[CLOSE] OSVDB ID : 26598 - Disclosed: 2006-06-14

Description:

Bible Portal Project contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to Admin/rtf_parser.php not properly sanitizing user input supplied to the 'destination' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26511 - Disclosed: 2006-06-14

Description:

KDM contains a flaw that may allow a malicious local user to read any files on the system. The issue is due to the 'ReadDmrc()' function reading temporary files insecurely. It is possible for a user to use a symlink style attack to read arbitrary files, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 26622 - Disclosed: 2006-06-14

Description:

HP-UX Support Tools Manager contains a flaw that may allow a local denial of service. The issue is triggered when an unspecified error occurs, and will result in loss of availability for the system.

[CLOSE] OSVDB ID : 64340 - Disclosed: 2006-06-14

Description:

Windows contains a flaw that may allow a remote denial of service. The issue is triggered by a NULL dereference in svchost.exe, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 26447 - Disclosed: 2006-06-14

Description:

A remote overflow exists in PicoZip. The 'zipinfo.dll' fails to get info of ACE, RAR, or ZIP archives containing a file with a long filename resulting in a stack-based overflow. With a specially crafted request, an attacker can execute arbitrary code resulting in a loss of integrity.

[CLOSE] OSVDB ID : 27054 - Disclosed: 2006-06-14

Description:

(Description Provided by CVE) : mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function.

[CLOSE] OSVDB ID : 26432 - Disclosed: 2006-06-14

Description:

A local overflow exists in Microsoft Windows. The jgdw400.dll library fails to perform correct boundary checking on .ART files which can result in a buffer overflow. With a specially crafted request, an attacker can perform arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 35999 - Disclosed: 2006-06-14

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in admin/index.php in Fusion Polls allows remote attackers to execute arbitrary PHP code via a URL in the xtrphome parameter.

[CLOSE] OSVDB ID : 77218 - Disclosed: 2006-06-14

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 26444 - Disclosed: 2006-06-13

Description:

Microsoft IE contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered due to an error in the parameter validation in the DXImageTransform.Microsoft.Light ActiveX control. It is possible that the flaw may allow arbitrary code execution when a user e.g. visits a malicious web site resulting in a loss of integrity.

[CLOSE] OSVDB ID : 26445 - Disclosed: 2006-06-13

Description:

Microsoft Internet Explorer contains a flaw that may allow a malicious user to spoof the information in the address bar in a way that preserves the original address bar and trusted UI of a trusted site even after the browser has been navigated to a malicious site. It is possible that the flaw may allow phishing attacks or loss of integrity.

[CLOSE] OSVDB ID : 26446 - Disclosed: 2006-06-13

Description:

Microsoft Internet Explorer contains a flaw that allows remote code execution via a crafted web page that triggers memory corruption when it is saved as a multipart HTML (.mht) file.

[CLOSE] OSVDB ID : 26441 - Disclosed: 2006-06-13

Description:

Exchange Server contains an unspcified Cross Site Scripting flaw in Outlook Web Access that may allow an attacker to execute arbitrary code as a target user with a specially crafted email. No further details have been provided.

[CLOSE] OSVDB ID : 26437 - Disclosed: 2006-06-13

Description:

An unspecified remote overflow exists in Windows. The RASMAN component of RRAS fails to validate unspecified network traffic resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 27452 - Disclosed: 2006-06-13

Description:

Ltwcalendar has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the calendar.php script not properly sanitizing user input supplied to the 'ltw_config[include_dir]' variable. However, subsequent testing by CVE staff have determined that "the $ltw_config[include_dir] variable is defined as a static value in an include file before it is referenced in an include() statement."

[CLOSE] OSVDB ID : 27453 - Disclosed: 2006-06-13

Description:

(Description Provided by CVE) : include.php in Shoutpro 1.0 might allow remote attackers to bypass IP ban restrictions via a URL in the path parameter that points to an alternate bannedips.php file. NOTE: this issue was originally reported as remote file inclusion, but CVE analysis suggests that this cannot be used for code execution.

[CLOSE] OSVDB ID : 27455 - Disclosed: 2006-06-13

Description:

Amr Talkbox has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the talkbox.php script not properly sanitizing user input supplied to the 'direct' variable. However, subsequent testing by CVE staff has determined that "since the $direct variable is set to a static value just before the include statement", this can not be exploited.

[CLOSE] OSVDB ID : 27454 - Disclosed: 2006-06-13

Description:

(Description Provided by CVE) : ** DISPUTED ** PHP remote file inclusion vulnerability in admin.jobline.php in Jobline 1.1.1 allows remote attackers to execute arbitrary code via a URL in the mosConfig_absolute_path parameter. NOTE: CVE disputes this issue because the script is protected against direct requests.

[CLOSE] OSVDB ID : 27456 - Disclosed: 2006-06-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 26434 - Disclosed: 2006-06-13

Description:

Windows contains a flaw that may allow a malicious user to execute arbitary code. The issue is triggered when JScript releases objects early, leading to memory corruption and may allow an attacker to run arbitary code. It is possible that the flaw may allow arbitary code executiomn resulting in a loss of integrity.

[CLOSE] OSVDB ID : 48933 - Disclosed: 2006-06-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 26433 - Disclosed: 2006-06-13

Description:

A remote overflow exists in Windows. The TCP/IP protocol driver fails to validate packets with an unspecified Source Routing flag resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 31441 - Disclosed: 2006-06-13

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in addwords.php in MyScrapbook 3.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) comment parameters. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

[CLOSE] OSVDB ID : 27472 - Disclosed: 2006-06-13

Description:

bbrss for phpBB has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the bbrss.php script not properly sanitizing user input supplied to the 'phpbb_root_path' variable. However, subsequent evaluation by George A. Theall at Tenable Security has revealed the variable can not be manipulated by an attacker.

[CLOSE] OSVDB ID : 27465 - Disclosed: 2006-06-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 26442 - Disclosed: 2006-06-13

Description:

Windows contains an unspecified flaw in Internet Explorer related to the handling of ActiveX controls by the Wmm2fxa.ddl component that may allow an attacker to execute arbitrary code. No further details have been provided.

[CLOSE] OSVDB ID : 26443 - Disclosed: 2006-06-13

Description:

A remote overflow exists in Microsoft IE. Internet Explorer fails to translate UTF-8 characters to Unicode resulting in an encoded HTML overflow. With a specially crafted request, an attacker can cause remote code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 26439 - Disclosed: 2006-06-13

Description:

Windows contains a flaw that may allow a remote denial of service. The issue is triggered when the MrxSmbCsIoctlCloseForCopyChunk function of SMB is passed the file handle for a shadow device, which will create a deadlock and result in loss of availability for the service.

[CLOSE] OSVDB ID : 26440 - Disclosed: 2006-06-13

Description:

A local overflow exists in Microsoft SMB. The function 'MrxSmbCscIoctlOpenForCopyChunk' fails to validate input when handling certain DeviceIoControl requests resulting in an overflow. With a specially crafted request, an attacker can execute arbitrary code with escalated privileges resulting in a loss of integrity.

[CLOSE] OSVDB ID : 26438 - Disclosed: 2006-06-13

Description:

Windows contains a flaw that may allow a malicious user to spoof a valid server. The issue is triggered when using RPC over SSL, and the client does not validate the RPC server. It is possible that the flaw may allow impersonation of a server resulting in a loss of integrity.

[CLOSE] OSVDB ID : 27460 - Disclosed: 2006-06-13

Description:

mcGuestbook contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to admin.php not properly sanitizing user input supplied to the 'lang' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 27461 - Disclosed: 2006-06-13

Description:

mcGuestbook contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to ecrire.php not properly sanitizing user input supplied to the 'lang' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 27462 - Disclosed: 2006-06-13

Description:

mcGuestbook contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to lire.php not properly sanitizing user input supplied to the 'lang' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26436 - Disclosed: 2006-06-13

Description:

Windows contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a sequence of specially crafted packets are sent to one of the RPC interfaces provided by the RASMAN service, which leads to memory corruption. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 27596 - Disclosed: 2006-06-13

Description:

Wheatblog has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the view_links.php script not properly sanitizing user input supplied to the 'wb_inc_dir' variable. However, subsequent evaluation by multiple researchers indicate that a user does not have the ability to manipulate input to the variable as reported.

[CLOSE] OSVDB ID : 27663 - Disclosed: 2006-06-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 27675 - Disclosed: 2006-06-13

Description:

Flog has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the config.php script not properly sanitizing user input supplied to the 'FLog_dir_include' variable. However, subsequent evaluation indicates the variable is set to a static value in the core.inc.php file and can not be manipulated by an attacker.

[CLOSE] OSVDB ID : 27674 - Disclosed: 2006-06-13

Description:

boastMachine has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the vote.php script not properly sanitizing user input supplied to the 'bmc_dir' variable. However, subsequent evaluation indicates the variable is set to a static value in the config.php script and can not be manipulated by an attacker.

[CLOSE] OSVDB ID : 27673 - Disclosed: 2006-06-13

Description:

phphg Guestbook has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the signed.php script not properly sanitizing user input supplied to the 'phphg_real_path' variable. However, subsequent examination by CVE staff indicates the variable is set to a static value by common.php and can not be manipulated by an attacker.

[CLOSE] OSVDB ID : 27662 - Disclosed: 2006-06-13

Description:

(Description Provided by CVE) : ** DISPUTED ** PHP remote file inclusion vulnerability in upload/admin/team.php in Robin de Graff Somery 0.4.4 allows remote attackers to execute arbitrary PHP code via a URL in the checkauth parameter. NOTE: CVE disputes this vulnerability because the checkauth parameter is only used in conditionals.