---------------------------------------------------------------------- Secunia is pleased to announce the release of the annual Secunia report for 2008. Highlights from the 2008 report: * Vulnerability Research * Software Inspection Results * Secunia Research Highlights * Secunia Advisory Statistics Request the full 2008 Report here: http://secunia.com/advisories/try_vi/request_2008_report/ Stay Secure, Secunia ---------------------------------------------------------------------- TITLE: OpenX Multiple Vulnerabilities SECUNIA ADVISORY ID: SA34507 VERIFY ADVISORY: http://secunia.com/advisories/34507/ DESCRIPTION: Some vulnerabilities have been reported in OpenX, which can be exploited by malicious people to conduct cross-site scripting or SQL injection attacks, and to manipulate certain data. 1) Input passed via the "OAID" cookie parameter in www/delivery/tjs.php and adview.php, and to the "referer" parameter in www/delivery/tjs.php is not properly sanitised before being used in an SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. 2) Input passed to the "email" parameter in www/admin/sso-accounts.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. 3) Input passed to the "trackerid" parameter in www/delivery/tjs.php and potentially via other parameters in various delivery scripts is not properly sanitised before being used. This can potentially be exploited to delete arbitrary files. The vulnerabilities are reported in version 2.4.10 and 2.6.4. Other versions may also be affected. SOLUTION: Update to version 2.4.11, 2.6.5, or 2.8.0. PROVIDED AND/OR DISCOVERED BY: EnableSecurity ORIGINAL ADVISORY: http://resources.enablesecurity.com/advisories/openx-2.6.4-multiple.txt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------