[CLOSE] OSVDB ID : 44745 - Disclosed: 2007-07-26

Description:

(Description Provided by CVE) : Guidance Software EnCase Enterprise Edition (EEE) 6 does not properly verify the identity of the acquisition target during communication with the EnCase Servlet (EEE servlet), which might allow remote attackers to spoof the disk image.

[CLOSE] OSVDB ID : 44746 - Disclosed: 2007-07-26

Description:

(Description Provided by CVE) : Guidance Software EnCase 6.2 and 6.5 does not properly handle a volume with more than 25 partitions, which might allow remote attackers to prevent examination of certain data, a related issue to CVE-2007-4035.

[CLOSE] OSVDB ID : 44740 - Disclosed: 2007-07-26

Description:

(Description Provided by CVE) : ** DISPUTED ** Guidance Software EnCase allows user-assisted attackers to trigger a buffer over-read and application crash via a malformed NTFS filesystem containing a modified FILE record with a certain large offset. NOTE: the vendor disputes the significance of this issue, asserting that relevant attackers typically do not corrupt a filesystem, and indicating that the relevant read operation can be disabled.

[CLOSE] OSVDB ID : 44741 - Disclosed: 2007-07-26

Description:

(Description Provided by CVE) : ** DISPUTED ** Guidance Software EnCase allows user-assisted remote attackers to cause a denial of service via (1) a corrupted Microsoft Exchange database, which triggers an application crash when many options are selected; (2) a corrupted NTFS filesystem, which causes the application to report "memory allocation errors;" or (3) deeply nested directories, which trigger an application crash during an Expand All action. NOTE: the vendor disputes the significance of these vectors because the user can select fewer options, there is no operational impact, or the user can do less expansion.

[CLOSE] OSVDB ID : 44742 - Disclosed: 2007-07-26

Description:

(Description Provided by CVE) : ** DISPUTED ** Guidance Software EnCase allows user-assisted remote attackers to cause a denial of service via (1) a corrupted Microsoft Exchange database, which triggers an application crash when many options are selected; (2) a corrupted NTFS filesystem, which causes the application to report "memory allocation errors;" or (3) deeply nested directories, which trigger an application crash during an Expand All action. NOTE: the vendor disputes the significance of these vectors because the user can select fewer options, there is no operational impact, or the user can do less expansion.

[CLOSE] OSVDB ID : 44743 - Disclosed: 2007-07-26

Description:

(Description Provided by CVE) : ** DISPUTED ** Guidance Software EnCase allows user-assisted remote attackers to cause a denial of service via (1) a corrupted Microsoft Exchange database, which triggers an application crash when many options are selected; (2) a corrupted NTFS filesystem, which causes the application to report "memory allocation errors;" or (3) deeply nested directories, which trigger an application crash during an Expand All action. NOTE: the vendor disputes the significance of these vectors because the user can select fewer options, there is no operational impact, or the user can do less expansion.

[CLOSE] OSVDB ID : 44744 - Disclosed: 2007-07-26

Description:

(Description Provided by CVE) : ** DISPUTED ** Guidance Software EnCase does not properly handle (1) certain malformed MBR partition tables with many entries, which allows remote attackers to prevent logical collection of a disk image; (2) NTFS filesystems with directory loops, which allows remote attackers to prevent examination of certain directory contents; and (3) certain other malformed NTFS filesystems, which allows remote attackers to prevent examination of corrupted records. NOTE: the vendor disputes the significance of these issues, because physical collection can be used instead, because the vendor believes that relevant attackers typically do not corrupt an MBR or a filesystem, and because detection of a loop is valuable on its own.

[CLOSE] OSVDB ID : 58083 - Disclosed: 2007-07-26

Description:

Sequoia voting system contains a flaw that may allow a malicious user to install malicious firmware over many voting machines which then can skew the data. The issue is triggered when a USB key is inserted. It is possible that the flaw may allow vote manipulation.

[CLOSE] OSVDB ID : 58085 - Disclosed: 2007-07-26

Description:

Sequoia Voting Systems contains a flaw that may allow a malicious user to execute privileged commands. The interpreter's presence is undocumented. It is possible that the flaw may allow execution of privileged code resulting in a loss of integrity.

[CLOSE] OSVDB ID : 58086 - Disclosed: 2007-07-26

Description:

Sequoia Voting Systems contains a flaw related to the WinEDS SQL Server that may allow an attacker to arbitrarily execute code. No further details have been provided.

[CLOSE] OSVDB ID : 37129 - Disclosed: 2007-07-26

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in utilities/login.asp in nukedit 4.9.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 37261 - Disclosed: 2007-07-26

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in search.php for sBlog 0.7.3 Beta allows remote attackers to inject arbitrary HTML and web script via a leading '"/></> sequence in the search string.

[CLOSE] OSVDB ID : 37265 - Disclosed: 2007-07-26

Description:

PhpHostBot contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'library/authorize.php' script not properly sanitizing user input supplied to the 'login_form' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 77216 - Disclosed: 2007-07-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 77217 - Disclosed: 2007-07-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 89359 - Disclosed: 2007-07-26

Description:

By default, Huawei E960 HSDPA Router installs with default user credentials (username/password combination). The 'Admin' account has a password of 'Admin' and the 'user' account has a password of 'user'. These is publicly known and documented, which allows remote attackers to trivially access the program or system and gain privileged access.

[CLOSE] OSVDB ID : 37700 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Absolute path traversal vulnerability in the clInetSuiteX6.clWebDav ActiveX control in CLINETSUITEX6.OCX in Clever Internet ActiveX Suite 6.2 allows remote attackers to create or overwrite arbitrary files via a full pathname in the second argument to the GetToFile method. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 46832 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Multiple argument injection vulnerabilities in Netscape Navigator 9 allow remote attackers to execute arbitrary commands via a NULL byte (%00) and shell metacharacters in a (1) mailto, (2) nntp, (3) news, (4) snews, or (5) telnet URI, a similar issue to CVE-2007-3670.

[CLOSE] OSVDB ID : 46931 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Argument injection vulnerability involving Microsoft Outlook and Outlook Express, when certain URIs are registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in an unspecified URI, which are inserted into the command line when invoking the handling process, a similar issue to CVE-2007-3670.

[CLOSE] OSVDB ID : 46933 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Argument injection vulnerability involving Mozilla, when certain URIs are registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in an unspecified URI, which are inserted into the command line when invoking the handling process, a similar issue to CVE-2007-3670.

[CLOSE] OSVDB ID : 46932 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Argument injection vulnerability in Mozilla Firefox before 2.0.0.5, when running on systems with Thunderbird 1.5 installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a mailto URI, which are inserted into the command line that is created when invoking Thunderbird.exe, a similar issue to CVE-2007-3670.

[CLOSE] OSVDB ID : 36612 - Disclosed: 2007-07-25

Description:

lbxproxy contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a local user runs the command with malformed arguments, which will disclose contents of most files resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 38618 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Multiple heap-based buffer overflows in (1) clsscheduler.exe (aka scheduler client) and (2) srvscheduler.exe (aka scheduler server) in BakBone NetVault Reporter 3.5 before Update4 allow remote attackers to execute arbitrary code via long filename arguments in HTTP requests.

[CLOSE] OSVDB ID : 38619 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Multiple heap-based buffer overflows in (1) clsscheduler.exe (aka scheduler client) and (2) srvscheduler.exe (aka scheduler server) in BakBone NetVault Reporter 3.5 before Update4 allow remote attackers to execute arbitrary code via long filename arguments in HTTP requests.

[CLOSE] OSVDB ID : 38615 - Disclosed: 2007-07-25

Description:

iFoto contains a flaw that allows a remote attacker to view arbitrary pictures and directory listings outside of the web path. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'dir' Variable(s).

[CLOSE] OSVDB ID : 36902 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Vikingboard 0.1.2 allows remote attackers to obtain sensitive information via the debug parameter to (1) forum.php, (2) cp.php, and possibly other unspecified components.

[CLOSE] OSVDB ID : 36903 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Vikingboard 0.1.2 allows remote attackers to obtain sensitive information via the debug parameter to (1) forum.php, (2) cp.php, and possibly other unspecified components.

[CLOSE] OSVDB ID : 36904 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Vikingboard 0.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the URI to inc/lib/screen.php or (2) the title parameter to post.php. NOTE: vector 2 might overlap CVE-2006-6283. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 36905 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Vikingboard 0.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the URI to inc/lib/screen.php or (2) the title parameter to post.php. NOTE: vector 2 might overlap CVE-2006-6283. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 37984 - Disclosed: 2007-07-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 36470 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in W1L3D4_aramasonuc.asp in W1L3D4 Philboard 0.3 allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 38675 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Multiple buffer overflows in Xiph.Org libvorbis before 1.2.0 allow context-dependent attackers to cause a denial of service or have other unspecified impact via a crafted OGG file, aka trac Changesets 13162, 13168, 13169, 13170, 13172, 13211, and 13215, as demonstrated by an overflow in oggenc.exe related to the _psy_noiseguards_8 array.

[CLOSE] OSVDB ID : 38676 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : lib/vorbisfile.c in libvorbisfile in Xiph.Org libvorbis before 1.2.0 allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted OGG file, aka trac Changeset 13217.

[CLOSE] OSVDB ID : 38677 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service via (1) an invalid mapping type, which triggers an out-of-bounds read in the vorbis_info_clear function in info.c, and (2) invalid blocksize values that trigger a segmentation fault in the read function in block.c.

[CLOSE] OSVDB ID : 38678 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service via (1) an invalid mapping type, which triggers an out-of-bounds read in the vorbis_info_clear function in info.c, and (2) invalid blocksize values that trigger a segmentation fault in the read function in block.c.

[CLOSE] OSVDB ID : 38679 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : lib/info.c in libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via invalid (1) blocksize_0 and (2) blocksize_1 values, which trigger a "heap overwrite" in the _01inverse function in res0.c. NOTE: this issue has been RECAST so that CVE-2007-4029 handles additional vectors.

[CLOSE] OSVDB ID : 36332 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in login.php in AdMan 1.0.20051202 FF 3 patch and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) user and (2) pwd parameters.

[CLOSE] OSVDB ID : 41059 - Disclosed: 2007-07-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 36285 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : SQL injection vulnerability in show_cat.php in IndexScript 2.8 and earlier allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.

[CLOSE] OSVDB ID : 36875 - Disclosed: 2007-07-25

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in sample-forms/simple-contact-form-with-preview/simple-contact-form-with-preview.html in MitriDAT eMail Form Processor Pro allows remote attackers to inject arbitrary web script or HTML via the base_path parameter, possibly related to (1) formprocessorpro.php in the PHP version of the product, and (2) formprocessorpro.pl in the Perl version of the product.