| OSVDB ID | Disclosure Date | Title |
|---|
|
72578
Description:
(Description Provided by CVE) : FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a malformed RealMedia file.
|
2011-05-31
|
FFmpeg RealMedia File Handling Memory Corruption DoS
|
|
72975
Description:
(Description Provided by CVE) : The dissect_dcm_main function in epan/dissectors/packet-dcm.c in the DICOM dissector in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (infinite loop) via an invalid PDU length.
|
2011-05-31
|
Wireshark DICOM Dissector epan/dissectors/packet-dcm.c dissect_dcm_main Function Remote DoS
|
|
72893
Description:
HP LoadRunner is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a buffer overflow. With specially crafted parsing directives within a Virtual User Script (USR) file, a context-dependent attacker can potentially execute arbitrary code.
|
2011-05-31
|
HP LoadRunner USR File Directive Parsing Overflow
|
|
72976
Description:
(Description Provided by CVE) : Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Diameter dictionary file.
|
2011-05-31
|
Wireshark Diameter Dictionary File Handling Remote DoS
|
|
72977
Description:
(Description Provided by CVE) : The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service (application crash) via a large length value in a snoop file that triggers a stack-based buffer over-read.
|
2011-05-31
|
Wireshark wiretap/snoop.c snoop_read Function Virtualizable Buffer Handling Remote DoS
|
|
72978
Description:
(Description Provided by CVE) : Double free vulnerability in the tvb_uncompress function in epan/tvbuff.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a packet with malformed data that uses zlib compression.
|
2011-05-31
|
Wireshark epan/tvbuff.c tvb_uncompress Function Double-free Remote DoS
|
|
72979
Description:
(Description Provided by CVE) : Integer underflow in the visual_read function in wiretap/visual.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a malformed Visual Networks file that triggers a heap-based buffer over-read.
|
2011-05-31
|
Wireshark wiretap/visual.c visual_read Function Visual Networks File Handling Remote DoS
|
|
73223
Description:
(Description Provided by CVE) : Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, and 4.3.1 has an unspecified "built-in account" that is "trivially" accessed, which makes it easier for remote attackers to send requests to restricted pages via a session on TCP port 9495, a different vulnerability than CVE-2011-1220.
|
2011-05-31
|
IBM Tivoli Management Framework Endpoint Built-in Account Default HTTP Password Remote Restricted Page Access
|
|
72579
Description:
A memory corruption flaw exists in ffmpeg . The function fails to sanitize user-supplied file resulting in memory corruption. With a specially crafted file, an attacker can execute arbitrary code.
|
2011-05-31
|
FFmpeg Malformed WMV File Handling Memory Corruption
|
|
72731
Description:
Kentico CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the [PARAMETER | FIELD] [parameter | field] upon submission to the examples/webparts/membership/users-viewer.aspx script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-05-31
|
Kentico CMS examples/webparts/membership/users-viewer.aspx userContextMenu_parameter Parameter XSS
|
|
73250
Description:
Unknown / Incomplete
|
2011-05-31
|
vBulletin YUI Component Library Unspecified Issue
|
|
72974
Description:
(Description Provided by CVE) : The bytes_repr_len function in Wireshark 1.4.5 uses an incorrect pointer argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via arbitrary TCP traffic.
|
2011-05-31
|
Wireshark bytes_repr_len Function NULL Dereference Remote DoS
|
|
72969
Description:
Unknown / Incomplete
|
2011-05-31
|
Zhang Boyang FTP Server Empty CWD Command Processing DoS
|
|
76338
Description:
WebKit contains a use-after-free error in the 'XMLDocumentParser::insertErrorMessageBlock' function in WebCore/dom/XMLDocumentParser.cpp when handling errors and displaying an error block. With a specially crafted SVG document, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.
|
2011-05-31
|
WebKit XMLDocumentParser::insertErrorMessageBlock Use-after-free Issue
|
|
76414
Description:
Unknown / Incomplete
|
2011-05-31
|
Atlassian Confluence Login XSS
|
|
76415
Description:
Unknown / Incomplete
|
2011-05-31
|
Atlassian Confluence User Preferences XSS
|
|
76416
Description:
Unknown / Incomplete
|
2011-05-31
|
Atlassian Confluence Social Bookmarking Plugin CSRF
|
|
87944
Description:
IBM WebSphere MQ contains an unspecified flaw. No further details have been provided.
|
2011-05-31
|
IBM WebSphere MQ Unspecified Issue
|
|
89588
Description:
Opera contains an overflow condition that is triggered as certain unspecified user-supplied input is not properly validated. With This may allow a remote attacker to cause an unspecified overflow, resulting in a denial of service or potentially execution of arbitrary code.
|
2011-05-31
|
Opera Unspecified Remote Overflow
|
|
73035
Description:
(Description Provided by CVE) : GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.
|
2011-05-30
|
GNOME Display Manager (gdm) glib2 Web Browser x-scheme-handler/http MIME Type Local Privilege Escalation
|
|
72640
Description:
Html-edit CMS contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the addition of pages. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.
|
2011-05-30
|
Html-edit CMS Page Addition CSRF
|
|
72645
Description:
Ajax File Manager contains a flaw related to the upload function. The issue is triggered when a remote attacker uploads arbitrary PHP files. This may allow an attacker to execute arbitrary PHP code in the context of the server.
|
2011-05-30
|
Ajax File Manager Plugin for TinyMCE Arbitrary File Upload
|
|
74824
Description:
(Description Provided by CVE) : fetchmail 5.9.9 through 6.3.19 does not properly limit the wait time after issuing a (1) STARTTLS or (2) STLS request, which allows remote servers to cause a denial of service (application hang) by acknowledging the request but not sending additional packets.
|
2011-05-30
|
Fetchmail STARTTLS / STLS Request Acknowledgement Wait Time Limit Remote DoS
|
|
73243
Description:
Unknown / Incomplete
|
2011-05-30
|
Belkin Wireless G Router login.stm Admin Password MD5 Hash Disclosure
|
|
72726
Description:
Freetag Plugin for Serendipity contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the plugins/serendipity_event_freetag/serendipity_event_freetag.php script does not validate input passed via the URL upon submission to the ndex.php?/plugin/tag/ script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-05-30
|
Freetag Plugin for Serendipity index.php?/plugin/tag/ URI XSS
|
|
74378
Description:
(Description Provided by CVE) : The X.509 certificate validation functionality in Mozilla Firefox 4.0.x through 4.0.1 does not properly implement single-session security exceptions, which might make it easier for user-assisted remote attackers to spoof an SSL server via an untrusted certificate that triggers potentially unwanted local caching of documents from that server.
|
2011-05-30
|
Mozilla Firefox X.509 Certificate Validation Single-session Security Exception SSL Server Spoofing Weakness
|
|
72733
Description:
Guru JustAnswer Professional contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the profile.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-05-30
|
Guru JustAnswer Professional profile.php id Parameter SQL Injection
|
|
72732
Description:
sh404SEF Component for Joomla!contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-05-30
|
sh404SEF Component for Joomla! Unspecified XSS
|
|
72980
Description:
Unknown / Incomplete
|
2011-05-30
|
Iskratel SI2000 Callisto 821 Admin Password Manipulation CSRF
|
|
72734
Description:
Guru JustAnswer Professional contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the forum_answer.php script not properly sanitizing user-supplied input to the 'que_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-05-30
|
Guru JustAnswer Professional forum_answer.php que_id Parameter SQL Injection
|
|
72811
Description:
CodeMeter WebAdmin contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'BoxSerial' parameter upon submission to the Licenses.html script in WebAdmin. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-05-30
|
CodeMeter WebAdmin Licenses.html BoxSerial Parameter XSS
|
|
72772
Description:
Unknown / Incomplete
|
2011-05-30
|
Magic Photo Studio Multiple Applications for Android Trojaned Distribution
|
|
72773
Description:
Unknown / Incomplete
|
2011-05-30
|
Mango Studio Multiple Applications for Android Trojaned Distribution
|
|
72774
Description:
Unknown / Incomplete
|
2011-05-30
|
E.T. Tean Call End Vibrate for Android Trojaned Distribution
|
|
72775
Description:
Unknown / Incomplete
|
2011-05-30
|
BeeGoo Multiple Applications for Android Trojaned Distribution
|
|
72776
Description:
Unknown / Incomplete
|
2011-05-30
|
DroidPlus Multiple Applications for Android Trojaned Distribution
|
|
72777
Description:
Unknown / Incomplete
|
2011-05-30
|
GluMobi Multiple Applications for Android Trojaned Distribution
|
|
79163
Description:
By default, multiple Allied Telesis routers install with a default password. The 'manager' account has a password that can be computed using a special program and the MAC address of the router. The programs used to calculate the passwords were inadvertently leaked by the vendor. This allows attackers to trivially access the program or system and gain privileged access.
|
2011-05-29
|
Allied Telesis Multiple Router manager Account Computed Password Backdoor
|
|
73599
Description:
(Description Provided by CVE) : The destroy_one_secret function in nm-setting-vpn.c in libnm-util in the NetworkManager package 0.8.999-3.git20110526 in Fedora 15 creates a log entry containing a certificate password, which allows local users to obtain sensitive information by reading a log file.
|
2011-05-29
|
NetworkManager libnm-util nm-setting-vpn.c destroy_one_secret Function Log File Certificate Password Local Disclosure
|
|
72741
Description:
Joomnik Gallery Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'album' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-05-29
|
Joomnik Gallery Component for Joomla! index.php album Parameter SQL Injection
|
