[CLOSE] OSVDB ID : 88366 - Disclosed: 2012-12-10

Description:

OpenDocMan contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the FileData_class.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 88456 - Disclosed: 2012-12-10

Description:

Smartphone Pentest Framework contains a flaw that is triggered when certain input passed via the androidwebkit.pl script is not properly sanitized before being used. This may allow a remote attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 88457 - Disclosed: 2012-12-10

Description:

Smartphone Pentest Framework contains a flaw that is triggered when certain input passed via the directdownload.pl script is not properly sanitized before being used. This may allow a remote attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 88897 - Disclosed: 2012-12-10

Description:

Red Hat Package Manager (RPM) contains a flaw that is due to the program failing to properly verify RPM signatures. This may allow a remote attacker to bypass the signature check system and trick a user into installing malicious content.

[CLOSE] OSVDB ID : 91263 - Disclosed: 2012-12-10

Description:

JBoss Enterprise Application Platform (EAP) contains a flaw in the LdapLoginModule and LdapExtLoginModule modules. This issue is due to the default configuration allowing a remote attacker to bypass authentication by supplying a null password.

[CLOSE] OSVDB ID : 88309 - Disclosed: 2012-12-09

Description:

KingChat Plugin for MyBB contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the username in a chat box upon submission to the /kingchat.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 88310 - Disclosed: 2012-12-09

Description:

Google Android Kernel contains a flaw that may allow a local denial of service. The issue is triggered when an error occurs during the handling of a filename write. This may allow a local attacker to cause a loss of availability for the device.

[CLOSE] OSVDB ID : 88308 - Disclosed: 2012-12-09

Description:

Cisco DPC2420 routers contain a flaw that may lead to an unauthorized information disclosure. The issue is due to the device using HTTP Basic authentication for users to authenticate to the device. When this authentication method is used without the protection of SSL/TLS, the credentials are sent over the network in cleartext. An attacker with access to traffic between the device and user could intercept this information.

[CLOSE] OSVDB ID : 88304 - Disclosed: 2012-12-09

Description:

MuPDF contains an overflow condition in the pdf_repair_obj_stm() function in pdf/pdf_repair.c. The issue is triggered as user-supplied input is not properly sanitized. With a specially crafted PDF file, a context-dependent attacker can cause an integer overflow to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 88305 - Disclosed: 2012-12-09

Description:

SumatraPDF contains an overflow condition in the lex_number() function. The issue is triggered as user-supplied input is not properly sanitized. With a specially crafted PDF file, a context-dependent attacker can cause an integer overflow to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 88307 - Disclosed: 2012-12-09

Description:

Cisco DPC2420 routers contain a flaw that may lead to an unauthorized information disclosure. The issue is due to the device not properly filtering TCP port 8080, which may allow a remote attacker to gain access to the configuration file via calling the proper URL directly.

[CLOSE] OSVDB ID : 88306 - Disclosed: 2012-12-09

Description:

Cisco DPC2420 Router contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified fields upon submission to the RgParentalBasic.asp script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 88455 - Disclosed: 2012-12-09

Description:

Dolphin3D contains a flaw related to the default security setting allowing arbitrary ActiveX controls to be initialized and scripted to, even when not considered safe to instantiate in a browser (e.g. WScript.Shell). This issue may allow a context-dependent attacker to execute arbitrary commands.

[CLOSE] OSVDB ID : 93232 - Disclosed: 2012-12-09

Description:

FFmpeg contains a NULL pointer dereference flaw in the prepare_sdp_description() function in ffserver.c that may allow a denial of service. The issue is triggered during the handling of a specially crafted MKV file. This may allow a context-dependent attacker to crash the program.

[CLOSE] OSVDB ID : 88322 - Disclosed: 2012-12-09

Description:

Nagios Core contains an overflow condition that is triggered as user-supplied input passed via the 'host_name' and 'svc_description' parameters is not properly sanitized in history.cgi. This may allow a remote attacker to cause a stack-based buffer overflow to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 88299 - Disclosed: 2012-12-08

Description:

FFMpeg contains a user-after-free error in libavformat/swfdec.c when releasing a picture object during parsing of Flash content. With a specially crafted SWF file, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 88343 - Disclosed: 2012-12-08

Description:

Centrify DirectManage Deployment Manager contains a flaw that may allow a malicious local user to gain escalated privileges. The issue is due to the program creating temporary files insecurely during an Analyze or Refresh operation. It is possible for a local attacker to use a symlink attack against the centrify.cmd.0 file to cause the program to unexpectedly write to, or overwrite arbitrary files, including /etc/shadow. This would allow for local privilege escalation.

[CLOSE] OSVDB ID : 88302 - Disclosed: 2012-12-08

Description:

FreeFloat FTP Server contains a flaw that is due to the program not properly restricting access when writing files. This may allow a remote attacker to write to arbitrary files on the system.

[CLOSE] OSVDB ID : 88717 - Disclosed: 2012-12-08

Description:

The Japanese version of concrete5 contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 88303 - Disclosed: 2012-12-08

Description:

FreeFloat FTP Server contains a flaw that is due to the program not requiring credentials to login to a user's account. This may allow a remote attacker to bypass authentication.

[CLOSE] OSVDB ID : 88416 - Disclosed: 2012-12-08

Description:

AjaxReg for vBulletin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the ajax.php script not properly sanitizing user-supplied input during username validation. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 91936 - Disclosed: 2012-12-08

Description:

WidgetLocker for Android contains a flaw that is triggered when pressing the home button. This may allow a physically present attacker to bypass the screen lock feature.

[CLOSE] OSVDB ID : 88282 - Disclosed: 2012-12-07

Description:

IBM Flex SystemChassis Management Module (CMM) and Integrated Management Module 2 (IMM2) contains a flaw that may lead to an unauthorized information disclosure. The issue is due to certain activity exposing SNMP and LDAP credentials, which may allow a local attacker to gain access to credential information.

[CLOSE] OSVDB ID : 88281 - Disclosed: 2012-12-07

Description:

OWASP PHP contains a flaw in the PHP CSRF Guard. The issue is triggered when a null session key is passed for a CSRF token. This may allow a remote attacker to bypass the CSRF protection.

[CLOSE] OSVDB ID : 88280 - Disclosed: 2012-12-07

Description:

ExpressionEngine contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'movieName' parameter upon submission to the swfupload_f9.swf script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 88301 - Disclosed: 2012-12-07

Description:

Multiple Rockwell Automation Allen Bradley Controllers contain a flaw that may allow a remote denial of service. The issue is triggered during the handling of specially crafted messages that modify specific bits in status files, which will result in a device fault. This will cause a loss of availability for the device.

[CLOSE] OSVDB ID : 88885 - Disclosed: 2012-12-07

Description:

SamsungDive for Android contains a flaw that is due to the Track my Mobile function location API fails to properly check for integrity. This may allow physically proximate attacker to spoof location data via a 'commonly available simple GPS location spoofer.'

[CLOSE] OSVDB ID : 88884 - Disclosed: 2012-12-07

Description:

AVG AntiVirus for Android contains a flaw in the Anti-theft service. The issue is due to the location API failing to properly check for integrity. This may allow a physically proximate attacker to spoof arbitrary location data via a 'commonly available simple GPS location spoofer'.

[CLOSE] OSVDB ID : 88883 - Disclosed: 2012-12-07

Description:

Lookout for Android contains a flaw in the missing device function. The issue is due to the location API failing to properly check for integrity. This may allow a physically proximate attacker to spoof arbitrary location data via a 'commonly available simple GPS location spoofer'.

[CLOSE] OSVDB ID : 88882 - Disclosed: 2012-12-07

Description:

SamsungDive for Android contains a flaw that may lead to unauthorized disclosure of potentially sensitive information. The issue is due to the Track My Mobile feature showing the activation of remote tracking. This may allow a physically proximate attacker to manipulate location data or disable product-recovery efforts.

[CLOSE] OSVDB ID : 88186 - Disclosed: 2012-12-06

Description:

Kent Web contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input related to tag embedding in an access report. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 88183 - Disclosed: 2012-12-06

Description:

ManageEngine AssetExplorer contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain asset data before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 88182 - Disclosed: 2012-12-06

Description:

Kordil EDMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /kordil/global_group_login.php script not properly sanitizing user-supplied input to the 'Password' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 88278 - Disclosed: 2012-12-06

Description:

Red Hat Certificate System (RHCS) contains a flaw that may allow a local denial of service. The issue is triggered during the handling of an interrupted token format operation, which will result in a NULL pointer being dereferenced. This will cause a loss of availability for the program.

[CLOSE] OSVDB ID : 88277 - Disclosed: 2012-12-06

Description:

Red Hat Certificate System (RHCS) contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs in the token processing system during the handling of a search query with an empty search field. This will result in a temporary loss of connection for the host client.

[CLOSE] OSVDB ID : 88279 - Disclosed: 2012-12-06

Description:

IBM Informix Dynamic Server contains an overflow condition. The issue is triggered as user-supplied input is not properly sanitized to the 'genxmlqueryhdr' and 'genxmlquery' XML functions. With a specially crafted statement, a remote attacker can cause a buffer overflow that leads to a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 90189 - Disclosed: 2012-12-06

Description:

newrelic_rpm Gem for Ruby contains a flaw in the Ruby Agent that may lead to unauthorized disclosure of potentially sensitive information. The issue may cause database connection information and SQL statements to be transmitted to New Relic servers. During this process a remote attacker may be able to gain access to database connection information, which includes database IP addresses, usernames, and password information.

[CLOSE] OSVDB ID : 90541 - Disclosed: 2012-12-06

Description:

Opus contains an integer overflow condition in the 'opus_packet_parse_impl' function [opus_decoder.c] that may result in an out-of-bounds read error when processing an overly large amount of user-supplied input (approx. 16MB). With a specially crafted Opus packet, a context-dependent attacker may crash an application using the decoder.

[CLOSE] OSVDB ID : 88181 - Disclosed: 2012-12-06

Description:

NVIDIA Install Application contains an overflow condition in the AddPackages() function. The issue is triggered as user-supplied input is not properly sanitized when a boundary error occurs in NVI2.dll. With a specially crafted pDirectory value, a remote attacker can cause a buffer overflow to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 88185 - Disclosed: 2012-12-06

Description:

Kent Web contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input related to access log data in an access report. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.