[CLOSE] OSVDB ID : 44247 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : Directory traversal vulnerability in the NeffyLauncher 1.0.5 ActiveX control (NeffyLauncher.dll) in CDNetworks Nefficient Download allows remote attackers to download arbitrary code onto a client system via a .. (dot dot) in the SkinPath parameter and a .zip URL in the HttpSkin parameter. NOTE: this can be leveraged for code execution by writing to a Startup folder.

[CLOSE] OSVDB ID : 44252 - Disclosed: 2008-04-07

Description:

There is a stack overflow in the vcst_eu.dll FileTransfer Module (1.0.0.5) ActiveX control in the Tumbleweed SecureTransport suite. By sending an overly long string to the TransferFile() 'remotefile' function, an attacker may be able to execute arbitrary code.

[CLOSE] OSVDB ID : 44384 - Disclosed: 2008-04-07

Description:

Dragoon contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'includes/header.inc.php' script not properly sanitizing user input supplied to the 'root' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 44411 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : SQL injection vulnerability in ladder.php in My Gaming Ladder 7.5 and earlier allows remote attackers to execute arbitrary SQL commands via the ladderid parameter.

[CLOSE] OSVDB ID : 44426 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in 724Networks 724CMS 4.01 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter.

[CLOSE] OSVDB ID : 44437 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : phpdemo/viewsource.php in Advanced Software Engineering ChartDirector 4.1 allows remote attackers to read sensitive files via the file parameter.

[CLOSE] OSVDB ID : 44438 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : Multiple cross-site request forgery (CSRF) vulnerabilities in Nuke ET 3.2 and 3.4 allow remote attackers to perform actions as administrators, as demonstrated by inserting an XSS sequence into a document.

[CLOSE] OSVDB ID : 44460 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : The NeffyLauncher 1.0.5 ActiveX control (NeffyLauncher.dll) in CDNetworks Nefficient Download uses weak cryptography for a KeyCode that blocks unauthorized use of the control, which allows remote attackers to bypass this protection mechanism by calculating the required KeyCode. NOTE: this can be used by arbitrary web sites to host exploit code that targets this control.

[CLOSE] OSVDB ID : 49402 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : SQL injection vulnerability in member.php in Oxygen Bulletin Board 1.1.3 allows remote attackers to execute arbitrary SQL commands via the member parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 50076 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, and possibly 7.01, 7.50, and 7.53, allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47), (2) REQUEST_SAVE_STATE (aka number 61), or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954.

[CLOSE] OSVDB ID : 52107 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in seeurl.php in Xavier Flahaut URLStreet 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) language, (2) order, and (3) filter parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 52758 - Disclosed: 2008-04-07

Description:

(Description Provided by CVE) : SQL injection vulnerability in the guestbook component (components/guestbook/guestbook.php) in Drake CMS 0.4.11 and earlier allows remote attackers to execute arbitrary SQL commands via the Via HTTP header (HTTP_VIA) to index.php.

[CLOSE] OSVDB ID : 91599 - Disclosed: 2008-04-07

Description:

By default, Sun Embedded Lights Out Manager (ELOM) installs with default admin credentials (username/password combination). The 'root' account has a password of 'changeme', which is publicly known and documented. This allows remote attackers to trivially access the program or system and gain privileged access.

[CLOSE] OSVDB ID : 44277 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : Prozilla Topsites 1.0 allows remote attackers to perform administrative actions via a direct request to (1) addu.php, (2) editu.php, and (3) uidx.php in siteadmin/.

[CLOSE] OSVDB ID : 44140 - Disclosed: 2008-04-06

Description:

Site Sift Listings contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'detail.php' script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 44143 - Disclosed: 2008-04-06

Description:

libfishsound contains an array-indexing error condition in the Speex decoder component. The issue is triggered as user-supplied input is not properly validated when handling header structures. With a specially crafted header structure with a negative offset, a context-dependent attacker can cause data to be written to an arbitrary memory location, resulting in arbitrary code execution.

[CLOSE] OSVDB ID : 44237 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : SQL injection vulnerability in view_reviews.php in Prozilla Cheat Script (aka Cheats) 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

[CLOSE] OSVDB ID : 44409 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : SQL injection vulnerability in forum.php in Prozilla Forum allows remote attackers to execute arbitrary SQL commands via the forum parameter.

[CLOSE] OSVDB ID : 44432 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : SQL injection vulnerability in Blog Pixel Motion (aka Blog PixelMotion) allows remote attackers to execute arbitrary SQL commands via the categorie parameter to index.php, possibly related to include/requetesIndex.php.

[CLOSE] OSVDB ID : 44433 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : admin/sauvBase.php in Blog Pixel Motion (aka Blog PixelMotion) does not require authentication, which allows remote attackers to trigger a database backup dump, and obtain the resulting blogPM.sql file that contains sensitive information.

[CLOSE] OSVDB ID : 44436 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : delete.php in Prozilla Top 100 1.2 allows remote authenticated users to delete statistics and accounts of arbitrary users via a modified s parameter.

[CLOSE] OSVDB ID : 44440 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the msx_readnode function in libmosix.c in openmosix-tools (aka userspace-tools) in openMosix might allow local users to cause a denial of service (application crash) via a third-party program that calls this function with a long item argument. NOTE: the vendor does not provide any program that is capable of causing this overflow.

[CLOSE] OSVDB ID : 44689 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : admin/modif_config.php in Blog Pixel Motion (aka PixelMotion) does not require admin authentication, which allows remote authenticated users to upload arbitrary PHP scripts in a ZIP archive, which is written to templateZip/ and then automatically extracted under templates/ for execution via a direct request.

[CLOSE] OSVDB ID : 44692 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : Unspecified vulnerability in GNU m4 before 1.4.11 might allow context-dependent attackers to execute arbitrary code, related to improper handling of filenames specified with the -F option. NOTE: it is not clear when this issue crosses privilege boundaries.

[CLOSE] OSVDB ID : 52117 - Disclosed: 2008-04-06

Description:

(Description Provided by CVE) : SQL injection vulnerability in pages.php in Custom Pages 1.0 plugin for MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL commands via the page parameter.

[CLOSE] OSVDB ID : 51227 - Disclosed: 2008-04-05

Description:

(Description Provided by CVE) : _blogadata/include/init_pass2.php in Blogator-script 0.95 allows remote attackers to change the password for arbitrary users via a modified "a" parameter with a "%" wildcard symbol in the b parameter.

[CLOSE] OSVDB ID : 44139 - Disclosed: 2008-04-05

Description:

Links Directory contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'links.php' script not properly sanitizing user-supplied input to the 'cat_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 44147 - Disclosed: 2008-04-05

Description:

Software Index Script contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'showcategory.php' script not properly sanitizing user-supplied input to the 'cid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 44236 - Disclosed: 2008-04-05

Description:

(Description Provided by CVE) : SQL injection vulnerability in directory.php in Prozilla Entertainers 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 44428 - Disclosed: 2008-04-05

Description:

VisualPic contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'index.ph' script not properly sanitizing user input supplied to the '_CONFIG[files][functions_page]' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 44475 - Disclosed: 2008-04-05

Description:

(Description Provided by CVE) : The default configuration of SAP NetWeaver before 7.0 SP15 does not enable the "Always Use Secure HTML Editor" (aka Editor Security or Secure Editing) parameter, which allows remote attackers to conduct cross-site scripting (XSS) attacks by entering feedback for a file.

[CLOSE] OSVDB ID : 52112 - Disclosed: 2008-04-05

Description:

(Description Provided by CVE) : SQL injection vulnerability in CoBaLT 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) urun.asp, (2) admin/bayi_listele.asp, (3) admin/urun_grup_listele.asp, and (4) admin/urun_listele.asp.

[CLOSE] OSVDB ID : 52113 - Disclosed: 2008-04-05

Description:

(Description Provided by CVE) : SQL injection vulnerability in CoBaLT 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) urun.asp, (2) admin/bayi_listele.asp, (3) admin/urun_grup_listele.asp, and (4) admin/urun_listele.asp.

[CLOSE] OSVDB ID : 52114 - Disclosed: 2008-04-05

Description:

(Description Provided by CVE) : SQL injection vulnerability in CoBaLT 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) urun.asp, (2) admin/bayi_listele.asp, (3) admin/urun_grup_listele.asp, and (4) admin/urun_listele.asp.

[CLOSE] OSVDB ID : 52115 - Disclosed: 2008-04-05

Description:

(Description Provided by CVE) : SQL injection vulnerability in CoBaLT 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) urun.asp, (2) admin/bayi_listele.asp, (3) admin/urun_grup_listele.asp, and (4) admin/urun_listele.asp.

[CLOSE] OSVDB ID : 58794 - Disclosed: 2008-04-05

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 44218 - Disclosed: 2008-04-04

Description:

(Description Provided by CVE) : The PPTP VPN service in Watchguard Firebox before 10, when performing the MS-CHAPv2 authentication handshake, generates different error codes depending on whether the username is valid or invalid, which allows remote attackers to enumerate valid usernames.

[CLOSE] OSVDB ID : 48926 - Disclosed: 2008-04-04

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 46706 - Disclosed: 2008-04-04

Description:

(Description Provided by CVE) : Untrusted search path vulnerability in (1) hvdisp and (2) rcvm in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges by modifying the RELIANT_PATH environment variable to point to a malicious bin/hvenv program.

[CLOSE] OSVDB ID : 46707 - Disclosed: 2008-04-04

Description:

(Description Provided by CVE) : Untrusted search path vulnerability in (1) hvdisp and (2) rcvm in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges by modifying the RELIANT_PATH environment variable to point to a malicious bin/hvenv program.