CIRT vuln disclosure

Avi Alkalay Multiple Scripts / Multiple Issues

Product:
Alkalay.net Scripts

Released:
09/20/2005

Description:
Multiple perl scripts from alkalay.net contain remote command execution or arbitrary file retrieval vulnerabilities.

Software Affected:
man-cgi (Command Execution)
notify (Command Execution)
nslookup.cgi (Command Execution)
contribute.cgi/contribute.pl (File Retrieval)

Technical Description:
Various perl scripts on alkalay.net act on unsafe data from the client, which can allow command execution on the web server or

Vulnerabilities: 

Cerulean Studios Trillian 3.1 Blank AIM Message DoS

Product:
Trillian Pro and Basic 3.1 Build 121

Released:
02/28/2006

Description:
It is possible to remotely crash Trillian by sending an empty IM with the AOL AIM protocol. This attack is easily repeatable. The attack does not require the Trillian user to accept the message or have the user in their contact list. Trillian will display an incoming message from the attacker, but does not show any text.

The error message upon crash is:

Systems Affected:

Vulnerabilities: 

Verity Ultraseek Multiple

Product:
Verity Ultraseek

Released:
11/15/2006

Description:
ZDI published some Verity Ultraseek vulnerabilities (ZDI-06-042) I discovered early this year. This can let you host/port scan or load pages from protected resources (localhost web servers, other servers in a DMZ, etc.).

Contacts:
sullo@cirt.net

References:

Vulnerabilities: 

Unobtrusive Ajax Star Rating Bar Multiple Issues

Product:
Unobtrusive Ajax Star Rating Bar

Released:
07/09/2007

Description:
The Unobtrusive Ajax Star Rating Bar contains SQL injections in the db.php and rpc.php scripts, CRLF injection to the db.php script, and
XSS to the rpc.php script.

Technical Description:
SQL Injection: rpc.php q and t variables
SQL Injection: db.php q and t variables
CRLF Injection: db.php HTTP_REFERER variable
XSS: rpc.php q variable

Fix/Workaround:

Vulnerabilities: 

Pages