[CLOSE] OSVDB ID : 45879 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Ragnarok Online Control Panel 4.3.4a, when the Apache HTTP Server is used, allows remote attackers to bypass authentication via directory traversal sequences in a URI that ends with the name of a publicly available page, as demonstrated by a "/...../" sequence and an account_manage.php/login.php final component for reaching the protected account_manage.php page.

[CLOSE] OSVDB ID : 37859 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Shared Trace Service in Hitachi JP1/Cm2/Network Node Manager (NNM) 07-10 through 07-10-05, and NNM Starter Edition Enterprise and 250 08-00 through 08-10, allows remote attackers to execute arbitrary code via unspecified vectors.

[CLOSE] OSVDB ID : 40146 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in CGI RESCUE Shopping Basket Professional 7.51 and earlier allow remote attackers to list arbitrary directories, and possibly read arbitrary files, via directory traversal sequences in unspecified parameters to (1) list.cgi or (2) list2.cgi.

[CLOSE] OSVDB ID : 40147 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in CGI RESCUE Shopping Basket Professional 7.51 and earlier allow remote attackers to list arbitrary directories, and possibly read arbitrary files, via directory traversal sequences in unspecified parameters to (1) list.cgi or (2) list2.cgi.

[CLOSE] OSVDB ID : 37323 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Unspecified vulnerability in the strfreectty function in the Special File System (SPECFS) in Sun Solaris 8 through 10 allows local users to cause a denial of service (system panic), related to passing a NULL pointer to the pgsignal function.

[CLOSE] OSVDB ID : 37857 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Multiple buffer overflows in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors.

[CLOSE] OSVDB ID : 37858 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service via unspecified vectors.

[CLOSE] OSVDB ID : 36781 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : The javadoc tool in Cosminexus Developer's Kit for Java in Cosminexus 7 and 7.5 can generate HTML documents that contain cross-site scripting (XSS) vulnerabilities, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this is probably the same issue as CVE-2007-3503.

[CLOSE] OSVDB ID : 38923 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : The HPRevolutionRegistryManager ActiveX control in Hp.Revolution.RegistryManager.dll 1 in Telecom Italy Alice Messenger allows remote attackers to create registry keys and values via the arguments to the WriteRegistry method.

[CLOSE] OSVDB ID : 82491 - Disclosed: 2007-08-31

Description:

Microsoft Windows contains a flaw in the way that it handles certain UTF character sets. This may cause characters to be displayed in reverse, which may allow an attacker to spoof a file extension.

[CLOSE] OSVDB ID : 50678 - Disclosed: 2007-08-31

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 38421 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Buffer overflow in the PowerPlayer.dll ActiveX control in PPStream 2.0.1.3829 allows remote attackers to execute arbitrary code via a long Logo parameter.

[CLOSE] OSVDB ID : 38422 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : SQL injection vulnerability in category.php in CartKeeper CKGold Shopping Cart 2.0 allows remote attackers to execute arbitrary SQL commands via the category_id parameter.

[CLOSE] OSVDB ID : 38423 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Weblogicnet allow remote attackers to execute arbitrary PHP code via a URL in the files_dir parameter in (1) es_desp.php, (2) es_custom_menu.php, and (3) es_offer.php.

[CLOSE] OSVDB ID : 38424 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Weblogicnet allow remote attackers to execute arbitrary PHP code via a URL in the files_dir parameter in (1) es_desp.php, (2) es_custom_menu.php, and (3) es_offer.php.

[CLOSE] OSVDB ID : 38425 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Weblogicnet allow remote attackers to execute arbitrary PHP code via a URL in the files_dir parameter in (1) es_desp.php, (2) es_custom_menu.php, and (3) es_offer.php.

[CLOSE] OSVDB ID : 38427 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : SQL injection vulnerability in links.php in the Links MOD 1.2.2 and earlier for phpBB 2.0.22 and earlier allows remote attackers to execute arbitrary SQL commands via the start parameter in a search action.

[CLOSE] OSVDB ID : 73527 - Disclosed: 2007-08-31

Description:

(Description Provided by CVE) : The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to cause a denial of service (infinite loop) via a malformed search filter.

[CLOSE] OSVDB ID : 45877 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : The Aztech DSL600EU router, when WAN access to the web interface is disabled, does not properly block inbound traffic on TCP port 80, which allows remote attackers to connect to the web interface by guessing a TCP sequence number, possibly involving spoofing of an ARP packet, a related issue to CVE-1999-0077.

[CLOSE] OSVDB ID : 41657 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in Gallery before 2.2.3 allow attackers to (1) rename items, (2) read and modify item properties, or (3) lock and replace items via unknown vectors in (a) the WebDAV module; and (4) edit unspecified data files using "linked items" in WebDAV and (b) Reupload modules.

[CLOSE] OSVDB ID : 41658 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in Gallery before 2.2.3 allow attackers to (1) rename items, (2) read and modify item properties, or (3) lock and replace items via unknown vectors in (a) the WebDAV module; and (4) edit unspecified data files using "linked items" in WebDAV and (b) Reupload modules.

[CLOSE] OSVDB ID : 45874 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in the chunk_split function in PHP before 5.2.4 has unknown impact and attack vectors, related to an incorrect size calculation.

[CLOSE] OSVDB ID : 36863 - Disclosed: 2007-08-30

Description:

PHP contains a flaw in the Zend engine with an unspecified impact. No further details are currently available.

[CLOSE] OSVDB ID : 36659 - Disclosed: 2007-08-30

Description:

Cisco CallManager/Unified Communications Manager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the logon page not properly sanitizing user-supplied input to the lang variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 83579 - Disclosed: 2007-08-30

Description:

ActiveCampaign 1-2-All Broadcast E-mail contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the public admin interface before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 45873 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch (CSS) series 11000 devices allows remote attackers to cause a denial of service (connection slot exhaustion and device crash) via a series of large packets designed to exploit the SSH CRC32 attack detection overflow (CVE-2001-0144), possibly a related issue to CVE-2002-1024.

[CLOSE] OSVDB ID : 38184 - Disclosed: 2007-08-30

Description:

MailMarshal contains a flaw that may allow a remote context-dependant attacker to overwrite arbitrary files on the target system. The issue is due to the server not properly handling TAR archives. With a specially crafted archive, an attacker may be able to trick a user into extracting the files and overwriting arbitrary files on the system. This could be used to install malicious software on the system.

[CLOSE] OSVDB ID : 40496 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : The DataLoader::doStart function in dataloader.cpp in QGit 1.5.6 and other versions up to 2pre1 allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on temporary files with predictable filenames.

[CLOSE] OSVDB ID : 37445 - Disclosed: 2007-08-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 40171 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Buffer overflow in the pop3 service in Hexamail Server 3.0.0.001 Lite allows remote attackers to cause a denial of service (daemon crash) and probably execute arbitrary code via a long USER command.

[CLOSE] OSVDB ID : 37310 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to determine the existence of arbitrary files, and possibly obtain other "file access," via unknown vectors, aka CORE-1312.

[CLOSE] OSVDB ID : 37311 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Services API in Firebird before 2.0.2 allows remote attackers to cause a denial of service, aka CORE-1149.

[CLOSE] OSVDB ID : 37312 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in the server in Firebird before 2.0.2, when a Superserver/TCP/IP environment is configured, allows remote attackers to cause a denial of service (CPU and memory consumption) via "large network packets with garbage", aka CORE-1397.

[CLOSE] OSVDB ID : 37313 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to cause a denial of service (daemon crash) via an XNET session that makes multiple simultaneous requests to register events, aka CORE-1403.

[CLOSE] OSVDB ID : 37314 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in the (1) attach database and (2) create database functionality in Firebird before 2.0.2, when a filename exceeds MAX_PATH_LEN, has unknown impact and attack vectors, aka CORE-1405.

[CLOSE] OSVDB ID : 37444 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : backup-manager-upload in Backup Manager before 0.6.3 provides the FTP server hostname, username, and password as plaintext command line arguments during FTP uploads, which allows local users to obtain sensitive information by listing the process and its arguments, a different vulnerability than CVE-2007-2766.

[CLOSE] OSVDB ID : 36859 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Buffer overflow in the php_openssl_make_REQ function in PHP before 5.2.4 has unknown impact and attack vectors.

[CLOSE] OSVDB ID : 36861 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Multiple integer overflows in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to obtain sensitive information (memory contents) or cause a denial of service (thread crash) via a large len value to the (1) strspn or (2) strcspn function, which triggers an out-of-bounds read. NOTE: this affects different product versions than CVE-2007-3996.

[CLOSE] OSVDB ID : 36862 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : Multiple integer overflows in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to obtain sensitive information (memory contents) or cause a denial of service (thread crash) via a large len value to the (1) strspn or (2) strcspn function, which triggers an out-of-bounds read. NOTE: this affects different product versions than CVE-2007-3996.

[CLOSE] OSVDB ID : 36864 - Disclosed: 2007-08-30

Description:

(Description Provided by CVE) : The zend_alter_ini_entry function in PHP before 5.2.4 does not properly handle an interruption to the flow of execution triggered by a memory_limit violation, which has unknown impact and attack vectors.