[CLOSE] OSVDB ID : 7243 - Disclosed: 2004-06-24

Description:

php-exec-dir contains a flaw that may allow a malicious user to bypass restrictions and execute commands. The issue is triggered when a user places a ";" before the command they wish to execute. It is possible that the flaw may allow remote command execution resulting in a loss of confidentiality, integrity, and/or availability.

[CLOSE] OSVDB ID : 7268 - Disclosed: 2004-06-24

Description:

Lotus Domino contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not properly validate input upon submission to an unmentioned script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 7251 - Disclosed: 2004-06-24

Description:

PHP Gift Registry contains a flaw related to the approval feature in the shop.php script. This may allow an attacker to 'shop' and manipulate data without approval. No further details have been provided.

[CLOSE] OSVDB ID : 7248 - Disclosed: 2004-06-24

Description:

BT Voyager 2000 Wireless ADSL Router contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when a remote attacker grabs the SNMP strings from the router using a default public/private community name, which will disclose the account password in plaintext resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 7266 - Disclosed: 2004-06-24

Description:

giFT-FastTrack contains a flaw that may allow a remote denial of service. The issue is triggered when a NULL pointer involving HTTP header parsing gets dereferenced, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 7429 - Disclosed: 2004-06-23

Description:

Acrobat Reader contains a flaw related to malformed uuencoded PDF files that may allow an attacker to crash the application. No further details have been provided.

[CLOSE] OSVDB ID : 7239 - Disclosed: 2004-06-23

Description:

rssh contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when path expansion occurs before entering the chroot jail, which will disclose file existence information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 23724 - Disclosed: 2004-06-23

Description:

(Description Provided by CVE) : Buffer overflow in the PostScript file interpreter code for Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allows attackers to cause a denial of service via unknown vectors.

[CLOSE] OSVDB ID : 7237 - Disclosed: 2004-06-23

Description:

A remote overflow exists in ISC DHCP server. The DHCP server fails to check the boundary length from a DHCP request with multiple hostname query options set. The logging function uses a temporary 1024 byte buffer for storage and this can result in a buffer overflow. With a specially crafted DHCP request, an attacker can cause supplied code to execute resulting in a loss of integrity.

[CLOSE] OSVDB ID : 7222 - Disclosed: 2004-06-23

Description:

cplay contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the "/var/tmp/cplay_control" temporary file is opened for reading and writing without verifying if it exists first. This flaw may lead to a loss of integrity.

[CLOSE] OSVDB ID : 7267 - Disclosed: 2004-06-23

Description:

(Description Provided by CVE) : Argument injection vulnerability in IBM Lotus Notes 6.0.3 and 6.5 allows remote attackers to execute arbitrary code via a notes: URI that uses a UNC network share pathname to provide an alternate notes.ini configuration file to notes.exe.

[CLOSE] OSVDB ID : 7223 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker requests an invalid parameter of the voteinclude.php file in the Web Links module, which will disclose the physical path of the web server resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 7224 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "jid" variable upon submission to the "delete.php" script in the Journal module. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 7225 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "onwhat" variable upon submission to the "comment.php" script in the Journal module. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 7226 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker requests an invalid parameter of the convert_month() function of the Statistics module, which will disclose the physical path of the web server resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 7227 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker requests an invalid parameter of the add.php file in the Journal module, which will disclose the physical path of the web server resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 7228 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker requests an invalid parameter of the modify.php file in the Journal module, which will disclose the physical path of the web server resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 7229 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "yun" or "ye" variables upon submission to the "friend.php" script in the Journal module. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 7230 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "filelist" variable upon submission to the "add.php" script in the Journal module. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 7231 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "filelist" variable upon submission to the "modify.php" script in the Journal module. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 7232 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "rid" variable upon submission to the "commentsave.php" script in the Journal module. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 7233 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "forwhat" variable in the Journal module search.php script is not verified properly and will allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 7234 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that may allow a remote attacker to inject arbitrary javascript in a journal entry. The flaw is due to the Journal module not properly sanitize journal entry input. By creating a new journal entry with malicious java script, an attacker can have it executed under arbitrary privileges when another user attempts to list or read the journal entry.

[CLOSE] OSVDB ID : 7235 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that may allow a remote attacker to delete arbitrary journal entries. The flaw is due to the Journal module not properly checking for authentication credentials during a request to the commentkill.php script. If an attacker directly requests the script via a GET request, he can delete any journal entry.

[CLOSE] OSVDB ID : 7236 - Disclosed: 2004-06-23

Description:

PHP-Nuke contains a flaw that may allow a remote attacker to insert arbitrary journal entries. The flaw is due to the Journal module not properly checking for authentication credentials during a request to the savenew.php script. If an attacker directly requests the script via a GET request, he can insert a new journal entry without authenticating.

[CLOSE] OSVDB ID : 16007 - Disclosed: 2004-06-23

Description:

FreeBSD contains a flaw that may allow a local denial of service. The issue is triggered when a malicious user specially crafts an execve() system call with an unaligned memory address as the second or third argument, causing the kernel to crash resulting in loss of availability for the platform.

[CLOSE] OSVDB ID : 60297 - Disclosed: 2004-06-23

Description:

(Description Provided by CVE) : gzexe in gzip 1.3.3 and earlier will execute an argument when the creation of a temp file fails instead of exiting the program, which could allow remote attackers or local users to execute arbitrary commands, a different vulnerability than CVE-1999-1332.

[CLOSE] OSVDB ID : 7253 - Disclosed: 2004-06-22

Description:

A local overflow exists in Linux kernel. The IEEE1394 kernel driver fails to perform bounds checking on a user data structure when being copied to a kernel buffer. This flaw in the alloc_hpsb_packet() function results in a buffer overflow. With a specially crafted request, an attacker can cause DOS and possible code execution resulting in a loss of availability.

[CLOSE] OSVDB ID : 9166 - Disclosed: 2004-06-22

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 7238 - Disclosed: 2004-06-22

Description:

A remote overflow exists in ISC DHCP 3.0.1. The DHCP server uses the vsprintf()call instead of the vsnprintf()function resulting in a buffer overflow. With a specially crafted DHCP request, an attacker can cause supplied code to execute resulting in a loss of integrity.

[CLOSE] OSVDB ID : 7241 - Disclosed: 2004-06-22

Description:

The e1000 driver in linux Kernel versions 2.4 through 2.4.26 does not properly reset memory or restrict the maximum length of a data structure, which can allow a local user to read portions of kernel memory and potentially corrupt user memory space. This may disclose sensitive information or cause a loss of availability for the system.

[CLOSE] OSVDB ID : 7250 - Disclosed: 2004-06-22

Description:

gnubiff contains a flaw related to the tables used for password encryption that may allow an attacker to gain access to passwords. No further details have been provided.

[CLOSE] OSVDB ID : 7215 - Disclosed: 2004-06-22

Description:

nCipher netHSM contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to plaintext passwords when pass phrases entered by means of the nCipher netHSM front panel, either using the built in thumbwheel or using a directly attached keyboard, are stored in the netHSM system log, which may lead to a loss of confidentiality.

[CLOSE] OSVDB ID : 7240 - Disclosed: 2004-06-22

Description:

Sun Microsystems Solaris contains a flaw that may allow a local denial of service. The issue is triggered when its Basic Security Module (BSM) has been configured to audit the Administrative audit class "ad" or the System-Wide Administration audit class "as", and will result in loss of availability for the platform.

[CLOSE] OSVDB ID : 14799 - Disclosed: 2004-06-22

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in ArbitroWeb 0.6 allows remote attackers to inject arbitrary script or HTML via the rawURL parameter.

[CLOSE] OSVDB ID : 15691 - Disclosed: 2004-06-21

Description:

(Description Provided by CVE) : osTicket trusts a hidden form field in the submit form to limit the upload size of a document, which could allow remote attackers to upload a file of any size.

[CLOSE] OSVDB ID : 15692 - Disclosed: 2004-06-21

Description:

(Description Provided by CVE) : osTicket allows remote attackers to view sensitive uploaded files and possibly execute arbitrary code via an HTTP request that uploads a PHP file to the ticket attachments directory.

[CLOSE] OSVDB ID : 15693 - Disclosed: 2004-06-21

Description:

(Description Provided by CVE) : osTicket allows remote attackers to view sensitive uploaded files and possibly execute arbitrary code via an HTTP request that uploads a PHP file to the ticket attachments directory.

[CLOSE] OSVDB ID : 11682 - Disclosed: 2004-06-21

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 7192 - Disclosed: 2004-06-21

Description:

A local overflow exists in WWW-SQL. The WWW-SQL parser fails to check the length of the file include command resulting in a stack overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.