Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security

Secunia Advisories
August 16, 2005

From , former About.com Guide

Below are the Secunia Security Advisories rated as Highly Critical (or higher) from August 16, 2005.

  • Secunia Advisory 16433
    Discuz! Multiple File Extensions Script Upload Vulnerability
    • Criticality: High
    • Description: Jeremy Bae has reported a vulnerability in Discuz!, which potentially can be exploited by malicious people to compromise a vulnerable system.

      The vulnerability is caused due to an error in the handling of file uploads where a filename has multiple file extensions. This can be exploited to upload malicious script files inside the web root.

    • Secunia Advisory: http://secunia.com/advisories/16433/

  • Secunia Advisory 16434
    ezUpload "path" Arbitrary File Inclusion Vulnerability
    • Criticality: High
    • Description: Johnnie Walker has reported a vulnerability in ezUpload, which can be exploited by malicious people to compromise a vulnerable system.

      Input passed to the "path" parameter in various scripts is not properly verified before being used to include files. This can be exploited to include arbitrary files from local and remote resources.

    • Secunia Advisory: http://secunia.com/advisories/16434/

  • Secunia Advisory 16439
    Gentoo update for awstats
    • Criticality: High
    • Description: Gentoo has issued an update for awstats. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/16439/

  • Secunia Advisory 16442
    Mandriva update for gaim
    • Criticality: High
    • Description: Mandriva has issued an update for gaim. This fixes a vulnerability and two weaknesses, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a user's system.
    • Secunia Advisory: http://secunia.com/advisories/16442/

  • Secunia Advisory 16449
    Mac OS X Security Update Fixes Multiple Vulnerabilities
    • Criticality: High
    • Description: Apple has issued a security update for Mac OS X, which fixes more than 40 vulnerabilities.
      1. A boundary error in htdigest can be exploited to cause a buffer overflow by passing an overly long realm argument.
        NOTE: htdigest is by default only locally accessible and not setuid / setgid.
      2. Two vulnerabilities in Apache 2 can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service).
    • Secunia Advisory: http://secunia.com/advisories/16449/

  • Secunia Advisory 16455
    Fedora update for evolution
    • Criticality: High
    • Description: Fedora has issued an update for evolution. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/16455/

  • Secunia Advisory 16458
    Debian update for clamav
    • Criticality: High
    • Description: Debian has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/16458/

  • Secunia Advisory 16460
    Nucleus CMS XML-RPC Nested XML Tags PHP Code Execution
    • Criticality: High
    • Description: A vulnerability has been reported in Nucleus CMS, which can be exploited by malicious people to compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/16460/

  • Secunia Advisory 16462
    CPAINT Ajax Toolkit Unspecified Command Execution Vulnerability
    • Criticality: High
    • Description: A vulnerability has been reported in CPAINT, which can be exploited by malicious people to compromise a vulnerable system.

      The vulnerability is caused due to an unspecified error, which can be exploited to execute arbitrary ASP/PHP commands or read files on a vulnerable system.

    • Secunia Advisory: http://secunia.com/advisories/16462/

  • Secunia Advisory 16465
    eGroupWare XML-RPC Nested XML Tags PHP Code Execution
    • Criticality: High
    • Description: A vulnerability has been reported in eGroupWare, which can be exploited by malicious people to compromise a vulnerable system.
    • Secunia Advisory: http://secunia.com/advisories/16465/

  • Secunia Advisory 16466
    Adobe Acrobat / Reader Plug-in Buffer Overflow Vulnerability
    • Criticality: High
    • Description: A vulnerability has been reported in Adobe Reader and Adobe Acrobat, which potentially can be exploited by malicious people to compromise a user's system.

      The vulnerability is caused due to an unspecified boundary error in the core application plug-in and can be exploited to cause a buffer overflow when a specially crafted file is opened.

    • Secunia Advisory: http://secunia.com/advisories/16466/
Explore Internet / Network Security
About.com Special Features

Holiday Central

What to eat, where to go, fun things to do and how to save money on the perfect gifts. More >

Family Tech Center

Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >

Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security
  4. Security Bulletins
  5. Secunia Advisories
  6. Secunia Advisories - August 16, 2005

©2009 About.com, a part of The New York Times Company.

All rights reserved.