[CLOSE] OSVDB ID : 19258 - Disclosed: 2005-08-31

Description:

Greymatter contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'Comment Name' field upon submission to the log file. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 19143 - Disclosed: 2005-08-31

Description:

A remote overflow exists in SlimFTPd. The 'USER' and 'PASS' commands fail to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long username and password, a remote attacker can cause the daemon to crash resulting in a loss of availability.

[CLOSE] OSVDB ID : 19112 - Disclosed: 2005-08-31

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in lang.php in CMS Made Simple 0.10 and earlier allows remote attackers to execute arbitrary PHP code via the nls[file][vx][vxsfx] parameter.

[CLOSE] OSVDB ID : 19113 - Disclosed: 2005-08-31

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in lang.php in CMS Made Simple 0.10 and earlier allows remote attackers to execute arbitrary PHP code via the nls[file][vx][vxsfx] parameter.

[CLOSE] OSVDB ID : 19119 - Disclosed: 2005-08-31

Description:

A remote overflow exists in DameWare Mini Remote Control. The 'dwrcs.exe' service fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long username, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 19120 - Disclosed: 2005-08-31

Description:

(Description Provided by CVE) : Simple Machines Forum (SMF) 1-0-5 and earlier supports the use of URLs for avatar images, which allows remote attackers to monitor sensitive information of forum visitors such as IP address and user agent, as demonstrated using a PHP script on a malicious server.

[CLOSE] OSVDB ID : 19122 - Disclosed: 2005-08-31

Description:

DownFile contains a flaw that may allow a remote attacker to bypass authentication settings. The issue is triggered when directly requesting the 'update.php', 'del.php' and 'add_form.php' scripts, which may allow a remote attacker to gain access to administrative privileges resulting in a loss of integrity.

[CLOSE] OSVDB ID : 19123 - Disclosed: 2005-08-31

Description:

DownFile contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'id' variable upon submission to the 'email.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19124 - Disclosed: 2005-08-31

Description:

DownFile contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'id' variable upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19125 - Disclosed: 2005-08-31

Description:

DownFile contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'id' variable upon submission to the 'del.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19126 - Disclosed: 2005-08-31

Description:

DownFile contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'mode' variable upon submission to the 'add_form.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19086 - Disclosed: 2005-08-31

Description:

NetWare contains a flaw that may allow a remote denial of service. The issue is triggered when handling password length in a system running CIFS.NLM component. This vulnerability is reported to be exploited by the "worm.rbot.ccc" worm, and will result in loss of availability for the platform.

[CLOSE] OSVDB ID : 19287 - Disclosed: 2005-08-31

Description:

Microsoft Windows Firewall contains a flaw that may allow a malicious local user, with administrative privileges, to hide firewall ruleset information. The issue is triggered by a specially crafted Windows Firewall exception entry in the Windows Registry. It is possible that the flaw may not allow firewall exception entries to be displayed in the Windows firewall graphical user interface, resulting in a loss of integrity. The command line firewall administration tool "Netsh" is not affected by this issue

[CLOSE] OSVDB ID : 19166 - Disclosed: 2005-08-31

Description:

(Description Provided by CVE) : smb4k 0.4 and other versions before 0.6.3 allows local users to read sensitive files via a symlink attack on the (1) smb4k.tmp or (2) sudoers temporary files.

[CLOSE] OSVDB ID : 19167 - Disclosed: 2005-08-31

Description:

(Description Provided by CVE) : smb4k 0.4 and other versions before 0.6.3 allows local users to read sensitive files via a symlink attack on the (1) smb4k.tmp or (2) sudoers temporary files.

[CLOSE] OSVDB ID : 19150 - Disclosed: 2005-08-31

Description:

(Description Provided by CVE) : Savant Web Server stores user credentials in plaintext in the Savant\Users registry key, which allows local users to gain privileges.

[CLOSE] OSVDB ID : 19221 - Disclosed: 2005-08-31

Description:

(Description Provided by CVE) : Symantec AntiVirus Corporate Edition 9.0.1.x and 9.0.4.x, and possibly other versions, when obtaining updates from an internal LiveUpdate server, stores sensitive information in cleartext in the Log.Liveupdate log file, which allows attackers to obtain the username and password to the internal LiveUpdate server.

[CLOSE] OSVDB ID : 19108 - Disclosed: 2005-08-31

Description:

(Description Provided by CVE) : Buffer overflow in MMClient.exe in Indiatimes Messenger 6.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long group name argument to the RenameGroup function in the MMClient.MunduMessenger.1 ActiveX object.

[CLOSE] OSVDB ID : 58828 - Disclosed: 2005-08-31

Description:

(Description Provided by CVE) : Ariba Spend Management System sends the username and password to the server in plaintext in a POST request, which allows remote attackers to obtain sensitive information.

[CLOSE] OSVDB ID : 19088 - Disclosed: 2005-08-30

Description:

(Description Provided by CVE) : forum_post.php in e107 0.6 allows remote attackers to post to non-existent forums by modifying the forum number.

[CLOSE] OSVDB ID : 19079 - Disclosed: 2005-08-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 19083 - Disclosed: 2005-08-30

Description:

(Description Provided by CVE) : lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments.

[CLOSE] OSVDB ID : 19114 - Disclosed: 2005-08-30

Description:

FlatNuke contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'usr' parameter upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 19115 - Disclosed: 2005-08-30

Description:

(Description Provided by CVE) : print.php in FlatNuke 2.5.6 allows remote attackers to obtain sensitive information (path disclosure on error) or cause a denial of service (resource consumption) via an MS-DOS device name in the news parameter to print.php, such as (1) AUX, (2) CON, (3) PRN, (4) COM1, or (5) LPT1.

[CLOSE] OSVDB ID : 19116 - Disclosed: 2005-08-30

Description:

(Description Provided by CVE) : print.php in FlatNuke 2.5.6 allows remote attackers to obtain sensitive information (path disclosure on error) or cause a denial of service (resource consumption) via an MS-DOS device name in the news parameter to print.php, such as (1) AUX, (2) CON, (3) PRN, (4) COM1, or (5) LPT1.

[CLOSE] OSVDB ID : 19117 - Disclosed: 2005-08-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 19118 - Disclosed: 2005-08-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in FlatNuke 2.5.6 and possibly earlier allows remote attackers to read arbitrary files via ".." sequences and "%00" (trailing null byte) characters in the id parameter to the read mod in index.php.

[CLOSE] OSVDB ID : 19077 - Disclosed: 2005-08-30

Description:

(Description Provided by CVE) : cosmoshop 8.10.78 and earlier stores passwords in plaintext in the database, which allows local users to obtain sensitive information.

[CLOSE] OSVDB ID : 19082 - Disclosed: 2005-08-30

Description:

(Description Provided by CVE) : Multiple stack-based buffer overflows in University of Minnesota gopher client 3.0.9 allow remote malicious servers to execute arbitrary code via (1) a long "+VIEWS:" reply, which is not properly handled in the VIfromLine function, and (2) certain arguments when launching third party programs such as a web browser from a web link, which is not properly handled in the FIOgetargv function.

[CLOSE] OSVDB ID : 19067 - Disclosed: 2005-08-30

Description:

(Description Provided by CVE) : phpldapadmin before 0.9.6c allows remote attackers to gain anonymous access to the LDAP server, even when disable_anon_bind is set, via an HTTP request to login.php with the anonymous_bind parameter set.

[CLOSE] OSVDB ID : 20707 - Disclosed: 2005-08-30

Description:

(Description Provided by CVE) : db2fmp process in IBM DB2 Content Manager before 8.2 Fix Pack 10 allows local users to cause a denial of service (CPU consumption) by importing a corrupted Microsoft Excel file, aka "CORRUPTED EXEL FILE WILL CAUSE TEXT SEARCH PROCESS LOOPING."

[CLOSE] OSVDB ID : 24605 - Disclosed: 2005-08-30

Description:

Help contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate unspecified parameters upon submission to the Control Panel Default Page. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 20312 - Disclosed: 2005-08-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 19089 - Disclosed: 2005-08-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 19068 - Disclosed: 2005-08-29

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in welcome.php in phpLDAPadmin 0.9.6 and 0.9.7 allows remote attackers to execute arbitrary PHP code via the custom_welcome_page parameter.

[CLOSE] OSVDB ID : 19732 - Disclosed: 2005-08-29

Description:

MediaWiki contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the '<math>' tags. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 19733 - Disclosed: 2005-08-29

Description:

MediaWiki contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the table syntax for extensions or <nowiki> sections. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 19069 - Disclosed: 2005-08-29

Description:

(Description Provided by CVE) : client.cpp in BNBT EasyTracker 7.7r3.2004.10.27 and earlier allows remote attackers cause a denial of service (application hang) via an HTTP header containing only a ":" (colon), possibly leading to an integer signedness error due to a missing field name or value.

[CLOSE] OSVDB ID : 19047 - Disclosed: 2005-08-29

Description:

SqWebMail contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate img src tags in HTML e-mails. This may allow a user to create a specially crafted e-mail that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 19055 - Disclosed: 2005-08-29

Description:

(Description Provided by CVE) : The xntpd ntp (ntpd) daemon before 4.2.0b, when run with the -u option and using a string to specify the group, uses the group ID of the user instead of the group, which causes xntpd to run with different privileges than intended.