[CLOSE] OSVDB ID : 25290 - Disclosed: 2006-04-27

Description:

(Description Provided by CVE) : Buffer overflow in BL4 SMTP Server 0.1.4 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long argument to the (1) EHLO, (2) MAIL FROM, and (3) RCPT TO commands.

[CLOSE] OSVDB ID : 25086 - Disclosed: 2006-04-27

Description:

NetBSD contains a flaw that may allow a local denial of service. The issue is triggered when a malicious user changes the sample rate of an audio device during playback, and will result in loss of availability for the platform.

[CLOSE] OSVDB ID : 22351 - Disclosed: 2006-04-26

Description:

(Description Provided by CVE) : Microsoft Internet Explorer before Windows XP Service Pack 2 and Windows Server 2003 Service Pack 1, when Prompt is configured in Security Settings, uses modal dialogs to verify that a user wishes to run an ActiveX control or perform other risky actions, which allows user-assisted remote attackers to construct a race condition that tricks a user into clicking an object or pressing keys that are actually applied to a "Yes" approval for executing the control.

[CLOSE] OSVDB ID : 55724 - Disclosed: 2006-04-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 25162 - Disclosed: 2006-04-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 25000 - Disclosed: 2006-04-26

Description:

Océ contains a flaw that may allow a remote denial of service. The issue is triggered due to an error in the built-in webserver when handling an overly long user-supplied URL, and will result in loss of availability for the platform.

[CLOSE] OSVDB ID : 24990 - Disclosed: 2006-04-26

Description:

A remote overflow exists in Squeez and SpeedCommander. Squeez and SpeedCommander fails to handle an ACE archive that contains a file with an overly long filename resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can execute arbitrary code resulting in a loss of integrity.

[CLOSE] OSVDB ID : 24987 - Disclosed: 2006-04-26

Description:

Instant Photo Gallery contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the portfolio_photo_popup.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 24974 - Disclosed: 2006-04-26

Description:

A local overflow exists in abcMIDI. The product fails to limit the bytes read by sscanf in drawtune.c and yapstree.c resulting in a buffer overflow. With a specially crafted .ABC file, an attacker can cause the program to crash or possibly execute arbitrary code resulting in a loss of integrity or availability for the program.

[CLOSE] OSVDB ID : 25138 - Disclosed: 2006-04-26

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in HTM_PASSWD in DirectAdmin Hosting Management allows remote attackers to inject arbitrary web script or HTML via the domain parameter.

[CLOSE] OSVDB ID : 25264 - Disclosed: 2006-04-26

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Devsyn Open Bulletin Board (OpenBB) 1.0.6 allow remote attackers to inject arbitrary web script or HTML via (1) the FID parameter in board.php and (2) the TID parameter in read.php. NOTE: the SQL injection issues are already covered by CVE-2005-1612 (read.php) and CVE-2005-2566 (board.php).

[CLOSE] OSVDB ID : 25266 - Disclosed: 2006-04-26

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in FarsiNews 2.5.3 Pro and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) month and (2) year parameters in (a) index.php, and the (3) mod parameter in (b) admin.php.

[CLOSE] OSVDB ID : 25267 - Disclosed: 2006-04-26

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in FarsiNews 2.5.3 Pro and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) month and (2) year parameters in (a) index.php, and the (3) mod parameter in (b) admin.php.

[CLOSE] OSVDB ID : 25268 - Disclosed: 2006-04-26

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in misc.php in MySmartBB 1.1.x allow remote attackers to inject arbitrary web script or HTML via the (1) id and (2) username parameters.

[CLOSE] OSVDB ID : 25269 - Disclosed: 2006-04-26

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in misc.php in MySmartBB 1.1.x allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) username parameters.

[CLOSE] OSVDB ID : 25072 - Disclosed: 2006-04-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 24969 - Disclosed: 2006-04-26

Description:

Groupmax contains a flaw that may allow a remote denial of service. The issue is triggered when opening an SMTP message with an attachment with a filename which is an MS-DOS device name, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 40107 - Disclosed: 2006-04-26

Description:

(Description Provided by CVE) : The recursor in PowerDNS before 3.0.1 allows remote attackers to cause a denial of service (application crash) via malformed EDNS0 packets.

[CLOSE] OSVDB ID : 25084 - Disclosed: 2006-04-25

Description:

Nessus NASL contains a flaw that may allow a remote denial of service. The issue is triggered when a rouge plugin is loaded by the Nessus server which contains a malicious 'split' function call, and will result in loss of availability for the platform.

[CLOSE] OSVDB ID : 24942 - Disclosed: 2006-04-25

Description:

3Com Baseline Switch 2848-SFP contains a flaw that may allow a remote denial of service. The issue is triggered when the switch receives a DHCP packet that exceeds 342 bytes in length, and will result in loss of availability for the platform.

[CLOSE] OSVDB ID : 24993 - Disclosed: 2006-04-25

Description:

(Description Provided by CVE) : Phex before 2.8.6 allows remote attackers to cause a denial of service (application hang) by initiating multiple chat requests to a single user and then logging off.

[CLOSE] OSVDB ID : 24938 - Disclosed: 2006-04-25

Description:

Beagle contains a flaw that may allow a malicious user to pass argbitrary arguments to helper applications. The issue is triggered when Beagle, during its indexing process, launches helper applications. It is possible that the flaw may allow arbitrary code exection, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 24940 - Disclosed: 2006-04-25

Description:

(Description Provided by CVE) : Multiple buffer overflows in abc2ps before 1.3.3 allow user-assisted attackers to execute arbitrary code via crafted ABC music files.

[CLOSE] OSVDB ID : 24994 - Disclosed: 2006-04-25

Description:

DevBB contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'member' variables upon submission to the member.php script. This could allow a user to create a specially crafted URL that would execute arbitrary HTML and script code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 24934 - Disclosed: 2006-04-25

Description:

ampleShop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the Customeraddresses_RecordAction.cfm script not properly sanitizing user-supplied input to the 'RecordID' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 24935 - Disclosed: 2006-04-25

Description:

ampleShop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the youraccount.cfm script not properly sanitizing user-supplied input to the 'RecordID' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 24936 - Disclosed: 2006-04-25

Description:

ampleShop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the category.cfm script not properly sanitizing user-supplied input to the 'cat' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 24937 - Disclosed: 2006-04-25

Description:

ampleShop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the detail.cfm script not properly sanitizing user-supplied input to the 'solus' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 24939 - Disclosed: 2006-04-25

Description:

(Description Provided by CVE) : PhpWebGallery before 1.6.0RC1 allows remote attackers to obtain arbitrary pictures via a request to picture.php without specifying the cat parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

[CLOSE] OSVDB ID : 57059 - Disclosed: 2006-04-25

Description:

(Description Provided by CVE) : Unspecified vulnerability in Juniper Networks JUNOSe E-series routers before 7-1-1 has unknown impact and remote attack vectors related to the DNS "client code," as demonstrated by the OUSPG PROTOS DNS test suite.

[CLOSE] OSVDB ID : 24976 - Disclosed: 2006-04-25

Description:

QuickEStore contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the prodpage.cfm script not properly sanitizing user-supplied input to the 'CategoryID' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, by providing a malformed file argument to the script it will disclose the full installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 24977 - Disclosed: 2006-04-25

Description:

QuickEStore contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.cfm script not properly sanitizing user-supplied input to the 'SubCatID' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, by providing a malformed file argument to the script it will disclose the full installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 24978 - Disclosed: 2006-04-25

Description:

QuickEStore contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the proddetail.cfm script not properly sanitizing user-supplied input to the 'ItemID' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, by providing a malformed file argument to the script it will disclose the full installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 24979 - Disclosed: 2006-04-25

Description:

QuickEStore contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the checkout.cfm script not properly sanitizing user-supplied input to the 'OrderID' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, by providing a malformed file argument to the script it will disclose the full installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 24980 - Disclosed: 2006-04-25

Description:

QuickEStore contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the shipping.cfm script not properly sanitizing user-supplied input to the 'OrderID' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database. Additionally, by providing a malformed file argument to the script it will disclose the full installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 24975 - Disclosed: 2006-04-25

Description:

phpWebFTP contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'port' variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 25005 - Disclosed: 2006-04-25

Description:

Invision Power Board contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not properly validate the 'lastdate' variable in a "preg_replace()" call in the search.php script. This could allow a user to inject and execute arbitrary PHP code via the "e" pattern modifier, leading to a loss of integrity.

[CLOSE] OSVDB ID : 25006 - Disclosed: 2006-04-25

Description:

(Description Provided by CVE) : SQL injection vulnerability in lib/func_taskmanager.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary SQL commands via the ck parameter, which can inject at most 32 characters.

[CLOSE] OSVDB ID : 25007 - Disclosed: 2006-04-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 25008 - Disclosed: 2006-04-25

Description:

Invision Power Board contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to action_admin/paysubscriptions.php not properly sanitizing user input supplied to the 'name' variable. This may allow an attacker to include a file from the local host that contains arbitrary commands which will be executed by the vulnerable script.