[CLOSE] OSVDB ID : 17521 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that allows a remote cross site request forgery attack. This flaw exists because the application does not validate input upon submission to the 'addaddress.php' script. This could allow a malicious user to create a specially crafted URL that would execute arbitrary code in a user's browser, with the permissions of the user viewing the URL, within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 17522 - Disclosed: 2005-06-23

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 17523 - Disclosed: 2005-06-23

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 17524 - Disclosed: 2005-06-23

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 17525 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'download.php' script not properly sanitizing user-supplied input to the 'Number' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17526 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'calendar.php' script not properly sanitizing user-supplied input to the 'year' or 'month' variables. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17527 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'modifypost.php' script not properly sanitizing user-supplied input to the 'Number' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17528 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'mailthread.php' script not properly sanitizing user-supplied input to the 'Number' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17529 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'viewmessage.php' script not properly sanitizing user-supplied input to the 'message' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17530 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'addfav.php' script not properly sanitizing user-supplied input to the 'main' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17531 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'notifymod.php' script not properly sanitizing user-supplied input to the 'Number' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17532 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'grabnext.php' script not properly sanitizing user-supplied input to the 'posted' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17533 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'Rating System' not properly sanitizing user-supplied input to the 'Main' parameter. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17534 - Disclosed: 2005-06-23

Description:

UBB.threads contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search function not properly sanitizing user-supplied input to the Forum[] arry. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 17535 - Disclosed: 2005-06-23

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 18393 - Disclosed: 2005-06-23

Description:

(Description Provided by CVE) : The login protocol in RealChat 3.5.1b does not use authentication, which allows remote attackers to log on as other users by sniffing the beginning of a chat session and replaying it via a modified username.

[CLOSE] OSVDB ID : 17577 - Disclosed: 2005-06-23

Description:

(Description Provided by CVE) : RealPlayer 8, 10, 10.5 (6.0.12.1040-1069), and Enterprise and RealOne Player v1 and v2 allows remote malicious web server to create an arbitrary HTML file that executes an RM file via "default settings of earlier Internet Explorer browsers".

[CLOSE] OSVDB ID : 17578 - Disclosed: 2005-06-23

Description:

(Description Provided by CVE) : Unknown vulnerability in RealPlayer 10 and 10.5 (6.0.12.1040-1069) and RealOne Player v1 and v2 allows remote attackers to overwrite arbitrary files or execute arbitrary ActiveX controls via a crafted MP3 file.

[CLOSE] OSVDB ID : 17579 - Disclosed: 2005-06-23

Description:

(Description Provided by CVE) : Unknown vulnerability in RealPlayer 10 and 10.5 (6.0.12.1040-1069) and RealOne Player v1 and v2 allows remote attackers to overwrite arbitrary files or execute arbitrary ActiveX controls via a crafted MP3 file.

[CLOSE] OSVDB ID : 17576 - Disclosed: 2005-06-23

Description:

(Description Provided by CVE) : Heap-based buffer overflow in vidplin.dll in RealPlayer 10 and 10.5 (6.0.12.1040 through 1069), RealOne Player v1 and v2, RealPlayer 8 and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an .avi file with a modified strf structure value.

[CLOSE] OSVDB ID : 17538 - Disclosed: 2005-06-23

Description:

(Description Provided by CVE) : phpBB 2.0.19 and earlier allows remote attackers to cause a denial of service (application crash) by (1) registering many users through profile.php or (2) using search.php to search in a certain way that confuses the database.

[CLOSE] OSVDB ID : 79193 - Disclosed: 2005-06-23

Description:

Apple Safari contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 40497 - Disclosed: 2005-06-22

Description:

(Description Provided by CVE) : The search functionality in XWiki 0.9.793 indexes cleartext user passwords, which allows remote attackers to obtain sensitive information via a search string that matches a password.

[CLOSE] OSVDB ID : 79196 - Disclosed: 2005-06-22

Description:

Epiphany contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 17450 - Disclosed: 2005-06-22

Description:

Ipswitch WhatsUp Professional contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the NmConsole/Login.asp script not properly sanitizing user-supplied input to the "User Name" and "Password" fields. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 17459 - Disclosed: 2005-06-22

Description:

Whois.Cart has been reported to contain a flaw that would allow a remote attacker to inject arbitrary script code in the 'page' parameter of the profile.php script. Subsequent testing and evaluation along with vendor provided source code indicates that input appears to be properly sanitized before being passed to the profile.php script.

[CLOSE] OSVDB ID : 17460 - Disclosed: 2005-06-22

Description:

Whois.Cart has been reported to contain a flaw that allows the retrieval of arbitrary files via a traversal attack. Subsequent testing of this software has determined the original report was incorrect, and this vulnerability does not exist.

[CLOSE] OSVDB ID : 17509 - Disclosed: 2005-06-22

Description:

(Description Provided by CVE) : HP Version Control Repository Manager (VCRM) before 2.1.1.730 does not properly handle the "@" character in a proxy password, which could allow attackers with physical access to obtain portions of the password when it is displayed to the screen.

[CLOSE] OSVDB ID : 17457 - Disclosed: 2005-06-22

Description:

A remote overflow exists in Asterisk Manager Interface. The Asterisk Manager Interface fails to perform proper bounds checking on management command strings resulting in a buffer overflow. With a specially crafted request, an attacker can cause a remote buffer overflow, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 79195 - Disclosed: 2005-06-22

Description:

KDE Konqueror contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 79201 - Disclosed: 2005-06-22

Description:

Omnibrowser contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 79202 - Disclosed: 2005-06-22

Description:

MyInternet contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 79203 - Disclosed: 2005-06-22

Description:

Fast Browser Pro contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 79204 - Disclosed: 2005-06-22

Description:

27 Tools-in-1 Wichio Browser contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 79205 - Disclosed: 2005-06-22

Description:

Optimal Desktop Browser contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 79207 - Disclosed: 2005-06-22

Description:

AM Browser contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 79213 - Disclosed: 2005-06-22

Description:

E2 Browser contains a Javascript flaw that may allow an attacker to open a dialog box in front of a window displaying a trusted web site. This can allow them to make it appear that the dialog box comes from the trusted web site, which may be used to trick users into entering passwords or other sensitive information.

[CLOSE] OSVDB ID : 17407 - Disclosed: 2005-06-22

Description:

Ruby's XMLRPC server module contains a flaw related to the toggling of public_instance_methods from FALSE to TRUE, that may allow an attacker to bypass security restrictions and execute arbitrary code. No further details have been provided.

[CLOSE] OSVDB ID : 17627 - Disclosed: 2005-06-22

Description:

VERITAS Backup Exec Server (beserver.exe) contains a flaw that may allow a remote attacker to modify the Windows registry with administrative level permissions. The issue is due to RPC calls not properly authenticating callers of methods on TCP port 6106. This may allow an attacker to modify the registry of a host leading to a completely compromise.

[CLOSE] OSVDB ID : 17626 - Disclosed: 2005-06-22

Description:

(Description Provided by CVE) : VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference.