.:[ packet storm ]:.
                           
the internet security encyclopedia
the internet security encyclopedia

 ///  File Name:USN-686-1.txt
Description:
Ubuntu Security Notice USN-686-1 - Morgan Todd discovered that AWStats did not correctly strip quotes from certain parameters, allowing for an XSS attack when running as a CGI. If a user was tricked by a remote attacker into following a specially crafted URL, the user's authentication information could be exposed for the domain where AWStats was hosted.
Homepage:http://security.ubuntu.com/
File Size:3971
Related CVE(s):CVE-2008-3714
Last Modified:Dec 3 21:50:35 2008
MD5 Checksum:75c145ec64f4430ab0be1e1967985fce

 .:. Back
 

 ///  Last 10 Files
  1. :· FreeBSD-SA-09-01.lukemftpd.txt
  2. :· FreeBSD-SA-09-02.openssl.txt
  3. :· USN-704-1.txt
  4. :· CA20090107-01.txt
  5. :· dsa-1697-1.txt
  6. :· dsa-1696-1.txt
  7. :· quotebook-disclose.txt
  8. :· cts2009-cfp.txt
  9. :· cisco-sa-20090107-gss.txt
  10. :· secadv_20090107.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· FreeBSD-SA-09-01.lukemftpd.txt
  2. :· FreeBSD-SA-09-02.openssl.txt
  3. :· USN-704-1.txt
  4. :· CA20090107-01.txt
  5. :· dsa-1697-1.txt
  6. :· dsa-1696-1.txt
  7. :· cisco-sa-20090107-gss.txt
  8. :· secadv_20090107.txt
  9. :· oCERT-2008-016.txt
  10. :· msienull-dos.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· quotebook-disclose.txt
  2. :· SN-2008-04.txt
  3. :· winamp-overflow.txt
  4. :· phpfusionecart-sql.txt
  5. :· audacity162-crash.txt
  6. :· perceptionliteserve-overflow.txt
  7. :· phpfusionmembers-sql.txt
  8. :· vuplayer249-overflow.txt
  9. :· joomla-traversal.txt
  10. :· cainabel4925-overflow.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ip-array_0.05.74c.tar.gz
  2. :· mandos_1.0.3.orig.tar.gz
  3. :· lfi-rfi2.txt
  4. :· tor.uclibc.i686.20090105.iso
  5. :· RFIDIOt-0.1v.tgz
  6. :· ratproxy-1.53.tar.gz
  7. :· opennhrp-0.9.2.tar.bz2
  8. :· rkhunter-1.3.4.tar.gz
  9. :· zerowine-0.0.1.tar.gz
  10. :· inguma-0.1.1.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· cts2009-cfp.txt
  2. :· seacureit-cfp2009.txt
  3. :· msfxdc-contest.txt
  4. :· valsmith_colin_blog_spam.pdf
  5. :· dquist_valsmith_further_down_the_vm_spiral.pdf
  6. :· valsmith_dquist_hacking_malware.pdf
  7. :· uCon2009-CFP.txt
  8. :· md5-considered-harmful.pdf
  9. :· clickjack-xss.txt
  10. :· w3af-userguide.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice