[CLOSE] OSVDB ID : 52459 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51714 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51715 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51736 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command.

[CLOSE] OSVDB ID : 51790 - Disclosed: 2009-01-29

Description:

Car Portal contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the Login Feature not properly sanitizing user-supplied input to the 'username' and 'password' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 51791 - Disclosed: 2009-01-29

Description:

Pre Lecture Exercises CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'login.php' script not properly sanitizing user-supplied input to the 'school' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51792 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to inject arbitrary web script or HTML via the page parameter.

[CLOSE] OSVDB ID : 51793 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the page parameter.

[CLOSE] OSVDB ID : 51824 - Disclosed: 2009-01-29

Description:

SkaLinks contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin script not properly sanitizing user-supplied input to the '$_COOKIE' variable. This may allow an attacker to login as admin, or inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51909 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Array index error in the gst_qtp_trak_handler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins (aka gstreamer-plugins) 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file.

[CLOSE] OSVDB ID : 52460 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52850 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Untrusted search path vulnerability in trickle 1.07 allows local users to execute arbitrary code via a Trojan horse trickle-overload.so in the current working directory, which is referenced in the LD_PRELOAD path.

[CLOSE] OSVDB ID : 53979 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : CRLF injection vulnerability in the WebContainer component in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.1.x versions allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

[CLOSE] OSVDB ID : 53990 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.

[CLOSE] OSVDB ID : 56432 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Microsoft Internet Explorer 7 allows remote attackers to trick a user into visiting an arbitrary URL via an onclick action that moves a crafted element to the current mouse position, related to a "Clickjacking" vulnerability.

[CLOSE] OSVDB ID : 55720 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0 and 11.0 allow remote attackers to execute arbitrary code via (1) a long type parameter in an input tag, which is not properly handled by the EndOfXmlAttributeValue function; (2) an "HTML GI" in a start tag, which is not properly handled by the ProcessStartGI function; and unspecified vectors in (3) html2thot.c and (4) xml2thot.c, related to the msgBuffer variable. NOTE: these are different vectors than CVE-2008-6005.

[CLOSE] OSVDB ID : 55721 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0 and 11.0 allow remote attackers to execute arbitrary code via (1) a long type parameter in an input tag, which is not properly handled by the EndOfXmlAttributeValue function; (2) an "HTML GI" in a start tag, which is not properly handled by the ProcessStartGI function; and unspecified vectors in (3) html2thot.c and (4) xml2thot.c, related to the msgBuffer variable. NOTE: these are different vectors than CVE-2008-6005.

[CLOSE] OSVDB ID : 51644 - Disclosed: 2009-01-28

Description:

SocialEngine contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the blog.php script not properly sanitizing user-supplied input to the category_id parameter when the user parameter is set to a valid username. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 52555 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : The IP-in-IP packet processing implementation in the IPsec and IP stacks in the kernel in Sun Solaris 9 and 10, and OpenSolaris snv_01 though snv_85, allows local users to cause a denial of service (panic) via a self-encapsulated packet that lacks IPsec protection.

[CLOSE] OSVDB ID : 51648 - Disclosed: 2009-01-28

Description:

GameScript contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the search parameter upon submission to the games.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 51649 - Disclosed: 2009-01-28

Description:

GameScript contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the page.php script not properly sanitizing user-supplied input to the user parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51654 - Disclosed: 2009-01-28

Description:

GameScript contains a flaw that allows a remote attacker to access files outside of the web path. The issue is due to the page.php not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the page parameter.

[CLOSE] OSVDB ID : 51645 - Disclosed: 2009-01-28

Description:

Max.Blog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the offline_auth.php script not properly sanitizing user-supplied input to the username parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 52577 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Embedded Lights Out Manager (ELOM) on the Sun Fire X2100 M2 and X2200 M2 x86 platforms before SP/BMC firmware 3.20 allows remote attackers to obtain privileged ELOM login access or execute arbitrary Service Processor (SP) commands via unknown vectors, aka Bug ID 6648082, a different vulnerability than CVE-2007-5717.

[CLOSE] OSVDB ID : 52845 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in system/index.php in ExpressionEngine 1.6.4 through 1.6.6, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the avatar parameter.

[CLOSE] OSVDB ID : 51605 - Disclosed: 2009-01-28

Description:

osCommerce contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for the <FUNCTIONALITY>. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification, including creation of additional administrator accounts by tricking an administrative user into visiting a malicious web site. The vulnerability is confirmed in version 2.2 Release Candidate 2a. Other versions may also be affected.

[CLOSE] OSVDB ID : 51643 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.

[CLOSE] OSVDB ID : 51680 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in HP Select Access 6.1 and 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

[CLOSE] OSVDB ID : 51687 - Disclosed: 2009-01-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51785 - Disclosed: 2009-01-28

Description:

Community CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51786 - Disclosed: 2009-01-28

Description:

smartSite CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'articles.php' script not properly sanitizing user-supplied input to the 'var' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51787 - Disclosed: 2009-01-28

Description:

Chipmunk Blogger Script contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin/authenticate.php script not properly sanitizing user-supplied input to the 'username' and 'password' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 51789 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : Chipmunk Blogger Script allows remote attackers to gain administrator privileges via a direct request to admin/reguser.php. NOTE: this is only a vulnerability when the administrator does not properly follow installation directions.

[CLOSE] OSVDB ID : 52498 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib 1.1.16.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a 4X movie file with a large current_track value, a similar issue to CVE-2009-0385.

[CLOSE] OSVDB ID : 52935 - Disclosed: 2009-01-28

Description:

(Description Provided by CVE) : Multiple buffer overflows in the CheckUniqueName function in W3C Amaya Web Browser 10.0.1, and possibly other versions including 11.0.1, might allow remote attackers to execute arbitrary code via "duplicated" attribute value inputs.

[CLOSE] OSVDB ID : 77350 - Disclosed: 2009-01-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52671 - Disclosed: 2009-01-27

Description:

(Description Provided by CVE) : The shell32 module in Microsoft Internet Explorer 7.0 on Windows XP SP3 might allow remote attackers to execute arbitrary code via a long VALUE attribute in an INPUT element, possibly related to a stack consumption vulnerability.

[CLOSE] OSVDB ID : 52490 - Disclosed: 2009-01-27

Description:

(Description Provided by CVE) : Apple Safari 3.2.1 (aka AppVer 3.525.27.1) on Windows allows remote attackers to cause a denial of service (infinite loop or access violation) via a link to an http URI in which the authority (aka hostname) portion is either a (1) . (dot) or (2) .. (dot dot) sequence.

[CLOSE] OSVDB ID : 52028 - Disclosed: 2009-01-27

Description:

Max.Blog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the submit_post.php script not properly sanitizing user-supplied input to the draft parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 52029 - Disclosed: 2009-01-27

Description:

Max.Blog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the show_post.php script not properly sanitizing user-supplied input to the id parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.