Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security

Secunia Advisories
September 12, 2006

From , former About.com Guide

Below are the Secunia Security Advisories rated as Highly Critical (or higher) from September 12, 2006.

  • Secunia Advisory 21824
    LedgerSMB "terminal" Parameter Perl Code Execution
    • Criticality: High
    • Description: A vulnerability has been reported in LedgerSMB, which potentially can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "terminal" parameter isn't properly verified before being used. This can be exploited to execute arbitrary Perl code via directory traversal attacks and certain file editing functionality.

    • Secunia Advisory: http://secunia.com/advisories/21824/

  • Secunia Advisory 21826
    Stefan E. Newsscript Multiple Vulnerabilities
    • Criticality: High
    • Description: Some vulnerabilities have been reported in Stefan E. Newsscript, which can be exploited by malicious people to disclose potentially sensitive information or compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/21826/

  • Secunia Advisory 21841
    phpBB XS "phpbb_root_path" File Inclusion Vulnerability
    • Criticality: High
    • Description: AzzCoder has discovered a vulnerability in phpBB XS, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "phpbb_root_path" parameter in includes/functions.php is not properly verified before being used to include files. This can be exploited to include arbitrary files from local or remote resources.

    • Secunia Advisory: http://secunia.com/advisories/21841/

  • Secunia Advisory 21863
    Microsoft Publisher Font Parsing Buffer Overflow Vulnerability
    • Criticality: High
    • Description: Stuart Pearson has reported a vulnerability in Microsoft Publisher, which can be exploited by malicious people to compromise a user's system.

      The vulnerability is caused due to a boundary error when parsing fonts and can be exploited to cause a stack-based buffer overflow via a specially crafted ".pub" document.

    • Secunia Advisory: http://secunia.com/advisories/21863/

  • Secunia Advisory 21865
    Adobe Flash Player Multiple Vulnerabilities
    • Criticality: High
    • Description: Multiple vulnerabilities have been reported in Adobe Flash Player, which can be exploited by malicious people to bypass certain security restrictions or compromise a user's system.
    • Secunia Advisory: http://secunia.com/advisories/21865/

  • Secunia Advisory 21868
    PayProCart Multiple File Inclusion Vulnerabilities
    • Criticality: High
    • Description: Eddy_BAck0o has reported some vulnerabilities in PayProCart, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "docroot" and "proMod" parameters in index.php and to the "docroot" parameter in mainpage.php is not properly verified before being used to include files. This can be exploited to execute arbitrary PHP code by including files from local or external resources.

    • Secunia Advisory: http://secunia.com/advisories/21868/

  • Secunia Advisory 21874
    OPENi-CMS "config[openi_dir]" Parameter File Inclusion
    • Criticality: High
    • Description: basher13 has discovered a vulnerability in OPENi-CMS, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "config[openi_dir]" parameter in openi-admin/base/fileloader.php isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from external and local resources.

    • Secunia Advisory: http://secunia.com/advisories/21874/

  • Secunia Advisory 21886
    SQL-Ledger "terminal" Parameter Perl Code Execution
    • Criticality: High
    • Description: A vulnerability has been reported in SQL-Ledger, which potentially can be exploited by malicious people to compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/21886/

Explore Internet / Network Security
About.com Special Features

Holiday Central

What to eat, where to go, fun things to do and how to save money on the perfect gifts. More >

Family Tech Center

Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >

Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security
  4. Security Bulletins
  5. Secunia Advisories
  6. Secunia Advisories - September 12, 2006

©2009 About.com, a part of The New York Times Company.

All rights reserved.