[CLOSE] OSVDB ID : 51746 - Disclosed: 2003-04-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51747 - Disclosed: 2003-04-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51748 - Disclosed: 2003-04-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 6567 - Disclosed: 2003-04-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 7289 - Disclosed: 2003-04-30

Description:

Adobe Acrobat contains a flaw in Acrobat's JavaScript parsing engine running on all versions of Microsoft Windows. This could allow a user to create a malicious PDF document that would write code in a user's plug-ins folder that would be automatically installed and executed with system permissions on the next session of Acrobat.

[CLOSE] OSVDB ID : 2140 - Disclosed: 2003-04-30

Description:

OpenSSH portable contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when PAM is enabled; remote users can determine which usernames are valid by looking at the relative time it takes to receive an error response from the system. When PAM is enabled, OpenSSH returns an error almost immediately if a user does not exist, and is slower if the user exists but the password is incorrect. This disparity in timing will disclose when the attacker hits upon a valid username, making brute-force username/password guessing easier and resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 8377 - Disclosed: 2003-04-30

Description:

WackoWiki contains a flaw related to double-double quotes that may allows a remote cross site scripting attack. No further details have been provided.

[CLOSE] OSVDB ID : 55331 - Disclosed: 2003-04-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 10103 - Disclosed: 2003-04-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in the Document Tracking and Administration (DTA) website of Microsoft BizTalk Server 2000 and 2002 allows remote attackers to execute operating system commands via a request to (1) rawdocdata.asp or (2) RawCustomSearchField.asp containing an embedded SQL statement.

[CLOSE] OSVDB ID : 10104 - Disclosed: 2003-04-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in the Document Tracking and Administration (DTA) website of Microsoft BizTalk Server 2000 and 2002 allows remote attackers to execute operating system commands via a request to (1) rawdocdata.asp or (2) RawCustomSearchField.asp containing an embedded SQL statement.

[CLOSE] OSVDB ID : 13406 - Disclosed: 2003-04-30

Description:

(Description Provided by CVE) : Buffer overflow in the HTTP receiver function (BizTalkHTTPReceive.dll ISAPI) of Microsoft BizTalk Server 2002 allows attackers to execute arbitrary code via a certain request to the HTTP receiver.

[CLOSE] OSVDB ID : 16021 - Disclosed: 2003-04-29

Description:

(Description Provided by CVE) : Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option.

[CLOSE] OSVDB ID : 4536 - Disclosed: 2003-04-29

Description:

OpenSSH portable contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when OpenSSH is compiled with gcc or some other non-native-AIX complier, and an attacker places a specially crafted library in the current directory. This will allow the attacker to gain unauthorized privileges, and the flaw may lead to a loss of confidentiality.

[CLOSE] OSVDB ID : 60221 - Disclosed: 2003-04-29

Description:

(Description Provided by CVE) : Worker Filemanager 1.0 through 2.7 sets the permissions on the destination directory to world-readable and executable while copying data, which could allow local users to obtain sensitive information.

[CLOSE] OSVDB ID : 60261 - Disclosed: 2003-04-29

Description:

(Description Provided by CVE) : Auerswald COMsuite CTI ControlCenter 3.1 creates a default "runasositron" user account with an easily guessable password, which allows local users or remote attackers to gain access.

[CLOSE] OSVDB ID : 60414 - Disclosed: 2003-04-29

Description:

(Description Provided by CVE) : Netscape Navigator 7.0.2 and Mozilla allows remote attackers to access cookie information in a different domain via an HTTP request for a domain with an extra . (dot) at the end.

[CLOSE] OSVDB ID : 60415 - Disclosed: 2003-04-29

Description:

(Description Provided by CVE) : Netscape Navigator 7.0.2 and Mozilla allows remote attackers to access cookie information in a different domain via an HTTP request for a domain with an extra . (dot) at the end.

[CLOSE] OSVDB ID : 15136 - Disclosed: 2003-04-28

Description:

(Description Provided by CVE) : Unknown vulnerability in rpcbind for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (rpcbind crash).

[CLOSE] OSVDB ID : 46822 - Disclosed: 2003-04-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 2109 - Disclosed: 2003-04-28

Description:

OpenSSH contains a flaw that may allow a malicious user to guess the root password more quickly, and confirm when the correct password has been guessed even when PermitRootLogin is set to No. The issue is triggered when an attacker simply enters various guesses at root's password and analyzes the time it takes for the SSH server to respond. This issue has been reported to exist in OpenSSH-portable on Linux systems, though it may affect other platforms and versions. It is possible that the flaw may allow confirmation of a guessed root password, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 6293 - Disclosed: 2003-04-28

Description:

(Description Provided by CVE) : Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to execute administrator commands by sniffing packets from a valid session and replaying them against the remote administration server.

[CLOSE] OSVDB ID : 6294 - Disclosed: 2003-04-28

Description:

A remote overflow exists in Kerio Personal Firewall (KPF). The KPF fails to check the boundary of handshake packets in the administration authentication process. By sending a specially crafted request during the handshake process to establish a connection to the administration port, a remote attacker can overflow a buffer and execute arbitrary code on the system with the privileges of the Kerio firewall, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 7734 - Disclosed: 2003-04-28

Description:

(Description Provided by CVE) : The (1) dupatch and (2) setld utilities in HP Tru64 UNIX 5.1B PK1 and earlier allows local users to overwrite files and possibly gain root privileges via a symlink attack.

[CLOSE] OSVDB ID : 7735 - Disclosed: 2003-04-28

Description:

(Description Provided by CVE) : The (1) dupatch and (2) setld utilities in HP Tru64 UNIX 5.1B PK1 and earlier allows local users to overwrite files and possibly gain root privileges via a symlink attack.

[CLOSE] OSVDB ID : 11091 - Disclosed: 2003-04-28

Description:

(Description Provided by CVE) : Buffer overflow in Pi3Web 2.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a GET request with a large number of / characters.

[CLOSE] OSVDB ID : 12305 - Disclosed: 2003-04-28

Description:

(Description Provided by CVE) : Buffer overflow in les for ATM on Linux (linux-atm) before 2.4.1, if used setuid, allows local users to gain privileges via a long -f command line argument.

[CLOSE] OSVDB ID : 59842 - Disclosed: 2003-04-28

Description:

(Description Provided by CVE) : Buffer overflow in 3D-FTP client 4.0 allows remote FTP servers to cause a denial of service (crash) and possibly execute arbitrary code via a long banner.

[CLOSE] OSVDB ID : 60266 - Disclosed: 2003-04-28

Description:

(Description Provided by CVE) : MDaemon POP server 6.0.7 and earlier allows remote authenticated users to cause a denial of service (crash) via a (1) DELE or (2) UIDL with a negative number.

[CLOSE] OSVDB ID : 60330 - Disclosed: 2003-04-28

Description:

(Description Provided by CVE) : Untrusted search path vulnerability in Qualcomm qpopper 4.0 through 4.05 allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd program.

[CLOSE] OSVDB ID : 15135 - Disclosed: 2003-04-27

Description:

(Description Provided by CVE) : Memory leak in lofiadm in Solaris 8 allows local users to cause a denial of service (kernel memory consumption).

[CLOSE] OSVDB ID : 55186 - Disclosed: 2003-04-27

Description:

(Description Provided by CVE) : Buffer overflow in IMAP service in MDaemon 6.7.5 and earlier allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via a CREATE command with a long mailbox name.

[CLOSE] OSVDB ID : 58496 - Disclosed: 2003-04-27

Description:

Opera is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted, long filename extension, a remote attacker can potentially execute code with the privileges of the user.

[CLOSE] OSVDB ID : 11915 - Disclosed: 2003-04-27

Description:

SAP DB contains a flaw that may allow a local malicious user to overwrite the contents of files during installation. The issue is due to a race condition in the installation, a period of several seconds passes between decompressing the files and setting the setuid bits. It is possible that the flaw may allow a malicious local user to overwrite the contents of the files between decompression and setting the setuid bits resulting in a loss of integrity.

[CLOSE] OSVDB ID : 49951 - Disclosed: 2003-04-26

Description:

(Description Provided by CVE) : The default configuration of ColdFusion MX has the "Enable Robust Exception Information" option selected, which allows remote attackers to obtain the full path of the web server via a direct request to CFIDE/probe.cfm, which leaks the path in an error message.

[CLOSE] OSVDB ID : 25884 - Disclosed: 2003-04-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 41109 - Disclosed: 2003-04-26

Description:

(Description Provided by CVE) : Album.pl 6.1 allows remote attackers to execute arbitrary commands, when an alternative configuration file is used, via unknown attack vectors.

[CLOSE] OSVDB ID : 53493 - Disclosed: 2003-04-25

Description:

(Description Provided by CVE) : Absolute path traversal vulnerability in Alt-N Technologies WebAdmin 2.0.0 through 2.0.2 allows remote attackers with administrator privileges to (1) determine the installation path by reading the contents of the Name parameter in a link, and (2) read arbitrary files via an absolute path in the Name parameter.

[CLOSE] OSVDB ID : 11692 - Disclosed: 2003-04-25

Description:

Roxen Web Server contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a user listing request is made -- even if the "enable userlisting" flag is set to off. Such a request will return a list of users despite the configuration.

[CLOSE] OSVDB ID : 7736 - Disclosed: 2003-04-25

Description:

(Description Provided by CVE) : Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and earlier allows attackers to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter.

[CLOSE] OSVDB ID : 53369 - Disclosed: 2003-04-25

Description:

(Description Provided by CVE) : The (1) verif_admin.php and (2) check_admin.php scripts in Truegalerie 1.0 allow remote attackers to gain administrator access via a request to admin.php without the connect parameter and with the loggedin parameter set to any value, such as 1.