[CLOSE] OSVDB ID : 93451 - Disclosed: 2013-05-16

Description:

libvirt contains a flaw in the storage pool manager that may allow a remote denial of service. The issue is triggered when handling a socket file description when the 'to list all volumes for the particular pool' request was issued. This may allow a remote attacker to crash the program.

[CLOSE] OSVDB ID : 93452 - Disclosed: 2013-05-16

Description:

Mail On Update Plugin for WordPress contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into changing email options in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 93454 - Disclosed: 2013-05-16

Description:

Multiple RSA products contains a flaw that may lead to the unauthorized disclosure of sensitive information. The issue is due to the program using an encryption key and encryption algorithm that is considered ineffective. This may allow a remote attacker to gain access to potentially sensitive information.

[CLOSE] OSVDB ID : 93455 - Disclosed: 2013-05-16

Description:

EMC VNX Control Station and Celerra Control Station contain a flaw that leads to unauthorized privileges being gained. The issue is due to certain unspecified script files, which may allow a local attacker to gain elevated privileges.

[CLOSE] OSVDB ID : 93453 - Disclosed: 2013-05-16

Description:

OpenStack Nova contains a flaw that may allow a denial of service. The issue is triggered when the program fails to check the virtual size of a specially crafted qcow2 image when using it for ephemeral storage. This may allow a context-dependent attacker to cause a loss in availability by consuming all available disk space.

[CLOSE] OSVDB ID : 93459 - Disclosed: 2013-05-16

Description:

Apple iTunes contains a flaw related to certificate validation. The issue is due to the program not properly verifying the HTTPS Server's certificate. This may allow an attacker with access to network traffic (e.g. MiTM, DNS cache poisoning) to spoof the HTTPS server via an arbitrary certificate that appears valid. Such an attack would allow for the interception of sensitive traffic, and potentially allow for the injection of content.

[CLOSE] OSVDB ID : 93444 - Disclosed: 2013-05-15

Description:

Mutiny contains a flaw that allows an attacker to traverse outside of a restricted path. The issue is due to the EditDocument servlet not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the UPLOAD, DELETE, CUT and COPY commands. This directory traversal attack would allow a remote attacker to upload arbitrary files.

[CLOSE] OSVDB ID : 93409 - Disclosed: 2013-05-15

Description:

Cisco Secure Access Control Server (ACS) contains a flaw in the Web Interface that allows a remote, user-assisted attacker to conduct a session fixation attack. This flaw exists because the application, when establishing a new session, does not invalidate an existing session identifier and assign a new one. With a specially crafted request fixating the session identifier, a context-dependent attacker can ensure a user authenticates with the known session identifier, allowing the session to be subsequently hijacked.

[CLOSE] OSVDB ID : 93410 - Disclosed: 2013-05-15

Description:

Cisco TelePresence Supervisor MSE 8050 contains a flaw that may allow a remote denial of service. The issue is triggered during the handling of a saturation of TCP connection requests. This may allow a remote attacker to cause a consumption of CPU resources and a reload on the system.

[CLOSE] OSVDB ID : 93408 - Disclosed: 2013-05-15

Description:

Python contains a TYPE flaw in the ssl.match_hostname() function that may allow a denial of service. The issue is triggered during the handling of a malformed SSL certificate with a large number of asterisks. This may allow a context-dependent attacker to crash the program.

[CLOSE] OSVDB ID : 93448 - Disclosed: 2013-05-15

Description:

Exponent CMS contains a flaw that allows an attacker to traverse outside of a restricted path. The issue is due to the /install/popup.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'page' parameter. This directory traversal attack would allow a remote attacker to gain access to arbitrary files.

[CLOSE] OSVDB ID : 93447 - Disclosed: 2013-05-15

Description:

Exponent CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'src' and 'username' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 93324 - Disclosed: 2013-05-14

Description:

Adobe Flash Player and AIR contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93291 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93371 - Disclosed: 2013-05-14

Description:

ownCloud contains a flaw that allows a remote user to execute arbitrary PHP code. This flaw exists because the program does not properly verify or sanitize specially crafted user-uploaded files. By uploading a crafted file, the remote system will place the file in a user-accessible path. Making a direct request to the uploaded file will allow the user to execute the script with the privileges of the web server. This issue exists because of an inadequate blacklist preventing dangerous file uploads.

[CLOSE] OSVDB ID : 93289 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified flaw that may allow a context-dependent attacker to gain access to potentially sensitive information stored in JSON data files. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93290 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93292 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93293 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93294 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93295 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93296 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93297 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93298 - Disclosed: 2013-05-14

Description:

Microsoft IE contains an unspecified use-after-free error that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93337 - Disclosed: 2013-05-14

Description:

Adobe Reader and Acrobat contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93338 - Disclosed: 2013-05-14

Description:

Adobe Reader and Acrobat contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93339 - Disclosed: 2013-05-14

Description:

Adobe Reader and Acrobat contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93340 - Disclosed: 2013-05-14

Description:

Adobe Reader and Acrobat contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93341 - Disclosed: 2013-05-14

Description:

Adobe Reader and Acrobat contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93342 - Disclosed: 2013-05-14

Description:

Adobe Reader and Acrobat contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93343 - Disclosed: 2013-05-14

Description:

Adobe Reader and Acrobat contain a memory corruption flaw that is triggered as certain unspecified user-supplied input is not properly sanitized. With a specially crafted file, a context-dependent attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93359 - Disclosed: 2013-05-14

Description:

Adobe Reader contains an unspecified flaw related to the way the program handles blacklisted domains, which may allow a context-dependent attacker to have an unspecified impact, likely relating to bypassing the domain blacklisting. No further details have been provided by the vendor.

[CLOSE] OSVDB ID : 93306 - Disclosed: 2013-05-14

Description:

Microsoft Office Publisher contains a flaw that is triggered during the handling of a corrupt interface pointer in a specially crafted PUB file. This may allow a context-dependent attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93307 - Disclosed: 2013-05-14

Description:

Microsoft Office Publisher contains a flaw that is triggered during the handling of a return value in a specially crafted PUB file. This may allow a context-dependent attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93308 - Disclosed: 2013-05-14

Description:

Microsoft Office Publisher contains an overflow condition that is triggered as user-supplied input is not properly validated during the handling of a specially crafted PUB file. This may allow a context-dependent attacker to cause a buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code.

[CLOSE] OSVDB ID : 93309 - Disclosed: 2013-05-14

Description:

Microsoft Office Publisher contains a flaw that is triggered during the validation of a return value in a specially crafted PUB file. This may allow a context-dependent attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93310 - Disclosed: 2013-05-14

Description:

Microsoft Office Publisher contains a flaw that is triggered during the handling of an invalid range check in a specially crafted PUB file. This may allow a context-dependent attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93311 - Disclosed: 2013-05-14

Description:

Microsoft Office Publisher contains a flaw that is triggered during the handling of an incorrect NULL value in a specially crafted PUB file. This may allow a context-dependent attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93312 - Disclosed: 2013-05-14

Description:

Microsoft Office Publisher contains a flaw that is triggered during the handling of a signed integer in a specially crafted PUB file. This may allow a context-dependent attacker to potentially execute arbitrary code.

[CLOSE] OSVDB ID : 93313 - Disclosed: 2013-05-14

Description:

Microsoft Office Publisher contains a flaw that is triggered during the handling of a pointer in a specially crafted PUB file. This may allow a context-dependent attacker to potentially execute arbitrary code.