[CLOSE] OSVDB ID : 6501 - Disclosed: 2004-05-31

Description:

Debian Gatos contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when an administrator removes the Gates default configuration file, root privileges are not dropped on xativ initialization, and xatitv executes the system(3) function to launch its configuration program without sanitizing user-supplied environment variables. This flaw may lead to a loss of Confidentiality.

[CLOSE] OSVDB ID : 6577 - Disclosed: 2004-05-31

Description:

Linksys routers contain a flaw that may allow a malicious user to access the Remote Administration interface. The issue is triggered by the interface being available on port 443, even when Remote Administration is disabled. It is possible that the flaw may allow unauthorized administrative access resulting in a loss of integrity.

[CLOSE] OSVDB ID : 6492 - Disclosed: 2004-05-30

Description:

The jftpgw proxy server contains a flaw that may allow an attacker to execute arbitrary commands with the privileges of the server process. The issue is caused by an error in the logging functionality of the server where user supplied data is passed as a format string directly to a syslog() function call.

[CLOSE] OSVDB ID : 55372 - Disclosed: 2004-05-30

Description:

(Description Provided by CVE) : Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a "security fix," does not properly validate input, which allows remote attackers to execute arbitrary script as other users via script or HTML in an e-mail message, possibly triggering a cross-site scripting (XSS) vulnerability.

[CLOSE] OSVDB ID : 55373 - Disclosed: 2004-05-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 55374 - Disclosed: 2004-05-30

Description:

(Description Provided by CVE) : Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a "security fix," does not properly validate input, which allows remote attackers to execute arbitrary script as other users via script or HTML in an e-mail message, possibly triggering a cross-site scripting (XSS) vulnerability.

[CLOSE] OSVDB ID : 55375 - Disclosed: 2004-05-30

Description:

(Description Provided by CVE) : Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a "security fix," does not properly validate input, which allows remote attackers to execute arbitrary script as other users via script or HTML in an e-mail message, possibly triggering a cross-site scripting (XSS) vulnerability.

[CLOSE] OSVDB ID : 55376 - Disclosed: 2004-05-30

Description:

(Description Provided by CVE) : Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a "security fix," does not properly validate input, which allows remote attackers to execute arbitrary script as other users via script or HTML in an e-mail message, possibly triggering a cross-site scripting (XSS) vulnerability.

[CLOSE] OSVDB ID : 8292 - Disclosed: 2004-05-30

Description:

SquirrelMail contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "$senderNames_part", "$event_title", or "$event_text" variables upon submission to the "mailbox_display.php" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 54626 - Disclosed: 2004-05-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 7613 - Disclosed: 2004-05-29

Description:

PHPhoto contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to the 'picture_controls.php' script, which will disclose hidden pictures by unauthorized users resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 9967 - Disclosed: 2004-05-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 6525 - Disclosed: 2004-05-29

Description:

e107 contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when scripts are accessed directly and generate a PHP error, which will disclose the full path of the requested script resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 6526 - Disclosed: 2004-05-29

Description:

e107 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate variables upon submission to the clock_menu.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 6527 - Disclosed: 2004-05-29

Description:

e107 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "logged name" variables upon submission to the "email article to a friend" feature. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 6528 - Disclosed: 2004-05-29

Description:

e107 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "logged name" variables upon submission to the "submit news" feature. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 6529 - Disclosed: 2004-05-29

Description:

e107 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "avmsg" variable upon submission to the "usersettings.php" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 6530 - Disclosed: 2004-05-29

Description:

e107 contains a flaw that may allow arbitrary command execution. The issue is triggered when the "p" parameter in the script "secure_img_render.php" is not properly verified. It is possible that the flaw may allow a malicious user to include arbitrary scripts and files from local or remote resources which will be executed on the vulnerable server, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 6531 - Disclosed: 2004-05-29

Description:

e107 contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'content.php' script not properly sanitizing user-supplied input to the 'content' and 'content_id' variables. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 6508 - Disclosed: 2004-05-29

Description:

Land Down Under (LDU) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate [img] BBCode tags upon submission to various scripts. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 6533 - Disclosed: 2004-05-29

Description:

e107 contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "list" variable in the news.php script is not verified properly and will allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 6514 - Disclosed: 2004-05-29

Description:

Multiple Webmail products contain a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate Content-Type upon submission to the mime.php script (or whatever script controls header content-type). This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 10959 - Disclosed: 2004-05-29

Description:

MySQL contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when that users is given GRANT privileges on a database whose name contains an underscore, i.e. database_name. The underscore is treated as a wildcard; continuing the example, the user would then have GRANT privileges on database1name, databaseZname, etc. This flaw may lead to a loss of confidentiality and/or integrity.

[CLOSE] OSVDB ID : 6752 - Disclosed: 2004-05-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 6503 - Disclosed: 2004-05-29

Description:

jPORTAL contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the id parameter in the art_print() function in the print.inc.php module is not verified properly and will allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 8291 - Disclosed: 2004-05-29

Description:

SquirrelMail contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate multiple variables upon submission to the 'read_body.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 11189 - Disclosed: 2004-05-29

Description:

A bandwidth monitor, bmon, on FreeBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the FreeBSD port system installs bmon with setuid superuser privileges.

[CLOSE] OSVDB ID : 6521 - Disclosed: 2004-05-28

Description:

Multiple remote overflows exist in spamGuard. The qmail_parseline and sendmail_parseline functions in parser.c fail to validate input resulting in buffer overflows. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 6522 - Disclosed: 2004-05-28

Description:

Multiple local overflows exist in spamGuard. The loadconfig and removespaces functions in loadconfig.c fail to validate input resulting in buffer overflows. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 6523 - Disclosed: 2004-05-28

Description:

Multiple local overflows exist in spamGuard. Unspecified functions in functions.c fail to validate input resulting in buffer overflows. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. No further details have been provided.

[CLOSE] OSVDB ID : 6755 - Disclosed: 2004-05-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 7585 - Disclosed: 2004-05-28

Description:

The ia64 Linux Kernel contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a floating point leak occurs, which will disclose the registers of other process information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 6446 - Disclosed: 2004-05-28

Description:

Sun Java System Application Server contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when HTTP GET requests containing multiple slashes and reserved DOS device names are received, which will disclose the absolute path of the document root, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 6657 - Disclosed: 2004-05-28

Description:

Sophster contains a flaw that may allow a malicious user to modify file attributes. The issue is triggered when the change permissions tool is used on files with special UID/GID and sticky bits. It is possible that the flaw may allow arbitrary file access resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 7421 - Disclosed: 2004-05-27

Description:

(Description Provided by CVE) : Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool.

[CLOSE] OSVDB ID : 18567 - Disclosed: 2004-05-27

Description:

(Description Provided by CVE) : Unknown vulnerability in 3Com OfficeConnect Remote 812 ADSL Router allows remote attackers to bypass authentication via repeated attempts using any username and password. NOTE: this identifier was inadvertently re-used for another issue due to a typo; that issue was assigned CVE-2004-0447. This candidate is ONLY for the ADSL router bypass.

[CLOSE] OSVDB ID : 6433 - Disclosed: 2004-05-27

Description:

HP OpenView contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the product fails to decode a UTF-8 input correctly. This flaw may lead to a loss of confidentiality and integrity.

[CLOSE] OSVDB ID : 6691 - Disclosed: 2004-05-27

Description:

Roundup contains a flaw that allows a remote attacker to access arbitrary files outside of the web path. The issue is due to the program not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the @@file prefix.

[CLOSE] OSVDB ID : 7218 - Disclosed: 2004-05-27

Description:

(Description Provided by CVE) : Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool.

[CLOSE] OSVDB ID : 6425 - Disclosed: 2004-05-26

Description:

FreeBSD 5.2 and prior contains a flaw that may allow a malicious user to prevent file writes to disk. The issue is triggered when a user with read access to a file takes advantage of the errrors in the msync(2) system call involving the MS_INVALIDATE operation. It is possible that the flaw may allow changes from being committed to disk resulting in a loss of integrity, and availability.