[CLOSE] OSVDB ID : 34955 - Disclosed: 2007-02-28

Description:

(Description Provided by CVE) : Norman SandBox Analyzer does not use the proper range for Interrupt Descriptor Table (IDT) entries, which allows local users to determine that the local machine is an emulator, or a similar environment not based on a physical Intel processor, which allows attackers to produce malware that is more difficult to analyze.

[CLOSE] OSVDB ID : 34956 - Disclosed: 2007-02-28

Description:

(Description Provided by CVE) : Integer overflow in the envwrite function in the Alcatel-Lucent Bell Labs Plan 9 kernel allows local users to overwrite certain memory addresses with kernel memory via a large n argument, as demonstrated by (1) modifying the iseve function to gain privileges and (2) making the devpermcheck function grant unrestricted device permissions.

[CLOSE] OSVDB ID : 35913 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : Mozilla Firefox 2.0.0.2 allows remote attackers to spoof the address bar, favicons, and document source, and perform updates in the context of arbitrary websites, by repeatedly setting document.location in the onunload attribute when linking to another website, a variant of CVE-2007-1092.

[CLOSE] OSVDB ID : 34361 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in wp-includes/functions.php in WordPress before 2.1.2-alpha allow remote attackers to inject arbitrary web script or HTML via (1) the Referer HTTP header or (2) the URI, a different vulnerability than CVE-2007-1049.

[CLOSE] OSVDB ID : 33792 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : Audins Audiens 3.3 allows remote attackers to bypass authentication and perform certain privileged actions, possibly an uninstall of the product, by calling unistall.php with the values cnf=disinstalla and status=on. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 33781 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : Directory traversal vulnerability in index.php in the Pagesetter 6.2.0 through 6.3.0 beta 5 module for PostNuke allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter.

[CLOSE] OSVDB ID : 33797 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : VShieldCheck in McAfee VirusScan for Mac (Virex) before 7.7 patch 1 allow local users to change permissions of arbitrary files via a symlink attack on /Library/Application Support/Virex/VShieldExclude.txt, as demonstrated by symlinking to the root crontab file to execute arbitrary commands.

[CLOSE] OSVDB ID : 33798 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : McAfee VirusScan for Mac (Virex) before 7.7 patch 1 has weak permissions (0666) for /Library/Application Support/Virex/VShieldExclude.txt, which allows local users to reconfigure Virex to skip scanning of arbitrary files.

[CLOSE] OSVDB ID : 33793 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the Nullsoft ShoutcastServer 1.9.7 allows remote attackers to inject arbitrary web script or HTML via the top-level URI on the Incoming interface (port 8001/tcp), which is not properly handled in the administrator interface when viewing the log file.

[CLOSE] OSVDB ID : 34349 - Disclosed: 2007-02-27

Description:

Wordpress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search script not properly sanitizing user-supplied input to the search variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

[CLOSE] OSVDB ID : 34635 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in actions/del.php in Admin Phorum 3.3.1a allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter.

[CLOSE] OSVDB ID : 36001 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : Grok Developments NetProxy 4.03 allows remote attackers to bypass URL filtering via a request that omits "http://" from the URL and specifies the destination port (:80).

[CLOSE] OSVDB ID : 36002 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : The connection log file implementation in Grok Developments NetProxy 4.03 does not record requests that omit http:// in a URL, which might allow remote attackers to conduct unauthorized activities and avoid detection.

[CLOSE] OSVDB ID : 34959 - Disclosed: 2007-02-27

Description:

(Description Provided by CVE) : The Hypervisor in Microsoft Xbox 360 kernel 4532 and 4548 allows attackers with physical access to force execution of the hypervisor syscall with a certain register set, which bypasses intended code protection.

[CLOSE] OSVDB ID : 32290 - Disclosed: 2007-02-27

Description:

CA eTrust Intrusion Detection contain a flaw that may allow a remote denial of service. The issue is due to the application failing to properly validate key length values during authentication and is triggered when a remote attacker sends a specially crafted packet containing a long key length value to the remote administration port (9191/TCP). This causes a heap-based buffer overflow in SW3eng.exe in the eID Engine, resulting in loss of availability for the service.

[CLOSE] OSVDB ID : 33050 - Disclosed: 2007-02-26

Description:

A remote overflow exists in OpenBSD. The kernel fails to properly allocate kernel memory buffers when handling ICMP6 packets resulting in a buffer overflow. With a specially crafted packet, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 35994 - Disclosed: 2007-02-26

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in setup.php in Audins Audiens 3.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 33787 - Disclosed: 2007-02-26

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in the AdminPanel in WordPress 2.1.1 and earlier allows remote attackers to perform privileged actions as administrators, as demonstrated using the delete action in wp-admin/post.php. NOTE: this issue can be leveraged to perform cross-site scripting (XSS) attacks and steal cookies via the post parameter.

[CLOSE] OSVDB ID : 33788 - Disclosed: 2007-02-26

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in the AdminPanel in WordPress 2.1.1 and earlier allows remote attackers to perform privileged actions as administrators, as demonstrated using the delete action in wp-admin/post.php. NOTE: this issue can be leveraged to perform cross-site scripting (XSS) attacks and steal cookies via the post parameter.

[CLOSE] OSVDB ID : 33816 - Disclosed: 2007-02-26

Description:

(Description Provided by CVE) : The Debian GNU/Linux 033_-F_NO_SETSID patch for the Apache HTTP Server 1.3.34-4 does not properly disassociate httpd from a controlling tty when httpd is started interactively, which allows local users to gain privileges to that tty via a CGI program that calls the TIOCSTI ioctl.

[CLOSE] OSVDB ID : 33777 - Disclosed: 2007-02-26

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in downloadcounter.php in STWC-Counter 3.4.0.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the stwc_counter_verzeichniss parameter.

[CLOSE] OSVDB ID : 34085 - Disclosed: 2007-02-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 34631 - Disclosed: 2007-02-26

Description:

(Description Provided by CVE) : SQL injection vulnerability in system/index.php in Audins Audiens 3.3 allows remote attackers to execute arbitrary SQL commands via the PHPSESSID cookie. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 34693 - Disclosed: 2007-02-26

Description:

(Description Provided by CVE) : Directory traversal vulnerability in index.php in SolarPay allows remote attackers to read certain files via a .. (dot dot) in the read parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 41106 - Disclosed: 2007-02-26

Description:

(Description Provided by CVE) : Unspecified vulnerability in Watchtower (WT) before 0.12 has unknown impact and attack vectors, related to "unauthorized accounts."

[CLOSE] OSVDB ID : 33689 - Disclosed: 2007-02-25

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in classes/class_mail.inc.php in Maian Recipe 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_folder parameter.

[CLOSE] OSVDB ID : 33243 - Disclosed: 2007-02-25

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in images_archive.asp in Uapplication Uphotogallery 1.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the s parameter. NOTE: the thumbnails.asp vector is already covered by CVE-2006-3023.

[CLOSE] OSVDB ID : 33676 - Disclosed: 2007-02-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Phoenix Evolution CMS (PECMS) allow remote attackers to inject arbitrary web script or HTML via the (1) mod or (2) action parameters in index.php, or the (3) pageid parameter in modules/pageedit/index.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

[CLOSE] OSVDB ID : 33677 - Disclosed: 2007-02-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Phoenix Evolution CMS (PECMS) allow remote attackers to inject arbitrary web script or HTML via the (1) mod or (2) action parameters in index.php, or the (3) pageid parameter in modules/pageedit/index.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

[CLOSE] OSVDB ID : 34487 - Disclosed: 2007-02-25

Description:

(Description Provided by CVE) : IrfanView 3.99 allows remote attackers to cause a denial of service (application crash) via a malformed WMF file.

[CLOSE] OSVDB ID : 34488 - Disclosed: 2007-02-25

Description:

Microsoft Excel contains a flaw that may allow a remote denial of service. The issue is triggered when a null-pointer is dereferenced, and will result in loss of availability for the application.

[CLOSE] OSVDB ID : 34489 - Disclosed: 2007-02-25

Description:

(Description Provided by CVE) : Microsoft Office 2003 allows user-assisted remote attackers to cause a denial of service (application crash) by attempting to insert a corrupted WMF file.

[CLOSE] OSVDB ID : 34490 - Disclosed: 2007-02-25

Description:

(Description Provided by CVE) : Microsoft Windows Explorer on Windows XP and 2003 allows remote user-assisted attackers to cause a denial of service (crash) via a malformed WMF file, which triggers the crash when the user browses the folder.

[CLOSE] OSVDB ID : 33603 - Disclosed: 2007-02-25

Description:

(Description Provided by CVE) : Variable overwrite vulnerability in interface/globals.php in OpenEMR 2.8.2 and earlier allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as conduct (a) remote file inclusion attacks via the srcdir parameter in custom/import_xml.php or (b) cross-site scripting (XSS) attacks via the rootdir parameter in interface/login/login_frame.php, via vectors associated with extract operations on the (1) POST and (2) GET superglobal arrays. NOTE: this issue was originally disputed before the extract behavior was identified in post-disclosure analysis. Also, the original report identified "Open Conference Systems," but this was an error.

[CLOSE] OSVDB ID : 36881 - Disclosed: 2007-02-25

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in top.php in PHP Module Implementation (PHP-MIP) 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the laypath parameter.

[CLOSE] OSVDB ID : 34891 - Disclosed: 2007-02-24

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 35995 - Disclosed: 2007-02-24

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Docebo CMS 3.0.3 through 3.0.5 allow remote attackers to inject arbitrary web script or HTML via (1) the searchkey parameter to index.php, or the (2) sn or (3) ri parameter to modules/htmlframechat/index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 35996 - Disclosed: 2007-02-24

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Docebo CMS 3.0.3 through 3.0.5 allow remote attackers to inject arbitrary web script or HTML via (1) the searchkey parameter to index.php, or the (2) sn or (3) ri parameter to modules/htmlframechat/index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 33801 - Disclosed: 2007-02-24

Description:

(Description Provided by CVE) : Directory traversal vulnerability in SQLiteManager 1.2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in a SQLiteManager_currentTheme cookie.

[CLOSE] OSVDB ID : 33773 - Disclosed: 2007-02-24

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Photostand 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) message ("comment") or (2) name field, or the (3) q parameter in a search action in index.php.