online_photo_pro | Cross-site scripting (XSS) vulnerability in index.php in Online Photo Pro 2.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter. | 2010-07-12 | 4.3 | CVE-2009-4934 BID SECUNIA MISC |
| harmistechnology -- com_jesectionfinder | Directory traversal vulnerability in the JExtensions JE Section/Property Finder (jesectionfinder) component for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the view parameter to index.php. | 2010-07-12 | 6.8 | CVE-2010-2680 XF BID EXPLOIT-DB MISC |
| lsoft -- listserv | Cross-site scripting (XSS) vulnerability in LISTSERV 15 and 16 allows remote attackers to inject arbitrary web script or HTML via the T parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | 2010-07-13 | 4.3 | CVE-2010-2723 BID SECUNIA |
| mpesch3.de1 -- 1by1 | Stack-based buffer overflow in 1by1 1.67 (aka 1.6.7.0) allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a .m3u playlist file. | 2010-07-12 | 6.8 | CVE-2009-4932 XF BID SECUNIA |
| oracle -- opensso_enterprise | Unspecified vulnerability in the Access Manager / OpenSSO component in Oracle OpenSSO Enterprise 7.1, 7, 2005Q4, and 8.0 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 4.3 | CVE-2009-3763 CONFIRM |
| oracle -- opensso_enterprise | Unspecified vulnerability in the OpenSSO component in Oracle OpenSSO Enterprise 8.0 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 4.3 | CVE-2009-3764 CONFIRM |
| oracle -- opensso_enterprise | Unspecified vulnerability in Oracle OpenSSO Enterprise 8.0 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 4.3 | CVE-2009-3762 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Wireless component in Oracle Fusion Middleware 10.1.2.3 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 4.3 | CVE-2010-0835 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2.0.00.27 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 4.3 | CVE-2010-0892 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the Oracle OLAP component in Oracle Database Server 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | 2010-07-13 | 6.0 | CVE-2010-0902 CONFIRM |
| oracle -- secure_backup | Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 5.0 | CVE-2010-0904 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2 and 12.0.4 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 4.3 | CVE-2010-0905 CONFIRM |
| oracle -- timesten_in-memory_database | Unspecified vulnerability in the Data Server component in Oracle TimesTen In-Memory Database 7.0.6.0 and 11.2.1.4.1 allows remote attackers to affect availability via unknown vectors. | 2010-07-13 | 5.0 | CVE-2010-0910 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 4.3 | CVE-2010-0912 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 4.3 | CVE-2010-0913 CONFIRM |
| oracle -- sun_convergence | Unspecified vulnerability in Oracle Sun Convergence 1.0 allows remote attackers to affect confidentiality via unknown vectors related to Mail, Calendar, Address Book, and Instant Messaging. | 2010-07-13 | 5.0 | CVE-2010-0914 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Advanced Product Catalog component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | 2010-07-13 | 5.5 | CVE-2010-0915 CONFIRM |
| oracle -- opensolaris | Unspecified vulnerability in Oracle OpenSolaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to rdist. | 2010-07-13 | 6.2 | CVE-2010-0916 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Oracle Business Process Management component in Oracle Fusion Middleware 5.7 MP3, 6.0 MP5, and 10.3 MP2 allows remote attackers to affect integrity, related to BPM. | 2010-07-13 | 4.3 | CVE-2010-2370 CONFIRM |
| oracle -- supply_chain_products_suite | Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1.1 allows remote attackers to affect integrity via unknown vectors, a different vulnerability than CVE-2010-2371. | 2010-07-13 | 4.3 | CVE-2010-2372 CONFIRM |
| oracle -- enterprise_manager_grid_control | Unspecified vulnerability in the Console component in Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 4.3 | CVE-2010-2373 CONFIRM |
| oracle -- weblogic_server | Package/Privilege: Plugins for Apache, Sun and IIS web servers Unspecified vulnerability in the WebLogic Server component in Oracle Fusion Middleware 7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, 10.0 MP2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality and integrity, related to IIS. | 2010-07-13 | 6.4 | CVE-2010-2375 CONFIRM |
| oracle -- peoplesoft_and_jdedwards_product_suite | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.27 and 8.50.10 allows remote authenticated users to affect integrity via unknown vectors. | 2010-07-13 | 4.0 | CVE-2010-2377 CONFIRM |
| oracle -- peoplesoft_and_jdedwards_suite_hcm | Unspecified vulnerability in the PeopleSoft Enterprise HCM - Time & Labor component in Oracle PeopleSoft and JDEdwards Suite HCM 9.0 Bundle #13 and HCM 9.1 Bundle #2 allows remote authenticated users to affect confidentiality via unknown vectors. | 2010-07-13 | 4.0 | CVE-2010-2379 CONFIRM |
| oracle -- peoplesoft_and_jdedwards_suite_scm | Unspecified vulnerability in the PeopleSoft Enterprise FSCM component in Oracle PeopleSoft and JDEdwards Suite SCM 8.9 Bundle #37, SCM 9.0 Bundle #30, and SCM 9.1 Bundle #4 allows local users to affect confidentiality, integrity, and availability via unknown vectors. | 2010-07-13 | 4.3 | CVE-2010-2380 CONFIRM |
| rightinpoint -- lyrics_engine | Cross-site scripting (XSS) vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to inject arbitrary web script or HTML via the artist_id parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | 2010-07-13 | 4.3 | CVE-2010-2722 SECUNIA |
| sungard -- banner_student | Cross-site scripting (XSS) vulnerability in the twbkwbis.P_SecurityQuestion (aka Change Security Question) page in SunGard Banner Student System 7.4 allows remote attackers to inject arbitrary web script or HTML via the New Question field. | 2010-07-12 | 4.3 | CVE-2009-4930 BID BUGTRAQ |
| tcwonline -- tcw_php_album | Cross-site scripting (XSS) vulnerability in photos/index.php in TCW PHP Album 1.0 allows remote attackers to inject arbitrary web script or HTML via the album parameter. | 2010-07-13 | 4.3 | CVE-2010-2715 XF VUPEN BID EXPLOIT-DB |
| ubuntu -- ubuntu_linux | pam_motd (aka the MOTD module) in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules before 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on .cache in a user's home directory, related to "user file stamps" and the motd.legal-notice file. | 2010-07-12 | 6.9 | CVE-2010-0832 BID XF VUPEN UBUNTU OSVDB MISC EXPLOIT-DB MISC SECUNIA |
| xlightftpd -- xlight_ftp_server | Directory traversal vulnerability in the SFTP/SSH2 virtual server in Xlight FTP Server 3.5.0, 3.5.5, and possibly other versions before 3.6 allows remote authenticated users to read, overwrite, or delete arbitrary files via .. (dot dot) sequences in the (1) ls, (2) rm, (3) rename, and other unspecified commands. | 2010-07-12 | 6.5 | CVE-2010-2695 CONFIRM XF BUGTRAQ SECUNIA OSVDB |
Low Vulnerabilities
| Primary Vendor -- Product | Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| linux-ipv6 -- umip | The mipv6 daemon in UMIP 0.4 does not verify that netlink messages originated in the kernel, which allows local users to spoof netlink socket communication via a crafted unicast message. | 2010-07-13 | 2.1 | CVE-2010-2522 MLIST BID MLIST MLIST MLIST MLIST |
| mysql -- mysql | MySQL before 5.1.48 allows remote authenticated users with alter database privileges to cause a denial of service (server crash and database loss) via an ALTER DATABASE command with a #mysql50# string followed by a . (dot), .. (dot dot), ../ (dot dot slash) or similar sequence, and an UPGRADE DATA DIRECTORY NAME command, which causes MySQL to move certain directories to the server data directory. | 2010-07-13 | 3.5 | CVE-2010-2008 SECTRACK BID SECUNIA CONFIRM CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Application Server Control component in Oracle Fusion Middleware 10.1.2.3 and 10.1.4.0.1 allows remote authenticated users to affect integrity via unknown vectors. | 2010-07-13 | 3.5 | CVE-2010-0081 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Knowledge Management component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote attackers to affect integrity via unknown vectors. | 2010-07-13 | 2.6 | CVE-2010-0836 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the Network Layer component in Oracle Database Server 9.2.0.8, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1, when running on Windows, allows remote attackers to affect availability via unknown vectors. | 2010-07-13 | 2.6 | CVE-2010-0900 CONFIRM |
| oracle -- database_server | Unspecified vulnerability in the Export component in Oracle Database Server 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Select Any Dictionary. | 2010-07-13 | 2.1 | CVE-2010-0901 CONFIRM |
| oracle -- e-business_suite | Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote authenticated users to affect confidentiality via unknown vectors. | 2010-07-13 | 3.5 | CVE-2010-0909 CONFIRM |
| oracle -- supply_chain_products_suite | Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1.1 allows local users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2010-2372. | 2010-07-13 | 1.9 | CVE-2010-2371 CONFIRM |
| oracle -- solaris_studio | Unspecified vulnerability in Solaris Studio 12 update 1 allows local users to affect confidentiality and integrity via unknown vectors. | 2010-07-13 | 3.0 | CVE-2010-2374 CONFIRM |
| oracle -- solaris | Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Management Console. | 2010-07-13 | 3.2 | CVE-2010-2376 CONFIRM |
| oracle -- peoplesoft_and_jdedwards_suite_crm | Unspecified vulnerability in the PeopleSoft Enterprise CRM component in Oracle PeopleSoft and JDEdwards Suite CRM 9.0 Bundle #28 and CRM 9.1 Bundle #4 allows local users to affect confidentiality and integrity via unknown vectors. | 2010-07-13 | 3.0 | CVE-2010-2378 CONFIRM |
| oracle -- fusion_middleware | Unspecified vulnerability in the Application Server Control component in Oracle Fusion Middleware 10.1.2.3 and 10.1.4.0.1 allows remote authenticated users to affect integrity via unknown vectors. | 2010-07-13 | 3.5 | CVE-2010-2381 CONFIRM |
| oracle -- solaris | Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors. | 2010-07-13 | 3.2 | CVE-2010-2382 CONFIRM |
| sijio -- community_software | Cross-site scripting (XSS) vulnerability in Sijio Community Software allows remote authenticated users to inject arbitrary web script or HTML via the title parameter when adding a new blog, related to edit_blog/index.php. NOTE: some of these details are obtained from third party information. | 2010-07-12 | 3.5 | CVE-2010-2697 XF VUPEN EXPLOIT-DB SECUNIA OSVDB |
| sijio -- community_software | Multiple cross-site scripting (XSS) vulnerabilities in Sijio Community Software allow remote authenticated users to inject arbitrary web script or HTML via the title parameter when (1) editing a new blog, (2) adding an album, or (3) editing an album. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | 2010-07-12 | 3.5 | CVE-2010-2698 XF EXPLOIT-DB SECUNIA OSVDB |
| wimleers -- hierarchical_select | Cross-site scripting (XSS) vulnerability in the Hierarchical Select module 5.x before 5.x-3.2 and 6.x before 6.x-3.2 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via unspecified vectors in the hierarchical_select form. | 2010-07-13 | 2.1 | CVE-2010-2724 BID CONFIRM XF SECUNIA OSVDB |
| znc -- znc | znc.cpp in ZNC before 0.092 allows remote authenticated users to cause a denial of service (crash) by requesting traffic statistics when there is an active unauthenticated connection, which triggers a NULL pointer dereference, as demonstrated using (1) a traffic link in the web administration pages or (2) the traffic command in the /znc shell. | 2010-07-12 | 3.5 | CVE-2010-2448 CONFIRM MISC VUPEN BID DEBIAN CONFIRM SECUNIA FEDORA FEDORA FEDORA CONFIRM |
Please share your thoughts
We recently updated our anonymous product survey; we’d welcome your feedback.