| OSVDB ID | Disclosure Date | Title |
|---|
|
25949
Description:
A remote overflow exists in Microsoft Windows. Microsoft Windows fails to perform proper boundary checks in inetcomm.dll when processing URLs with the "mhtml:" URI handler resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary remote code execution resulting in a loss of integrity.
|
2006-05-31
|
Microsoft Windows INETCOMM.DLL mhtml: URI Overflow
|
|
31049
Description:
(Description Provided by CVE) : ufs_vnops.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by calling the ftruncate function on a file type that is not VREG, VLNK or VDIR, which is not defined in POSIX.
|
2006-05-31
|
FreeBSD ftruncate() Truncate Request Local DoS
|
|
25837
Description:
Snort contains a flaw that may allow a remote attacker to bypass IDS detection. The issue is triggered by adding a carriage return to the end of a URL, directly before the HTTP protocol declaration. It is possible that the flaw may allow bypass detection of "uricontent" rules resulting in a loss of integrity.
|
2006-05-31
|
Snort HTTP Inspect Pre-Processor Uricontent Bypass
|
|
26387
Description:
(Description Provided by CVE) : Unspecified vulnerability in Arkoon FAST360 UTM appliances 3.0 through 3.0/29, 3.1, 3.2, and 3.3 allows remote attackers to bypass keyword filtering in the FAST HTTP module, and signatures in the IDPS HTTP module, via crafted URLs that are "misinterpreted."
|
2006-05-31
|
FAST360 Appliance FAST/IDPS HTTP Module Analysis Bypass
|
|
26386
Description:
(Description Provided by CVE) : The DNS module in Arkoon FAST360 UTM appliances 3.0 up to 3.0/29, 3.1 through 3.3, and 4.0 allows remote attackers to cause a denial of service (reboot) via a malformed DNS message, as demonstrated by the PROTOS DNS testing suite.
|
2006-05-31
|
FAST360 Appliance DNS Analysis Malformed Packet DoS
|
|
25951
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in index.php in Dominios Europa PICRATE (aka TAL RateMyPic) 1.0 allow remote attackers to inject arbitrary web script or HTML via a javascript URI in the SRC attribute of an IMG element in the (1) name (aka nick), (2) email, and (3) comment boxes; and via the (4) id parameter.
|
2006-05-31
|
TAL RateMyPic index.php id Parameter XSS
|
|
25952
Description:
(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Dominios Europa PICRATE (aka TAL RateMyPic) 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) id, (2) voteid, and (3) vfiel parameters to (a) index.php, and via the (4) nick, (5) email, (6) city, (7) messen, and (8) message form field parameters to (b) add.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
|
2006-05-31
|
TAL RateMyPic add.php Multiple Parameter XSS
|
|
25943
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in (1) uploads.php and (2) "url links" in PmWiki 2.1.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
|
2006-05-31
|
PmWiki URL Link Unspecified XSS
|
|
25944
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in (1) uploads.php and (2) "url links" in PmWiki 2.1.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
|
2006-05-31
|
PmWiki uploads.php XSS
|
|
25973
Description:
(Description Provided by CVE) : ** DISPUTED ** PHP remote file inclusion vulnerability in functions/plugin.php in SquirrelMail 1.4.6 and earlier, if register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the plugins array parameter. NOTE: this issue has been disputed by third parties, who state that Squirrelmail provides prominent warnings to the administrator when register_globals is enabled. Since the varieties of administrator negligence are uncountable, perhaps this type of issue should not be included in CVE. However, the original developer has posted a security advisory, so there might be relevant real-world environments under which this vulnerability is applicable.
|
2006-05-31
|
SquirrelMail functions/plugin.php plugins[] Parameter Local File Inclusion
|
|
25941
Description:
(Description Provided by CVE) : Buffer overflow in the addnewword function in typespeed 0.4.4 and earlier might allow remote attackers to execute arbitrary code via unknown vectors.
|
2006-05-31
|
Typespeed addnewword() Function Remote Overflow
|
|
25844
Description:
Xiti Tracking Script contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'Referer' and 'xtref' variables upon submission to the xiti.js script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-05-31
|
XiTi Tracking Script xiti.js Multiple Parameter XSS
|
|
25938
Description:
(Description Provided by CVE) : Directory traversal vulnerability in PG Problem Editor module (PGProblemEditor.pm) in WeBWorK Online Homework Delivery System 2.2.0 and earlier allows remote attackers to read and write files outside of the templates directory.
|
2006-05-31
|
WeBWorK PGProblemEditor.pm Traversal Arbitrary File Manipulation
|
|
25967
Description:
(Description Provided by CVE) : Unspecified vulnerability in the CHM unpacker in avast! before 4.7.844 has unknown impact and remote attack vectors.
|
2006-05-31
|
avast! CHM Unpacker Unspecified Issue
|
|
25887
Description:
Unknown / Incomplete
|
2006-05-31
|
Group-Office Calendar Module Unspecified Issue
|
|
25968
Description:
(Description Provided by CVE) : Directory traversal vulnerability in easy-scart.cgi in iShopCart allows remote attackers to read arbitrary files via a .. (dot dot) in the query string.
|
2006-05-31
|
iShopCart easy-scart.cgi Traversal Arbitrary File Access
|
|
25969
Description:
(Description Provided by CVE) : Multiple buffer overflows in the (1) vGetPost and (2) main functions in easy-scart.c through easy-scart6.c in iShopCart allow remote attackers to execute arbitrary code by sending a large amount of data containing "Submit" in an sslinvoice action, and allow remote attackers to have an unknown impact via a large amount of posted data.
|
2006-05-31
|
iShopCart POST Request vGetPost() Function Overflow
|
|
25970
Description:
Unknown / Incomplete
|
2006-05-31
|
iShopCart GET Request Parameter String Handling Overflow
|
|
25843
Description:
(Description Provided by CVE) : SQL injection vulnerability in Hitachi HITSENSER3 HITSENSER3/PRP, HITSENSER3/PUP, HITSENSER3/STP, and HITSENSER3/EUP allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.
|
2006-05-31
|
Hitachi HITSENSER3 Unspecified SQL Injection
|
|
25939
Description:
Etype Eserv/3 contains flaws that allows a remote attacker to traverse outside of a restricted path. The issues are due to the IMAP service not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the CREATE, SELECT, DELETE, RENAME, COPY, and APPEND commands. These directory traversal attacks would allow the attacker to read other users' emails, create/rename arbitrary directories, and delete arbitrary empty directories.
|
2006-05-31
|
Etype Eserv/3 IMAP Multiple Command Traversal Arbitrary File Manipulation
|
|
25940
Description:
Etype Eserv/3 contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when specially crafted requests for script files (e.g. PHP) are sent to the web server, which will disclose the scripts' source code to a remote attacker.
|
2006-05-31
|
Etype Eserv/3 HTTP Server File Upload Name Validation Bypass
|
|
26144
Description:
Unknown / Incomplete
|
2006-05-31
|
Mambo Unspecified RSS XSS
|
|
25916
Description:
Ottoman contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to index.php not properly sanitizing user input supplied to the 'default_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ottoman index.php default_path Parameter Remote File Inclusion
|
|
25917
Description:
Ottoman contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to error.php not properly sanitizing user input supplied to the 'default_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ottoman error.php default_path Parameter Remote File Inclusion
|
|
25918
Description:
Ottoman contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to classes/main_class.php not properly sanitizing user input supplied to the 'default_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ottoman classes/main_class.php default_path Parameter Remote File Inclusion
|
|
25919
Description:
Ottoman contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to format_css.php not properly sanitizing user input supplied to the 'default_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ottoman format_css.php default_path Parameter Remote File Inclusion
|
|
25920
Description:
Ottoman contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to js.php not properly sanitizing user input supplied to the 'default_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ottoman js.php default_path Parameter Remote File Inclusion
|
|
25921
Description:
Ottoman contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to rss.php not properly sanitizing user input supplied to the 'default_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ottoman rss.php default_path Parameter Remote File Inclusion
|
|
25854
Description:
(Description Provided by CVE) : The RedCarpet command-line client (rug) does not verify SSL certificates from a server, which allows remote attackers to read network traffic and execute commands via a man-in-the-middle (MITM) attack.
|
2006-05-31
|
RedCarpet rug SSL Certification Validation Failure
|
|
25855
Description:
(Description Provided by CVE) : The RedCarpet /etc/ximian/rcd.conf configuration file in Novell Linux Desktop 9 and SUSE SLES 9 has world-readable permissions, which allows attackers to obtain the rc (RedCarpet) password.
|
2006-05-31
|
RedCarpet rcd.conf rc Cleartext Password Disclosure
|
|
27209
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the topman.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia topman.php babInstallPath Parameter Remote File Inclusion
|
|
27211
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the vacadmb.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia vacadmb.php babInstallPath Parameter Remote File Inclusion
|
|
27212
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the vacadma.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia vacadma.php babInstallPath Parameter Remote File Inclusion
|
|
27213
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the vacadm.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia vacadm.php babInstallPath Parameter Remote File Inclusion
|
|
27214
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the statart.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia statart.php babInstallPath Parameter Remote File Inclusion
|
|
27215
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the search.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia search.php babInstallPath Parameter Remote File Inclusion
|
|
27216
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the posts.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia posts.php babInstallPath Parameter Remote File Inclusion
|
|
27217
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the options.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia options.php babInstallPath Parameter Remote File Inclusion
|
|
27218
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the login.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia login.php babInstallPath Parameter Remote File Inclusion
|
|
27219
Description:
Ovidentia contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the frchart.php script not properly sanitizing user input supplied to the 'babInstallPath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2006-05-31
|
Ovidentia frchart.php babInstallPath Parameter Remote File Inclusion
|
