===========================================================
Ubuntu Security Notice USN-658-1 October 23, 2008
moodle vulnerability
CVE-2008-1502, CVE-2008-1502
===========================================================

A security issue affects the following Ubuntu releases:

...

------------------------------------------------------------------------
Debian Security Advisory DSA-1659-1 security_at_debian.org
http://www.debian.org/security/ Florian Weimer
October 23, 2008 ...

SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c01579861
Version: 1

HPSBST02379 SSRT080143 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-056 to MS08-066

NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

...

('binary' encoding is not supported, stored as-is) This vulnerability has been fixed with the updated package of the script, released on 22 October 2008.

Download it here:
http://www.mdsjack.bo.it/index.php?page=mjguest#download
Received on Oct 23 2008

I'm sorry ... this is not vulnerable. I confused the program

2008/10/22 Pepelux <pepelux_at_enye-sec.org>:
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
> vshop - Axcoto cart <= 0.1alpha / Local File Inclusion Vulnerability
>...

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
txtshop - beta 1.0 / Local File Inclusion Vulnerability
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

$ Program: txtshop
$ Version: <= 1.0
$ File affected: ADMIN/header.php
$ Download: ...

('binary' encoding is not supported, stored as-is) Due to incorrect use of intval function, leading to the logic of inspection parameters can be bypassed, resulting in SQL injection vulnerability.

-=0x01=- SQL injection Vulnerability
vul code like this:
if ( intval( $id ) )
{
...

('binary' encoding is not supported, stored as-is) # freeSSHd (rename) Buffer Overflow Vulnerability
# http://www.milw0rm.com/exploits/6800 <-- Same vuln just further research

# Registers
# EAX 00000000
# ECX 41414141
# EDX 7C9037D8 ntdll.7C9037D8
# EBX 00000000
# ESP 001376BC
# EBP...

('binary' encoding is not supported, stored as-is) # GoodTech SSH Remote Buffer Overflow Exploit
# Written by r0ut3r - writ3r [at] gmail.com
#
# SSH_FXP_OPEN command contains a buffer oveflow.
#
# All other operations are also vulnerable, opendir, unlink, etc.

use Net::SSH2;

my $user =...

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
vshop - Axcoto cart <= 0.1alpha / Local File Inclusion Vulnerability
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

$ Program: vshop - Axcoto cart
$ Version: <= 0.1alpha
$ File affected:...

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
phpcrs <= 2.06 / Local File Inclusion Vulnerability
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

$ Program: phpcrs
$ Version: <= 2.06
$ File affected: frame.php
$ Download: http://sourceforge.net/projects/phpcrs/

Found by...

------------------------------------------------------------------------
Debian Security Advisory DSA-1658-1 security_at_debian.org
http://www.debian.org/security/ Thijs Kinkhorst
October 22, 2008 ...

SNMP Injection: Achieving Persistent HTML Injection via SNMP on Embedded
Devices

Introduction

In our earlier "ZyXEL Gateways Vulnerability Research" paper[1], we
introduced a new technique: SNMP injection a.k.a. persistent HTML
injection via SNMP. Such a technique allowed us to...

======================================================================
= Security Objectives Advisory (SECOBJADV-2008-05) =
======================================================================

Veritas Storage Foundation Arbitrary File Read Vulnerability

...

('binary' encoding is not supported, stored as-is) Correction to the posted bulletin:

The Networker software versions affected are incorrectly identified.

The following Networker products are affected by this issue:

* NetWorker Server, Storage Node and Client 7.3.x and 7.4, 7.4.1, 7.4.2
*...