| OSVDB ID | Disclosure Date | Title |
|---|
|
23891
Description:
Unknown / Incomplete
|
2005-03-18
|
monotone External Merge Command Unspecified Privilege Escalation
|
|
14863
Description:
(Description Provided by CVE) : Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4357 allows remote attackers to execute arbitrary code via crafted LHA files.
|
2005-03-18
|
McAfee Multiple Products LHA File Handling Overflow
|
|
60161
Description:
(Description Provided by CVE) : Viewcat.php in (1) RUNCMS 1.1A, (2) Ciamos 0.9.2 RC1, e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allow remote attackers to obtain sensitive information via an invalid parameter to the convertorderbytrans function, which reveals the path in a PHP error message.
|
2005-03-18
|
E-Xoops viewcat.php Error Message Path Disclosure
|
|
14906
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in PHPOpenChat v3.x allows remote attackers to inject arbitrary web script or HTML via (1) the chatter parameter to regulars.php or (2) the chatter, chatter1, chatter2, chatter3, or chatter4 parameters to register.php.
|
2005-03-18
|
PHPOpenChat regulars.php chatter Parameter XSS
|
|
14907
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in PHPOpenChat v3.x allows remote attackers to inject arbitrary web script or HTML via (1) the chatter parameter to regulars.php or (2) the chatter, chatter1, chatter2, chatter3, or chatter4 parameters to register.php.
|
2005-03-18
|
PHPOpenChat register.php Multiple Parameter XSS
|
|
14996
Description:
(Description Provided by CVE) : SQL injection vulnerability in index.php in Subdreamer Light, when magic_quotes_gpc is enabled, allows remote attackers to execute arbitrary SQL commands via certain parameters that are used as global variables, as demonstrated using the imageid parameter, which is not properly handled by imagegallery.php.
|
2005-03-18
|
Subdreamer imagegallery.php SQL Injection
|
|
14933
Description:
Unknown / Incomplete
|
2005-03-18
|
MyPHP Forum forum.php Database Saturation DoS
|
|
14939
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in PHP-Post before 0.33 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
2005-03-18
|
PHP-Post Search XSS
|
|
14940
Description:
(Description Provided by CVE) : PHP-Post allows remote attackers to spoof the names of other users by registering with a username containing hex-encoded characters.
|
2005-03-18
|
PHP-Post ASCII Character Username Spoofing
|
|
58702
Description:
Unknown / Incomplete
|
2005-03-18
|
Apache Directory Server (ApacheDS) Persistent LDAP Anonymous Bind Weakness
|
|
82787
Description:
Appweb contains a flaw in the PHP handler component that may allow a remote denial of service. The issue is triggered when handling a form variable that is empty. With a specially crafted request, a remote attacker can cause the service to crash.
|
2005-03-18
|
Mbedthis AppWeb PHP Handler Malformed Form Variable Remote DoS
|
|
20734
Description:
NetBSD IPSec contains a flaw that may allow a remote denial of service. The issue is triggered when certain IPSec AH packets are processed, and will result in loss of availability for the service.
|
2005-03-17
|
NetBSD Unspecified IPSec AH Packet DoS
|
|
16893
Description:
(Description Provided by CVE) : Directory traversal vulnerability in includer.cgi in The Includer allows remote attackers to read arbitrary files via (1) a .. (dot dot) or (2) a full pathname in the URL.
|
2005-03-17
|
The Includer includer.cgi Traversal Arbitrary File Access
|
|
14951
Description:
CoolForum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'img' variables upon submission to the 'avatar.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2005-03-17
|
CoolForum avatar.php img Parameter XSS
|
|
14952
Description:
CoolForum contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'pseudo' parameter in the 'entete.php' script not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.
|
2005-03-17
|
CoolForum entete.php pseudo Parameter SQL Injection
|
|
14953
Description:
CoolForum contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'login' parameter in the 'register.php' script not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.
|
2005-03-17
|
CoolForum register.php login Parameter SQL Injection
|
|
14887
Description:
(Description Provided by CVE) : PHP remote file inclusion vulnerability in install.php in mcNews 1.3 and earlier allows remote attackers to execute arbitrary PHP code by modifying the l parameter to reference a URL on a remote web server that contains the code, a different vulnerability than CVE-2005-0720.
|
2005-03-17
|
mcNews install.php l Parameter Remote File Inclusion
|
|
82788
Description:
Appweb reported an issue in the file upload handler related to "boundary conditions". This was originally interpreted by OSVDB to mean a possible overflow or boundary-related security issue. Since then, the vendor has clarified that the fix was not security related. As such, this is an invalid issue.
|
2005-03-17
|
Mbedthis AppWeb File Upload Handler Unspecified Boundary Condition Issues
|
|
14862
Description:
(Description Provided by CVE) : The GetEnhMetaFilePaletteEntries API in GDI32.DLL in Windows 2000 allows remote attackers to cause a denial of service (application crash) via a crafted Enhanced Metafile (EMF) file that causes invalid (1) end, (2) emreof, or (3) palent offsets to be used, aka "Enhanced Metafile Vulnerability."
|
2005-03-17
|
Microsoft Windows GDI32.DLL GetEnhMetaFilePaletteEntries() API EMF File DoS
|
|
14866
Description:
(Description Provided by CVE) : Multiple "range checking flaws" in the ISO9660 filesystem handler in Linux 2.6.11 and earlier may allow attackers to cause a denial of service or corrupt memory via a crafted filesystem.
|
2005-03-17
|
Linux Kernel Malformed ISO9660 File System Command Execution
|
|
14867
Description:
(Description Provided by CVE) : The web interface in NotifyLink 3.0 displays passwords in cleartext on the administrative page, which could allow remote attackers or local users to obtain sensitive information.
|
2005-03-17
|
NotifyLink Enterprise Server Web Interface User Password Disclosure
|
|
14868
Description:
(Description Provided by CVE) : The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a direct request to certain URLs.
|
2005-03-17
|
NotifyLink Enterprise Server Crafted URL Function Restriction Bypass
|
|
14869
Description:
(Description Provided by CVE) : SQL injection vulnerability in NotifyLink before 3.0 allows remote attackers to execute arbitrary SQL commands via the URL.
|
2005-03-17
|
NotifyLink Enterprise Server Unspecified SQL Injection
|
|
14870
Description:
(Description Provided by CVE) : NotifyLink, when configured for client key retrieval, allows remote attackers to obtain AES keys via a direct request to /hwp/get.asp, then uses a weak encryption scheme (fixed byte reordering) to protect the key, which allows remote attackers to obtain the key via a brute force attack.
|
2005-03-17
|
NotifyLink Enterprise Server get.asp AES Key Disclosure
|
|
14832
Description:
IR contains a flaw related to an off-by-one error when passing overly long URLs that may allow an attacker to execute arbitrary code. No further details have been provided.
|
2005-03-17
|
Initial Redirect URL Handling Overflow
|
|
14858
Description:
(Description Provided by CVE) : Format string vulnerability in MailEnable 1.8 allows remote attackers to cause a denial of service (application crash) via format string specifiers in the mailto field.
|
2005-03-17
|
MailEnable Standard SMTP mailto: Request Format String
|
|
14861
Description:
ACS Blog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'search' variables upon submission to the 'search.asp' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2005-03-17
|
ACS Blog search.asp Search Parameter XSS
|
|
15013
Description:
Unknown / Incomplete
|
2005-03-17
|
Multiple Anti-Virus Malformed CRC32 Archive Bypass
|
|
45592
Description:
(Description Provided by CVE) : eZ publish 3.5 through 3.7 before 20050830 does not use a folder's read permissions to restrict notifications, which allows remote authenticated users to obtain sensitive information about changes to content in arbitrary folders.
|
2005-03-17
|
eZ publish Arbitrary Folder Restrict Notification Permission Bypass
|
|
14853
Description:
Pavuk contains a flaw that may allow an attacker to execute arbitrary code due to unspecified buffer overflows. No further details have been provided.
|
2005-03-17
|
Pavuk Unspecified Overflows
|
|
15379
Description:
Unknown / Incomplete
|
2005-03-17
|
Microsoft Windows ActiveDirectory LDAP Authentication Bypass
|
|
14886
Description:
(Description Provided by CVE) : Buffer overflow in newgrp in Solaris 7 through 9 allows local users to gain root privileges.
|
2005-03-17
|
Solaris newgrp Local Overflow
|
|
15111
Description:
(Description Provided by CVE) : ImageMagick before 6.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image with an invalid tag.
|
2005-03-17
|
ImageMagick TIFF Invalid Tag DoS
|
|
15112
Description:
(Description Provided by CVE) : Heap-based buffer overflow in the SGI parser in ImageMagick before 6.0 allows remote attackers to execute arbitrary code via a crafted SGI image file.
|
2005-03-17
|
ImageMagic SGI Parser Overflow
|
|
15113
Description:
(Description Provided by CVE) : Unknown vulnerability in ImageMagick before 6.1.8 allows remote attackers to cause a denial of service (application crash) via a crafted PSD file.
|
2005-03-17
|
ImageMagick PSD File DoS
|
|
15114
Description:
(Description Provided by CVE) : The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service (crash) via a crafted TIFF file.
|
2005-03-17
|
ImageMagick TIFF File DoS
|
|
14899
Description:
(Description Provided by CVE) : Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06 allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file.
|
2005-03-16
|
Sun Java Web Start JNLP File Arbitrary Command Execution
|
|
14838
Description:
(Description Provided by CVE) : ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores usernames and passwords in cleartext in the MyDetails.txt file, which allows local users to gain privileges.
|
2005-03-16
|
iSnooker MyDetails.txt Local Password Disclosure
|
|
14837
Description:
(Description Provided by CVE) : ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores usernames and passwords in cleartext in the MyDetails.txt file, which allows local users to gain privileges.
|
2005-03-16
|
iPool MyDetails.txt Local Password Disclosure
|
|
14859
Description:
My Firewall Plus contains a flaw in the log viewer as it does not properly drop its privileges. The issue is triggered when using the log viewer's export functionality to save log files, allowing a local attacker to overwrite arbitrary files with logging information.
|
2005-03-16
|
My Firewall Plus Smc.exe Log Viewer Arbitrary File Corruption
|
