[CLOSE] OSVDB ID : 14282 - Disclosed: 2005-02-28

Description:

PostNuke contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the "$show" and "$orderby" variable in the "/modules/Downloads/dl-search.php" script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 14283 - Disclosed: 2005-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14284 - Disclosed: 2005-02-28

Description:

PostNuke contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the "getArticles()" function in the "modules/News/funcs.php" script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 14285 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in the Download module for PostNuke 0.750 and 0.760-RC2 allow remote attackers to inject arbitrary web script or HTML via the (1) Program name, (2) File link, (3) Author name (4) Author e-mail address, (5) File size, (6) Version, or (7) Home page variables.

[CLOSE] OSVDB ID : 14286 - Disclosed: 2005-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14287 - Disclosed: 2005-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14288 - Disclosed: 2005-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14289 - Disclosed: 2005-02-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14244 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd.

[CLOSE] OSVDB ID : 14245 - Disclosed: 2005-02-28

Description:

Reportbug contains a flaw that may allow a malicious user to read possibly sensitive information in the "reportbugrc" file. The issue exists because by default the file is world readable. It is possible that the flaw may allow loss of confidentiality since the file might contain the smtppasswd.

[CLOSE] OSVDB ID : 14272 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : Scrapland 1.0 and earlier allows remote attackers to cause a denial of service (server termination) by triggering an error, which is treated as a fatal error by the server, as demonstrated using (1) signed integers for size values, (2) an invalid model, (3) a "newpos" value that is less than or equal to a size value, or (4) partial packets.

[CLOSE] OSVDB ID : 14275 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control over DNS name resolution by opening a number of file descriptors before executing kppp.

[CLOSE] OSVDB ID : 14277 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 generates easily predictable web session IDs, which allows remote attackers to hijack other sessions via the parentsessionid cookie.

[CLOSE] OSVDB ID : 14278 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 allows remote authenticated users to cause a denial of service (resource exhaustion) via a large number of active sessions, which exceeds ICP's maximum.

[CLOSE] OSVDB ID : 14276 - Disclosed: 2005-02-28

Description:

OpenBSD contains a flaw related to the copy(9) function that may allow an attacker to overwrite kernel memory. No further details have been provided.

[CLOSE] OSVDB ID : 14271 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : The SMTP binding function in Symantec Firewall/VPN Appliance 200/200R firmware after 1.5Z and before 1.68, Gateway Security 360/360R and 460/460R firmware before vuild 858, and Nexland Pro800turbo, when configured for load balancing between two WANs, might send SMTP traffic to a trusted network through an untrusted network.

[CLOSE] OSVDB ID : 14390 - Disclosed: 2005-02-28

Description:

UnZip contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when extracting setuid or setgid files, allowing a local attacker to gain root privileges.

[CLOSE] OSVDB ID : 14250 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : nxagent in FreeNX before 0.2.8 does not properly handle when the XAUTHORITY environment variable is not set, which allows local users to access the X server without X authentication.

[CLOSE] OSVDB ID : 14290 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : Unknown vulnerability in FCKeditor 2.0 RC2, when used with PHP-Nuke, allows remote attackers to upload arbitrary files.

[CLOSE] OSVDB ID : 14317 - Disclosed: 2005-02-28

Description:

(Description Provided by CVE) : lnss.exe in GFI Languard Network Security Scanner 5.0 stores the username and password in memory in plaintext, which could allow local administrators to obtain domain administrator credentials.

[CLOSE] OSVDB ID : 14242 - Disclosed: 2005-02-27

Description:

phpBB contains a flaw that may allow a remote attacker to gain access to unauthorized privileges. The issue is triggered due to an error in the comparison of "sessiondata['autologinid']" and "auto_login_key". Further, phpBB does not reset the $userdata['user_level'] variable after a failed autologin. It is possible for a remote attacker to set a specially crafted cookie to change the user_id to that of an administrator resulting in a loss of integrity.

[CLOSE] OSVDB ID : 23394 - Disclosed: 2005-02-27

Description:

LinPHA contains a flaw related to the Edit_File_Info.php, Edit_File_Info_Example.php and Write_File_Info.php scripts that may allow an attacker to manipulate files without proper permission. No further details have been provided.

[CLOSE] OSVDB ID : 23395 - Disclosed: 2005-02-27

Description:

LinPHA contains a flaw related to the exif thumbnail features invoked by the get_*_thumb.php files. This may allow a remote attacker to gain access to private images. No further details have been provided.

[CLOSE] OSVDB ID : 27680 - Disclosed: 2005-02-27

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14212 - Disclosed: 2005-02-27

Description:

Einstein contains a flaw that may lead to an unauthorized information disclosure. The issue is due to plaintext storage of passwords in the registry, which may disclose username (mail address) and passwords to local users resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 14247 - Disclosed: 2005-02-26

Description:

(Description Provided by CVE) : PHP 4 (PHP4) allows attackers to cause a denial of service (daemon crash) by using the readfile function on a file whose size is a multiple of the page size.

[CLOSE] OSVDB ID : 14273 - Disclosed: 2005-02-26

Description:

(Description Provided by CVE) : Multiple vulnerabilities in Pixel-Apes SafeHTML before 1.3.0 allow remote attackers to bypass cross-site scripting (XSS) protection via (1) "decimal HTML entities" or (2) "the \x00 symbol."

[CLOSE] OSVDB ID : 14274 - Disclosed: 2005-02-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14243 - Disclosed: 2005-02-26

Description:

phpBB contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an invalid date is passed to the viewtopic.php script, which will disclose the software installation path resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 29045 - Disclosed: 2005-02-26

Description:

Various SISCO products contain a flaw in the OSI Stack that may allow a remote denial of service. The issue is triggered when handling unspecified packet data. With a specially crafted request, a remote attacker can cause an affected process to terminate.

[CLOSE] OSVDB ID : 15298 - Disclosed: 2005-02-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14198 - Disclosed: 2005-02-25

Description:

(Description Provided by CVE) : Firefox before 1.0.1 and Mozilla Suite before 1.7.6 use a predictable filename for the plugin temporary directory, which allows local users to delete arbitrary files of other users via a symlink attack on the plugtmp directory.

[CLOSE] OSVDB ID : 14197 - Disclosed: 2005-02-25

Description:

Firefox contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when downloading a malformed HTML document that includes Firefox XPCOM code to perform actions that are triggered by scrollbar actions. It is possible that the flaw may allow writing to an arbitrary local file.

[CLOSE] OSVDB ID : 14138 - Disclosed: 2005-02-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14137 - Disclosed: 2005-02-25

Description:

(Description Provided by CVE) : DelphiTurk FTP 1.0 stores usernames and passwords in the profile.dat file, which allows local users to gain privileges.

[CLOSE] OSVDB ID : 14577 - Disclosed: 2005-02-25

Description:

(Description Provided by CVE) : Evolution 2.0.3 allows remote attackers to cause a denial of service (application crash or hang) via crafted messages, possibly involving charsets in attachment filenames.

[CLOSE] OSVDB ID : 14239 - Disclosed: 2005-02-25

Description:

Stormy Studios KNet contains an overflow condition that is triggered as user-supplied input is not properly validated when handling HTTP GET requests. With a specially crafted request, a remote attacker can cause a stack-based buffer overflow, allowing the execution of arbitrary code.

[CLOSE] OSVDB ID : 14293 - Disclosed: 2005-02-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14294 - Disclosed: 2005-02-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 14246 - Disclosed: 2005-02-25

Description:

(Description Provided by CVE) : bsmtpd 2.3 and earlier does not properly sanitize e-mail addresses, which allows remote attackers to execute arbitrary commands.