Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security

Secunia Advisories
September 13, 2006

From Tony Bradley, CISSP-ISSAP, for About.com

Below are the Secunia Security Advisories rated as Highly Critical (or higher) from September 13, 2006.

  • Secunia Advisory 21878
    signkorn Guestbook "dir_path" File Inclusion Vulnerability
    • Criticality: High
    • Description: SHiKaA has reported a vulnerability in signkorn Guestbook, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "dir_path" parameter in includes/log.inc.php is not properly verified before being used to include files. This can be exploited to execute arbitrary PHP code by including files from local or external resources.

    • Secunia Advisory: http://secunia.com/advisories/21878/

  • Secunia Advisory 21882
    Vitrax Premodded "phpbb_root_path" File Inclusion Vulnerability
    • Criticality: High
    • Description: CeNGiZ-HaN has reported a vulnerability in Vitrax Premodded, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "phpbb_root_path" parameter in includes/functions_portal.php is not properly verified before being used to include files. This can be exploited to execute arbitrary PHP code by including files from local or external resources.

    • Secunia Advisory: http://secunia.com/advisories/21882/

  • Secunia Advisory 21885
    Red Hat update for wireshark
    • Criticality: High
    • Description: Red Hat has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/21885/

  • Secunia Advisory 21891
    p4CMS "abs_pfad" File Inclusion Vulnerability
    • Criticality: High
    • Description: SHiKaA has reported a vulnerability in p4CMS, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "abs_pfad" parameter in abf_js.php is not properly verified before being used to include files. This can be exploited to execute arbitrary PHP code by including files from local or external resources.

    • Secunia Advisory: http://secunia.com/advisories/21891/

  • Secunia Advisory 21893
    Apple QuickTime Multiple Vulnerabilities
    • Criticality: High
    • Description: Multiple vulnerabilities have been reported in Apple QuickTime, which can be exploited by malicious people to compromise a user's system.
    • Secunia Advisory: http://secunia.com/advisories/21893/

  • Secunia Advisory 21901
    Red Hat update for flash-plugin
    • Criticality: High
    • Description: Red Hat has issued an update for flash-plugin. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and potentially compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/21901/

Explore Internet / Network Security
About.com Special Features
Family Tech Center

Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >

Connect Your Home Computers

Easy ways to connect two computers for networking purposes. More >

Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security
  4. Security Bulletins
  5. Secunia Advisories
  6. Secunia Advisories - September 13, 2006

©2009 About.com, a part of The New York Times Company.

All rights reserved.