| OSVDB ID | Disclosure Date | Title |
|---|
|
15336
Description:
Unknown / Incomplete
|
2004-06-28
|
Microsoft Windows Server 2003 Shutdown.exe Shut Down Failure
|
|
9774
Description:
Unknown / Incomplete
|
2004-06-28
|
Emdros TypeTypeCompatibility Memory Leak Local DoS
|
|
7283
Description:
CuteNews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "id" variable upon submission to the show_archives.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-06-28
|
CuteNews show_archives.php id Parameter XSS
|
|
7284
Description:
CuteNews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "id" variable upon submission to the show_news.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-06-28
|
CuteNews show_news.php id Parameter XSS
|
|
7281
Description:
(Description Provided by CVE) : FreeS/WAN 1.x and 2.x, and other related products including superfreeswan 1.x, openswan 1.x before 1.0.6, openswan 2.x before 2.1.4, and strongSwan before 2.1.3, allows remote attackers to authenticate using spoofed PKCS#7 certificates in which a self-signed certificate identifies an alternate Certificate Authority (CA) and spoofed issuer and subject.
|
2004-06-28
|
Swan Products X.509 Certificate Validation Bypass and DoS
|
|
7271
Description:
(Description Provided by CVE) : PHP remote file inclusion vulnerability in index.php for Artmedic links 5.0 (artmedic_links5) allows remote attackers to execute arbitrary PHP code by modifying the id parameter to reference a URL on a remote web server that contains the code.
|
2004-06-28
|
artmedic links index.php Arbitrary File Retrieval
|
|
7274
Description:
Unknown / Incomplete
|
2004-06-28
|
HP Tru64 UNIX DCE RPC Overflow
|
|
7269
Description:
Apache contains a flaw that may allow a remote denial of service. The issue is triggered when overly long header lines starting with either a TAB or SPACE character are processed by the "ap_get_mime_headers_core()" function, and will result in loss of availability for the service.
|
2004-06-28
|
Multiple HTTP Server Input Header Folding DoS
|
|
7593
Description:
(Description Provided by CVE) : shorewall 1.4.10c and earlier, and 2.0.x before 2.0.3a, allows local users to overwrite arbitrary files via a symlink attack on the chains-$$ temporary file.
|
2004-06-28
|
Shorewall Symlink Arbitrary File Overwrite
|
|
14156
Description:
Unknown / Incomplete
|
2004-06-28
|
BitlBee Jabber vCard Handling Code Format String
|
|
7278
Description:
BEA WebLogic Server and BEA WebLogic Express contain a flaw that may allow a malicious user to gain access to unauthorized resources. The issue is triggered when a Web application has specified a role of name * in a <role-name> tag contained within a <security-constraint> tag. This flaw may lead to a loss of Confidentiality.
|
2004-06-28
|
BEA WebLogic Role Interpretation Privilege Escalation
|
|
7322
Description:
Netscape for HP-UX contains a flaw that may allow an attacker to cause a denial of service. No further details have been provided.
|
2004-06-28
|
HP-UX Netscape Unspecified DoS
|
|
10308
Description:
Netscape for HP-UX contains a flaw that may lead to an unauthorized information disclosure. No further details have been provided.
|
2004-06-28
|
HP-UX Netscape Unspecified Information Disclosure
|
|
10309
Description:
Netscape for HP-UX contains a flaw that may allow an attacker to bypass access restrictions. No further details have been provided.
|
2004-06-28
|
HP-UX Netscape Unspecified Access Restriction Bypass
|
|
10310
Description:
Netscape for HP-UX contains a flaw that may allow an attacker to execute arbitrary code. No further details have been provided.
|
2004-06-28
|
HP-UX Netscape Unspecified Arbritrary Code Execution
|
|
27540
Description:
(Description Provided by CVE) : The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow.
|
2004-06-27
|
Linux Kernel cdrom.c dvd_read_bca Function USB Storage Device Overflow
|
|
7273
Description:
(Description Provided by CVE) : SQL injection vulnerability in Infinity WEB 1.0 allows remote attackers to bypass authentication and gain privileges via the login page.
|
2004-06-27
|
Infinity WEB Login Page Validation Bypass SQL Injection
|
|
7282
Description:
An overflow exists in the TranslateFilename function in Gui/mplayer/common.c of MPlayer. MPlayer fails to verify the lengh of the guiIntfStruct.Filename variable resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary code resulting in a loss of integrity.
|
2004-06-27
|
MPlayer GUI TranslateFilename Overflow
|
|
7430
Description:
Balsa contains a flaw related to broken IMAP sessions that may allow a remote attacker to gain access to plaintext passwords if the server does not support challenge-response authentication. No further details have been provided.
|
2004-06-27
|
Balsa IMAP Session Cleartext Password Disclosure
|
|
7294
Description:
AirPlus DI-614+ and DI624 Xtreme G routers contains a flaw that may allow a remote denial of service. The issue is triggered when a malicious user sends a specially-crafted packet containing a negative integer for the DHCP LEASETIME option, and will result in loss of availability for the device.
|
2004-06-27
|
D-Link Router DHCP LEASETIME DoS
|
|
8415
Description:
Unknown / Incomplete
|
2004-06-27
|
IBM Lotus Notes URL Argument Injection
|
|
7270
Description:
Help Desk Pro contains a flaw that will allow a remote attacker to inject arbitrary SQL code. The problem is due to the improper login validation in the login page, which could allow a remote attacker to bypass authentication settings, resulting in a loss of integrity.
|
2004-06-26
|
Help Desk Pro Login SQL Injection
|
|
15049
Description:
aMSN contains a flaw that may lead to an unauthorized information disclosure. It is possible to gain access to encrypted passwords when a local user opens the config.xml file.
|
2004-06-25
|
aMSN config.xml Encrypted Password Disclosure
|
|
11622
Description:
GNATS contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to a format string condition in the logging functions. With a specially formatted request that is passed to $SYSLOG, a remote attacker could execute command with the privilege of the GNATS process.
|
2004-06-25
|
GNATS log_msg() Function Remote Format String
|
|
7256
Description:
vBulletin newreply.php script contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not properly sanitize input passed to the "WYSIWYG_HTML" parameter prior to returning it to the user. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-06-25
|
vBulletin newreply.php WYSIWYG_HTML Parameter XSS
|
|
14891
Description:
Unknown / Incomplete
|
2004-06-25
|
PHPBackPage Unspecified File Inclusion
|
|
14892
Description:
Unknown / Incomplete
|
2004-06-25
|
PHPBackPage .inc File Information Disclosure
|
|
8119
Description:
Unknown / Incomplete
|
2004-06-25
|
Dr Cat (drcatd) Invalid File Name Remote Overflow
|
|
8120
Description:
Unknown / Incomplete
|
2004-06-25
|
Dr Cat (drcatd) Multiple Local Overflows
|
|
7261
Description:
According to the advisory, ZoneAlarm Pro contains a flaw that may allow a remote attacker to bypass the 'Mobile Code' filter. The 'Mobile Code' blocking feature filters malicious Web objects and any 'application/*' MIME type, but does not filter SSL content. A remote attacker could create a malicious SSL Web page and bypass the Mobile Code filter.
|
2004-06-25
|
ZoneAlarm Pro Mobile Code Filter Protection Bypass
|
|
7272
Description:
SWSoft Confixx contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker issues a malicious backup request, which will backup the contents of "/root" and disclose all contents of the root directory, resulting in a loss of confidentiality.
|
2004-06-25
|
Confixx /root Directory Information Disclosure
|
|
7427
Description:
Enterprise CRM and Groupware System (EGS) contains a flaw related to its Calendar Module that may allow an attacker to see other user events. No further details have been provided.
|
2004-06-25
|
EGS Calendar Module Arbitrary User Event Disclosure
|
|
8092
Description:
Unknown / Incomplete
|
2004-06-25
|
MPlayer GUI Multiple String Handling Overflows
|
|
8949
Description:
SWSoft Confixx contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malicious user symlinks $HOME/files or $HOME/html to an arbitrary directory and issues a backup request. The backup request will backup the contents of the arbitrary directory and disclose all contents of that directory, resulting in a loss of confidentiality.
|
2004-06-25
|
Confixx Symlink Arbitrary Directory Information Disclosure
|
|
8950
Description:
SWSoft Confixx contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when an attacker uses the restore function to change the ownership of arbitrary system files, including /etc/{passwd,shadow}. This flaw may lead to a loss of integrity.
|
2004-06-25
|
Confixx File Ownership Privilege Escalation
|
|
15017
Description:
Mac OS X contains a flaw that may lead to an unauthorized information disclosure. The problem is that the system does not properly clear memory contents, which will disclose sensitive information resulting in a loss of confidentiality.
|
2004-06-25
|
Apple Mac OS X Improper Memory Clearing Cleartext Credential Disclosure
|
|
16040
Description:
(Description Provided by CVE) : admin.php in Newsletter ZWS allows remote attackers to gain administrative privileges via a list_user operation with the ulevel parameter set to 1 (administrator level), which lists all users and their passwords.
|
2004-06-24
|
ZWS Newsletter admin.php Crafted URL Admin Access
|
|
7249
Description:
A local overflow exists in the Broadcom 5820 Cryptonet driver. The driver uses an arbitrary value for the size of a buffer resulting in an integer overflow. With a specially crafted request, an attacker can cause system instability or, in some circumstances, arbitrary code execution resulting in a loss of availability or integrity. The Broadcom 5820 Cryptonet driver is not included in the official Linux kernel source tree.
|
2004-06-24
|
Red Hat Linux Broadcom 5820 Cryptonet Driver Overflow
|
|
7246
Description:
The 3COM SuperStack 3 switch contains a flaw that may allow a remote denial of service. The issue is triggered when a remote authenticated attacker sends in a specially crafted http request to the web management interface which will result in a reset of the device.
|
2004-06-24
|
3Com SuperStack 3 Switch Crafted HTTP Request DoS
|
|
7247
Description:
(Description Provided by CVE) : Unknown vulnerability in Sun StorEdge Enterprise Storage Manager (ESM) 2.1 for Solaris 8 and Solaris 9 allows local users with the "ESMUser" role to gain root access.
|
2004-06-24
|
Sun StorEdge ESM Privilege Escalation
|
