| OSVDB ID | Disclosure Date | Title |
|---|
|
12674
Description:
Macallan Mail Solution contains a flaw that may allow a remote attacker to bypass authentication settings. The issue is triggered when using a specially crafted HTTP request containing URL-encoded slash characters ('%2f') or a non-existent directory. It is possible that the flaw may allow a remote attacker to bypass authentication settings resulting in a loss of integrity.
|
2004-12-31
|
Macallan Mail Solution Web Interface Malformed URL Authentication Bypass
|
|
12675
Description:
Macallan Mail Solution contains a flaw that may allow a remote denial of service. The issue is triggered when sending a specially crafted HTTP GET request which begins with a question mark character, and will result in loss of availability for the MCPop3 service.
|
2004-12-31
|
Macallan Mail Solution Web Interface Malformed URL MCPop3 Service DoS
|
|
23194
Description:
Unknown / Incomplete
|
2004-12-31
|
T2 Build-Pkg /bin/cat List Argument Local Overflow
|
|
12807
Description:
ibProArcade High Score Module contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'Arcade.php' script not properly sanitizing user-supplied input to the 'gameid' and 'cat' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2004-12-31
|
ibProArcade High Score Module Arcade.php Multiple Parameter SQL Injection
|
|
12806
Description:
The DAV 1.1 component of FrontPage 2000 contains a flaw related to the DATA Access Internet Publishing Service Provider Distributed Versioning and Authoring (DAV) functionality of Microsoft FrontPage 2000. The issue is triggered when a remote attacker uses an HTTP PUT request, permitting insertion of an arbitrary file on the web server. This in turn can be leveraged to perform further attacks if the uploaded file is malicious and others are directed to view the file.
|
2004-12-31
|
Microsoft DATA Access IPS DAV Component Remote Arbitrary Content Write
|
|
12788
Description:
FormMail.php contains a flaw that may allow a malicious user to gain access to remote files. The issue is triggered when a remote attacker specifies a value for the ar_file auto-reply parameter which causes the target server to send an arbitrary file to the remote user. It is possible that the flaw may allow remote file access resulting in a loss of confidentiality.
|
2004-12-31
|
Jack's formmail.php ar_file Parameter Arbitrary Local File Access
|
|
12834
Description:
CUPS contains a flaw that may allow a remote denial of service. The issue is triggered when a specially crafted url including /.. is sent to the CUPS server, and will result in loss of availability for the service.
|
2004-12-30
|
CUPS Malformed Traversal HTTP Request Remote DoS
|
|
15434
Description:
(Description Provided by CVE) : KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email information, such as whether the email has been digitally signed or encrypted, via HTML formatted email.
|
2004-12-30
|
KDE KMail User Interface HTML Overlay Spoofing
|
|
12679
Description:
KorWeblog contains a flaw that allows a remote attacker to access arbitrary files outside of the web path. The issue is due to index.php not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the lng variable(s).
|
2004-12-30
|
KorWeblog index.php lng Parameter Arbitrary File Access
|
|
12680
Description:
KorWeblog contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to index.php not properly sanitizing user input supplied to the G_PATH variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2004-12-30
|
KorWeblog index.php G_PATH Variable Arbitrary Command Execution
|
|
23193
Description:
Unknown / Incomplete
|
2004-12-30
|
T2 binutils/ld-glob.patch Unspecified Memory Corruption Issue
|
|
22362
Description:
Unknown / Incomplete
|
2004-12-30
|
SlimServer CSRF Protection Bypass
|
|
12818
Description:
Unknown / Incomplete
|
2004-12-29
|
Symantec Anti-Virus Expired Signature Subscription Bypass
|
|
12688
Description:
Unknown / Incomplete
|
2004-12-29
|
GRASS i.oif Script Insecure Temporary File Creation
|
|
12689
Description:
Unknown / Incomplete
|
2004-12-29
|
GRASS GISGEN.sh Script Insecure Temporary File Creation
|
|
12690
Description:
Unknown / Incomplete
|
2004-12-29
|
GRASS v.in.arc.poly Script Insecure Temporary File Creation
|
|
12691
Description:
Unknown / Incomplete
|
2004-12-29
|
GRASS i.spectral Script Insecure Temporary File Creation
|
|
12692
Description:
Unknown / Incomplete
|
2004-12-29
|
GRASS r.plane Script Insecure Temporary File Creation
|
|
12632
Description:
aStats contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when aStats attempts to create PNG files and aStats-Graphic-Signature-Generation file which are symlinked by a malicious user. This flaw may lead to a loss of integrity.
|
2004-12-29
|
aStats Insecure Temp File Arbitrary File Overwrite
|
|
12700
Description:
(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as used in Commonwealth of Massachusetts Virtual Law Office (VLO) and other products, allow remote attackers to execute arbitrary PHP code via a URL in the phpc_root_path parameter to (1) includes/calendar.php or (2) includes/setup.php.
|
2004-12-29
|
php-Calendar calendar.php phpc_root_path Parameter Remote File Inclusion
|
|
12701
Description:
(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as used in Commonwealth of Massachusetts Virtual Law Office (VLO) and other products, allow remote attackers to execute arbitrary PHP code via a URL in the phpc_root_path parameter to (1) includes/calendar.php or (2) includes/setup.php.
|
2004-12-29
|
php-Calendar setup.php phpc_root_path Parameter Remote File Inclusion
|
|
12628
Description:
Tikiwiki contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to tiki-editpage.php not properly sanitizing or restricting what types of files are uploaded to the img/wiki_up/ directory. This may allow a remote, authenticated attacker to upload a malicious script and cause it to be executed on the server, leading to a loss of integrity.
|
2004-12-29
|
TikiWiki Image Upload File Type Verification Failure Arbitrary Code Execution
|
|
12637
Description:
Mozilla contains a flaw that may allow a malicious user to crash the application. The issue is triggered when a user sends a specially crafted, overly long "news://" URI. causing a buffer overflow within the 'MSG_UnEscapeSearchUrl()' function within "nsNNTPProtocol.cpp" occurs. It is possible that the flaw may allow an attacker to crash mozilla resulting in a loss of availability.
|
2004-12-29
|
Mozilla nsNNTPProtocol.cpp NNTP news:// URI Handling Overflow DoS
|
|
12693
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) site_title or (2) http_images parameter.
|
2004-12-28
|
WHM AutoPilot header.php Multiple Parameter XSS
|
|
12694
Description:
(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the server_inc parameter to reference a URL on a remote web server that contains the code.
|
2004-12-28
|
WHM AutoPilot step_one.php Arbitrary Command Execution
|
|
12695
Description:
WHM AutoPilot contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to step_one_tables.php not properly sanitizing user input supplied to the 'server_inc' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2004-12-28
|
WHM AutoPilot step_one_tables.php server_inc Parameter Remote File Inclusion
|
|
12696
Description:
(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the server_inc parameter to reference a URL on a remote web server that contains the code.
|
2004-12-28
|
WHM AutoPilot step_two_tables.php Arbitrary Command Execution
|
|
12697
Description:
(Description Provided by CVE) : WHM AutoPilot 2.4.6.5 and earlier allows remote attackers to gain sensitive information via phpinfo, which reveals php settings.
|
2004-12-28
|
WHM AutoPilot phpinfo.php Information Disclosure
|
|
12612
Description:
A remote overflow exists in NetCat for Windows. The vulnerability is caused by a boundary error in the SessionWriteShellThreadFn() function in doexec.c resulting in a stack based overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.
|
2004-12-28
|
NetCat for Windows -e Option Overflow
|
|
12613
Description:
PHProjekt contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to authform.inc.php not properly sanitizing user input supplied to the path_pre variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
|
2004-12-28
|
PHProjekt authform.inc.php path_pre Variable Arbitrary Command Execution
|
|
12685
Description:
Unknown / Incomplete
|
2004-12-28
|
QNX RTOS crrtrap -r Option Arbitrary File Manipulation Privilege Escalation
|
|
12605
Description:
By default, Eventum installs with an enabled default administrator account which is not documented. The '[email protected]' account has an unknown password, but allows attackers who know this password to trivially access the Eventum system.
|
2004-12-28
|
MySQL Eventum Default Vendor Account
|
|
12606
Description:
Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'email' variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-12-28
|
MySQL Eventum index.php email Parameter XSS
|
|
12607
Description:
Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'email' variable upon submission to the forgot_password.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-12-28
|
MySQL Eventum forgot_password.php email Parameter XSS
|
|
12608
Description:
Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'full_name', 'sms_email', 'list_refresh_rate' or 'emails_refresh_rate' variables upon submission to the preferences.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-12-28
|
MySQL Eventum preferences.php Multiple Parameter XSS
|
|
12609
Description:
Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'title' or 'outgoing_sender_name' variables upon submission to the projects.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-12-28
|
MySQL Eventum projects.php Multiple Parameter XSS
|
|
13449
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.
|
2004-12-28
|
ViewCVS Error Message XSS
|
|
12635
Description:
Moodle contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'search' variables upon submission to the 'view.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-12-27
|
Moodle view.php search Parameter XSS
|
|
12636
Description:
Moodle contains a flaw that allows a remote attacker to read arbitrary session information outside of the web path. The issue is due to the detect_munged_arguments() method of the file.php script not properly sanitizing user input, specifically traversal style attacks (/../) supplied via the file variable. Using this vulnerability a malicious user can specify a file path that includes an existing id then /../ to traverse to the parent directory. Then the malicious user can access the session folder and all the session files in
|
2004-12-27
|
Moodle file.php Traversal Arbitrary Session File Access
|
|
12686
Description:
Limbo contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'searchword' variable upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2004-12-27
|
Limbo index.php searchword Parameter XSS
|
