| OSVDB ID | Disclosure Date | Title |
|---|
|
77947
Description:
(Description Provided by CVE) : Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by (1) establishing a SOCKS connection to SocksPort or (2) leveraging a SOCKS proxy configuration.
|
2011-12-16
|
Tor or/buffers.c buf_pullup() Function Data Repacking Remote Overflow
|
|
77998
Description:
cApexWEB contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the capexweb/servlet/capexweb.parentvalidatepassword script not properly sanitizing user-supplied input to the 'dfuserid' and 'dfpassword' parametrs. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-12-16
|
cApexWEB capexweb/servlet/capexweb.parentvalidatepassword Multiple Parameter SQL Injection
|
|
77736
Description:
Seotoaster contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the selectUserIdByLoginPass() function in seotoaster_core/application/models/LoginModel.php not properly sanitizing user-supplied input passed via the 'login' to sys/login/index or the 'memberLoginName' parameter to sys/login/member. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-12-15
|
Seotoaster seotoaster_core/application/models/LoginModel.php selectUserIdByLoginPass() Function Multiple Parameter SQL Injection
|
|
77957
Description:
(Description Provided by CVE) : Heap-based buffer overflow in IrfanView before 4.32 allows remote attackers to execute arbitrary code via crafted "Rows Per Strip" and "Samples Per Pixel" values in a TIFF image file.
|
2011-12-15
|
IrfanView Rows Per Strip / Sample Per Pixel TIFF Image Handling Remote Overflow
|
|
81804
Description:
Multiple Websense products contain a flaw related to the report management web interface that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'dTitle' parameter upon submission to explorer_wse/detail.exe. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-15
|
Websense Multiple Product Report Management Web Interface explorer_wse/detail.exe dTitle Parameter XSS
|
|
77739
Description:
Hitachi JP1/ServerConductor/DeploymentManager contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the DeploymentManager PXE Mtftp Service not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../). This directory traversal attack would allow the attacker to access arbitrary files.
|
2011-12-15
|
Hitachi JP1/ServerConductor/DeploymentManager DeploymentManager PXE Mtftp Service Traversal Arbitrary File Access
|
|
77949
Description:
mnoGoSearch contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the program not properly sanitizing user-supplied input to the host names in hypertext links. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-12-15
|
mnoGoSearch Hypertext Links Host Names SQL Injection
|
|
78000
Description:
Unknown / Incomplete
|
2011-12-15
|
Websense Multiple Product Report Management Web Interface explorer_wse/favorites.exe favName Parameter XSS
|
|
78001
Description:
Unknown / Incomplete
|
2011-12-15
|
Websense Multiple Product explorer_wse/ws_irpt.exe Request Parsing Remote Shell Command Execution
|
|
77759
Description:
(Description Provided by CVE) : ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
|
2011-12-15
|
Kiwi Overlay File Path chown Command Line Remote Shell Command Execution
|
|
77760
Description:
(Description Provided by CVE) : ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
|
2011-12-15
|
Kiwi Image Name Parsing Remote Shell Command Execution
|
|
77761
Description:
(Description Provided by CVE) : ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
|
2011-12-15
|
Kiwi Overlay Files Tab Appliance Cloning XSS
|
|
77762
Description:
(Description Provided by CVE) : ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
|
2011-12-15
|
Kiwi kiwi_oemtitle .profile Double Quote Parsing Remote Shell Command Execution
|
|
77773
Description:
Unknown / Incomplete
|
2011-12-15
|
Owl Intranet Engine lib/owl.lib.php userid Parameter Remote Authentication Bypass
|
|
78002
Description:
Unknown / Incomplete
|
2011-12-15
|
Websense Multiple Product Report Management Web Interface explorer_wse/favorites.exe Cookie Parsing Authentication Bypass
|
|
78129
Description:
Unknown / Incomplete
|
2011-12-15
|
Owl Intranet Engine Unsalted Hash Password Disclosure
|
|
79390
Description:
(Description Provided by CVE) : ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
|
2011-12-15
|
PolarSSL havege_rand() Function Virtual Machine Random Number Generation Weakness
|
|
84877
Description:
FFmpeg is prone to an overflow condition. The MPV_frame_start function of libavcodec/mpegvideo.c fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted H263 file, a context-dependent attacker can cause a denial of service or potentially execute arbitrary code.
|
2011-12-15
|
FFmpeg libavcodec/mpegvideo.c MPV_frame_start Function H263 File Handling Overflow
|
|
77692
Description:
PHP-SCMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the templates/default/Admin/Login.html script does not validate the 'lang' parameter upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
PHP-SCMS index.php lang Parameter XSS
|
|
77696
Description:
Simple PHP Blog contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'entry' parameter upon submission to the delete.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
Simple PHP Blog delete.php entry Parameter XSS
|
|
77697
Description:
Simple PHP Blog contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'category' parameter upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
Simple PHP Blog index.php category Parameter XSS
|
|
77771
Description:
Zabbix contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'gname' (Host name) parameter upon submission to the hostgroups.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
Zabbix hostgroups.php gname Parameter XSS
|
|
77772
Description:
Zabbix contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input upon submission to the profiler. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
Zabbix Profiler Unspecified XSS
|
|
77777
Description:
Sentinel Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input upon submission to the admin dashboard. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
Sentinel Plugin for WordPress Dashboard Unspecified XSS
|
|
77778
Description:
Sentinel Plugin for WordPress contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the triggering of snapshots. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.
|
2011-12-14
|
Sentinel Plugin for WordPress Snapshot Trigger CSRF
|
|
77779
Description:
Sentinel Plugin for WordPress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the program not properly sanitizing user-supplied input before use in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-12-14
|
Sentinel Plugin for WordPress Unspecified SQL Injection
|
|
77985
Description:
(Description Provided by CVE) : The create_pit_timer function in arch/x86/kvm/i8254.c in KVM 83, and possibly other versions, does not properly handle when Programmable Interval Timer (PIT) interrupt requests (IRQs) when a virtual interrupt controller (irqchip) is not available, which allows local users to cause a denial of service (NULL pointer dereference) by starting a timer.
|
2011-12-14
|
Linux Kernel arch/x86/kvm/i8254.c create_pit_timer() Function PIT Configuring Local DoS
|
|
78085
Description:
Zabbix contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'update' action upon submission to the scripts.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
Zabbix scripts.php Update Action XSS
|
|
78086
Description:
Zabbix contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'update' action upon submission to the maintenance.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
Zabbix maintenance.php Update Action XSS
|
|
78087
Description:
Zabbix contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'update' action upon submission to the hosts.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
Zabbix hosts.php Update Action XSS
|
|
78588
Description:
QIWI Wallet Application for Android contains a flaw related that may allow a remote attacker to access and manipulate a user's financial data.
|
2011-12-14
|
QIWI Wallet (ru.mw) Application for Android Unspecified User Financial Data Manipulation
|
|
77728
Description:
BrowserCRM contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to multiple scripts. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
BrowserCRM Multiple Script URI XSS
|
|
77737
Description:
JBoss Enterprise Portal Platform contains a flaw that allows a remote cross site redirection attack. This flaw exists because the application does not validate the 'initialURI' parameter upon submission to the login page. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing. Such attacks are useful as the crafted URL initially appear to be a web page of a trusted site. This could be leveraged to direct an unsuspecting user to a web page containing attacks that target client side software such as a web browser or document rendering programs.
|
2011-12-14
|
JBoss Enterprise Portal Platform Login Page initialURI Parameter Arbitrary Site Redirect
|
|
77740
Description:
Meta tags quick Module for Drupal contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input relating to entity bundle names before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
Meta tags quick Module for Drupal Entity Bundle Names Unspecified XSS
|
|
77729
Description:
BrowserCRM contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'framed' parameter upon submission to the license/index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
BrowserCRM license/index.php framed Parameter XSS
|
|
77730
Description:
BrowserCRM contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'framed' parameter upon submission to the licence/view.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
BrowserCRM licence/view.php framed Parameter XSS
|
|
77731
Description:
BrowserCRM contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'login[]' parameter upon submission to the pub/clients.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
BrowserCRM pub/clients.php login[] Parameter XSS
|
|
77732
Description:
BrowserCRM contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'login[]' parameter upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-12-14
|
BrowserCRM index.php login[] Parameter XSS
|
|
77733
Description:
BrowserCRM contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the modules/Documents/version_list.php script not properly sanitizing user-supplied input to the 'parent_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-12-14
|
BrowserCRM modules/Documents/version_list.php parent_id Parameter SQL Injection
|
|
77734
Description:
BrowserCRM contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the modules/Documents/index.php script not properly sanitizing user-supplied input to the 'contact_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-12-14
|
BrowserCRM modules/Documents/index.php contact_id Parameter SQL Injection
|
