[CLOSE] OSVDB ID : 38305 - Disclosed: 2007-10-31

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 38328 - Disclosed: 2007-10-31

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Services/Utilities/classes/class.ilUtil.php in ILIAS 3.8.3 and earlier allows remote attackers to inject arbitrary web script or HTML via attributes inside a domain-name string in the (1) mailing or (2) forum component, as demonstrated using the style and onmouseover HTML attributes.

[CLOSE] OSVDB ID : 38358 - Disclosed: 2007-10-31

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in download.php in ISPworker 1.21 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) ticketid and (2) filename parameters.

[CLOSE] OSVDB ID : 38414 - Disclosed: 2007-10-31

Description:

ModuleBuilder contains a flaw that allows a remote attacker to read files outside of the web path. The issue is due to the DownloadModule.php not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'file' variable.

[CLOSE] OSVDB ID : 38922 - Disclosed: 2007-10-31

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in upload.php in SeeBlick 1.0 Beta allows remote attackers to upload arbitrary files via unspecified vectors. NOTE: these files are stored with .html extensions, so the scope of the attack might be limited to resource consumption and possibly XSS.

[CLOSE] OSVDB ID : 39018 - Disclosed: 2007-10-31

Description:

(Description Provided by CVE) : ** DISPUTED ** Directory traversal vulnerability in PageTraiteDownload.php in phpMyConferences 8.0.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter. NOTE: this issue is disputed for 8.0.2 by a reliable third party, who notes that the PHP code is syntactically incorrect and cannot be executed.

[CLOSE] OSVDB ID : 39061 - Disclosed: 2007-10-31

Description:

(Description Provided by CVE) : SQL injection vulnerability in Amazing Flash AFCommerce allows remote attackers to execute arbitrary SQL commands via the firstname parameter to an unspecified component, a different issue than CVE-2006-3794. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 39068 - Disclosed: 2007-10-31

Description:

(Description Provided by CVE) : Directory traversal vulnerability in modules/Builder/DownloadModule.php in ModuleBuilder 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.

[CLOSE] OSVDB ID : 40580 - Disclosed: 2007-10-31

Description:

(Description Provided by CVE) : Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.

[CLOSE] OSVDB ID : 40402 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the sendrmt function in bellmail in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via a long parameter to the m command.

[CLOSE] OSVDB ID : 40403 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Integer underflow in the dns_name_fromtext function in (1) libdns_nonsecure.a and (2) libdns_secure.a in IBM AIX 5.2 allows local users to gain privileges via a crafted "-y" (TSIG key) command line argument to dig.

[CLOSE] OSVDB ID : 40404 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Buffer overflow in crontab in IBM AIX 5.2 allows local users to gain privileges via long command line arguments.

[CLOSE] OSVDB ID : 40405 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via a long argument to the (1) "-p" option to lqueryvg or (2) the "-V" option to lquerypv.

[CLOSE] OSVDB ID : 40406 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via a long argument to the (1) "-p" option to lqueryvg or (2) the "-V" option to lquerypv.

[CLOSE] OSVDB ID : 40407 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the domacro function in ftp in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long parameter to a macro, as demonstrated by executing a macro via the '$' command.

[CLOSE] OSVDB ID : 39389 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Buffer overflow in IMail Client 9.22, as shipped with IPSwitch IMail Server 2006.22, allows remote attackers to execute arbitrary code via a long boundary parameter in a multipart MIME e-mail message.

[CLOSE] OSVDB ID : 41620 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : IBM Tivoli Continuous Data Protection for Files (CDP) 3.1.0 uses weak permissions (unrestricted write) for the Central Admin Global download directory, which allows local users to place arbitrary files into a location used for updating CDP clients.

[CLOSE] OSVDB ID : 38300 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Omnistar Live allow remote attackers to inject arbitrary web script or HTML via (1) the category_id parameter to users/kb.php, and possibly (3) the Email Box field in profile.php.

[CLOSE] OSVDB ID : 38347 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Update Service ActiveX control in isusweb.dll before 6.0.100.65101 in MacroVision FLEXnet Connect and InstallShield 2008 allows remote attackers to execute arbitrary code via an unspecified "unsafe method," possibly involving a buffer overflow.

[CLOSE] OSVDB ID : 38394 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in IBM Tivoli Service Desk 6.2 allows remote authenticated users to inject arbitrary web script or HTML via the Description parameter in a Maximo change action.

[CLOSE] OSVDB ID : 40647 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in urlinn_includes/config.php in phpFaber URLInn 2.0.5 allows remote attackers to execute arbitrary PHP code via a URL in the dir_ws parameter.

[CLOSE] OSVDB ID : 41943 - Disclosed: 2007-10-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in bb_func_search.php in miniBB 2.1 allows remote attackers to execute arbitrary SQL commands via the table parameter to index.php.

[CLOSE] OSVDB ID : 41998 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Stack-based buffer overflow in Sony SonicStage CONNECT Player (CP) 4.3 allows remote attackers to execute arbitrary code via a long file name in an M3U file.

[CLOSE] OSVDB ID : 39724 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Heap-based buffer overflow in the samp_send function in nuauth/sasl.c in NuFW before 2.2.7 allows remote attackers to cause a denial of service via unspecified input on which base64 encoding is performed. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 40816 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Internet Protocol (IP) functionality in Sun Solaris 10 allows local users to cause a denial of service (panic) via unspecified vectors, probably related to a UDP packet.

[CLOSE] OSVDB ID : 42759 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : unp 1.0.12, and other versions before 1.0.14, does not properly escape file names, which might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename argument. NOTE: this might only be a vulnerability when unp is invoked by a third party product.

[CLOSE] OSVDB ID : 40081 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Buffer overflow in MDSYS.SDO_CS in Oracle Database Server 8iR3, 9iR1, 9iR2 up to 9.2.0.6, and 10gR1 up to 10.1.0.4 allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via the TRANSFORM function. NOTE: this issue might already be covered by CVE-2007-5515, CVE-2007-5509, or CVE-2007-5505, but there are insufficient details to be sure.

[CLOSE] OSVDB ID : 40835 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Unspecified vulnerability in Sun Fire X2100 M2 and X2200 M2 Embedded Lights Out Manager (ELOM) on x86 before firmware 2.70 allows remote attackers to execute arbitrary commands as root on the Service Processor (SP) via unspecified vectors, a different vulnerability than CVE-2007-5170.

[CLOSE] OSVDB ID : 41346 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Xen 3.1.1 does not prevent modification of the CR4 TSC from applications, which allows pv guests to cause a denial of service (crash).

[CLOSE] OSVDB ID : 38339 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Integer overflow in RealNetworks RealPlayer 10 and 10.5, RealOne Player 1, and RealPlayer Enterprise for Windows allows remote attackers to execute arbitrary code via a crafted Lyrics3 2.00 tag in an MP3 file, resulting in a heap-based buffer overflow.

[CLOSE] OSVDB ID : 44961 - Disclosed: 2007-10-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 38279 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in wp-admin/edit-post-rows.php in WordPress 2.3 allows remote attackers to inject arbitrary web script or HTML via the posts_columns array parameter.

[CLOSE] OSVDB ID : 38281 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the CAD service in IBM Tivoli Storage Manager (TSM) Client 5.3.5.3 and 5.4.1.2 for Windows allows remote attackers to inject arbitrary web script or HTML via HTTP requests to port 1581, which generate log entries in a dsmerror.log file that is accessible through a certain web interface.

[CLOSE] OSVDB ID : 38282 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Buffer overflow in the GomManager (GomWeb Control) ActiveX control in GomWeb3.dll 1.0.0.12 in Gretech Online Movie Player (GOM Player) 2.1.6.3499 allows remote attackers to execute arbitrary code via a long argument to the OpenUrl method.

[CLOSE] OSVDB ID : 38287 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in admin/menu.php in SAXON 5.4 allows remote attackers to inject arbitrary web script or HTML via the config[news_url] parameter.

[CLOSE] OSVDB ID : 38405 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in articles.php in E-Vendejo 0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.

[CLOSE] OSVDB ID : 38837 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Stack-based buffer overflow in a certain ActiveX control in GLChat.ocx 2.5.1.32 in GlobalLink 2.7.0.8, as used in Ourgame GLWorld and possibly other products, allows remote attackers to execute arbitrary code via a long first argument to the ConnectAndEnterRoom method, possibly involving the GLCHAT.GLChatCtrl.1 control, as originally exploited in the wild in October 2007. NOTE: some of these details are obtained from third party information. NOTE: this was originally reported as a heap-based issue by some sources.

[CLOSE] OSVDB ID : 38838 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in _theme/breadcrumb.php in MySpacePros MySpace Resource Script (MSRS) 1.21 allows remote attackers to execute arbitrary PHP code via a URL in the rootBase parameter.

[CLOSE] OSVDB ID : 38839 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in example.php in SAXON 5.4 allows remote attackers to execute arbitrary SQL commands via the template parameter.

[CLOSE] OSVDB ID : 38968 - Disclosed: 2007-10-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG before 4.2.6.1, and 5.x before 5.2.2.5, allows remote attackers to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.