[CLOSE] OSVDB ID : 28068 - Disclosed: 2006-08-21

Description:

Guestbook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'page' form field parameter upon submission to the gbook.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 94328 - Disclosed: 2013-06-18

Description:

HAProxy contains a flaw that may allow a remote denial of service. The issue is triggered when the program does not account for wrapping with a negative number when handling an incoming header field. This may allow a remote attacker to crash the program.

[CLOSE] OSVDB ID : 94324 - Disclosed: 2013-06-15

Description:

WHMPHP contains a flaw that is due to the program failing to properly restrict access to the /admin/changepwd.php script. This may allow a remote unauthenticated attacker to change the administrative password.

[CLOSE] OSVDB ID : 94236 - Disclosed: 2013-06-07

Description:

X.Org xdm contains a flaw in the crypt() function that may allow a remote denial of service. The issue is due to a NULL pointer dereference, which may allow a remote attacker to crash the program.

[CLOSE] OSVDB ID : 94124 - Disclosed: 2013-06-11

Description:

Microsoft Windows Kernel contains a flaw that may lead to the unauthorized disclosure of sensitive information. The issue is triggered during the handling of page fault system calls. This may allow a local attacker to gain access to potentially sensitive information related to kernel addresses.

[CLOSE] OSVDB ID : 93645 - Disclosed: 2013-05-23

Description:

Apache Struts contains a flaw that may allow an attacker to execute arbitrary commands. The issue is due to the handling of the includeParams attribute in the URL and Anchor tags. With a specially crafted request parameter, an attacker could inject arbitrary OGNL code that would be evaluated. In addition, a second evaluation of attacker supplied input can occur when the URL or Anchor tag tries to resolve arbitrary parameters, that would be evaluated as an OGNL expression.

[CLOSE] OSVDB ID : 90734 - Disclosed: 2013-02-27

Description:

By default, XEROX WorkCentre installs with default user credentials (username/password combination) for the web console. The 'admin' account has a password of '1111', which is publicly known and documented. This allows remote attackers to trivially access the program or system and gain privileged access.

[CLOSE] OSVDB ID : 56387 - Disclosed: 1996-11-01

Description:

Secure Sockets Layer (SSL) version 2 (v2) has been found to contain several weaknesses. Depending on the time and resources of an attacker, any communication protected by SSLv2 may be vulnerable to Man-in-The-Middle (MiTM) attacks that could allow data tampering or disclosure. SSLv2 flaws in summary: - SSL encrypted web requests traffic analysis can disclose which pages were downloaded, length of data downloaded, what web servers were accessed and more. This requires sniffing or physical access and is considered a passive attack. - Bellovin cut-and-paste attack. This requires sniffing and MiTM manipulation and is considered an active attack. - Bellovin short-block attack. This requires sniffing and MiTM manipulation and is considered an active attack. - Insecure MAC use post-encryption. This is considered a design flaw weakness. - Horton Principle failure. This requires sniffing and MiTM manipulation and is considered an active attack. - Ciphersuite rollback attack. This requires sniffing and MiTM manipulation. - Diffie-hellman Key-exchange MiTM attack. - 40-bit MAC use. This is considered a design flaw weakness.

[CLOSE] OSVDB ID : 12246 - Disclosed: 2004-12-02

Description:

Advanced Guestbook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the entry variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 94157 - Disclosed: 2013-06-07

Description:

PHP Ticket System contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into changing a user's password in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 94016 - Disclosed: 2013-06-05

Description:

IBM AIX contains a flaw that leads to unauthorized privileges being gained. The issue is triggered during the handling of the arp.ib command. This may allow a local attacker to gain elevated privileges.

[CLOSE] OSVDB ID : 67535 - Disclosed: 2010-08-25

Description:

Microsoft Windows Progman Group Converter (grpconv.exe) is prone to a flaw in the way it loads dynamic-link libraries (e.g., imm.dll). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a .grp file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

[CLOSE] OSVDB ID : 32840 - Disclosed: 2007-01-16

Description:

Indexu contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'error_msg' variable upon submission to the suggest_category.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 94142 - Disclosed: 2013-06-07

Description:

RuubikCMS contains a flaw that allows a persistent cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'name' parameter upon submission to the index.php script. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 50194 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'cloud.php' script not properly sanitizing user-supplied input to the 'categoryID' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 2946 - Disclosed: 2003-10-21

Description:

Web Wiz Forums contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "find" variable upon submission to the forum_members.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 25600 - Disclosed: 2006-05-08

Description:

A remote overflow exists in Mac OS X Server. The Quicktime Streaming Server fails to validate RTSP requests resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 18293 - Disclosed: 2005-07-15

Description:

By default, many Belkin 54G wireless routers using a default ssid of "belkin54g" are preconfigured with a default password. The "admin" account has a null password which is publicly known and documented. This allows attackers to trivially access the program or system as the routers come preconfigured with remote telnet access enabled.

[CLOSE] OSVDB ID : 94172 - Disclosed: 2013-06-06

Description:

FFmpeg contains a NULL pointer dereference flaw in the jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c that may allow a context-dependent attacker to cause a denial of service. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 94126 - Disclosed: 2013-06-11

Description:

Microsoft Windows contains a flaw in the Print Spooler that leads to unauthorized privileges being gained. The issue is triggered during the handling of memory when a printer has been deleted. This may allow a local attacker to gain elevated privileges.

[CLOSE] OSVDB ID : 94013 - Disclosed: 2013-06-05

Description:

CTERA Portal contains a flaw that may allow a remote attacker to bypass the account lock mechanism. By using the WEBDAV authentication, the system does not count failed logins toward the lockout threshold.

[CLOSE] OSVDB ID : 94011 - Disclosed: 2013-06-05

Description:

CTERA Portal contains a flaw that allows a persistent cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via a file name before returning it to the user. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 94012 - Disclosed: 2013-06-05

Description:

CTERA Portal contains an XXE (Xml eXternal Entity) injection flaw that is triggered during the parsing of XML data. The issue is due to an incorrectly configured XML parser accepting XML external entities from an untrusted source. By sending specially crafted XML data, a remote attacker can gain access to arbitrary files.

[CLOSE] OSVDB ID : 94010 - Disclosed: 2013-06-03

Description:

JBoss Application Server contains a flaw that may lead to the unauthorized disclosure of sensitive information. The issue is due to datasources in the resources section transmitting password information as cleartext. This may allow a remote attacker that is sniffing a user's traffic to gain access to password information.

[CLOSE] OSVDB ID : 93977 - Disclosed: 2013-06-05

Description:

QNAP VioStor NVR and NAS contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'ping_ip' parameter upon submission to the /cgi-bin/pingping.cgi script. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 93972 - Disclosed: 2013-05-31

Description:

IBM Tivoli Netcool System Service Monitor (SSM) and Application Service Monitor (ASM contain an overflow condition in the Transaction MIB agent. The issue is triggered as user-supplied input is not properly validated by certain packet decoders during the handling of a malformed SQL table name that is larger than 255 characters. This may allow a remote attacker to cause a buffer overflow, resulting in a denial of service. With a specially crafted transaction that is read by the Transaction MIB sub agent, the attacker can potentially further utilize this vulnerability to execute arbitrary code.

[CLOSE] OSVDB ID : 93754 - Disclosed: 2013-05-30

Description:

Synactis PDF In-The-Box contains an overflow condition in the PDF In-The-Box ActiveX control (PDF_In_The_Box.ocx). The issue is triggered as the aPageRef argument is not properly validated when passed via the ConnectToSynactis() method. With a specially crafted overly long string, a context-dependent attacker can cause a stack-based buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code.

[CLOSE] OSVDB ID : 49243 - Disclosed: 2008-10-23

Description:

Microsoft Windows Server Service contains a flaw that may allow a malicious user to remotely execute arbitrary code. The issue is triggered when a crafted RPC request is handled. It is possible that the flaw may allow remote code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 94331 - Disclosed: 2013-06-15

Description:

TaxiMonger for Android contains a flaw that allows a persistent cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the 'Username' field in the registration module. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 94310 - Disclosed: 2010-02-08

Description:

EC-CUBE contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'email' and 'tel01' fields upon submission to the LC_Page_Contact.php script. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 94112 - Disclosed: 2013-06-11

Description:

Microsoft Internet Explorer contains an unspecified flaw that is triggered as user-supplied input is not properly sanitized. This may allow a context-dependent attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 94106 - Disclosed: 2013-06-11

Description:

Microsoft Internet Explorer contains an unspecified flaw that is triggered as user-supplied input is not properly sanitized. This may allow a context-dependent attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93995 - Disclosed: 2013-01-11

Description:

FFmpeg and Libav contain a NULL pointer dereference in the decode_frame function in libavcodec/h264.c. This issue may allow a context-dependent attacker to crash the program.

[CLOSE] OSVDB ID : 93282 - Disclosed: 2013-05-13

Description:

nginx contains a flaw when proxy_pass is used that may lead to unauthorized disclosure of sensitive information. The issue is triggered during the handling of a specially crafted response from an upstream proxied server. This may allow a remote attacker to gain access to worker process memory or potentially cause a denial of service.

[CLOSE] OSVDB ID : 94326 - Disclosed: 2013-06-16

Description:

SPBAS Business Automation Software contains a flaw that allows a persistent cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the 'first name', 'last name', and 'security question' fields in the client info section. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 94175 - Disclosed: 2013-06-07

Description:

FFmpeg contains an unspecified out-of-bounds read flaw in the tiff_unpack_strip function in libavcodec/tiff.c that may allow a context-dependent attacker to have an unspecified impact. No further detail have been provided by the vendor.

[CLOSE] OSVDB ID : 94153 - Disclosed: 2013-04-18

Description:

IBM Informix Dynamic Server contains a flaw that is triggered as user-supplied input is not properly sanitized when re-using prepared statements that contain multisets. This may allow a remote attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 94145 - Disclosed: 2013-06-07

Description:

RuubikCMS contains a flaw that allows a persistent cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'firstname' and 'lastname' parameters upon submission to the users.php script. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 94143 - Disclosed: 2013-06-07

Description:

RuubikCMS contains a flaw that allows a persistent cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'name' parameter upon submission to the extranet.php script. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 94113 - Disclosed: 2013-06-11

Description:

Microsoft Internet Explorer contains an unspecified flaw that is triggered as user-supplied input is not properly sanitized. This may allow a context-dependent attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code.