| OSVDB ID | Disclosure Date | Title |
|---|
|
76932
Description:
LabWiki contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'from' parameter upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
LabWiki index.php from Parameter XSS
|
|
76934
Description:
LabWiki contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'page_no' parameter upon submission to the recentchanges.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
LabWiki recentchanges.php page_no Parameter XSS
|
|
76933
Description:
(Description Provided by CVE) : ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
|
2011-11-09
|
LabWiki edit.php userfile Parameter Arbitrary File Upload
|
|
83320
Description:
COMTREND CT-5624 contains a flaw related to password.cgi. This issue may allow a remote unauthenticated attacker to change the root password of the system.
|
2011-11-09
|
COMTREND CT-5624 password.cgi Unauthenticated Remote Password Manipulation
|
|
76901
Description:
Microsoft Windows Mail and Windows Meeting Space is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows a local attacker to inject custom code that will be run with the privilege of the program or user executing the program. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source. This can be done by tricking a user into opening an unspecified file from the local file system or a USB drive in some cases. This attack scenario is certainly possible, but rare.
|
2011-11-09
|
Microsoft Windows Mail / Windows Meeting Space Path Subversion Arbitrary DLL Injection Code Execution
|
|
76900
Description:
Microsoft Windows contains a flaw that may allow a denial of service. The issue is triggered when an unspecified error occurs, and will result in loss of availability for the system via a malformed TrueType font.
|
2011-11-09
|
Microsoft Windows Malformed TrueType Font Parsing DoS
|
|
77005
Description:
An attacker may download private files by guessing the URL and directly downloading them, as there is no actual access restriction.
|
2011-11-09
|
CKEditor Module for Drupal Private File Access Restriction Weakness
|
|
77105
Description:
(Description Provided by CVE) : Stack-based buffer overflow in VanDyke Software AbsoluteFTP 1.9.6 through 2.2.10 allows remote FTP servers to execute arbitrary code via a crafted file name in a LIST command response.
|
2011-11-09
|
AbsoluteFTP FTP LIST Command Response Parsing Remote Overflow
|
|
77158
Description:
Unknown / Incomplete
|
2011-11-09
|
Samsung Omnia 7 RapiConfig.exe Traversal Provisioning XML File Execution
|
|
78848
Description:
Unknown / Incomplete
|
2011-11-09
|
Juniper Junos MGD-CLI Arbitrary Command Execution
|
|
76935
Description:
Unknown / Incomplete
|
2011-11-09
|
Cisco TelePresence Multiple Product Default Root Account
|
|
76959
Description:
vtiger CRM contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the index.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'file' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.
|
2011-11-09
|
vtiger CRM index.php file Parameter Local File Inclusion
|
|
76964
Description:
Unknown / Incomplete
|
2011-11-09
|
AShop index.php URI XSS
|
|
76965
Description:
Unknown / Incomplete
|
2011-11-09
|
Webform CiviCRM Integration Module for Drupal Unspecified SQL Injection
|
|
77006
Description:
Quiz Module for Drupal contains multiple flaws that allow a remote cross-site scripting (XSS) attack. The flaws exist because the application does not validate certain unspecified input while creation quizzes. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
Quiz Module for Drupal Quiz Creation Multiple Unspecified XSS
|
|
76996
Description:
AShop contains a flaw that allows a remote cross site redirection attack. This flaw exists because the application does not validate the 'redirect' parameter upon submission to the language.php script. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing. Such attacks are useful as the crafted URL initially appear to be a web page of a trusted site. This could be leveraged to direct an unsuspecting user to a web page containing attacks that target client side software such as a web browser or document rendering programs.
|
2011-11-09
|
AShop language.php redirect Parameter Arbitrary Site Redirect
|
|
76960
Description:
vtiger CRM contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the graph.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'module' and 'action' parameters. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.
|
2011-11-09
|
vtiger CRM graph.php Multiple Parameter Local File Inclusion
|
|
77010
Description:
ALFContact Component for Joomla! contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'emailto_id', 'extravalue', 'name', 'email' and 'subject' parameters upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
ALFContact Component for Joomla! index.php Multiple Parameter XSS
|
|
76995
Description:
AShop contains a flaw that allows a remote cross site redirection attack. This flaw exists because the application does not validate the 'redirect' parameter upon submission to the currency.php script. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing. Such attacks are useful as the crafted URL initially appear to be a web page of a trusted site. This could be leveraged to direct an unsuspecting user to a web page containing attacks that target client side software such as a web browser or document rendering programs.
|
2011-11-09
|
AShop currency.php redirect Parameter Arbitrary Site Redirect
|
|
76994
Description:
AShop contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'picture' parameter upon submission to the picture.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
AShop picture.php picture Parameter XSS
|
|
76992
Description:
AShop contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'resultpage' parameter upon submission to the catalogue.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
AShop catalogue.php resultpage Parameter XSS
|
|
76993
Description:
AShop contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'sid' parameter upon submission to the basket.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
AShop basket.php sid Parameter XSS
|
|
77213
Description:
(Description Provided by CVE) : Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 do not properly enforce AppLocker rules, which allows local users to bypass intended access restrictions via a (1) macro or (2) scripting feature in an application, as demonstrated by Microsoft Office applications and the SANDBOX_INERT and LOAD_IGNORE_CODE_AUTHZ_LEVEL flags.
|
2011-11-09
|
Microsoft Windows AppLocker Rule Weakness Local Access Restriction Bypass
|
|
77359
Description:
Unknown / Incomplete
|
2011-11-09
|
Linux Kernel hfs_mac2asc() Function Out Buffer Local Overflow
|
|
77440
Description:
Dolibarr contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'username' parameter upon submission to the admin/company.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
Dolibarr admin/company.php username Parameter XSS
|
|
77441
Description:
Dolibarr contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the PATH_INFO upon submission to the admin/security_other.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
Dolibarr admin/security_other.php PATH_INFO XSS
|
|
77442
Description:
Dolibarr contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the PATH_INFO upon submission to the admin/events.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
Dolibarr admin/events.php PATH_INFO XSS
|
|
77443
Description:
Dolibarr contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the PATH_INFO upon submission to theadmin/user.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-11-09
|
Dolibarr admin/user.php PATH_INFO XSS
|
|
84168
Description:
WebKit contains a use-after-free error in the COMPONENT | SERVICE | FUNCTION | FEATURE. The issue is triggered when splitting or appending columns to sections. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.
|
2011-11-09
|
WebKit Column Splitting / Appending Use-after-free Issue
|
|
76899
Description:
(Description Provided by CVE) : Integer overflow in the TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code by sending a sequence of crafted UDP packets to a closed port, aka "Reference Counter Overflow Vulnerability."
|
2011-11-08
|
Microsoft Windows TCP/IP Reference Counter Crafted UDP Packet Stream Remote Overflow
|
|
76902
Description:
(Description Provided by CVE) : The LDAP over SSL (aka LDAPS) implementation in Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS) in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not examine Certificate Revocation Lists (CRLs), which allows remote authenticated users to bypass intended certificate restrictions and access Active Directory resources by leveraging a revoked X.509 certificate for a domain account, aka "LDAPS Authentication Bypass Vulnerability."
|
2011-11-08
|
Microsoft Windows Active Directory LDAPS CRL Handling Weakness Authentication Bypass
|
|
76937
Description:
(Description Provided by CVE) : Buffer overflow in an unspecified third-party component in the Batch module for Schneider Electric CitectSCADA before 7.20 and Mitsubishi MX4 SCADA before 7.20 allows local users to execute arbitrary code via a long string in a login sequence.
|
2011-11-08
|
Schneider Electric CitectSCADA Batch Module Login Sequence Remote Overflow
|
|
76969
Description:
Adobe Shockwave Player is prone to an overflow condition. This issue is triggered due to TextXtra.x32 file fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. This may allow a remote attacker to execute arbitrary code.
|
2011-11-08
|
Adobe Shockwave Player TextXtra.x32 Multiple Unspecified Remote Overflow
|
|
77725
Description:
(Description Provided by CVE) : (1) services/twitter/twitter-contact-view.c and (2) services/twitter/twitter-item-view.c in libsocialweb before 0.25.20 automatically connect to Twitter when no Twitter account is set, which might allow remote attackers to obtain sensitive information via a man-in-the-middle (MITM) attack.
|
2011-11-08
|
libsocialweb services/twitter/twitter-*-view.c Twitter Service SSL Certificate Validation MitM Weakness
|
|
86520
Description:
Mozilla Firefox contains many flaw that may allow a denial of service. When a major version of Firefox is released, the vendor includes a lengthy list of issues fixed. Among these are a wide variety of crashes in the browser, some that initially show signs of memory corruption or exploitable overflows. In many cases, the issues are not fully examined, or examined and found not to allow for privilege escalation. Due to the large number of crash conditions, many of which could be leveraged as a remote or context-dependent denial of service, they are all included in one entry, grouped by major version. The bug list attached to this entry provides a concise list of crash reports and other behavior that could represent DoS conditions. Note that not all of these are necessarily exploitable, even for a DoS, as the attack vector may be too severely limited. These issues were reported by a wide variety of people, too numerous to list in the creditee section.
|
2011-11-08
|
Mozilla Firefox < 8 Multiple Method DoS
|
|
76926
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the RSS/Atom feed-reader implementation in Iwate Portal Bar allows remote attackers to inject arbitrary web script or HTML via a crafted feed.
|
2011-11-08
|
Iwate Portal Bar RSS/Atom Feed Reader XSS
|
|
76955
Description:
(Description Provided by CVE) : Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 perform access control without checking for use of the NoWaiverWrapper wrapper, which allows remote attackers to gain privileges via a crafted web site.
|
2011-11-08
|
Mozilla Multiple Products NoWaiverWrappers Internal Privilege Check Weakness Remote Privilege Escalation
|
|
76947
Description:
(Description Provided by CVE) : The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird before 3.1.6 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping behavior, a related issue to CVE-2011-3004.
|
2011-11-08
|
Mozilla Multiple Products JSSubScriptLoader loadSubScript Method XPCNativeWrappers Parsing Remote Code Execution
|
|
76948
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 allows remote attackers to inject arbitrary web script or HTML via crafted text with Shift JIS encoding.
|
2011-11-08
|
Mozilla Multiple Products Shift-JIS XSS
|
|
76951
Description:
(Description Provided by CVE) : Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 7.0 and Thunderbird 7.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
|
2011-11-08
|
Mozilla Multiple Products Multiple Unspecified Remote Memory Corruption (2011-3651)
|
