| OSVDB ID | Disclosure Date | Title |
|---|
|
15082
Description:
Deplate contains a flaw related to the elements.rb script not sanitizing the IDs and filename creation. No further details have been provided.
|
2005-03-25
|
Deplate elements.rb Malformed Filename ID Issue
|
|
14997
Description:
Koobi CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'area' , 'q', or 'p' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2005-03-25
|
Koobi CMS index.php Multiple Parameter SQL Injection
|
|
15115
Description:
The Linux kernel EXT2 filesystem contains a flaw that may lead to an unauthorized information disclosure. The problem is that the 'ext2_make_empty()' function does not properly clear filesystem contents when creating a directory and the block written to store the '.' and '..' directory entries remains uninitialized. Up to 4,072 bytes of kernel memory may be leaked on each directory creation, which may allow a malicious user to disclose sensitive kernel memory contents resulting in a loss of confidentiality.
|
2005-03-25
|
Linux Kernel ext2 Directory Creation Arbitrary Memory Disclosure
|
|
15103
Description:
(Description Provided by CVE) : Webmasters-Debutants WD Guestbook 2.8 allows remote attackers to bypass authentication and perform certain administrator actions via a direct HTTP POST request to (1) ajout_admin2.php or (2) suppr.php.
|
2005-03-24
|
WD Guestbook ajout_admin2.php Arbitrary Admin Account Creation
|
|
15104
Description:
(Description Provided by CVE) : Webmasters-Debutants WD Guestbook 2.8 allows remote attackers to bypass authentication and perform certain administrator actions via a direct HTTP POST request to (1) ajout_admin2.php or (2) suppr.php.
|
2005-03-24
|
WD Guestbook suppr.php Arbitrary Message Suppression
|
|
15050
Description:
Oracle Reports Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'desname' or 'repprod' variables upon submission to the test.jsp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2005-03-24
|
Oracle Reports Server test.jsp Multiple Parameter XSS
|
|
19314
Description:
(Description Provided by CVE) : xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the name_index fields when sharing xattr blocks, which could prevent default ACLs from being applied.
|
2005-03-24
|
Linux Kernel ext2/ext3 xattr.c name_index Error ACL Failure
|
|
15195
Description:
Unknown / Incomplete
|
2005-03-24
|
Invision Power Board iframe Arbitrary Message Forgery
|
|
15488
Description:
A local overflow exists in Linux Kernel. The "sysfs_write_file" function fails to validate the integer. By overwriting kernel memory by writing to a sysfs file, an attacker may cause a denial of service or run arbitrary commands with root privileges.
|
2005-03-24
|
Linux Kernel sysfs File Write Overflow
|
|
15004
Description:
A remote overflow exists in Trillian. Trillian fails to properly validate HTTP 1.1 response headers resulting in a buffer overflow. With a specially crafted request, an attacker can cause the execution of malicious code resulting in a loss of integrity.
|
2005-03-24
|
Trillian Multiple Plugin HTTP Response Header Overflow DoS
|
|
15002
Description:
(Description Provided by CVE) : OpenmosixCollector and OpenMosixView in OpenMosixView 1.5 allow local users to overwrite or delete arbitrary files via a symlink attack on (1) temporary files in the openmosixcollector directory or (2) nodes.tmp.
|
2005-03-24
|
openMosixview Multiple Symlink Arbitrary File Delete
|
|
15478
Description:
(Description Provided by CVE) : Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file.
|
2005-03-24
|
KDE kdelibs kimgio Component PCX Image Processing Overflow
|
|
15010
Description:
(Description Provided by CVE) : FireFox 1.0.1 and Mozilla before 1.7.6 do not sufficiently address all attack vectors for loading chrome files and hijacking drag and drop events, which allows remote attackers to execute arbitrary XUL code by tricking a user into dragging a scrollbar, a variant of CVE-2005-0527, aka "Firescrolling 2."
|
2005-03-24
|
Mozilla Drag and Drop Privileged XUL Loading (firescrolling 2)
|
|
15009
Description:
Mozilla Firefox contains a flaw that may allow a malicious user to inject script code in the browser environment with the privleges of the locally-logged on user. The issue is triggered when a malicious web site is bookmarked as a sidebar panel. It is possible that the flaw may allow an attacker to run arbitrary code on the victim's machine, resulting in a loss of integrity.
|
2005-03-24
|
Mozilla Firefox Sidebar Panel Script Injection
|
|
15125
Description:
(Description Provided by CVE) : Buffer overflow in Sylpheed before 1.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attachments with MIME-encoded file names.
|
2005-03-24
|
Sylpheed MIME-encoded Attachment Filename Overflow
|
|
15075
Description:
Unknown / Incomplete
|
2005-03-24
|
Microsoft Windows wab32.dll Malformed .wab File DoS
|
|
16604
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Invision Power Board 2.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP POST request.
|
2005-03-23
|
Invision Power Board HTTP POST Request IFRAME Tag XSS
|
|
14935
Description:
Mathopd contains a flaw that may allow a malicious local user to append content to arbitrary files on the system. The issue is due to the internal_dump() function (dump.c) creating temporary files insecurely when a SIGWINCH signal is caught. It is possible for a local attacker to use a symlink attack to cause the program to unexpectedly append dump data to an attacker specified file.
|
2005-03-23
|
Mathopd internal_dump() Arbitrary File Append
|
|
14942
Description:
phpSysInfo contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker directly requests the class.OpenBSD.inc.php file, which will disclose installation path information resulting in a loss of confidentiality.
|
2005-03-23
|
phpSysInfo class.OpenBSD.inc.php Path Disclosure
|
|
14943
Description:
phpSysInfo contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker directly requests the class.NetBSD.inc.php file, which will disclose installation path information resulting in a loss of confidentiality.
|
2005-03-23
|
phpSysInfo class.NetBSD.inc.php Path Disclosure
|
|
14944
Description:
phpSysInfo contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker directly requests the class.FreeBSD.inc.php file, which will disclose installation path information resulting in a loss of confidentiality.
|
2005-03-23
|
phpSysInfo class.FreeBSD.inc.php Path Disclosure
|
|
14945
Description:
phpSysInfo contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker directly requests the class.Darwin.inc.php file, which will disclose installation path information resulting in a loss of confidentiality.
|
2005-03-23
|
phpSysInfo class.Darwin.inc.php Path Disclosure
|
|
14946
Description:
phpSysInfo contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker directly requests the XPath.class.php file, which will disclose installation path information resulting in a loss of confidentiality.
|
2005-03-23
|
phpSysInfo XPath.class.php Path Disclosure
|
|
14947
Description:
phpSysInfo contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker directly requests the system_header.php file, which will disclose installation path information resulting in a loss of confidentiality.
|
2005-03-23
|
phpSysInfo system_header.php Path Disclosure
|
|
14948
Description:
phpSysInfo contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker directly requests the system_footer.php file, which will disclose installation path information resulting in a loss of confidentiality.
|
2005-03-23
|
phpSysInfo system_footer.php Path Disclosure
|
|
14949
Description:
phpSysInfo contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'sensor_program' variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2005-03-23
|
phpSysInfo index.php sensor_program Parameter XSS
|
|
14950
Description:
phpSysInfo contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'text[language]', 'text[template]', or 'VERSION' variables upon submission to the system_footer.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2005-03-23
|
phpSysInfo system_footer.php Multiple Parameter XSS
|
|
14954
Description:
(Description Provided by CVE) : Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in (1) functions.inc.php or (2) main.php, which causes code to be injected into an eval statement.
|
2005-03-23
|
Double Choco Latte main.php Arbitrary PHP Code Execution
|
|
14955
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in functions.inc.php for Double Choco Latte 0.9.4.3 allow remote attackers to inject arbitrary web script or HTML via the (1) class or (2) method name.
|
2005-03-23
|
Double Choco Latte functions.inc.php Multiple Parameter XSS
|
|
15074
Description:
(Description Provided by CVE) : AS/400 Telnet 5250 terminal emulation clients, as implemented by (1) IBM client access, (2) Bosanova, (3) PowerTerm, (4) Mochasoft, and possibly other emulations, allows malicious AS/400 servers to execute arbitrary commands via a STRPCO (Start PC Organizer) command followed by STRPCCMD (Start PC command), as demonstrated by creating a backdoor account using REXEC.
|
2005-03-23
|
IBM AS/400 Multiple Emulator STRPCO / STRPCCMD Command Execution
|
|
14936
Description:
MercuryBoard contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the "title" field upon sending private messages to users. This may allow a user to create a specially crafted private message that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2005-03-23
|
MercuryBoard Private Message title Parameter XSS
|
|
14992
Description:
Unknown / Incomplete
|
2005-03-23
|
MCPWS Personal Webserver Malformed File Request DoS
|
|
15081
Description:
Smarty contains a flaw that may allow a remote attacker to execute arbitrary PHP code. The issue is due to the regex_replace modifier being called insecurely from templates. With a specially crafted request, an attacker can execute arbitrary code even with template security enabled.
|
2005-03-23
|
Smarty regex_replace Modifier Arbitrary Code Execution
|
|
15000
Description:
(Description Provided by CVE) : Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq.
|
2005-03-23
|
Dnsmasq Remote Cache Poisoning
|
|
15001
Description:
(Description Provided by CVE) : Off-by-one buffer overflow in Dnsmasq before 2.21 may allow attackers to execute arbitrary code via the DHCP lease file.
|
2005-03-23
|
Dnsmasq Lease File Reading Code Overflow
|
|
14938
Description:
(Description Provided by CVE) : OllyDbg 1.10 and earlier allows remote attackers to cause a denial of service (application crash) via a dynamic link library (DLL) with a long filename.
|
2005-03-23
|
OllyDbg Module Name Local Overflow
|
|
23707
Description:
Unknown / Incomplete
|
2005-03-23
|
PEAR Crypt_Blowfish Unspecified Encryption Failure
|
|
18730
Description:
Microsoft Windows XP contains a flaw that may allow a local denial of service. The issue is triggered, for certain protocols, when a raw IP empty datagram is sent and will result in loss of availability for the local system.
|
2005-03-23
|
Microsoft Windows XP SP1 Raw IP Empty Datagram DoS
|
|
14998
Description:
(Description Provided by CVE) : calendar_scheduler.php in Topic Calendar 1.0.1 module for phpBB, when running on a Microsoft IIS server, allows remote attackers to obtain sensitive information via invalid parameters, which reveal the path in an error message.
|
2005-03-23
|
phpBB Topic Calendar Mod calendar_scheduler.php Path Disclosure
|
|
14999
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in calendar_scheduler.php in the Topic Calendar 1.0.1 module for phpBB allows remote attackers to inject arbitrary web script or HTML via the start parameter.
|
2005-03-23
|
phpBB Topic Calendar Mod calendar_scheduler.php start Parameter XSS
|
