[CLOSE] OSVDB ID : 76929 - Disclosed: 2011-08-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 397 - Disclosed: 1994-01-01

Description:

Web Servers contains a flaw that may allow a remote attacker to upload arbitrary files. The issue is triggered when the HTTP method 'PUT' is allowed. It is possible that the flaw may allow a remote attacker to upload arbitrary files resulting in a loss of integrity.

[CLOSE] OSVDB ID : 23246 - Disclosed: 2006-02-16

Description:

By default, some Kyocera printers install with an default password. The 'admin' account has an empty password, which is publicly known and documented. This allows attackers to trivially access the system.

[CLOSE] OSVDB ID : 35144 - Disclosed: 2007-05-25

Description:

Mac OS X contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the pppd plugin command-line option is used by a local attacker, which does not properly check if the local user has root privileges. This flaw may lead to a loss of integrity.

[CLOSE] OSVDB ID : 63032 - Disclosed: 2010-03-17

Description:

CKForms Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'fid' parameter (when "option" is set to "com_ckforms", "controller" is set to "ckdata", and "layout" is set to "detail"). This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 14988 - Disclosed: 2004-03-26

Description:

XMB Forum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate multiple user supplied arguments upon submission to the forumdisplay.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 55895 - Disclosed: 2009-07-14

Description:

(Description Provided by CVE) : The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; (2) the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6; (3) Mono before 2.4.2.2; (4) XML Security Library before 1.2.12; (5) IBM WebSphere Application Server Versions 6.0 through 6.0.2.33, 6.1 through 6.1.0.23, and 7.0 through 7.0.0.1; (6) Sun JDK and JRE Update 14 and earlier; (7) Microsoft .NET Framework 3.0 through 3.0 SP2, 3.5, and 4.0; and other products uses a parameter that defines an HMAC truncation length (HMACOutputLength) but does not require a minimum for this length, which allows attackers to spoof HMAC-based signatures and bypass authentication by specifying a truncation length with a small number of bits.

[CLOSE] OSVDB ID : 56767 - Disclosed: 2009-08-04

Description:

(Description Provided by CVE) : A certain debugging component in IBM AIX 5.3 and 6.1 does not properly handle the (1) _LIB_INIT_DBG and (2) _LIB_INIT_DBG_FILE environment variables, which allows local users to gain privileges by leveraging a setuid-root program to create an arbitrary root-owned file with world-writable permissions, related to libC.a (aka the XL C++ runtime library) in AIX 5.3 and libc.a in AIX 6.1.

[CLOSE] OSVDB ID : 63031 - Disclosed: 2010-03-17

Description:

CKForms Component for Joomla! contains a flaw that may allow a remote attacker to disclose potentially sensitive information. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../)and URL-encoded NULL bytes, supplied to the 'controller' parameter (when "option" is set to "com_ckforms"). This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 55907 - Disclosed: 2009-07-14

Description:

(Description Provided by CVE) : The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; (2) the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6; (3) Mono before 2.4.2.2; (4) XML Security Library before 1.2.12; (5) IBM WebSphere Application Server Versions 6.0 through 6.0.2.33, 6.1 through 6.1.0.23, and 7.0 through 7.0.0.1; (6) Sun JDK and JRE Update 14 and earlier; (7) Microsoft .NET Framework 3.0 through 3.0 SP2, 3.5, and 4.0; and other products uses a parameter that defines an HMAC truncation length (HMACOutputLength) but does not require a minimum for this length, which allows attackers to spoof HMAC-based signatures and bypass authentication by specifying a truncation length with a small number of bits.

[CLOSE] OSVDB ID : 132 - Disclosed: 1997-10-04

Description:

By default, HP Jet Direct printers install without a password. This lack of password is publicly known and documented. This allows attackers to trivially access the system.

[CLOSE] OSVDB ID : 25257 - Disclosed: 2006-05-04

Description:

Big Webmaster Guestbook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'name', 'mail', 'site', 'city', 'state' and 'country' fields upon submission to the 'addguest.cgi' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 32774 - Disclosed: 2007-03-03

Description:

PHP contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not escape the content of user supplied arrays in GET, POST or COOKIE variables upon submission to phpinfo(). This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 3268 - Disclosed: 1994-01-01

Description:

Directory indexing has been found to be enabled on the web server. While there is no known vulnerability or exploit associated with this, it may reveal sensitive or "hidden" files or directories to remote users, or aid in more focused attacks.

[CLOSE] OSVDB ID : 23596 - Disclosed: 2006-03-02

Description:

Gallery contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'X_FORWARDED_FOR' HTTP header field upon submission to the GalleryUtilities.class script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 13834 - Disclosed: 2005-02-14

Description:

(Description Provided by CVE) : awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to obtain sensitive information by setting the debug parameter.

[CLOSE] OSVDB ID : 630 - Disclosed: 2000-07-13

Description:

Microsoft IIS contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when attempting to access an area protected via basic HTTP authentication without providing realm information, making a request without a host: header, or by trying to access a resource that has been moved (302). This may disclose the internal IP address or network name in the response header resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 12627 - Disclosed: 2004-12-27

Description:

PHProxy contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the error variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 62929 - Disclosed: 2010-03-15

Description:

Ninja RSS Syndicator Component for Joomla!contains a flaw that may allow a remote attacker to disclose potentially sensitive information. The issue is due to the 'components/com_ninjarsssyndicator/ninjarsssyndicator.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'controller' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 22111 - Disclosed: 2005-12-30

Description:

AdesGuestbook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'totalRows_rsRead' variable upon submission to the 'read.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 79640 - Disclosed: 2012-02-20

Description:

OxWall contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'tag' parameter upon submission to the '/blogs/browse-by-tag' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 61697 - Disclosed: 2010-01-15

Description:

Internet Explorer contains a flaw that may allow a context-dependent attacker to execute arbitrary code. The issue is triggered when a specially crafted website causes mshtml.dll to access memory that has been freed, allowing code execution.

[CLOSE] OSVDB ID : 27110 - Disclosed: 2006-07-17

Description:

Internet Explorer contains a flaw that may allow a remote denial of service. The issue is triggered when calling the 'setSlice' method of the WebViewFolderIcon.WebViewFolderIcon.1 ActiveX object with the first parameter set to 0x7fffffff. This causes an invalid memory copy and may result in arbitrary code execution and/or a loss of availability for the browser.

[CLOSE] OSVDB ID : 3093 - Disclosed: 1994-01-01

Description:

A potentially dangerous file was found on the web server. While there is no known vulnerability or exploit associated with this file, it has been found in logs after web servers have come under attack from unknown sources and software. This may indicate the presence of an undisclosed vulnerability that is being exploited in the wild.

[CLOSE] OSVDB ID : 27920 - Disclosed: 2006-01-18

Description:

XMB contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate data posted in the forum. Especially the <IMG SRC> tag. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 5646 - Disclosed: 1994-01-01

Description:

Web Servers support the DELETE HTTP method. If enabled, a remote client may have the ability to delete objects from the web server. This could allow an arbitrary user to alter web site content causing a loss of integrity or availability.

[CLOSE] OSVDB ID : 57799 - Disclosed: 2009-09-08

Description:

Microsoft Windows contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a malicious user sends a specially crafted NEGOTIATE PROTOCOL REQUEST SMBv2 packet with an & (ampersand) character in a Process ID High header field, causing an attempted dereference of an out-of-bounds memory location. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 22297 - Disclosed: 2006-01-09

Description:

VenomBoard contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the add_post.php3 script not properly sanitizing user-supplied input to the 'topic_id', 'root' and 'parent' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 3601 - Disclosed: 2003-09-09

Description:

b2evolution contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "s" variable in the noskin_a.php module is not verified properly and will allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 60980 - Disclosed: 2009-12-15

Description:

Acrobat and Reader contain a flaw that may allow an attacker to execute arbitrary code. The issue is triggered by a use-after-free condition in Doc.media.newPlayer when parsing a specially crafted PDF file.

[CLOSE] OSVDB ID : 28068 - Disclosed: 2006-08-21

Description:

Guestbook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'page' form field parameter upon submission to the gbook.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 3604 - Disclosed: 2003-09-09

Description:

b2evolution contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "s" variable upon submission to the noskin_all.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 2526 - Disclosed: 2003-09-09

Description:

b2evolution contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "s" variable upon submission to the noskin_a.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 62810 - Disclosed: 2010-03-09

Description:

Microsoft Windows Internet Explorer contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when an attacker utilizes a remote memory-corruption vulnerability in Internet Explorer by inserting malicious code into a site and when Internet Explorer attempts to parse the attack page, the remote attacker to gain privileges of the currently logged-in user viewing the malicious site.

[CLOSE] OSVDB ID : 18695 - Disclosed: 2005-08-12

Description:

Veritas Backup Exec for Windows Servers contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote user sends a CONNECT_CLIENT_AUTH request with a hardcoded password value to trigger the flaw. If successful, the flaw will disclose arbitrary files that are accessible via the Windows system account, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 42518 - Disclosed: 2008-03-04

Description:

Juniper Networks Secure Access 2000 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'delivery_mode' variables upon submission to the 'dana-na/auth/rdremediate.cgi' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56387 - Disclosed: 1996-11-01

Description:

Secure Sockets Layer (SSL) version 2 (v2) has been found to contain several weaknesses. Depending on the time and resources of an attacker, any communication protected by SSLv2 may be vulnerable to Man-in-The-Middle (MiTM) attacks that could allow data tampering or disclosure. SSLv2 flaws in summary: - SSL encrypted web requests traffic analysis can disclose which pages were downloaded, length of data downloaded, what web servers were accessed and more. This requires sniffing or physical access and is considered a passive attack. - Bellovin cut-and-paste attack. This requires sniffing and MiTM manipulation and is considered an active attack. - Bellovin short-block attack. This requires sniffing and MiTM manipulation and is considered an active attack. - Insecure MAC use post-encryption. This is considered a design flaw weakness. - Horton Principle failure. This requires sniffing and MiTM manipulation and is considered an active attack. - Ciphersuite rollback attack. This requires sniffing and MiTM manipulation. - Diffie-hellman Key-exchange MiTM attack. - 40-bit MAC use. This is considered a design flaw weakness.

[CLOSE] OSVDB ID : 3606 - Disclosed: 2003-09-09

Description:

b2evolution contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "s" variable upon submission to the noskin_b.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 25211 - Disclosed: 2006-04-20

Description:

WebSense contains a flaw that may allow a malicious user to bypass URL filtering policies. The issue is triggered when appending a '/?' to the end of a URL which is part of the 'uncategorized' WebSense category, and will allow the user to bypass any restrictions set on 'uncategorized' websites, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 875 - Disclosed: 1998-03-19

Description:

WarFTPD contains a flaw that allows a remote attacker execute arbitrary code. The issue is due to improper bounds checking for the USER and PASS commands. If an attacker supplies a specially crafted request they may be able to overflow the buffer and execute arbitrary code with the same privileges as the server.