[CLOSE] OSVDB ID : 59536 - Disclosed: 2003-02-28

Description:

WEB-ERP contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when a remote attacker sends a URL request for the 'logicworks.ini' file obtaining sensitive information, including the username and password for the backend MySQL database, which will disclose sensitive information about the back end database including database login credentials.

[CLOSE] OSVDB ID : 4806 - Disclosed: 2003-02-28

Description:

Axis Network Camera contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when getting the /support/messages on the target webserver, which will disclose the '/var/log/messages' system logfile which can contains sensitive information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 4807 - Disclosed: 2003-02-28

Description:

Axis Network Camera contains a flaw that may allow a malicious user to overwrite system files. The issue is triggered when using specially crafted parameters (especially 'buffername' and 'format' ) when calling the '/axis-cgi/buffer/command.cgi' script o the web interface. It is possible that the flaw may allow overwriting of system files resulting in a loss of integrity.

[CLOSE] OSVDB ID : 4808 - Disclosed: 2003-02-28

Description:

Axis Network Camera contains a flaw that may allow a malicious user to create arbitrary files. The issue is triggered when calling the 'axis-cgi/buffer/command.cgi' with specific 'buffername' and 'format' parameters in the Web interface. It is possible that the flaw may allow creation of arbitrary files resulting in a loss of integrity.

[CLOSE] OSVDB ID : 12497 - Disclosed: 2003-02-28

Description:

(Description Provided by CVE) : adb2mhc in the mhc-utils package before 0.25+20010625-7.1 allows local users to overwrite arbitrary files via a symlink attack on a default temporary directory with a predictable name.

[CLOSE] OSVDB ID : 60159 - Disclosed: 2003-02-28

Description:

(Description Provided by CVE) : CoffeeCup Software Password Wizard 4.0 stores sensitive information such as usernames and passwords in a .apw file under the web document root with insufficient access control, which allows remote attackers to obtain that information via a direct request for the file.

[CLOSE] OSVDB ID : 60285 - Disclosed: 2003-02-28

Description:

(Description Provided by CVE) : Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a ... (triple dot) in the filename paramter.

[CLOSE] OSVDB ID : 60286 - Disclosed: 2003-02-28

Description:

(Description Provided by CVE) : parse_xml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote attackers to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages.

[CLOSE] OSVDB ID : 15146 - Disclosed: 2003-02-27

Description:

(Description Provided by CVE) : The FTP client for Solaris 2.6, 7, and 8 with the debug (-d) flag enabled displays the user password on the screen during login.

[CLOSE] OSVDB ID : 16413 - Disclosed: 2003-02-27

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51820 - Disclosed: 2003-02-27

Description:

(Description Provided by CVE) : Buffer overflow in ISMail 1.4.3 and earlier allow remote attackers to execute arbitrary code via long domain names in (1) MAIL FROM or (2) RCPT TO fields.

[CLOSE] OSVDB ID : 3357 - Disclosed: 2003-02-27

Description:

Invision Power Board contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'ipchat.php' script not properly sanitizing user input supplied to the 'root_path' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 8811 - Disclosed: 2003-02-27

Description:

(Description Provided by CVE) : isakmp_sub_print in tcpdump 3.6 through 3.7.1 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed ISAKMP packet to UDP port 500, which causes tcpdump to enter an infinite loop.

[CLOSE] OSVDB ID : 9796 - Disclosed: 2003-02-27

Description:

(Description Provided by CVE) : Ecartis 1.0.0 (formerly listar) before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page.

[CLOSE] OSVDB ID : 17580 - Disclosed: 2003-02-26

Description:

Opera contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the content of self generated temporary pages for displaying a redirection when the 'Automatic redirection' option is disabled. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 6074 - Disclosed: 2003-02-26

Description:

Windows Me contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate hcp:// URLs. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 59807 - Disclosed: 2003-02-26

Description:

(Description Provided by CVE) : Format string vulnerability in AMX 0.9.2 and earlier, a plugin for Valve Software's Half-Life Server, allows remote attackers to execute arbitrary commands via format string specifiers in the amx_say command.

[CLOSE] OSVDB ID : 60155 - Disclosed: 2003-02-26

Description:

(Description Provided by CVE) : Buffer overflow in the remote console (rcon) in Battlefield 1942 1.2 and 1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long user name and password.

[CLOSE] OSVDB ID : 50618 - Disclosed: 2003-02-25

Description:

(Description Provided by CVE) : clarkconnectd in ClarkConnect Linux 1.2 allows remote attackers to obtain sensitive information about the server via the characters (1) A, which reveals the date and time, (2) F, (3) M, which reveals 'ifconfig' information, (4) P, which lists the processes, (5) Y, which reveals the snort log files, or (6) b, which reveals /var/log/messages.

[CLOSE] OSVDB ID : 5957 - Disclosed: 2003-02-25

Description:

CuteNews contains a flaw in the shownews.php script that may allow an attacker to execute arbitrary PHP code on the affected webserver. The issue is triggered when an attacker passes the URL of a malicious PHP script to the $cutepath variable from a web browser. It is possible that the flaw may allow execution of arbitrary code with the privileges of the target web server, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 6051 - Disclosed: 2003-02-25

Description:

CuteNews contains a flaw in the search.php script that may allow an attacker to execute arbitrary PHP code on the affected webserver. The issue is triggered when an attacker passes the URL of a malicious PHP script to the $cutepath variable from a web browser. It is possible that the flaw may allow execution of arbitrary code with the privileges of the target web server, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 6052 - Disclosed: 2003-02-25

Description:

CuteNews contains a flaw in the comments.php script that may allow an attacker to execute arbitrary PHP code on the affected webserver. The issue is triggered when an attacker passes the URL of a malicious PHP script to the $cutepath variable from a web browser. It is possible that the flaw may allow execution of arbitrary code with the privileges of the target web server, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 45228 - Disclosed: 2003-02-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 45227 - Disclosed: 2003-02-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52433 - Disclosed: 2003-02-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 6457 - Disclosed: 2003-02-25

Description:

(Description Provided by CVE) : Format string vulnerability in Nokia 6210 handset allows remote attackers to cause a denial of service (crash, lockup, or restart) via a Multi-Part vCard with fields containing a large number of format string specifiers.

[CLOSE] OSVDB ID : 9854 - Disclosed: 2003-02-25

Description:

(Description Provided by CVE) : Unknown vulnerability in tcpdump before 3.7.2 related to an inability to "Handle unknown RADIUS attributes properly," allows remote attackers to cause a denial of service (infinite loop), a different vulnerability than CAN-2003-0093.

[CLOSE] OSVDB ID : 60399 - Disclosed: 2003-02-25

Description:

(Description Provided by CVE) : Unknown vulnerability in VERITAS Bare Metal Restore (BMR) of Tivoli Storage Manager (TSM) 3.1.0 through 3.2.1 allows remote attackers to gain root privileges on the BMR Main Server.

[CLOSE] OSVDB ID : 60361 - Disclosed: 2003-02-25

Description:

(Description Provided by CVE) : nCipher Support Software 6.00, when using generatekey KeySafe to import keys, does not delete the temporary copies of the key, which may allow local users to gain access to the key by reading the (1) key.pem or (2) key.der files.

[CLOSE] OSVDB ID : 60395 - Disclosed: 2003-02-25

Description:

(Description Provided by CVE) : Apache HTTP Server 1.3.22 through 1.3.27 on OpenBSD allows remote attackers to obtain sensitive information via (1) the ETag header, which reveals the inode number, or (2) multipart MIME boundary, which reveals child proccess IDs (PID).

[CLOSE] OSVDB ID : 60400 - Disclosed: 2003-02-25

Description:

(Description Provided by CVE) : Netscape 7.0 allows remote attackers to cause a denial of service (crash) via a web page with an invalid regular expression argument to the JavaScript reformatDate function.

[CLOSE] OSVDB ID : 60396 - Disclosed: 2003-02-25

Description:

(Description Provided by CVE) : Apache HTTP Server 1.3.22 through 1.3.27 on OpenBSD allows remote attackers to obtain sensitive information via (1) the ETag header, which reveals the inode number, or (2) multipart MIME boundary, which reveals child proccess IDs (PID).

[CLOSE] OSVDB ID : 4917 - Disclosed: 2003-02-24

Description:

Hanterm-xf contains a flaw that may allow a malicious user to execute arbitrary commands. The issue is triggered when a user inadvertantly opens up a text file containing commands and malformed escape charaters, as a result this could modify the Windows title and result in the commands being added in the command line of the terminal windows where they could be executed if the user presses Enter. It is possible that the flaw may allow execution of arbitrary code resulting in a loss of confidentiality and integrity.

[CLOSE] OSVDB ID : 10803 - Disclosed: 2003-02-24

Description:

Webmin and Usermin both contain a flaw that may allow a malicious user to gain access. The issue is due to a lack of proper sanitization for input supplied to the miniserv.pl script. If an attacker has knowledge of a valid username, that person can spoof a session ID, which is then added to the access control list, giving the attacker full access to the system (and thus root privileges on the system running the vulnerable program).

[CLOSE] OSVDB ID : 60458 - Disclosed: 2003-02-24

Description:

(Description Provided by CVE) : VTE, as used by default in gnome-terminal terminal emulator 2.2 and as an option in gnome-terminal 2.0, allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands.

[CLOSE] OSVDB ID : 60459 - Disclosed: 2003-02-24

Description:

(Description Provided by CVE) : The DEC UDK processing feature in the xterm terminal emulator in XFree86 4.2.99.4 and earlier allows attackers to cause a denial of service via a certain character escape sequence that causes the terminal to enter a tight loop.

[CLOSE] OSVDB ID : 4591 - Disclosed: 2003-02-24

Description:

(Description Provided by CVE) : The Eterm terminal emulator 0.9.1 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands.

[CLOSE] OSVDB ID : 23984 - Disclosed: 2003-02-24

Description:

AnyPortal contains a flaw that allows a remote attacker to create or delete arbitrary files outside of the web path. The issue is due to the siteman.php3 script not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'F' variable.

[CLOSE] OSVDB ID : 51195 - Disclosed: 2003-02-24

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in index.php for GONiCUS System Administrator (GOsa) 1.0 allows remote attackers to execute arbitrary PHP code via the plugin parameter to (1) 3fax/1blocklists/index.php; (2) 6departamentadmin/index.php, (3) 5terminals/index.php, (4) 4mailinglists/index.php, (5) 3departaments/index.php, and (6) 2groupd/index.php in 2administration/; or (7) the base parameter to include/help.php.

[CLOSE] OSVDB ID : 51196 - Disclosed: 2003-02-24

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in index.php for GONiCUS System Administrator (GOsa) 1.0 allows remote attackers to execute arbitrary PHP code via the plugin parameter to (1) 3fax/1blocklists/index.php; (2) 6departamentadmin/index.php, (3) 5terminals/index.php, (4) 4mailinglists/index.php, (5) 3departaments/index.php, and (6) 2groupd/index.php in 2administration/; or (7) the base parameter to include/help.php.