Internet / Network Security

  1. Home
  2. Computing & Technology
  3. Internet / Network Security

Secunia Advisories

September 15, 2006

From Tony Bradley, CISSP-ISSAP, for About.com

Below are the Secunia Security Advisories rated as Highly Critical (or higher) from September 15, 2006.

  • Secunia Advisory 21906
    Mozilla Firefox Multiple Vulnerabilities
    • Criticality: High
    • Description: Some vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially compromise a user's system.
    • Secunia Advisory: http://secunia.com/advisories/21906/

  • Secunia Advisory 21915
    Red Hat update for seamonkey
    • Criticality: High
    • Description: Red Hat has issued an update for seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a user's system.
    • Secunia Advisory: http://secunia.com/advisories/21915/

  • Secunia Advisory 21916
    Red Hat update for thunderbird
    • Criticality: High
    • Description: Red Hat has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct man-in-the-middle attacks, bypass certain security restrictions, and potentially compromise a user's system.
    • Secunia Advisory: http://secunia.com/advisories/21916/

  • Secunia Advisory 21920
    Shadowed Portal "root" File Inclusion Vulnerabilities
    • Criticality: High
    • Description: mad_hacker has discovered some vulnerabilities in Shadowed Portal, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "root" parameter in bottom.php, footer.php, and header.php is not properly verified before being used to include files. This can be exploited to include arbitrary files from local or external resources.

    • Secunia Advisory: http://secunia.com/advisories/21920/

  • Secunia Advisory 21931
    Claroline "extAuthSource['newUser']" File Inclusion Vulnerability
    • Criticality: High
    • Description: James Bercegay has reported a vulnerability in Caroline, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "extAuthSource['newUser']" parameter in inc/claro_init_local.inc.php is not properly verified before being used to include files. This can be exploited to include arbitrary files from local or external resources.

    • Secunia Advisory: http://secunia.com/advisories/21931/

  • Secunia Advisory 21933
    TeamCal "tc_config[app_root]" File Inclusion Vulnerability
    • Criticality: High
    • Description: PSYCH@ has reported a vulnerability in TeamCal Pro, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "tc_config[app_root]" parameter in includes/footer.html.inc.php is not properly verified before being used to include files. This can be exploited to execute arbitrary PHP code by including files from local or external resources.

    • Secunia Advisory: http://secunia.com/advisories/21933/

  • Secunia Advisory 21936
    Gentoo update for dokuwiki
    • Criticality: High
    • Description: Gentoo has issued an update for dokuwiki. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/21936/

  • Secunia Advisory 21939
    Mozilla Thunderbird Multiple Vulnerabilities
    • Criticality: High
    • Description: Mozilla Thunderbird, which can be exploited by malicious people to conduct man-in-the-middle attacks, bypass certain security restrictions, and potentially compromise a user's system.
    • Secunia Advisory: http://secunia.com/advisories/21939/

  • Secunia Advisory 21940
    Mozilla SeaMonkey Multiple Vulnerabilities
    • Criticality: High
    • Description: Some vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a user's system.
    • Secunia Advisory: http://secunia.com/advisories/21940/

Explore Internet / Network Security

About.com Special Features

Build Your Own Website

Step-by-step advice on how to do everything from choosing a Web host to promoting your content. More >

Connect Your Home Computers

Easy ways to connect two computers for networking purposes. More >

Browse All About.com

Internet / Network Security

  1. Home
  2. Computing & Technology
  3. Internet / Network Security
  4. Security Bulletins
  5. Secunia Advisories
  6. Secunia Advisories - September 15, 2006

©2009 About.com, a part of The New York Times Company.

All rights reserved.