[CLOSE] OSVDB ID : 36310 - Disclosed: 2007-03-31

Description:

(Description Provided by CVE) : SQL injection vulnerability in show_event.php in the Expanded Calendar (calendar_panel) 2.00 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the m_month parameter.

[CLOSE] OSVDB ID : 41985 - Disclosed: 2007-03-31

Description:

(Description Provided by CVE) : Multiple off-by-one errors in VooDoo cIRCle before 1.1.beta27 allow remote attackers to cause a denial of service (connection loss) or possibly execute arbitrary code via a (1) DNS name response of the exact length as a buffer; or a long (2) channel name, (3) partyline channel name, or unspecified vectors in crafted BOTNET packets.

[CLOSE] OSVDB ID : 41986 - Disclosed: 2007-03-31

Description:

(Description Provided by CVE) : Multiple off-by-one errors in VooDoo cIRCle before 1.1.beta27 allow remote attackers to cause a denial of service (connection loss) or possibly execute arbitrary code via a (1) DNS name response of the exact length as a buffer; or a long (2) channel name, (3) partyline channel name, or unspecified vectors in crafted BOTNET packets.

[CLOSE] OSVDB ID : 34626 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in lib/timesheet.class.php in Softerra Time-Assistant 6.2 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) inc_dir or (2) lib_dir parameter.

[CLOSE] OSVDB ID : 34988 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in JCcorp URLshrink before 1.3.2 have unspecified attack vectors and impact.

[CLOSE] OSVDB ID : 34640 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the dns_decode_reverse_name function in dns_decode.c in dproxy-nexgen allows remote attackers to execute arbitrary code by sending a crafted packet to port 53/udp, a different issue than CVE-2007-1465.

[CLOSE] OSVDB ID : 35445 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in MOD_forum_fields_parse.php in the Forum picture and META tags 1.7 module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

[CLOSE] OSVDB ID : 34679 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : The UTF-8 decoder in codecs/qutfcodec.cpp in Qt 3.3.8 and 4.2.3 does not reject long UTF-8 sequences as required by the standard, which allows remote attackers to conduct cross-site scripting (XSS) and directory traversal attacks via long sequences that decode to dangerous metacharacters.

[CLOSE] OSVDB ID : 33955 - Disclosed: 2007-03-30

Description:

PHP contains a flaw that may allow a context-dependent attacker to gain elevated privileges. The issue is due to an integer signedness error in the printf function family as used on 64 bit machines. When a negative argument number is passed to the php_formatted_print function before a 64 to 32 bit truncation, it may bypass a check for the maximum allowable value causing memory corruption. This may allow an attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 34767 - Disclosed: 2007-03-30

Description:

PHP contains a flaw that may allow a context-dependent attacker to gain elevated privileges. The issue is due to an integer signedness error in the printf function family as used on 64 bit machines. When a width and precision of -1 is passed to the php_sprintf_appendstring function, it may place an internal buffer at an arbitrary memory location. This may allow an attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 37305 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in classes/captcha/captcha.jpg.php in Drake CMS allows remote attackers to read arbitrary files or list arbitrary directories, and obtain the installation path, via a .. (dot dot) in the d_private parameter. NOTE: Drake CMS has only a beta version available, and the vendor has previously stated "We do not consider security reports valid until the first official release of Drake CMS."

[CLOSE] OSVDB ID : 37306 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in 404.php in Drake CMS allows remote attackers to include and execute arbitrary local arbitrary files via a .. (dot dot) in the d_private parameter. NOTE: some of these details are obtained from third party information. NOTE: Drake CMS has only a beta version available, and the vendor has previously stated "We do not consider security reports valid until the first official release of Drake CMS."

[CLOSE] OSVDB ID : 37307 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in admin/classes/ui.dta.php in Drake CMS allows remote attackers to inject arbitrary web script or HTML via the desc[][title] field. NOTE: Drake CMS has only a beta version available, and the vendor has previously stated "We do not consider security reports valid until the first official release of Drake CMS."

[CLOSE] OSVDB ID : 34658 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : member.php in MyBB (aka MyBulletinBoard), when debug mode is available, allows remote authenticated users to change the password of any account by providing the account's registered e-mail address in a debug request for a do_lostpw action, which prints the change password verification code in the debug output.

[CLOSE] OSVDB ID : 34987 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : JCcorp URLshrink 1.3.1 allows remote attackers to execute arbitrary PHP code via the email address field in an HTML link. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 34588 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in MailDwarf 3.01 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

[CLOSE] OSVDB ID : 34589 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in MailDwarf 3.01 and earlier allows remote attackers to send e-mail to addresses different from the configured addresses.

[CLOSE] OSVDB ID : 34590 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in Hitachi JP1/HiCommand DeviceManager, Global Link Availability Manager, Replication Monitor, Tiered Storage Manager, and Tuning Manager allows local users to obtain authentication information via unspecified vectors.

[CLOSE] OSVDB ID : 34895 - Disclosed: 2007-03-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 34897 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Buffer overflow in the pfs_mountd.rpc RPC daemon in the Portable File System (PFS) in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to execute arbitrary code by sending "a call to procedure 5, followed by a crafted payload to procedure 2."

[CLOSE] OSVDB ID : 34544 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in Hitachi Collaboration - Online Community Management 01-00 through 01-30, as used in Groupmax Collaboration Portal, Groupmax Collaboration Web Client, uCosminexus Collaboration Portal, Cosminexus Collaboration Portal, and uCosminexus Content Manager, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

[CLOSE] OSVDB ID : 34318 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote attackers to execute arbitrary code via a modified pointer value.

[CLOSE] OSVDB ID : 34126 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 (0xbf) RPC request.

[CLOSE] OSVDB ID : 37365 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : Directory traversal vulnerability in login.php in JSBoard before 2.0.12 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the table parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, a related issue to CVE-2006-2019.

[CLOSE] OSVDB ID : 37373 - Disclosed: 2007-03-30

Description:

(Description Provided by CVE) : SQL injection vulnerability in viewcat.php in the Repository module for Xoops allows remote attackers to execute arbitrary SQL commands via the cid parameter.

[CLOSE] OSVDB ID : 34947 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : PulseAudio 0.9.5 allows remote attackers to cause a denial of service (daemon crash) via (1) a PA_PSTREAM_DESCRIPTOR_LENGTH value of FRAME_SIZE_MAX_ALLOW sent on TCP port 9875, which triggers a p->export assertion failure in do_read; (2) a PA_PSTREAM_DESCRIPTOR_LENGTH value of 0 sent on TCP port 9875, which triggers a length assertion failure in pa_memblock_new; or (3) an empty packet on UDP port 9875, which triggers a t assertion failure in pa_sdp_parse; and allows remote authenticated users to cause a denial of service (daemon crash) via a crafted packet on TCP port 9875 that (4) triggers a maxlength assertion failure in pa_memblockq_new, (5) triggers a size assertion failure in pa_xmalloc, or (6) plays a certain sound file.

[CLOSE] OSVDB ID : 34981 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : Buffer overflow in the drmgr command in IBM AIX 5.2 and 5.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long path name.

[CLOSE] OSVDB ID : 35458 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in inc/lang.php in sBLOG 0.7.3 Beta allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the conf_lang_default parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by inc/lang.php.

[CLOSE] OSVDB ID : 33629 - Disclosed: 2007-03-29

Description:

A remote overflow exists in Microsoft Internet Explorer. The browser fails to check the buffer on animated cursors and icons resulting in a stack buffer overflow. With a specially crafted request, an attacker can execute arbitrary code resulting in a loss of integrity.

[CLOSE] OSVDB ID : 34535 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs before checking them against the phishing site blacklist, which allows remote attackers to bypass phishing protection via multiple / (slash) characters in the URL.

[CLOSE] OSVDB ID : 33954 - Disclosed: 2007-03-29

Description:

PHP contains a flaw that may allow a context-dependent attacker to gain access to sensitive information. The issue is due to the iptcembed function not properly handling user-supplied input. If an attacker can force an interruption that triggers a user space error handler that changes a parameter, they may be able to gain access to arbitrary portions of the system memory.

[CLOSE] OSVDB ID : 35211 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : The JNILoader ActiveX control (STJNILoader.ocx) 3.1.0.26 in IBM Lotus Notes Sametime before 7.5 allows remote attackers to load arbitrary DLL libraries and execute arbitrary code via arbitrary arguments to the loadLibrary function.

[CLOSE] OSVDB ID : 35207 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : Unspecified vulnerability in (1) Deskbar.dll and (2) Toolbar.dll in AOL 9.0 before February 2007 allows remote attackers to cause a denial of service (browser crash) via unknown vectors.

[CLOSE] OSVDB ID : 36519 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in rdw_helpers.py in rdiffWeb before 0.3.5.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the path parameter to the /browse URI.

[CLOSE] OSVDB ID : 34464 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in view.php in the Friendfinder 3.3 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id parameter.

[CLOSE] OSVDB ID : 34936 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in wall.php in Picture-Engine 1.2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter.

[CLOSE] OSVDB ID : 34518 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : Minna De Office 1.x and 2.x does not properly restrict user access to certain privileged actions, which allows local users to change the configuration or have other unspecified impact. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 34543 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : CruiseWorks 1.09e and earlier does not properly restrict user access to certain privileged actions, which allows local users to change the configuration or have other unspecified impact. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 36160 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : Buffer overflow in the wireless driver 6.0.0.18 for D-Link DWL-G650+ (Rev. A1) on Windows XP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a beacon frame with a long TIM Information Element.

[CLOSE] OSVDB ID : 34593 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : Heap-based buffer overflow in the kernel in NetBSD 3.0, certain versions of FreeBSD and OpenBSD, and possibly other BSD derived operating systems allows local users to have an unknown impact. NOTE: this information is based upon a vague pre-advisory with no actionable information. Details will be updated after 20070329.