[CLOSE] OSVDB ID : 14153 - Disclosed: 2003-12-31

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 17275 - Disclosed: 2003-12-31

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the VCard4J Toolkit allows remote attackers to inject arbitrary web script or HTML via the NICKNAME tag in a vCard.

[CLOSE] OSVDB ID : 47812 - Disclosed: 2003-12-30

Description:

(Description Provided by CVE) : Opera, probably before 7.50, sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.

[CLOSE] OSVDB ID : 47811 - Disclosed: 2003-12-30

Description:

(Description Provided by CVE) : Netscape 4 sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.

[CLOSE] OSVDB ID : 3304 - Disclosed: 2003-12-30

Description:

miniBB contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the URL of a user's profile in the bb_edit_prf.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 3303 - Disclosed: 2003-12-30

Description:

PHPCatalog contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "id" variable is not verified properly and will allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 3314 - Disclosed: 2003-12-30

Description:

Mac OS X contains a flaw that may allow a local denial of service. The issue is triggered when unlocking a locked keychain and using a very long password. This will result in the SecurityServer crashing and starting a cascading effect of crashing other processes that rely on it.

[CLOSE] OSVDB ID : 6879 - Disclosed: 2003-12-30

Description:

(Description Provided by CVE) : Multiple buffer overflows in xsok 1.02 allows local users to gain privileges via (1) a long LANG environment variable, or (2) a long -xsokdir command line argument, a different vulnerability than CVE-2003-0949.

[CLOSE] OSVDB ID : 3258 - Disclosed: 2003-12-30

Description:

Xsok contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered due to an unspecified error.

[CLOSE] OSVDB ID : 3256 - Disclosed: 2003-12-30

Description:

The NETObserve PC surveillance software uses a web service to provide remote access to the monitored PC. This web service requires a username and password to access, however this authentication can be bypassed by specifying the cookie value of 'login=0'. Once access has been obtained, all features of the NetObserve system are available, including the ability to upload files and execute commands.

[CLOSE] OSVDB ID : 3255 - Disclosed: 2003-12-30

Description:

The MDaemon mail server contains a flaw in a CGI application called 'Form2Raw.exe'. This CGI is used to send raw email messages through the HTTP protocol. A stack overflow condition can be triggered in this application by sending a request which contains a From parameter of more than 153 bytes. This overflow can be exploited remote by an unauthenticated attacker to execute arbitrary code in the context of the MDaemon service (normally LocalSystem).

[CLOSE] OSVDB ID : 3254 - Disclosed: 2003-12-30

Description:

The PHP-Ping web application does not validate the 'count' parameter prior to including it in a call to the system() function. This allows an unauthenticated remote user to execute arbitrary commands on this system with the privileges of the web server process.

[CLOSE] OSVDB ID : 11650 - Disclosed: 2003-12-30

Description:

(Description Provided by CVE) : The AGate component for SAP Internet Transaction Server (ITS) allows remote attackers to obtain sensitive information via a ~command parameter with an AgateInstallCheck value, which provides a list of installed DLLs and full pathnames.

[CLOSE] OSVDB ID : 11735 - Disclosed: 2003-12-30

Description:

(Description Provided by CVE) : Format string vulnerability in the WGate component for SAP Internet Transaction Server (ITS) allows remote attackers to execute arbitrary code via a high "trace level."

[CLOSE] OSVDB ID : 7366 - Disclosed: 2003-12-29

Description:

thttpd contains a flaw that may allow a remote attacker to bypass access restrictions. By sending a specially crafted URL containing query strings, a remote attacker could bypass the non-local HTTP referer check, resulting in a loss of confidentiality. No further details have been provided.

[CLOSE] OSVDB ID : 50563 - Disclosed: 2003-12-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 3302 - Disclosed: 2003-12-29

Description:

phpBB contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the $sql_in variable is not verified properly in "groupcp.php" and will allow an attacker with moderator privilege to inject arbitrary SQL queries.

[CLOSE] OSVDB ID : 23391 - Disclosed: 2003-12-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 3230 - Disclosed: 2003-12-29

Description:

ViewCVS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate paths upon submission and are returned unfiltered. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 3227 - Disclosed: 2003-12-29

Description:

CVS contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a user with write access to the repository sends a malformed directory name and makes special use of the "update-prog" and "checkin-prog" commands to execute arbitrary code on the server with the privileges of the running CVS server. If CVSROOT/passwd has been left as writeable this results in a root compromise. This flaw may lead to a loss of Confidentiality, Integrity and/or Availability.

[CLOSE] OSVDB ID : 3257 - Disclosed: 2003-12-29

Description:

A remote overflow exists in Jordan Windows Telnet Server. The server fails to check login input resulting in a buffer overflow. With a specially crafted request, an attacker can cause the return value to be overwritten resulting in a loss of confidentiality, integrity, and/or availability.

[CLOSE] OSVDB ID : 3226 - Disclosed: 2003-12-29

Description:

Private Message System contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate variables upon submission to the "page" and "index.php" scripts. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 7912 - Disclosed: 2003-12-29

Description:

Microsoft Internet Explorer contains a flaw that may allow a remote attacker to execute arbitrary files. The issue is triggered due to the 'showHelp()' function. It is possible that the flaw may allow a malicious web page, which invokes the 'showHelp()' function to execute known compiled help files (.chm) within the Local Computer security zone, once the page is viewed resulting in a loss of integrity.

[CLOSE] OSVDB ID : 3225 - Disclosed: 2003-12-28

Description:

Internet Explorer contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a user follows a link on a secure page, which will disclose HTTP Referer information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 3223 - Disclosed: 2003-12-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 3231 - Disclosed: 2003-12-28

Description:

IIS contains a flaw that may allow a malicious user to probe a server without being logged. The issue is triggered when the TRACK verb is used in a request, as TRACK requests are not logged. It is possible that the flaw may allow unauthorized probing to go undetected.

[CLOSE] OSVDB ID : 3220 - Disclosed: 2003-12-28

Description:

OpenBB contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "FID" variable upon submission to the "board.php" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19371 - Disclosed: 2003-12-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 4864 - Disclosed: 2003-12-28

Description:

Microsoft Internet Information Server (IIS) contains a flaw that may allow a remote attacker to obtain information without being logged. The issue is due to the IIS server not properly logging HTTP TRACK requests. If an attacker uses TRACK requests, they may be able to probe or attempt to exploit an IIS server undetected.

[CLOSE] OSVDB ID : 5648 - Disclosed: 2003-12-27

Description:

The HTTP TRACK method returns the contents of client HTTP requests in the entity-body of the TRACK response. This behavior could be leveraged by attackers to access sensitive information, such as cookies or authentication data, contained in the HTTP headers of the request. Attackers may abuse HTTP TRACK functionality to gain access to information in HTTP headers that is not otherwise available via the DOM interface. Examples of such information are cookies and authentication data. In the presence of other cross-site domain vulnerabilities in web browsers, sensitive header information could be read from domains other than the target of the HTTP TRACK request.

[CLOSE] OSVDB ID : 3222 - Disclosed: 2003-12-27

Description:

LANDesk Software contains a flaw that may allow a malicious user to execute code on a vulnerable host. The issue is triggered when a web page containing a call to the vulnerable ActiveX control along with a malicious argument occurs. It is possible that the flaw may allow the attacker to execute arbitrary code on the vulnerable host with privileges of the browser user, resulting in a loss of confidentiality, integrity, and/or availability.

[CLOSE] OSVDB ID : 7380 - Disclosed: 2003-12-27

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 7615 - Disclosed: 2003-12-26

Description:

PHPhoto contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to the 'picture_list.php' script, which will disclose hidden albums by unauthorized users resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 3224 - Disclosed: 2003-12-26

Description:

A local overflow exists in Indent. The handle_token_colon() function fails to perform bounds checking, resulting in a heap overflow. With a specially crafted .c file, an attacker can cause a buffer overflow and execute arbitrary code in the context of the user, resulting in a loss of confidentiality, integrity, and/or availability.

[CLOSE] OSVDB ID : 3215 - Disclosed: 2003-12-26

Description:

Apache mod_php contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker makes an SSL connection to the Apache server with permissions to execute file uploads, which will disclose file descriptor information resulting in possible hijacking of the HTTP service.

[CLOSE] OSVDB ID : 3306 - Disclosed: 2003-12-26

Description:

(Description Provided by CVE) : connection.c in Cherokee web server before 0.4.6 allows remote attackers to cause a denial of service via an HTTP POST request without a Content-Length header field.

[CLOSE] OSVDB ID : 6650 - Disclosed: 2003-12-26

Description:

QuizShock contains a flaw that may allow an unauthenticated and unverified user access to the QuizShock system. The issue is due to the vBulletin user module allowing unverified users access to the system before administrative approval.

[CLOSE] OSVDB ID : 3200 - Disclosed: 2003-12-25

Description:

ACK_hole contains a flaw that allows a remote attacker to execute arbitrary code on a vulnerable system. The flaw is due to improper initialization of a "len arg" in a read(2) function. This may allow a remote attacker to send a specially crafted packet that overflows the buffer and executes remote commands.

[CLOSE] OSVDB ID : 3219 - Disclosed: 2003-12-24

Description:

Pserv contains a flaw that allows a remote attacker to access arbitrary directories outside of the web path. The issue is due to the server not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the URI.

[CLOSE] OSVDB ID : 3216 - Disclosed: 2003-12-24

Description:

A remote overflow exists in Xlight FTP server. The Xlight FTP server fails to properly check boundries on FTP arguments resulting in a buffer overflow. With a specially crafted request, an attacker can cause execution of arbitrary code or application failure resulting in a loss of confidentiality, integrity, and/or availability.