http://www.webremixed.info/ Aggregation of tags: vulnerabilities Webremixer http://www.securityfocus.com/archive/1/521496 [ MDVSA-2012:013 ] mozilla Fri, 03 Feb 2012 23:08:13 GMT http://www.securityfocus.com/archive/1/521496 2012-02-03T23:08:13Z http://www.securityfocus.com/archive/1/521481 ESA-2012-010: EMC Documentum xPlore information disclosure vulnerability Fri, 03 Feb 2012 22:53:13 GMT http://www.securityfocus.com/archive/1/521481 2012-02-03T22:53:13Z http://www.securityfocus.com/archive/1/521480 RFC 6528 on Defending against Sequence Number Attacks Fri, 03 Feb 2012 22:38:13 GMT http://www.securityfocus.com/archive/1/521480 2012-02-03T22:38:13Z http://www.securityfocus.com/archive/1/521479 [SECURITY] [DSA 2403-1] php5 security update Fri, 03 Feb 2012 22:23:13 GMT http://www.securityfocus.com/archive/1/521479 2012-02-03T22:23:13Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4514 The TELNET daemon in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime does not perform authentication, which makes it easier for remote attackers to obtain access via a TCP session. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4514 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4875 Stack-based buffer overflow in HmiLoad in the runtime loader in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime, when Transfer Mode is enabled, allows remote attackers to execute arbitrary code via vectors related to Unicode strings. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4875 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4876 Directory traversal vulnerability in HmiLoad in the runtime loader in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime, when Transfer Mode is enabled, allows remote attackers to execute, read, create, modify, or delete arbitrary files via a .. (dot dot) in a string. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4876 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4877 HmiLoad in the runtime loader in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime, when Transfer Mode is enabled, allows remote attackers to cause a denial of service (application crash) by sending crafted data over TCP. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4877 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4878 Directory traversal vulnerability in miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allows remote attackers to read arbitrary files via a ..%5c (dot dot backslash) in a URI. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4878 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4879 miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime does not properly handle URIs beginning with a 0xfa character, which allows remote attackers to read data from arbitrary memory locations or cause a denial of service (application crash) via a crafted POST request. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4879 2012-02-03T00:00:00Z http://www.securityfocus.com/bid/51830 PHP 'php_register_variable_ex()' Function Arbitrary Code Execution Vulnerability Fri, 03 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/51830 2012-02-03T00:00:00Z http://www.securityfocus.com/bid/29519 C6 Messenger Installation URL Downloader ActiveX Control Arbitrary File Download Vulnerability Fri, 03 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/29519 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4513 Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allow user-assisted remote attackers to execute arbitrary code via a crafted project file, related to the HMI web server and runtime loader. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4513 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4512 CRLF injection vulnerability in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4512 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4511 Cross-site scripting (XSS) vulnerability in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-4510. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4511 2012-02-03T00:00:00Z http://www.securityfocus.com/bid/51857 Joomla! Multiple Information Disclosure Vulnerabilities Fri, 03 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/51857 2012-02-03T00:00:00Z http://www.securityfocus.com/bid/51752 Mozilla Firefox/SeaMonkey/Thunderbird XPConnect Security Check Cross Domain Scripting Vulnerability Fri, 03 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/51752 2012-02-03T00:00:00Z http://www.securityfocus.com/bid/51754 Mozilla Firefox/SeaMonkey/Thunderbird XSLT Stylesheets Denial of Service Vulnerability Fri, 03 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/51754 2012-02-03T00:00:00Z http://www.securityfocus.com/bid/51757 Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-0447 Information Disclosure Vulnerability Fri, 03 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/51757 2012-02-03T00:00:00Z http://www.securityfocus.com/bid/51842 project-open 'account-closed.tcl' Cross Site Scripting Vulnerability Fri, 03 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/51842 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4508 The HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime generates predictable authentication tokens for cookies, which makes it easier for remote attackers to bypass authentication via a crafted cookie. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4508 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4509 The HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime has an improperly selected default password for the administrator account, which makes it easier for remote attackers to obtain access via a brute-force approach involving many HTTP requests. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4509 2012-02-03T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4510 Cross-site scripting (XSS) vulnerability in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-4511. Fri, 03 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4510 2012-02-03T00:00:00Z http://www.securityfocus.com/archive/1/521467 [ MDVSA-2012:012 ] apache Thu, 02 Feb 2012 23:12:52 GMT http://www.securityfocus.com/archive/1/521467 2012-02-02T23:12:52Z http://www.securityfocus.com/archive/1/521473 GLSA (Gentoo Linux Security Advisory) publication changes Thu, 02 Feb 2012 22:57:52 GMT http://www.securityfocus.com/archive/1/521473 2012-02-02T22:57:52Z http://www.securityfocus.com/archive/1/521472 [security bulletin] HPSBMU02739 SSRT100280 rev.1 - HP Data Protector Media Operations, Remote Execution of Arbitrary Code Thu, 02 Feb 2012 22:42:52 GMT http://www.securityfocus.com/archive/1/521472 2012-02-02T22:42:52Z http://www.securityfocus.com/archive/1/521471 [CAL-2012-0004] opera array integer overflow Thu, 02 Feb 2012 22:27:52 GMT http://www.securityfocus.com/archive/1/521471 2012-02-02T22:27:52Z http://www.securityfocus.com/bid/51806 PHP CVE-2012-0057 Security Bypass Vulnerability Thu, 02 Feb 2012 11:28:58 GMT http://www.securityfocus.com/bid/51806 2012-02-02T11:28:58Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0314 Multiple cross-site request forgery (CSRF) vulnerabilities on the eAccess Pocket WiFi (aka GP02) router before 2.00 with firmware 11.203.11.05.168 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) initialize settings or (2) reboot the device. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0314 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0976 Cross-site scripting (XSS) vulnerability in admin/EditForm in SilverStripe 2.4.6 allows remote authenticated users with Content Authors privileges to inject arbitrary web script or HTML via the Title parameter. NOTE: some of these details are obtained from third party information. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0976 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0977 Stack-based buffer overflow in jp2_x.dll in LuraWave JP2 ActiveX Control 2.1.5.5 and other versions before 2.1.5.11 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0977 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0978 Stack-based buffer overflow in npjp2.dll in LuraWave JP2 Browser Plug-In 1.1.1.11 and other versions before 2.1.1.11 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0978 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0979 Cross-site scripting (XSS) vulnerability in TWiki allows remote attackers to inject arbitrary web script or HTML via the organization field in a profile, involving (1) registration or (2) editing of the user. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0979 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0980 SQL injection vulnerability in download.php in phux Download Manager allows remote attackers to execute arbitrary SQL commands via the file parameter. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0980 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0975 Cross-site scripting (XSS) vulnerability in misc.php in Image Hosting Script DPI 1.0, 1.3, and earlier allows remote attackers to inject arbitrary web script or HTML via the showseries parameter. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0975 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2393 The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD, NetBSD, and possibly other BSD-based operating systems allows remote attackers to cause a denial of service (CPU consumption and device hang) by sending many Router Advertisement (RA) messages with different source addresses, a similar vulnerability to CVE-2010-4670. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2393 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4563 The Linux kernel, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4563 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4562 Microsoft Windows 2008, 7, Vista, 2003, 2000, and XP, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping. NOTE: due to a typo, some sources map CVE-2010-4562 to a ProFTPd mod_sql vulnerability, but that issue is covered by CVE-2010-4652. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4562 2012-02-02T00:00:00Z http://www.securityfocus.com/bid/51200 Apache Tomcat Hash Collision Denial Of Service Vulnerability Thu, 02 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/51200 2012-02-02T00:00:00Z http://www.securityfocus.com/bid/51442 Apache Tomcat Request Object Security Bypass Vulnerability Thu, 02 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/51442 2012-02-02T00:00:00Z http://www.securityfocus.com/bid/51447 Apache Tomcat Parameter Handling Denial of Service Vulnerability Thu, 02 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/51447 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4791 DBServer.exe in HP Data Protector Media Operations 6.11 and earlier allows remote attackers to execute arbitrary code via a crafted request containing a large value in a length field. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4791 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0981 Directory traversal vulnerability in phpShowtime 2.0 allows remote attackers to list arbitrary directories and image files via a .. (dot dot) in the r parameter to index.php. NOTE: Some of these details are obtained from third party information. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0981 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0982 SQL injection vulnerability in search.php in Vastal I-Tech Agent Zone (aka The Real Estate Script) allows remote attackers to execute arbitrary SQL commands via the price_from parameter. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0982 2012-02-02T00:00:00Z http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0983 SQL injection vulnerability in Scriptsez.net Ez Album allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php. Thu, 02 Feb 2012 00:00:00 GMT http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0983 2012-02-02T00:00:00Z http://www.securityfocus.com/bid/40665 WebKit 'Node.normalize' Method Remote Code Execution Vulnerability Thu, 02 Feb 2012 00:00:00 GMT http://www.securityfocus.com/bid/40665 2012-02-02T00:00:00Z