[CLOSE] OSVDB ID : 41723 - Disclosed: 2007-07-29

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in MKPortal 1.1.1 allow remote attackers to execute arbitrary SQL commands via (1) the idurlo field in the delete_urlo function in (a) index.php in the urlobox module; the iden field in the (2) update_file and (3) del_file functions in (b) index.php in the reviews module; the (4) idnews field in the delete_news function and the (5) idcomm field in the del_comment function in (c) index.php in the news module; the (6) idcomm field in the delete_comments function in (d) index.php in the gallery module; the iden field in the (7) edit_file, (8) update_file, and (9) del_file functions in index.php in the gallery module; the (10) ide and (11) cat fields in the slide_update function in index.php in the gallery module; the iden field in the (12) update_file and (13) del_file functions in (d) index.php in the downloads module; and other unspecified vectors.

[CLOSE] OSVDB ID : 41722 - Disclosed: 2007-07-29

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in MKPortal 1.1.1 allow remote attackers to execute arbitrary SQL commands via (1) the idurlo field in the delete_urlo function in (a) index.php in the urlobox module; the iden field in the (2) update_file and (3) del_file functions in (b) index.php in the reviews module; the (4) idnews field in the delete_news function and the (5) idcomm field in the del_comment function in (c) index.php in the news module; the (6) idcomm field in the delete_comments function in (d) index.php in the gallery module; the iden field in the (7) edit_file, (8) update_file, and (9) del_file functions in index.php in the gallery module; the (10) ide and (11) cat fields in the slide_update function in index.php in the gallery module; the iden field in the (12) update_file and (13) del_file functions in (d) index.php in the downloads module; and other unspecified vectors.

[CLOSE] OSVDB ID : 41731 - Disclosed: 2007-05-05

Description:

(Description Provided by CVE) : Directory traversal vulnerability in index.php in Archangel Weblog 0.90.02 allows remote attackers to read arbitrary files via a .. (dot dot) in the index parameter.

[CLOSE] OSVDB ID : 41728 - Disclosed: 2007-10-10

Description:

(Description Provided by CVE) : Unspecified vulnerability in HP Select Identity 4.01 through 4.01.010 and 4.10 through 4.13.001 allows remote attackers to obtain unspecified access via unknown vectors.

[CLOSE] OSVDB ID : 41727 - Disclosed: 2007-06-11

Description:

(Description Provided by CVE) : Visual truncation vulnerability in Windows Privacy Tray (WinPT) 1.2.0 allows user-assisted remote attackers to install a key listed under the wrong user ID, and possibly cause the user to encrypt a victim's correspondence with this attacker-supplied key, via a key ID composed of the attacker's user ID, space characters, an invalid WinPT message, additional space characters, and the victim's user ID.

[CLOSE] OSVDB ID : 33657 - Disclosed: 2006-10-19

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in index.php in FreeFAQ 1.0.e allows remote attackers to execute arbitrary PHP code via a URL in the faqpath parameter.

[CLOSE] OSVDB ID : 41710 - Disclosed: 2008-01-15

Description:

(Description Provided by CVE) : Directory traversal vulnerability in Edit.jsp in JSPWiki 2.4.104 and 2.5.139 allows remote attackers to include and execute arbitrary local .jsp files, and obtain sensitive information, via a .. (dot dot) in the editor parameter.

[CLOSE] OSVDB ID : 41709 - Disclosed: 2008-01-15

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Edit.jsp in JSPWiki 2.4.104 and 2.5.139 allows remote attackers to inject arbitrary web script or HTML via the editor parameter, a different vector than CVE-2007-5120.b.

[CLOSE] OSVDB ID : 18152 - Disclosed: 2005-07-15

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 38922 - Disclosed: 2007-10-23

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in upload.php in SeeBlick 1.0 Beta allows remote attackers to upload arbitrary files via unspecified vectors. NOTE: these files are stored with .html extensions, so the scope of the attack might be limited to resource consumption and possibly XSS.

[CLOSE] OSVDB ID : 41163 - Disclosed: 2008-01-22

Description:

(Description Provided by CVE) : Multiple buffer overflows in IBM AIX 4.3 allow remote attackers to cause a denial of service (crash) or possibly gain privileges via a long argument to (1) piox25, related to piox25.c; or (2) piox25remote, related to piox25remote.sh.

[CLOSE] OSVDB ID : 28947 - Disclosed: 2006-09-17

Description:

(Description Provided by CVE) : SQL injection vulnerability in faqview.asp in Techno Dreams FAQ Manager Package 1.0 allows remote attackers to execute arbitrary SQL commands via the key parameter.

[CLOSE] OSVDB ID : 27208 - Disclosed: 2006-03-30

Description:

(Description Provided by CVE) : Unspecified versions of Mozilla Firefox allow remote attackers to cause a denial of service (crash) via a web page that contains a large number of nested marquee tags. NOTE: a followup post indicated that the initial report could not be verified.

[CLOSE] OSVDB ID : 4169 - Disclosed: 2004-03-09

Description:

(Description Provided by CVE) : Microsoft MSN Messenger 6.0 and 6.1 does not properly handle certain requests, which allows remote attackers to read arbitrary files.

[CLOSE] OSVDB ID : 34741 - Disclosed: 2007-04-25

Description:

(Description Provided by CVE) : The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service (kernel panic) via NETLINK_FIB_LOOKUP replies, which trigger infinite recursion and a stack overflow.

[CLOSE] OSVDB ID : 25118 - Disclosed: 2005-07-16

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 24071 - Disclosed: 2006-03-04

Description:

(Description Provided by CVE) : net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c in 2.6, does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the getsockopt function with SO_ORIGINAL_DST, which allows local users to obtain portions of potentially sensitive memory.

[CLOSE] OSVDB ID : 22993 - Disclosed: 2006-02-07

Description:

(Description Provided by CVE) : Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ICMP response in icmp_send, does not properly handle when the ip_options_echo function in icmp.c fails, which allows remote attackers to cause a denial of service (crash) via vectors such as (1) record-route and (2) timestamp IP options with the needaddr bit set and a truncated value.

[CLOSE] OSVDB ID : 31752 - Disclosed: 2006-11-24

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in cPanel WebHost Manager (WHM) 3.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the (1) email parameter to (a) scripts2/dochangeemail, the (2) supporturl parameter to (b) cgi/addon_configsupport.cgi, the (3) pkg parameter to (c) scripts/editpkg, the (4) domain parameter to (d) scripts2/domts2 and (e) scripts/editzone, the (5) feature parameter to (g) scripts2/dofeaturemanager, and the (6) ndomain parameter to (h) scripts/park.

[CLOSE] OSVDB ID : 37333 - Disclosed: 2007-08-20

Description:

(Description Provided by CVE) : sudo, when linked with MIT Kerberos 5 (krb5), does not properly check whether a user can currently authenticate to Kerberos, which allows local users to gain privileges, in a manner unintended by the sudo security model, via certain KRB5_ environment variable settings. NOTE: another researcher disputes this vulnerability, stating that the attacker must be "a user, who can already log into your system, and can already use sudo."

[CLOSE] OSVDB ID : 35458 - Disclosed: 2007-03-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in inc/lang.php in sBLOG 0.7.3 Beta allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the conf_lang_default parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by inc/lang.php.

[CLOSE] OSVDB ID : 4095 - Disclosed: 2003-07-11

Description:

EFTP contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a local user accesses the eftp3server.ini file, which will disclose the web administrator's password, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 17221 - Disclosed: 2005-06-08

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Loki download manager 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) password field to default.asp or (2) cat parameter to catinfo.asp.

[CLOSE] OSVDB ID : 10607 - Disclosed: 1999-03-08

Description:

(Description Provided by CVE) : Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows to change its routing tables.

[CLOSE] OSVDB ID : 7856 - Disclosed: 2001-11-19

Description:

(Description Provided by CVE) : Internet Explorer 5.5 and 6 with the Q312461 (MS01-055) patch modifies the HTTP_USER_AGENT (UserAgent) information that indicates that the patch has been installed, which could allow remote malicious web sites to more easily identify and exploit vulnerable clients.

[CLOSE] OSVDB ID : 9738 - Disclosed: 2004-07-14

Description:

Multiple ftpd contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered due to improper signal handler operations. By providing a ABOR command during an established FTP session, a remote attacker could gain access to unauthorized privileges, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 9737 - Disclosed: 2004-07-14

Description:

Multiple ftpd contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered due to improper signal handler operations. By sending a SIGURG signal over a TCP stream (OOB message) during libc function calls, a remote attacker could gain access to unauthorized privileges, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 4201 - Disclosed: 2004-01-27

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 15211 - Disclosed: 2004-06-16

Description:

Cisco IOS, when the routing protocol BGP is enabled, contains a flaw that may allow a remote denial of service. The issue is triggered when a malformed BGP OPEN or UPDATE message is sent, and will result in loss of availability for the platform, including possible reload times of several minutes per instance.

[CLOSE] OSVDB ID : 3452 - Disclosed: 2004-01-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 4020 - Disclosed: 2004-02-23

Description:

LiveJournal contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the URI pointing to an image upon submission to the LiveJournal style sheet. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 40523 - Disclosed: 2007-03-15

Description:

(Description Provided by CVE) : The ewirePC_Decrypt function in ewirepcfunctions.php in eWire Payment Client (ePC) 1.60 and 1.70 allows remote attackers to execute arbitrary commands via shell metacharacters in the paymentinfo parameter to simplePHPLinux/3payment_receive.php.

[CLOSE] OSVDB ID : 3039 - Disclosed: 2003-12-11

Description:

Multiple Remote overflow vulnerabilities exist in Sybase SQL Anywhere 9.0.0. The server fails to do bounds checking in multiple functions resulting in multiple types of overflow. With a specially crafted request, an attacker can cause arbitrary code to be executed resulting in a loss of confidentiality, integrity, and/or availability

[CLOSE] OSVDB ID : 40710 - Disclosed: 2007-10-27

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in GoSamba 1.0.1 allow remote attackers to execute arbitrary PHP code via a URL in the include_path parameter to (1) HTML_oben.php, (2) inc_freigabe.php, (3) inc_freigabe1.php, or (4) inc_freigabe3.php in include/; (5) inc_group.php; (6) inc_manager.php; (7) inc_newgroup.php; (8) inc_smb_conf.php; (9) inc_user.php; or (10) main.php.

[CLOSE] OSVDB ID : 4424 - Disclosed: 2000-08-15

Description:

Check Point FireWall-1 contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker attempts to authenticate to the firewall. The session agent will return different error messages for valid verse invalid user names. This allows a remote attacker to quickly verify the existance of a valid account, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 14339 - Disclosed: 2002-02-09

Description:

(Description Provided by CVE) : Buffer overflow in InstantServers MiniPortal 1.1.5 and earlier allows remote attackers to execute arbitrary code via a long login name, which is not properly handled by the logging utility.

[CLOSE] OSVDB ID : 40727 - Disclosed: 2007-12-17

Description:

Mac OS X contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when Quick Look is used to preview an HTML file, and plugins are not restricted from making network requests, which will disclose information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 18974 - Disclosed: 2005-08-24

Description:

(Description Provided by CVE) : SQL injection vulnerability in auth.php in PaFileDB 3.1, when authmethod is set to cookies, allows remote attackers to execute arbitrary SQL commands via the username value in the pafiledbcookie cookie.

[CLOSE] OSVDB ID : 18471 - Disclosed: 2005-07-27

Description:

(Description Provided by CVE) : Linksys WRT54G router uses the same private key and certificate for every router, which allows remote attackers to sniff the SSL connection and obtain sensitive information.

[CLOSE] OSVDB ID : 8413 - Disclosed: 2001-03-06

Description:

Unknown / Incomplete