| OSVDB ID | Disclosure Date | Title |
|---|
|
9730
Description:
gnubiff contains a flaw related to the 'pop3.c' file that may allow a remote attacker to cause a buffer overflow. No further details have been provided.
|
2004-09-06
|
gnubiff POP3 Unspecified Remote Overflow
|
|
9731
Description:
gnubiff contains a flaw that may allow a remote denial of service. The issue is triggered when processing UIDL lists, which may allow a remote attacker to crash the process with excessive UIDL requests, and will result in loss of availability for the service.
|
2004-09-06
|
gnubiff POP3 uidl Saturation DoS
|
|
9747
Description:
File "/usr/share/snmp/mibs/.index", which stores information about paths to MIB structure files, is world writeable. This can be exploited to manipulate arbitrary content in the file and corrupt the MIB tree.
|
2004-09-06
|
Fujitsu ServerView MIB Tree Local Modification
|
|
9749
Description:
OpenCA contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate input variables upon submission to the web frontends. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-09-06
|
OpenCA Client System Browser Form Input Field XSS
|
|
9752
Description:
Multi-gnome-terminal contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the debugging code outputs keystrokes to the ".xsession-errors" occurs, which will disclose sensitive information resulting in a loss of confidentiality.
|
2004-09-06
|
Gentoo multi-gnome-terminal Information Disclosure
|
|
10044
Description:
(Description Provided by CVE) : Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and earlier allows remote attackers to execute arbitrary code via a (1) DVD or (2) MPEG subpicture header where the second field reuses RLE data from the end of the first field.
|
2004-09-06
|
xine-lib DVD Subpicture Decoder Remote Overflow
|
|
9703
Description:
Call of Duty contains a flaw that may allow a remote denial of service. The issue is triggered when a query or a reply containing over 1024 chars is sent to the Call of Duty client or server, which triggers the anti-buffer overflow code, and will result in loss of availability for the client/server.
|
2004-09-05
|
Call of Duty Anti-Buffer-Overflow Protection Large Input DoS
|
|
9775
Description:
Usermin contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the /tmp/.webmin directory has been created prior to installation. It is possible for a malicious user to create a symlink to any other file on the system, which would be overwritten when Usermin writes to the link filename, resulting in a loss of integrity.
|
2004-09-05
|
Webmin/Usermin Installation .webmin Symlink Local Privilege Escalation
|
|
9745
Description:
Unknown / Incomplete
|
2004-09-05
|
Site News sitenews.cgi Arbitrary Message Modification
|
|
9786
Description:
PSnews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'show_all' and 'add_kom' variables upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-09-05
|
PSnews index.php Multiple Parameter XSS
|
|
9663
Description:
Kerio Personal Firewall contains a flaw that may allow a remote denial of service. The issue is triggered when a malicious program writes directly to \device\physicalmemory and overwrites the SDT ServiceTable, and will result in loss of availability for the firewall execution protection service.
|
2004-09-04
|
Kerio Personal Firewall Application Launch Protection DoS
|
|
9662
Description:
LSI Logic Controllers contains a flaw that may allow a remote denial of service. The issue is triggered when a user sends a specially crafted TCP packet to the controllers, and will result in loss of availability for the controllers.
|
2004-09-04
|
Multiple Logic Controllers Malformed TCP Packet DoS
|
|
14187
Description:
(Description Provided by CVE) : Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote attackers to spoof the SSL "secure site" lock icon via (1) a web site that does not finish loading, which shows the lock of the previous site, (2) a non-HTTP server that uses SSL, which causes the lock to be displayed when the SSL handshake is completed, or (3) a URL that generates an HTTP 204 error, which updates the icon and location information but does not change the display of the original site.
|
2004-09-04
|
Mozilla Multiple Products Incomplete Page Load SSL secure site Spoofing
|
|
9968
Description:
A local overflow exists in Mozilla, Firefox and Thunderbird. The Send Page function fails to validate input received from the page to be sent resulting in a heap overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.
|
2004-09-04
|
Mozilla Multiple Products nsMsgCompUtils.cpp Multiple Overflows
|
|
9819
Description:
Oracle Database Server contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that unprivilege users (including default accounts) may execute arbitrary SQL queries via the "ctxsys.driload" module. The server does not require any additional authentication and will allow an attacker to inject or manipulate SQL queries.
|
2004-09-04
|
Oracle CTXSYS Package DRILOAD SQL Injection
|
|
9861
Description:
A remote overflow exists in Oracle Database Server for Windows. The server fails to check input supplied to the SYS_CONTEXT() function resulting in a buffer overflow. With a specially crafted request, an attacker can cause execution of arbitrary code resulting in a loss of integrity. A valid database account is required to exploit this issue.
|
2004-09-03
|
Oracle SQL*Plus SYS_CONTEXT() Function Overflow
|
|
12091
Description:
ibProArcade contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'mod_report.php' script not properly sanitizing user-supplied input to the 'user' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2004-09-03
|
ibProArcade mod_report.php user SQL Injection
|
|
9549
Description:
A remote overflow exists in Altnet Download Manager. The Altnet Download Manager's ActiveX control fails to validate input in the isValidFile() function, causing a long string to the bstrFilepath variable, resulting in a stack based overflow. With a specially crafted request, an attacker can cause execution of arbitrary code resulting in a loss of integrity.
|
2004-09-03
|
Altnet Download Manager Overflow
|
|
9552
Description:
Ipswitch IMail contains a flaw within queue manager that may allow a remote denial of service. The issue is triggered when a user sends a specially crafted email message with an abnormally long 'sender' field occurs, and will result in loss of availability for the server.
|
2004-09-03
|
Ipswitch IMail Queue Manager Sender Field DoS
|
|
9553
Description:
Ipswitch IMail contains a flaw within the web calendar function that may allow an undisclosed denial of service. The issue is triggered when a user submits specially crafted calendar content, and will result in loss of availability for the calendar service.
|
2004-09-03
|
Ipswitch IMail Web Calendar Malformed Content DoS
|
|
9554
Description:
Ipswitch IMail contains a flaw withing the web messaging functionality that may allow a remote denial of service. The issue is triggered when a a user creates a specially crafted email with an overly long 'To:' field, and will result in loss of availability for the server.
|
2004-09-03
|
Ipswitch IMail Web Messaging To: Line DoS
|
|
11531
Description:
Unknown / Incomplete
|
2004-09-03
|
Mantis All Projects Summary Arbitrary Project Information Disclosure
|
|
10908
Description:
Unknown / Incomplete
|
2004-09-03
|
Microsoft Windows XP SP2 ZIP Wizard ZoneID Tracking Failure
|
|
9555
Description:
By default, RTA230 installs with a default username and password. The "userNotUsed" account has a password of "userNotU" which is publicly known and documented. This allows attackers to trivially access the router.
|
2004-09-03
|
Dynalink RTA Router Default Account
|
|
9563
Description:
PHP-Nuke contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a user submits a specially crafted POST request to admin.php. This flaw may lead to a loss of confidentiality and/or integrity.
|
2004-09-03
|
PHP-Nuke Admin Variable POST Method Privilege Escalation
|
|
9732
Description:
Sun Solaris contains a flaw that may allow a remote denial of service. The issue is triggered when a remote privileged user sends a dynamic update, and will result in loss of availability for the service. This only affects systems configured as an Internet DNS server. No further details have been provided.
|
2004-09-03
|
Solaris in.named Remote DoS
|
|
9743
Description:
Ipswitch WhatsUp Gold contains a flaw that may allow a remote denial of service. The issue is triggered when a buffer overrun for Notification instance names via the web interface occurs, and will result in loss of availability for the service.
|
2004-09-03
|
Ipswitch WhatsUp Gold Notification Instance Names Overflow
|
|
9744
Description:
Ipswitch WhatsUp Gold contains a flaw that may allow a remote denial of service. The issue is triggered when certain HTTP GET requests are sent to the web interface by authenticated users, and will result in loss of availability for the service.
|
2004-09-03
|
Ipswitch WhatsUp Gold prn.htm GET Request DoS
|
|
15436
Description:
Unknown / Incomplete
|
2004-09-02
|
AqBanking Application Name File Path Creation Issue
|
|
9559
Description:
MailWorks Professional contains a flaw related to Authentication using Cookies that allow an attacker to return values permitting Administrator access to the site. No further details have been provided.
|
2004-09-02
|
MailWorks Pro Cookie Modification Privilege Escalation
|
|
26539
Description:
Unknown / Incomplete
|
2004-09-02
|
WikkaWiki Page Note Feature Unspecified Issue
|
|
9740
Description:
jCIFS contains a flaw that may allow a remote attacker to bypass authentication settings. The issue is triggered when the 'guest' account is not disabled. It is possible that the flaw may allow a remote attacker to use any invalid username to be authenticated successfully resulting in a loss of integrity.
|
2004-09-02
|
jCIFS guest Account Invalid Username Authentication
|
|
9660
Description:
A LOCAL overflow exists in QNX PPPoEd. PPPoEd fails to validate a number of command line options resulting in a core dump. With a specially crafted request, an attacker can overwrite memory and escalate priveleges resulting in a loss of integrity.
|
2004-09-02
|
QNX PPPoEd Multiple Option Local Overflows
|
|
9661
Description:
QNX PPPoEd contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious user modifies the $PATH variable and provides a drop-in replacement for the "mount" command. This flaw may lead to a loss of Integrity.
|
2004-09-02
|
QNX PPPoEd PATH Variable Local Privilege Escalation
|
|
9514
Description:
Digital Meadi server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "source" variable upon submission to the slideshow.kspx script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-09-02
|
Keene Digital Media Server slideshow.kspx source Parameter XSS
|
|
9515
Description:
Keene Digital Meadia Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "shidx" variable upon submission to the dlasx.kspx script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-09-02
|
Keene Digital Media Server dlasx.kspx shidx Parameter XSS
|
|
9516
Description:
Keene Digital Media Server contains a flaw that allows a remote cross site scripting attack. The flaw exists because the application does not validate the "pic" and "idx" variables upon submission to the mediashowplay.kspx script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-09-02
|
Keene Digital Media Server mediashowplay.kspx Multiple Parameter XSS
|
|
9518
Description:
Digital Media Server contains a flaw that may allow a remote attacker to gain access to unauthorized privileges. The issue is triggered when a remote attacker accesses the adminshares.kspx script directly. This flaw may lead to a loss of Confidentiality.
|
2004-09-02
|
Keene Digital Media Server adminshares.kspx Adminsitrative Authentication Bypass
|
|
9521
Description:
A local overflow exists in LHA. LHA fails to perform proper bounds checking on command line arguments resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary commands resulting in a loss of confidentiality and/or integrity.
|
2004-09-02
|
LHA Unspecified Command Line Overflow
|
|
9522
Description:
LHA contains a flaw that may allow a malicious user to execute arbitrary commands. The issue exists because LHA doesn't properly filter directory names that contain shell meta characters. It is possible that the flaw may allow an attacker to use specially crafted directory names to execute arbitrary commands resulting in a loss of integrity.
|
2004-09-02
|
LHA Directory Shell Metacharacter Command Execution
|
