| OSVDB ID | Disclosure Date | Title |
|---|
|
71794
Description:
EZ-Shop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the specialoffer.php script not properly sanitizing user-supplied input to the 'specialid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-04-14
|
EZ-Shop specialoffer.php specialid Parameter SQL Injection
|
|
71832
Description:
SAP NetWeaver Web Application Server contains an unspecified flaw that allows a remote cross site redirection attack. This could allow a user to redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing.
|
2011-04-14
|
SAP NetWeaver Web Application Server Unspecified Arbitrary Site Redirect
|
|
71858
Description:
Perl Jifty::DBI contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to unspecified input relating to 'column names', 'operators', order', 'group by' and 'via IS' not being properly sanitized before use in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-04-14
|
Jifty-DBI for Perl (CPAN) Multiple Unspecified SQL Injection
|
|
71857
Description:
RSA Adaptive Authentication contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input related to a Flash Shockwave file before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-04-14
|
RSA Adaptive Authentication Flash Shockwave File Unspecified XSS
|
|
72147
Description:
Mimbo Pro Theme for WordPress contains a bundled version of TimThumb which contains a flaw that may allow a remote denial of service. The issue is triggered when the program improperly handles large remote image data, resulting in a loss of availability.
|
2011-04-14
|
Mimbo Pro Theme for WordPress Remote Image Data Handling DoS
|
|
72149
Description:
Mimbo Pro Theme for WordPress contains a bundled version of TimThumb which contains a flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly process large image dimensions when passed to the image resizing functionality, resulting in a loss of availability.
|
2011-04-14
|
Mimbo Pro Theme for WordPress Image Dimensions Resizing DoS
|
|
73251
Description:
WatchGuard XCS contains a flaw related to the TLS implementation failing to properly restrict I/O buffering and clearing transport layer buffers when changing from plaintext to ciphertext upon receipt of the 'STARTTLS' command. This may allow a remote, man-in-the-middle attacker to inject arbitrary plaintext data which will be executed upon transition to ciphertext.
|
2011-04-14
|
WatchGuard XCS STARTTLS Arbitrary Plaintext Command Injection
|
|
73042
Description:
(Description Provided by CVE) : Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_BIND agp_ioctl ioctl call.
|
2011-04-14
|
Linux Kernel drivers/char/agp/generic.c agp_generic_insert_memory Function AGPIOC_BIND agp_ioctl IOCTL Local Overflow
|
|
73043
Description:
(Description Provided by CVE) : Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via vectors related to calls that specify a large number of memory pages.
|
2011-04-14
|
Linux Kernel drivers/char/agp/generic.c Multiple Function Memory Page Call Local Overflow DoS
|
|
73045
Description:
(Description Provided by CVE) : The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a different vulnerability than CVE-2011-1745.
|
2011-04-14
|
Linux Kernel drivers/char/agp/generic.c agp_generic_remove_memory Function AGPIOC_UNBIND IOCTL Local Privilege Escalation
|
|
74793
Description:
(Description Provided by CVE) : Best Practical Solutions RT 3.8.0 through 3.8.9 and 4.0.0rc through 4.0.0rc7, when the CustomFieldValuesSources (aka external custom field) option is enabled, allows remote authenticated users to execute arbitrary code via unspecified vectors, as demonstrated by a cross-site request forgery (CSRF) attack.
|
2011-04-14
|
RT External Custom Field Unspecified Remote Code Execution
|
|
74794
Description:
(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Best Practical Solutions RT 2.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, as demonstrated by reading data.
|
2011-04-14
|
RT Multiple Unspecified SQL Injection
|
|
74795
Description:
(Description Provided by CVE) : Best Practical Solutions RT 3.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allows remote authenticated users to obtain sensitive information by using the search interface, as demonstrated by retrieving encrypted passwords.
|
2011-04-14
|
RT Search Interface Encrypted Password Disclosure
|
|
74796
Description:
(Description Provided by CVE) : Directory traversal vulnerability in Best Practical Solutions RT 3.2.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allows remote attackers to read arbitrary files via a crafted HTTP request.
|
2011-04-14
|
RT Unspecified Traversal Arbitrary File Access
|
|
74797
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Best Practical Solutions RT 2.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
2011-04-14
|
RT Multiple Unspecified XSS
|
|
74798
Description:
(Description Provided by CVE) : Best Practical Solutions RT 3.6.0 through 3.6.10 and 3.8.0 through 3.8.8 allows remote attackers to trick users into sending credentials to an arbitrary server via unspecified vectors.
|
2011-04-14
|
RT Unspecified Authentication Credentials Disclosure
|
|
74979
Description:
PHP Album contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the main.php script does not require multiple steps or explicit confirmation for sensitive transactions for the manipulation of the administrator password. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.
|
2011-04-14
|
PHP Album main.php Admin Password Manipulation CSRF
|
|
74981
Description:
Unknown / Incomplete
|
2011-04-14
|
PHP Album main.php var3 Parameter Remote PHP Code Execution
|
|
72904
Description:
FirstClass Client contains a flaw related to the processing of FCP:// URL links that may allow a context-dependent attacker to use a crafted link to create arbitrary files.
|
2011-04-13
|
FirstClass Client FCP:// Link Processing Arbitrary File Creation
|
|
72907
Description:
FirstClass Client is prone to a flaw in the way it loads dynamic-link libraries (DLL), specifically quserex.dll. The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a .fc file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.
|
2011-04-13
|
FirstClass Client quserex.dll Path Subversion Arbitrary DLL Injection Code Execution
|
|
74968
Description:
(Description Provided by CVE) : Multiple SQL injection vulnerabilities in the Unified Network Control (UNC) Server in CA Total Defense (TD) r12 before SE2 allow remote attackers to execute arbitrary SQL commands via vectors involving the (1) UnAssignFunctionalRoles, (2) UnassignAdminRoles, (3) DeleteFilter, (4) NonAssignedUserList, (5) DeleteReportLayout, (6) DeleteReports, and (7) RegenerateReport stored procedures.
|
2011-04-13
|
CA Total Defense management.asmx Multiple Stored Procedure SQL Injection
|
|
71790
Description:
OTRS (Open Ticket Request System) contains multiple flaws that allow remote cross-site scripting (XSS) attacks. These flaws exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-04-13
|
OTRS (Open Ticket Request System) Multiple Unspecified XSS
|
|
71740
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application which leverages incorrect driver object management, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver Use After Free Unspecified Local Privilege Escalation (2011-0662)
|
|
71727
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-0673)
|
|
71728
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-0676)
|
|
71729
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-0677)
|
|
71730
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-1225)
|
|
71731
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-1226)
|
|
71732
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-1227)
|
|
71734
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-1228)
|
|
71735
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-1229)
|
|
71736
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-1230)
|
|
71737
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-1231)
|
|
71738
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-1232)
|
|
71739
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application to trigger a null pointer dereference, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver NULL Pointer De-reference Unspecified Local Privilege Escalation (2011-1233)
|
|
71741
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application which leverages incorrect driver object management, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver Use After Free Unspecified Local Privilege Escalation (2011-0665)
|
|
71742
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application which leverages incorrect driver object management, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver Use After Free Unspecified Local Privilege Escalation (2011-0666)
|
|
71743
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application which leverages incorrect driver object management, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver Use After Free Unspecified Local Privilege Escalation (2011-0667)
|
|
71744
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application which leverages incorrect driver object management, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver Use After Free Unspecified Local Privilege Escalation (2011-0670)
|
|
71745
Description:
Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a local, context-dependent attacker uses a crafted application which leverages incorrect driver object management, allowing them to gain elevated privileges.
|
2011-04-13
|
Microsoft Windows win32k.sys Driver Use After Free Unspecified Local Privilege Escalation (2011-0671)
|
