[CLOSE] OSVDB ID : 35756 - Disclosed: 2007-02-03

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Cedric CLAIRE PortailPhp 2 allow remote attackers to execute arbitrary PHP code via a URL in the chemin parameter to (1) mod_news/index.php, (2) mod_news/goodies.php, or (3) mod_search/index.php. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 35757 - Disclosed: 2007-02-03

Description:

PortailPhp contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'mod_news/goodies.php' script not properly sanitizing user input supplied to the 'chemin' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 35758 - Disclosed: 2007-02-03

Description:

PortailPhp contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'mod_search/index.php' script not properly sanitizing user input supplied to the 'chemin' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 35770 - Disclosed: 2007-02-03

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Wap Portal Server 1.x allow remote attackers to execute arbitrary PHP code via a URL in the language parameter to (1) index.php and (2) admin/index.php.

[CLOSE] OSVDB ID : 33106 - Disclosed: 2007-02-02

Description:

STLport contains an overflow condition in the 'print floats' functionality. The issue is triggered as user-supplied input is not properly validated. With a specially crafted request, a remote attacker can cause a buffer overflow, resulting in a denial of service or potentially execution of arbitrary code.

[CLOSE] OSVDB ID : 33107 - Disclosed: 2007-02-02

Description:

STLport contains an overflow condition in the 'rope constructor' functionality. The issue is triggered as user-supplied input is not properly validated. With a specially crafted request, a remote attacker can cause a buffer overflow, resulting in a denial of service or potentially execution of arbitrary code.

[CLOSE] OSVDB ID : 33095 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in index.php in Miguel Nunes Call of Duty 2 (CoD2) DreamStats System 4.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter.

[CLOSE] OSVDB ID : 33179 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : Unspecified vulnerability in the mod_roster_odbc module in ejabberd before 1.1.3 has unknown impact and attack vectors.

[CLOSE] OSVDB ID : 33092 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in includes/functions.php in phpBB++ Build 100 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

[CLOSE] OSVDB ID : 33112 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : EQdkp 1.3.1 and earlier authenticates administrative requests by verifying that the HTTP Referer header specifies an admin/ URL, which allows remote attackers to read or modify account names and passwords via a spoofed Referer.

[CLOSE] OSVDB ID : 33081 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : Buffer overflow in ZABBIX before 1.1.5 has unknown impact and attack vectors related to "SNMP IP addresses."

[CLOSE] OSVDB ID : 33111 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : SQL injection vulnerability in news.php in dB Masters Curium CMS 1.03 and earlier allows remote attackers to execute arbitrary SQL commands via the c_id parameter.

[CLOSE] OSVDB ID : 34755 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : Stack-based buffer overflow in Remotesoft .NET Explorer 2.0.1 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long line in a .cpp file.

[CLOSE] OSVDB ID : 33645 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in config.php in phpBB ezBoard converter (ezconvert) 0.2 allows remote attackers to execute arbitrary PHP code via a URL in the ezconvert_dir parameter.

[CLOSE] OSVDB ID : 34669 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in F3Site 2.1 and earlier allows remote authenticated administrators to upload and execute arbitrary PHP scripts via GIF86 header in a file in the uplf parameter, which can be later accessed via a relative pathname in the dir parameter in adm.php.

[CLOSE] OSVDB ID : 33637 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : Chicken of the VNC (cotv) 2.0 allows remote attackers to cause a denial of service (application crash) via a large computer-name size value in a ServerInit packet, which triggers a failed malloc and a resulting NULL dereference.

[CLOSE] OSVDB ID : 34873 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : Variable extract vulnerability in Apache Stats before 0.0.3beta allows attackers to modify arbitrary variables and conduct attacks via unknown vectors involving the use of PHP's extract function.

[CLOSE] OSVDB ID : 34668 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the news comment functionality in F3Site 2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the Autor field.

[CLOSE] OSVDB ID : 34667 - Disclosed: 2007-02-02

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in lang.php in PHPProbid 5.24 allows remote attackers to execute arbitrary PHP code via a URL in the SRC attribute of an HTML element in the lang parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 33024 - Disclosed: 2007-02-02

Description:

Snort Inline contains a flaw that may allow a remote denial of service. The issue is triggered when an ethernet header doesn't exist in the packet received by Snort, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 44725 - Disclosed: 2007-02-01

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 35704 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in Ian Bezanson DropBox before 0.0.4 beta have unknown impact and attack vectors, possibly related to a variable extraction vulnerability.

[CLOSE] OSVDB ID : 33080 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Stack-based buffer overflow in GOM Player 2.0.12.3375 allows user-assisted remote attackers to execute arbitrary code via a .ASX file with a long URI in the "ref href" tag. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 41164 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrated by INT 0xAA; (2) an IRET instruction when an invalid address is at the top of the stack; (3) a malformed MOVNTI instruction, as demonstrated by using a register as a destination; or a write operation to (4) SEGR6 or (5) SEGR7.

[CLOSE] OSVDB ID : 41165 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrated by INT 0xAA; (2) an IRET instruction when an invalid address is at the top of the stack; (3) a malformed MOVNTI instruction, as demonstrated by using a register as a destination; or a write operation to (4) SEGR6 or (5) SEGR7.

[CLOSE] OSVDB ID : 41166 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrated by INT 0xAA; (2) an IRET instruction when an invalid address is at the top of the stack; (3) a malformed MOVNTI instruction, as demonstrated by using a register as a destination; or a write operation to (4) SEGR6 or (5) SEGR7.

[CLOSE] OSVDB ID : 41167 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Parallels allows local users to cause a denial of service (virtual machine abort) via (1) certain INT instructions, as demonstrated by INT 0xAA; (2) an IRET instruction when an invalid address is at the top of the stack; (3) a malformed MOVNTI instruction, as demonstrated by using a register as a destination; or a write operation to (4) SEGR6 or (5) SEGR7.

[CLOSE] OSVDB ID : 40228 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in the host operating system via unspecified vectors related to bitblt operations.

[CLOSE] OSVDB ID : 42119 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : The emulated floppy disk controller in Bochs 2.3 allows local users of the guest operating system to cause a denial of service (virtual machine crash) via unspecified vectors, resulting in a divide-by-zero error.

[CLOSE] OSVDB ID : 31796 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in controller.php in Simple Invoices before 20070202 allows remote attackers to execute arbitrary PHP code via a URL in the (1) module or (2) view parameter. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 33073 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Unspecified vulnerability in the LLT dissector in Wireshark (formerly Ethereal) 0.99.3 and 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

[CLOSE] OSVDB ID : 33075 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 and 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors, a different issue than CVE-2006-5468.

[CLOSE] OSVDB ID : 33076 - Disclosed: 2007-02-01

Description:

The Wireshark TCP dissector contains a flaw that may allow a remote denial of service. The issue is triggered by a malformed packet or trace file, and will result in loss of availability for the application.

[CLOSE] OSVDB ID : 32968 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in MyBB (aka MyBulletinBoard) 1.2.2 allows remote attackers to send messages to arbitrary users. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 31696 - Disclosed: 2007-02-01

Description:

A local overflow exists in IBM AIX bos.rte.libc. The product fails to handle input to the rdist command resulting in an unspecified overflow. With a specially crafted request, an attacker can execute arbitrary code with escalated privileges resulting in a loss of integrity.

[CLOSE] OSVDB ID : 33110 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Barron McCann X-Kryptor Driver BMS1446HRR (Xgntr BMS1351 Install BMS1472) in X-Kryptor Secure Client does not drop privileges when launching an Explorer window in response to a help command, which allows local users to gain LocalSystem privileges via interactive use of Explorer.

[CLOSE] OSVDB ID : 86437 - Disclosed: 2007-02-01

Description:

First-Generation RFID-enabled Credit Cards contain a flaw that may lead to an unauthorized information disclosure. The issue is triggered when certain Cardholder information is transferred in cleartext when making purchases. This may allow a remote attacker to gain access to a cardholder's full name and the expiration date of a card. This may be exploited to disclose some usage information about the card to an attacker.

[CLOSE] OSVDB ID : 86436 - Disclosed: 2007-02-01

Description:

Multiple first-generation RFID-enabled credit cards contain a flaw that may allow an attacker to bypass restrictions. The issue is due to the cards having no mechanism to track individual cards or the information on them (e.g. hashing or unique identifiers per-transaction). This allows an attacker who intercepts card information to replay the data at a later date. This can be used to purchase goods and/or spoof the legitimate card holder. Note that some cards allow for 'endless' replay, and will never detect such activity, while others have a limited window that the card data can be replayed.

[CLOSE] OSVDB ID : 31879 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : The Loopback Filesystem (LOFS) in Sun Solaris 10 allows local users in a non-global zone to move and rename files in a read-only filesystem, which could lead to a denial of service.

[CLOSE] OSVDB ID : 33074 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Unspecified vulnerability in the IEEE 802.11 dissector in Wireshark (formerly Ethereal) 0.10.14 through 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.