[CLOSE] OSVDB ID : 68311 - Disclosed: 2010-09-10

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 68531 - Disclosed: 2010-09-10

Description:

(Description Provided by CVE) : sys/ssl/SslSocket.cpp in qpidd in Apache Qpid, as used in Red Hat Enterprise MRG before 1.2.2 and other products, when SSL is enabled, allows remote attackers to cause a denial of service (daemon outage) by connecting to the SSL port but not participating in an SSL handshake.

[CLOSE] OSVDB ID : 70692 - Disclosed: 2010-09-10

Description:

YubiKey contains a flaw related to the 'yubikey-personalization' functionality failing to properly use salts when generating AES keys, resulting in weakened security.

[CLOSE] OSVDB ID : 74004 - Disclosed: 2010-09-10

Description:

WebKit contains a use-after-free error that is triggered when handling detached body elements. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 69147 - Disclosed: 2010-09-09

Description:

HAVP contains a flaw related to the whitelist configuration file. The issue is triggered when a remote attacker delivers their malware via a domain ending in 'sourceforge.net'. This may allow an attacker to bypass security.

[CLOSE] OSVDB ID : 67992 - Disclosed: 2010-09-09

Description:

(Description Provided by CVE) : Untrusted search path vulnerability in BlackBerry Desktop Software before 6.0.0.47 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL that is located in the same folder as a file that is processed by Blackberry.

[CLOSE] OSVDB ID : 67915 - Disclosed: 2010-09-09

Description:

(Description Provided by CVE) : Multiple buffer overflows in the Novell Client novfs module for the Linux kernel in SUSE Linux Enterprise 11 SP1 and openSUSE 11.3 allow local users to gain privileges via unspecified vectors.

[CLOSE] OSVDB ID : 67914 - Disclosed: 2010-09-09

Description:

(Description Provided by CVE) : mountall.c in mountall before 2.15.2 uses 0666 permissions for the root.rules file, which allows local users to gain privileges by modifying this file.

[CLOSE] OSVDB ID : 67973 - Disclosed: 2010-09-09

Description:

HP Data Protector Express on Windows is prone to an overflow condition. The 'DtbClsLogin()'function within dpwindtb.dll fails to properly sanitize user-supplied input resulting in a stack overflow. With a specially crafted string, a local attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 67991 - Disclosed: 2010-09-09

Description:

Qualcomm eXtensible Diagnostic Monitor (QXDM) is prone to a flaw in the way it loads dynamic-link libraries (e.g. mfc71enu.dll). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening an ISF file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

[CLOSE] OSVDB ID : 67949 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67943 - Disclosed: 2010-09-09

Description:

CubeCart contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'searchStr' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 68033 - Disclosed: 2010-09-09

Description:

(Description Provided by CVE) : The XML parser in Splunk 4.0.0 through 4.1.4 allows remote authenticated users to obtain sensitive information and gain privileges via an XML External Entity (XXE) attack to unknown vectors.

[CLOSE] OSVDB ID : 68410 - Disclosed: 2010-09-09

Description:

(Description Provided by CVE) : The Net Search Extender (NSE) implementation in the Text Search component in IBM DB2 UDB 9.5 before FP6a does not properly handle an alphanumeric Fuzzy search, which allows remote authenticated users to cause a denial of service (memory consumption and system hang) via the db2ext.textSearch function.

[CLOSE] OSVDB ID : 67876 - Disclosed: 2010-09-09

Description:

ColdCalendar contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.cfm' script not properly sanitizing user-supplied input to the 'EventID' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 67898 - Disclosed: 2010-09-09

Description:

Member Management System contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'REF_URL' parameter upon submission to the 'admin/index.asp' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 67938 - Disclosed: 2010-09-09

Description:

ProductCart contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'redirectUrl' parameter upon submission to the 'AffiliateLogin.asp' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 67937 - Disclosed: 2010-09-09

Description:

Car Portal contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'y' parameter upon submission to the 'include/images.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 67939 - Disclosed: 2010-09-09

Description:

PowerStore contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'totalRows_WADAProducts' parameter upon submission to the 'Products_Results.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 67942 - Disclosed: 2010-09-09

Description:

CubeCart contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'amount', 'cartId', 'email', 'transId', and 'transStatus' parameters upon submission to the 'modules/gateway/WorldPay/return.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 67944 - Disclosed: 2010-09-09

Description:

ES Simple Download contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the 'download.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'file' parameter. This directory traversal attack would allow the attacker to access arbitrary files.

[CLOSE] OSVDB ID : 67941 - Disclosed: 2010-09-09

Description:

Comlantis Visitors Google Map Module for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'modules/mod_visitorsgooglemap/map_data.php' script not properly sanitizing user-supplied input to the 'lastMarkerID' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 67947 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'artists.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67948 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'contacts.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67950 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'applications.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67951 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'entertainers.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67952 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'exhibitors.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67953 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'foodvendors.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67954 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'performanceschedule.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67955 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'sponsors.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67956 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'winners.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'theme' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 67957 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'category' parameter upon submission to the 'foodvendors.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 67958 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin/do_login.php' script not properly sanitizing user-supplied input to the 'username' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 67959 - Disclosed: 2010-09-09

Description:

FestOS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'festos_z_dologin.php' script not properly sanitizing user-supplied input to the 'email' and 'password' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 67975 - Disclosed: 2010-09-09

Description:

(Description Provided by CVE) : Unspecified vulnerability in HP Data Protector Express, and Data Protector Express Single Server Edition (SSE), 3.x before build 56936 and 4.x before build 56906 on Windows allows local users to gain privileges or cause a denial of service via unknown vectors, a different vulnerability than CVE-2010-3007.

[CLOSE] OSVDB ID : 67974 - Disclosed: 2010-09-09

Description:

HP Data Protector Express on Linux is prone to an overflow condition. The 'DtbClsLogin()'function in libdplindtb.so fails to properly sanitize user-supplied input resulting in a stack overflow. With a specially crafted string, a local attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 68034 - Disclosed: 2010-09-09

Description:

(Description Provided by CVE) : Splunk 4.0.0 through 4.1.4 allows remote attackers to conduct session hijacking attacks and obtain the splunkd session key via vectors related to the SPLUNKD_SESSION_KEY parameter.

[CLOSE] OSVDB ID : 68041 - Disclosed: 2010-09-09

Description:

Car Portal contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'car_id' parameter upon submission to the 'index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 68082 - Disclosed: 2010-09-09

Description:

iBoutique.MALL hosted_signup Module contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'tmpl' parameter upon submission to the 'index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 68272 - Disclosed: 2010-09-09

Description:

WebSiteAdmin contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'ADMIN/login.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'lng' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.