[CLOSE] OSVDB ID : 19309 - Disclosed: 2005-09-09

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in Sun Java System Web Proxy Server 3.6 SP7 and earlier allow remote attackers to cause a denial of service (unresponsive service) via unknown vectors.

[CLOSE] OSVDB ID : 19620 - Disclosed: 2005-09-06

Description:

OpenTTD contains a flaw that may allow a malicious user to issue format commands to the network.c program. It is possible that the flaw may terminate the application (DoS) or execute commands, resulting in a loss of confidentiality, or availability.

[CLOSE] OSVDB ID : 19621 - Disclosed: 2005-09-06

Description:

OpenTTD contains a flaw that may allow a malicious user to issue format commands to the network_server.c program. It is possible that the flaw may terminate the application (DoS) or execute commands, resulting in a loss of confidentiality, or availability.

[CLOSE] OSVDB ID : 19622 - Disclosed: 2005-09-06

Description:

OpenTTD contains a flaw that may allow a malicious user to issue format commands to the network_client.c program. It is possible that the flaw may terminate the application (DoS) or execute commands, resulting in a loss of confidentiality, or availability.

[CLOSE] OSVDB ID : 19623 - Disclosed: 2005-09-06

Description:

OpenTTD contains a flaw that may allow a malicious user to issue format commands to the console_cmds.c program. It is possible that the flaw may terminate the application (DoS) or execute commands, resulting in a loss of confidentiality, or availability.

[CLOSE] OSVDB ID : 19624 - Disclosed: 2005-09-06

Description:

A remote overflow exists in texteff.c. The OpenTTD file fails to filter input sent to the texteff.c program resulting in a an overflow. With a specially crafted request, an attacker can cause a DoS resulting in a loss of availability.

[CLOSE] OSVDB ID : 19144 - Disclosed: 2005-09-01

Description:

gBook contains a flaw that allows a remote cross site scripting attack. No further details have been provided.

[CLOSE] OSVDB ID : 17239 - Disclosed: 2005-09-01

Description:

A remote overflow exists in Novell NetMail. The Novell NetMail IMAP daemon fails to calculate size before allocating memory for the command continuation requests resulting in a heap overflow. With a specially crafted request, an attacker can cause arbitrary code execution with the privileges of the underlying user (usually NetMailService), resulting in a loss of integrity.

[CLOSE] OSVDB ID : 19119 - Disclosed: 2005-08-31

Description:

A remote overflow exists in DameWare Mini Remote Control. The 'dwrcs.exe' service fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long username, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 19287 - Disclosed: 2005-08-31

Description:

Microsoft Windows Firewall contains a flaw that may allow a malicious local user, with administrative privileges, to hide firewall ruleset information. The issue is triggered by a specially crafted Windows Firewall exception entry in the Windows Registry. It is possible that the flaw may not allow firewall exception entries to be displayed in the Windows firewall graphical user interface, resulting in a loss of integrity. The command line firewall administration tool "Netsh" is not affected by this issue

[CLOSE] OSVDB ID : 29350 - Disclosed: 2005-08-27

Description:

(Description Provided by CVE) : Unspecified vulnerability in the stats module in Gallery 1.5.1-RC2 and earlier allows remote attackers to obtain sensitive information via unspecified attack vectors, related to "two file exposure bugs."

[CLOSE] OSVDB ID : 18956 - Disclosed: 2005-08-24

Description:

Microsoft Windows contains a flaw that may allow a malicious user to to hide specific registry information. The issue is triggered by a vulnerability in the Registry Editor Utility (regedt32.exe) when handling long string names. It is possible that the flaw may allow a local attacker to create a string containing a long name (i.e., under the "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" key) to cause the string and any other strings in the key to become hidden, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 18954 - Disclosed: 2005-08-24

Description:

WebCalendar contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to send_reminders.php not properly sanitizing user input supplied to the 'includedir' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 18926 - Disclosed: 2005-08-17

Description:

Microsoft IIS contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a URL is supplied spoofing the server name in the http GET request. Server scripts that allow elevated privileges when accessed locally may be fooled into thinking a remote request is from a local user. This flaw may lead to a loss of confidentiality or integrity.

[CLOSE] OSVDB ID : 18695 - Disclosed: 2005-08-12

Description:

Veritas Backup Exec for Windows Servers contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote user sends a CONNECT_CLIENT_AUTH request with a hardcoded password value to trigger the flaw. If successful, the flaw will disclose arbitrary files that are accessible via the Windows system account, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 25368 - Disclosed: 2005-08-11

Description:

WebSphere Application Server contains a flaw that may lead to unauthorized access. The issue is triggered when a context is secured using a '/*' directive. Direct access to a context's index page using its file name is covered by an authentication process, whereas a request to the directory itself is not covered. This will disclose the index page without authenticatoin, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 18763 - Disclosed: 2005-08-11

Description:

ezUpload contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to index.php not properly sanitizing user input supplied to the path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 18764 - Disclosed: 2005-08-11

Description:

ezUpload contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to initialize.php not properly sanitizing user input supplied to the path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 18765 - Disclosed: 2005-08-11

Description:

ezUpload contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to customize.php not properly sanitizing user input supplied to the path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 18766 - Disclosed: 2005-08-11

Description:

ezUpload contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to form.php not properly sanitizing user input supplied to the path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 18703 - Disclosed: 2005-08-11

Description:

A remote overflow exists in Novell eDirectory iMonitor on Windows. iMonitor fails to handle malformed HTTP GET requests resulting in a stack overflow. With a specially crafted request, an attacker can execute arbitrary code with SYSTEM privileges resulting in a loss of integrity.

[CLOSE] OSVDB ID : 18650 - Disclosed: 2005-08-09

Description:

(Description Provided by CVE) : Directory traversal vulnerability in printd line printer daemon (lpd) in Solaris 7 through 10 allows remote attackers to delete arbitrary files via ".." sequences in an "Unlink data file" command.

[CLOSE] OSVDB ID : 18896 - Disclosed: 2005-08-08

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the init_syms function in MySQL 4.0 before 4.0.25, 4.1 before 4.1.13, and 5.0 before 5.0.7-beta allows remote authenticated users who can create user-defined functions to execute arbitrary code via a long function_name field.

[CLOSE] OSVDB ID : 18400 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'id' variable upon submission to the 'view.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 18401 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'release' variable upon submission to the 'list.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 18402 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'F' variable upon submission to the 'get_jsrs_data.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 18403 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that may allow a remote attacker to carry out an SQL injection attack and bypass authentication settings. The issue is due to the 'login.php' script not properly sanitizing user-supplied input to the 'email' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database to bypass authentication.

[CLOSE] OSVDB ID : 18404 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'custom_fields.php' script not properly sanitizing user-supplied input to the report class. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18405 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'custom_fields_graph.php' script not properly sanitizing user-supplied input to the report class. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18406 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'releases.php' script not properly sanitizing user-supplied input to the release class. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18475 - Disclosed: 2005-07-30

Description:

OpenBook contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'admin.php' script not properly sanitizing user-supplied input to the 'User ID' and 'Password' fields. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18296 - Disclosed: 2005-07-26

Description:

VBZooM contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'show.php' script not properly sanitizing user-supplied input to the 'SubjectID' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18269 - Disclosed: 2005-07-25

Description:

(Description Provided by CVE) : Unspecified vulnerability in the multi-language environment library (libmle) in Solaris 7 and 8, as shipped with the Japanese locale, allows local users to gain privileges via unknown attack vectors.

[CLOSE] OSVDB ID : 18062 - Disclosed: 2005-07-18

Description:

SEO-Board contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'doc' parameter upon submission to the 'smilies_popup.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 17897 - Disclosed: 2005-07-14

Description:

A remote overflow exists in Winamp. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted mp3 file containing an overly long ID3v2 tag, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 17830 - Disclosed: 2005-07-12

Description:

A remote overflow exists in Microsoft Windows. The Microsoft Color Management Module fails to handle International Color Consortium (ICC) profile format tag validation before passing it to the buffer, resulting in a buffer overflow. With a specially crafted malicious image file, an attacker can execute arbitrary code with privileges of the victim, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 17813 - Disclosed: 2005-07-11

Description:

(Description Provided by CVE) : The dhcpcd DHCP client before 1.3.22 allows remote attackers to cause a denial of service (daemon crash) via unknown vectors that cause an out-of-bounds memory read.

[CLOSE] OSVDB ID : 17821 - Disclosed: 2005-07-08

Description:

Novell NetMail contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application automatically processes HTML in an attachment without prompting the user to save or open it. This could allow a user to create a specially crafted html e-mail attachment that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 17810 - Disclosed: 2005-07-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Computer Associates (CA) eTrust SiteMinder 5.5, when the "CSSChecking" parameter is set to "NO," allows remote attackers to inject arbitrary web script or HTML via the (1) PASSWORD or (2) BUFFER parameters to smpwservicescgi.exe, (3) the TARGET parameter to login.fcc, and possibly other vectors.

[CLOSE] OSVDB ID : 17827 - Disclosed: 2005-07-07

Description:

(Description Provided by CVE) : zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.