[CLOSE] OSVDB ID : 72151 - Disclosed: 2011-04-30

Description:

Magazeen Theme for WordPress contains a bundled version of TimThumb which contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input passed via the PATH_INFO and 'src' parameter upon submission to the timthumb.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72118 - Disclosed: 2011-04-30

Description:

(Description Provided by CVE) : VMware ESXi 4.0 and 4.1 and ESX 4.0 and 4.1 allow remote attackers to cause a denial of service (socket exhaustion) via unspecified network traffic.

[CLOSE] OSVDB ID : 72101 - Disclosed: 2011-04-30

Description:

Core Player is prone to an overflow condition. The application fails to properly sanitize user-supplied input resulting in a stack buffer overflow. With a specially crafted file, a context-dependent attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 72102 - Disclosed: 2011-04-30

Description:

QuickPlayer is prone to an overflow condition. The application fails to properly sanitize user-supplied input resulting in a stack buffer overflow. With a specially crafted file, a context-dependent attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 72144 - Disclosed: 2011-04-30

Description:

aXes Terminal Server contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'login' parameter upon submission to the axests/terminal script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72152 - Disclosed: 2011-04-30

Description:

Magazeen Theme for WordPress contains a bundled version of TimThumb which contains a flaw that may allow a remote denial of service. The issue is triggered when the program improperly handles large remote image data, resulting in a loss of availability.

[CLOSE] OSVDB ID : 72153 - Disclosed: 2011-04-30

Description:

Magazeen Theme for WordPress contains a bundled version of TimThumb which contains a flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly process large image dimensions when passed to the image resizing functionality, resulting in a loss of availability.

[CLOSE] OSVDB ID : 72136 - Disclosed: 2011-04-29

Description:

Data Dynamics ActiveBar ActiveBar1 ActiveX contains a flaw related to the SetLayoutData() method. The issue is triggered when a remote attacker uses a specially crafted 'Data' argument to send a virtual function call to an arbitrary memory location. This may allow an attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 75980 - Disclosed: 2011-04-29

Description:

(Description Provided by CVE) : Integer overflow in the sys_oabi_semtimedop function in arch/arm/kernel/sys_oabi-compat.c in the Linux kernel before 2.6.39 on the ARM platform, when CONFIG_OABI_COMPAT is enabled, allows local users to gain privileges or cause a denial of service (heap memory corruption) by providing a crafted argument and leveraging a race condition.

[CLOSE] OSVDB ID : 72104 - Disclosed: 2011-04-29

Description:

Interbase XE is prone to an overflow condition. The database service, ibserver.exe, fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted 'connect', opcode 0x01, message, a remote attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 74016 - Disclosed: 2011-04-29

Description:

WebKit contains a use-after-free error that is triggered when handling table caption layouts. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 77362 - Disclosed: 2011-04-29

Description:

(Description Provided by CVE) : GNU Project Debugger (GDB) before 7.5, when .debug_gdb_scripts is defined, automatically loads certain files from the current working directory, which allows local users to gain privileges via crafted files such as Python scripts.

[CLOSE] OSVDB ID : 72135 - Disclosed: 2011-04-28

Description:

ICONICS WebHMI VersionInfo ActiveX is prone to an overflow condition. The 'SetActiveXGUID()' method, GenVersion.dll, suffers from a boundary error, resulting in a stack-based buffer overflow. With a specially crafted overly long string to the 'Ax_GUID' parameter, a remote attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 72055 - Disclosed: 2011-04-28

Description:

BackupPC contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'share' parameter upon submission to the index.cgi script before returning it in the RestoreFile.pm script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72576 - Disclosed: 2011-04-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 72051 - Disclosed: 2011-04-28

Description:

phpGraphy contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'theme_dir' parameter upon submission to the themes/default/header.inc.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72052 - Disclosed: 2011-04-28

Description:

phpGraphy contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the addition of arbitrary administrator users. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 72053 - Disclosed: 2011-04-28

Description:

WP Photo Album Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the wp-content/plugins/wp-photo-album/wppa.php script does not validate the 'id' parameter upon submission to the wp-admin/admin.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72057 - Disclosed: 2011-04-28

Description:

Daily Maui Photo Widget Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'title' parameter upon submission to the wp-content/plugins/daily-maui-photo-widget/wp-dailymaui-widget-control.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72056 - Disclosed: 2011-04-28

Description:

Daily Maui Photo Widget Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'selected_small', 'selected_medium', 'selected_thumb', 'selected_date', and 'selected_full' parameters upon submission to the wp-content/plugins/daily-maui-photo-widget/wp-dailymaui-widget-control.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72098 - Disclosed: 2011-04-28

Description:

LDAP Account Manager contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the 'lib/status.inc' script does not validate the 'selfserviceSaveOk' parameter upon submission to the 'templates/login.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72157 - Disclosed: 2011-04-28

Description:

libmodplug is prone to an overflow condition. The 'abc_new_macro()' and 'abc_new_umacro()' functions fail to properly sanitize user-supplied input resulting in a stack buffer overflow. With a specially crafted ABC file, a context-dependent attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 72291 - Disclosed: 2011-04-28

Description:

NetOp is prone to an overflow condition. Remote Control fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted request, a local attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 72085 - Disclosed: 2011-04-28

Description:

Mozilla Firefox and SeaMonkey contain a user-after-free flaw related to the OBJECT's mChannel that may allow a context-dependent attacker to execute arbitrary code. No further details have been provided.

[CLOSE] OSVDB ID : 72091 - Disclosed: 2011-04-28

Description:

Mozilla Firefox for Windows contains a flaw as the WebGLES library is compiled without ASLR protection. This may allow an attacker to more reliably exploit a code execution vulnerability by bypassing ASLR protection on Windows Vista and newer versions, making these effectively as vulnerable as older versions without ASLR protection.

[CLOSE] OSVDB ID : 72093 - Disclosed: 2011-04-28

Description:

ANGLE WebGLES graphics library contains an off-by-three overflow condition in the 'Program::getActiveUniformMaxLength' function [libGLESv2/Program.cpp]. With a specially crafted web page, a context-dependent attacker can cause a limited buffer overflow, resulting in a denial of service or potentially execution of arbitrary code.

[CLOSE] OSVDB ID : 72112 - Disclosed: 2011-04-28

Description:

FrontAccounting contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the creation of arbitrary administrator users. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 72865 - Disclosed: 2011-04-28

Description:

(Description Provided by CVE) : Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 301.1009.2904.0 in the ISSymbol virtual machine, as distributed in Advantech Studio 6.1 SP6 61.6.01.05, InduSoft Web Studio before 7.0+SP1, and InduSoft Thin Client 7.0, allow remote attackers to execute arbitrary code via a long (1) InternationalOrder, (2) InternationalSeparator, or (3) LogFileName property value; or (4) a long bstrFileName argument to the OpenScreen method.

[CLOSE] OSVDB ID : 72187 - Disclosed: 2011-04-28

Description:

HP OpenView Storage Data Protector is prone to an overflow condition. The Backup Client Service, OmniInet.exe, fails to properly sanitize user-supplied input when processing EXEC_BAR messages, resulting in a stack-based buffer overflow. With a specially crafted packet sent to TCP port 5555, a remote attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 73742 - Disclosed: 2011-04-28

Description:

(Description Provided by CVE) : lsassd in Likewise Open /Enterprise 5.3 before build 7845, Open 6.0 before build 8325, and Enterprise 6.0 before build 178, as distributed in VMware ESXi 4.1 and ESX 4.1 and possibly other products, allows remote attackers to cause a denial of service (daemon crash) via an Active Directory login attempt that provides a username containing an invalid byte sequence.

[CLOSE] OSVDB ID : 72074 - Disclosed: 2011-04-28

Description:

Multiple memory corruption flaws exist in Mozilla Firefox, Thunderbird and SeaMonkey. The programs fail to sanitize certain unspecified user-supplied input, resulting in memory corruption. Through unspecified vectors, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 72076 - Disclosed: 2011-04-28

Description:

Mozilla Firefox, Thunderbird and SeaMonkey contain an unspecified flaw that may allow a context-dependent attacker to cause a denial of service. No further details have been provided.

[CLOSE] OSVDB ID : 72077 - Disclosed: 2011-04-28

Description:

Mozilla Firefox, Thunderbird and SeaMonkey contain an unspecified flaw that may allow a context-dependent attacker to cause a denial of service. No further details have been provided.

[CLOSE] OSVDB ID : 72080 - Disclosed: 2011-04-28

Description:

A memory corruption flaw exists in Mozilla Firefox, Thunderbird and SeaMonkey. The programs fail to sanitize certain unspecified user-supplied input, resulting in memory corruption. Through unspecified vectors, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 72081 - Disclosed: 2011-04-28

Description:

A memory corruption flaw exists in Mozilla Firefox, Thunderbird and SeaMonkey. The programs fail to sanitize certain unspecified user-supplied input, resulting in memory corruption. Through unspecified vectors, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 72082 - Disclosed: 2011-04-28

Description:

A memory corruption flaw exists in Mozilla Firefox, Thunderbird and SeaMonkey. The programs fail to sanitize certain unspecified user-supplied input, resulting in memory corruption. Through unspecified vectors, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 72083 - Disclosed: 2011-04-28

Description:

A memory corruption flaw exists in Mozilla Firefox, Thunderbird and SeaMonkey. The programs fail to sanitize certain unspecified user-supplied input, resulting in memory corruption. Through unspecified vectors, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 72084 - Disclosed: 2011-04-28

Description:

A memory corruption flaw exists in Mozilla Firefox, Thunderbird and SeaMonkey. The programs fail to sanitize certain unspecified user-supplied input, resulting in memory corruption. Through unspecified vectors, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 72086 - Disclosed: 2011-04-28

Description:

Mozilla Firefox and SeaMonkey contain a user-after-free flaw related to the OBJECT's mObserverList that may allow a context-dependent attacker to execute arbitrary code. No further details have been provided.

[CLOSE] OSVDB ID : 72087 - Disclosed: 2011-04-28

Description:

Mozilla Firefox and SeaMonkey contain a dangling pointer flaw related to 'nsTreeRange' that may allow a context-dependent attacker to execute arbitrary code.