-
Secunia Advisory 21784
Akarru Social BookMarking Engine "bm_content" File Inclusion- Criticality: High
- Description: ERNE has discovered a vulnerability in Akarru Social BookMarking Engine, which can be exploited by malicious people to compromise a vulnerable system.
Input passed to the "bm_content" parameter in akarru.gui/main_content.php isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from external and local resources.
- Secunia Advisory: http://secunia.com/advisories/21784/
-
Secunia Advisory 21795
Ipswitch IMail Server SMTP Service Buffer Overflow Vulnerability- Criticality: High
- Description: A vulnerability has been reported in IMail Server, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error in the SMTP service when processing certain strings. This can be exploited to cause a stack-based buffer overflow by supplying an overly long string containing "@" and ":" characters.
- Secunia Advisory: http://secunia.com/advisories/21795/
-
Secunia Advisory 21803
phpBB Premod Shadow "phpbb_root_path" File Inclusion- Criticality: High
- Description: Kw3[R]Ln has discovered a vulnerability in phpBB Premod Shadow, which can be exploited by malicious people to compromise a vulnerable system.
Input passed to the "phpbb_root_path" parameter in includes/functions_portal.php isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from external and local resources.
- Secunia Advisory: http://secunia.com/advisories/21803/
-
Secunia Advisory 21804
BP News "bnrep" File Inclusion Vulnerability- Criticality: High
- Description: SHiKaA has reported a vulnerability in BP News, which can be exploited by malicious people to compromise a vulnerable system.
Input passed to the "bnrep" parameter in bp_ncom.php is not properly verified before being used to include files. This can be exploited to execute arbitrary PHP code by including files from local or external resources.
- Secunia Advisory: http://secunia.com/advisories/21804/
-
Secunia Advisory 21805
phpFullAnnu "repmod" File Inclusion Vulnerability- Criticality: High
- Description: SHiKaA has reported a vulnerability in phpFullAnnu, which can be exploited by malicious people to compromise a vulnerable system.
Input passed to the "repmod" parameter in modules/home.module.php is not properly verified before being used to include files. This can be exploited to execute arbitrary PHP code by including files from local or external resources.
- Secunia Advisory: http://secunia.com/advisories/21805/
-
Secunia Advisory 21806
Beautifier "BEAUT_PATH" Parameter File Inclusion Vulnerability- Criticality: High
- Description: the master has discovered a vulnerability in Beautifier, which can be exploited by malicious people to compromise a vulnerable system.
Input passed to the "BEAUT_PATH" parameter in Beautifier/Core.php isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from external and local resources.
- Secunia Advisory: http://secunia.com/advisories/21806/
Secunia AdvisoriesSeptember 7, 2006
From Tony Bradley, CISSP-ISSAP, for About.com
Below are the Secunia Security Advisories rated as Highly Critical (or higher) from September 7, 2006.
Explore Internet / Network Security
Must Reads
About.com Special Features
Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >
Easy ways to connect two computers for networking purposes. More >
©2009 About.com, a part of The New York Times Company.
All rights reserved.