[CLOSE] OSVDB ID : 34324 - Disclosed: 2007-04-16

Description:

A remote overflow exists in the Download Manager Active X Control. With a specially crafted request, an attacker can execute arbitrary code in the trust relationship between the client and the browser, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 25252 - Disclosed: 2006-05-04

Description:

Invision Community Blog contains a flaw that can be exploited when one has moderator ability access. No further details have been provided.

[CLOSE] OSVDB ID : 38756 - Disclosed: 2007-07-23

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.13 (aka Sunglow) allow remote attackers to inject arbitrary web script or HTML via unspecified vectors in the (1) com_search, (2) com_content, and (3) mod_login components. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 33877 - Disclosed: 2007-05-07

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in picture.php in Advanced Guestbook 2.4.2 allows remote attackers to inject arbitrary web script or HTML via the picture parameter.

[CLOSE] OSVDB ID : 12580 - Disclosed: 2004-12-24

Description:

Zeroboard contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to outlogin.php not properly sanitizing user input supplied to the _zb_path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 27532 - Disclosed: 2006-07-29

Description:

Internet Explorer contains a flaw that may allow a local denial of service. The issue is triggered when opening a web page containing a script which calls the 'ADODB.Recordset' ActiveX object's 'NextRecordset' method several times with a long argument. This will result in an invalid memory access causing the browser to crash.

[CLOSE] OSVDB ID : 53632 - Disclosed: 2009-04-14

Description:

(Description Provided by CVE) : Use-after-free vulnerability in DirectShow in Microsoft DirectX 8.1 and 9.0 allows remote attackers to execute arbitrary code via an MJPEG file or video stream with a malformed Huffman table, which triggers an exception that frees heap memory that is later accessed, aka "MJPEG Decompression Vulnerability."

[CLOSE] OSVDB ID : 36357 - Disclosed: 2007-08-06

Description:

By default, Infrant ReadyNAS RAIDiator boots with a default root password. This password is generated by a known algorithm using MAC Address, software version, and shared secret. With this knowledge, an attacker can easily guess the default password and access all data remotely on a ReadyNAS.

[CLOSE] OSVDB ID : 27120 - Disclosed: 2006-07-17

Description:

Linux kernel contains a flaw that may allow local users to gain root privileges by using prctl with PR_SET_DUMPABLE in a way that causes /proc/self/environ to become setuid root. The issue is triggered by a race condition occurs in '/proc' when changing file status. This flaw may lead to a loss of integrity.

[CLOSE] OSVDB ID : 4355 - Disclosed: 2004-03-18

Description:

Internet Security Systems' Protocol Analysis Module (PAM) contains a flaw that allows a remote attacker to execute arbitrary code. The issue is due to a series of stack based buffer overflows in the module that monitors ICQ server responses. If an attacker sends a specially crafted UDP packet that originates with a source port of 4000, they may be able to execute arbitrary code.

[CLOSE] OSVDB ID : 34362 - Disclosed: 2007-05-07

Description:

Advanced Guestbook contains a flaw that allows a remote attacker to execute an arbitrary php script on the target server. The issue is due to index.php not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'lang' variable supplied via cookies.

[CLOSE] OSVDB ID : 67988 - Disclosed: 2010-09-14

Description:

Windows contains a flaw that may allow a remote attacker to execute arbitrary code. The issue is triggered by a flaw in the Print Spooler service, which fails to restrict access to print spoolers via RPC.

[CLOSE] OSVDB ID : 56909 - Disclosed: 2009-08-11

Description:

(Description Provided by CVE) : Integer overflow in Avifil32.dll in the Windows Media file handling functionality in Microsoft Windows allows remote attackers to execute arbitrary code on a Windows 2000 SP4 system via a crafted AVI file, or cause a denial of service on a Windows XP SP2 or SP3, Server 2003 SP2, Vista Gold, SP1, or SP2, or Server 2008 Gold or SP2 system via a crafted AVI file, aka "AVI Integer Overflow Vulnerability."

[CLOSE] OSVDB ID : 32200 - Disclosed: 2006-09-13

Description:

SignKorn Guestbook contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the includes/functions.gb.php script not properly sanitizing user input supplied to the 'dir_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 45029 - Disclosed: 2008-05-13

Description:

(Description Provided by CVE) : OpenSSL 0.9.8c-1 up to versions before 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers, which makes it easier for remote attackers to conduct brute force guessing attacks against cryptographic keys.

[CLOSE] OSVDB ID : 20978 - Disclosed: 2005-11-21

Description:

The Google Search Appliance contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate user input when returning with an error page. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 429 - Disclosed: 2001-04-11

Description:

(Description Provided by CVE) : Alcatel Speed Touch ADSL modem running firmware KHDSAA.108, KHDSAA.132, KHDSBA.133, and KHDSAA.134 has a blank default password, which allows remote attackers to gain unauthorized access.

[CLOSE] OSVDB ID : 60018 - Disclosed: 2009-08-31

Description:

osCommerce Online Merchant contains a flaw in file_manager.php that may allow an unauthenticated attacker to upload, download and edit files, leading to arbitrary code execution as the web server user.

[CLOSE] OSVDB ID : 16016 - Disclosed: 2002-05-28

Description:

(Description Provided by CVE) : Buffer overflows in Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary code via a ymsgr URI with long arguments to (1) call, (2) sendim, (3) getimv, (4) chat, (5) addview, or (6) addfriend.

[CLOSE] OSVDB ID : 17082 - Disclosed: 1994-02-01

Description:

AIX Performance Tools contain a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the 'tprof' utility is run with the '-x' parameter. Command arguments supplied to this parameter are run with the same privileges as 'tprof' (SUID root by default), allowing arbitrary privileged command execution.

[CLOSE] OSVDB ID : 8123 - Disclosed: 2004-06-20

Description:

aMSN contains a flaw that may lead to an unauthorized password hash exposure. It is possible to gain access to password hashes when a local user opens the 'hotlog.htm' file.

[CLOSE] OSVDB ID : 67849 - Disclosed: 2010-09-07

Description:

Acrobat and Reader are prone to an overflow condition. The application fails to properly sanitize the "uniqueName" field within the SING table structure of TrueType fonts resulting in a stack buffer overflow. With a specially crafted file, a context-dependent attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 51152 - Disclosed: 2009-01-05

Description:

(Description Provided by CVE) : Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name.

[CLOSE] OSVDB ID : 6301 - Disclosed: 2004-05-19

Description:

A remote overflow exists in Subversion. The Subversion fails to check the boundary when calling sscanf() to decode old-styled date strings. By sending a specially crafted request via a DAV2 REPORT query or get-dated-rev svn-protocol command, a remote attacker can cause a buffer overflow and execute arbitrary code, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 14003 - Disclosed: 2005-02-20

Description:

A remote overflow exists in PuTTY. The 'sftp_pkt_getstring()' function fails to perform proper bounds checking resulting in an integer overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 54934 - Disclosed: 2009-06-09

Description:

(Description Provided by CVE) : The Windows Print Spooler in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows remote authenticated users to gain privileges via a crafted RPC message that triggers loading of a DLL file from an arbitrary directory, aka "Print Spooler Load Library Vulnerability."

[CLOSE] OSVDB ID : 238 - Disclosed: 1994-01-01

Description:

Many web servers contain a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when an administrator uses explicitly granular directives within the robots.txt file, which may disclose sensitive documents or directories. This may allow an attacker to gain knowledge of the sensitive information and use it to gain access.

[CLOSE] OSVDB ID : 22290 - Disclosed: 2006-01-09

Description:

ADOdb contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the server.php script not properly sanitizing user-supplied input to the 'sql' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 55844 - Disclosed: 2009-07-14

Description:

MS Windows DirectDraw contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when Internet Explorer renders a malicious web page. It is possible that the flaw may allow remote code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 60972 - Disclosed: 2009-12-14

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 3726 - Disclosed: 2004-01-27

Description:

WebLogic Server and Express contain a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate HTTP TRACE requests upon submission to the server. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 15757 - Disclosed: 2000-07-10

Description:

By default, Microsoft SQL Server installs with a default password. The 'sa' account has a null password which is publicly known and documented. This allows remote attackers to trivially access the program or system.

[CLOSE] OSVDB ID : 19141 - Disclosed: 2005-09-01

Description:

OpenSSH contains a flaw that may allow a remote user to gain elevated privileges. The issue occurs when GSSAPIDelegateCredentials is enabled and may delegate GSSAPI credentials to arbitrary users that authenticate using non-GSSAPI methods.

[CLOSE] OSVDB ID : 54957 - Disclosed: 2009-06-10

Description:

Microsoft Office Excel is prone to an overflow condition. The program fails to properly sanitize user-supplied input when parsing SST records, resulting in an integer overflow. With a specially crafted Excel file, a context-dependent attacker can potentially execute arbitrary code on a user's system.

[CLOSE] OSVDB ID : 21987 - Disclosed: 2005-12-27

Description:

A code execution flaw exists in Windows. Shimgvw.dll fails to validate WMF files resulting in code execution via the SETABORTPROC function. With a specially crafted file, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 50617 - Disclosed: 2002-09-27

Description:

Citrix contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when when a client makes a request on port 1604/udp to the Citrix server. This causes the server to disclose a list of Published Applications (PA) on the Citrix server. The PA enumeration could help an attacker to further attack the server using vulnerabilities in how Citrix handles .ICA files.

[CLOSE] OSVDB ID : 805 - Disclosed: 2001-04-04

Description:

A remote overflow exists in the Network Time Protocol Daemon (ntpd). The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request, containing an overly long 'readvar' argument a remote attacker can gain access to root privileges resulting in a loss of integrity.

[CLOSE] OSVDB ID : 63345 - Disclosed: 2010-03-31

Description:

DW Graph Component for Joomla! contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../)and URL-encoded NULL bytes, supplied to the 'controller' parameter (when "option" is set to "com_dwgraphs") . This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 30498 - Disclosed: 2006-11-16

Description:

(Description Provided by CVE) : Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers.

[CLOSE] OSVDB ID : 299 - Disclosed: 1999-07-14

Description:

Windows provides a very simple interface for sharing folders and printers via NetBIOS shares, but the permissions are frequently very open, sometimes granting full access to everyone. If the permissions are not audited, it is possible that any member of the network could gain full access to files and printers shared via NetBIOS.