[CLOSE] OSVDB ID : 58817 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Microsoft Internet Explorer allows remote attackers to cause a denial of service (crash) via a web page that contains a large number of nested marquee tags, a related issue to CVE-2006-2723.

[CLOSE] OSVDB ID : 58818 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Opera allows remote attackers to cause a denial of service (application crash) via a web page that contains a large number of nested marquee tags, a related issue to CVE-2006-2723.

[CLOSE] OSVDB ID : 41305 - Disclosed: 2006-06-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 39265 - Disclosed: 2006-06-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 31330 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Unspecified versions of Internet Explorer allow remote attackers to cause a denial of service (crash) via an IFRAME with a src tag containing a "File://" URI followed by an 8-bit character. NOTE: some third parties were unable to verify this issue.

[CLOSE] OSVDB ID : 26341 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in iFoto 0.20, and possibly other versions before 0.50, allows remote attackers to inject arbitrary HTML or web script via a base64-encoded file parameter.

[CLOSE] OSVDB ID : 26336 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in search.php in OkScripts OkArticles 1.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter.

[CLOSE] OSVDB ID : 26335 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in search.php in OkScripts QuickLinks 1.1 allows remote attackers to inject arbitrary web script or HTML via the q parameter.

[CLOSE] OSVDB ID : 26334 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in search.php in OkScripts OkMall 1.0 allow remote attackers to inject arbitrary web script or HTML via the page parameter. NOTE: this might be resultant from another vulnerability, since the XSS is reflected in an error message.

[CLOSE] OSVDB ID : 26232 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : libs/comverp.c in Courier MTA before 0.53.2 allows attackers to cause a denial of service (CPU consumption) via unknown vectors involving usernames that contain the "=" (equals) character, which is not properly handled during encoding.

[CLOSE] OSVDB ID : 26284 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in i.List 1.5 beta and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) searchword parameter to search.php or (2) siteurl parameter to add.php.

[CLOSE] OSVDB ID : 26285 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in i.List 1.5 beta and earlier allows remote attackers to inject arbitrary web script or HTML via the banurl parameter to add.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

[CLOSE] OSVDB ID : 26286 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in SHOUTcast 1.9.5 allow remote attackers to inject arbitrary HTML or web script via the DJ fields (1) Description, (2) URL, (3) Genre, (4) AIM, and (5) ICQ.

[CLOSE] OSVDB ID : 26241 - Disclosed: 2006-06-08

Description:

CMS-Bandits contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to td.php not properly sanitizing user input supplied to the 'spaw_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26242 - Disclosed: 2006-06-08

Description:

CMS-Bandits contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to img.php not properly sanitizing user input supplied to the 'spaw_root' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26625 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in index.php in phazizGuestbook 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) email, (3) url fields, and (4) text field (content parameter).

[CLOSE] OSVDB ID : 26234 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in EmailArchitect Email Server 6.1.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) errCode and (2) uid parameter in (a) default.asp and (3) dname parameter in (b) /admin/dns.asp and (c) /additional/regdomain_done.asp.

[CLOSE] OSVDB ID : 26235 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in EmailArchitect Email Server 6.1.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) errCode and (2) uid parameter in (a) default.asp and (3) dname parameter in (b) /admin/dns.asp and (c) /additional/regdomain_done.asp.

[CLOSE] OSVDB ID : 26236 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in EmailArchitect Email Server 6.1.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) errCode and (2) uid parameter in (a) default.asp and (3) dname parameter in (b) /admin/dns.asp and (c) /additional/regdomain_done.asp.

[CLOSE] OSVDB ID : 26266 - Disclosed: 2006-06-08

Description:

Enterprise Payroll Systems contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to footer.php not properly sanitizing user input supplied to the 'absolutepath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26418 - Disclosed: 2006-06-08

Description:

Enterprise Payroll Systems contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to cal.php not properly sanitizing user input supplied to the 'absolutepath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26427 - Disclosed: 2006-06-08

Description:

Enterprise Payroll Systems contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to admin/addpayrollbonus.php not properly sanitizing user input supplied to the 'absolutepath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26228 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in iBWd Guestbook 1.0 allows remote attackers to execute arbitrary SQL commands via the offset parameter.

[CLOSE] OSVDB ID : 26225 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : SQL injection vulnerability in bolum.php in tekno.Portal allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 26453 - Disclosed: 2006-06-08

Description:

Cisco WebVPN contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the domain variable upon submission to the dnserror.html script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 26454 - Disclosed: 2006-06-08

Description:

Cisco WebVPN and ASA contain a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the domain variable upon submission to the connecterror.html script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 26226 - Disclosed: 2006-06-08

Description:

abarcar Realty Portal contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to content.php not properly sanitizing user-supplied input to the 'cat' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 26269 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : GNOME GDM 2.8, 2.12, 2.14, and 2.15, when the "face browser" feature is enabled, allows local users to access the "Configure Login Manager" functionality using their own password instead of the root password, which can be leveraged to gain additional privileges.

[CLOSE] OSVDB ID : 26227 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : A-CART 2.0 stores the acart2_0.mdb file under the web document root with insufficient access control, which allows remote attackers to obtain username and password information.

[CLOSE] OSVDB ID : 26377 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in booking3.php in Mole Group Ticket Booking Script allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) address1, (3) address2, (4) county, (5) postcode, (6) email, (7) phone, or (8) mobile parameters to booking2.php.

[CLOSE] OSVDB ID : 26378 - Disclosed: 2006-06-08

Description:

Mole Group Ticket Booking Script contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'name', 'address1', 'address2', 'county', 'postcode', 'email', 'phone' and 'mobile' variables upon submission to the booking3.php script. The user input is then passed to the booking2.php script where it is rendered to the user. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 61193 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate; Cisco ASA; SonicWALL E-Class SSL VPN and SonicWALL SSL VPN; SafeNet SecureWire Access Gateway; Juniper Networks Secure Access; Nortel CallPilot; Citrix Access Gateway; and other products, when running in configurations that do not restrict access to the same domain as the VPN, retrieve the content of remote URLs from one domain and rewrite them so they originate from the VPN's domain, which violates the same origin policy and allows remote attackers to conduct cross-site scripting attacks, read cookies that originated from other domains, access the Web VPN session to gain access to internal resources, perform key logging, and conduct other attacks. NOTE: it could be argued that this is a fundamental design problem in any clientless VPN solution, as opposed to a commonly-introduced error that can be fixed in separate implementations. Therefore a single CVE has been assigned for all products that have this design.

[CLOSE] OSVDB ID : 26222 - Disclosed: 2006-06-08

Description:

Clan Manager Pro contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to cmpro.intern/login.inc.php not properly sanitizing user input supplied to the 'rootpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26223 - Disclosed: 2006-06-08

Description:

Clan Manager Pro contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to cmpro.ext/comment.core.inc.php not properly sanitizing user input supplied to the 'sitepath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 26224 - Disclosed: 2006-06-08

Description:

Clan Manager Pro contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to cmpro.intern/comment.core.inc.php not properly sanitizing user input supplied to the 'rootpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 52666 - Disclosed: 2006-06-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 31848 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Open WebMail (OWM) 2.52, and other versions released before 05/12/2006, allows remote attackers to inject arbitrary web script or HTML via the (1) To and (2) From fields in openwebmail-main.pl, and possibly (3) other unspecified vectors related to "openwebmailerror calls that need to display HTML."

[CLOSE] OSVDB ID : 31849 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Open WebMail (OWM) 2.52, and other versions released before 05/12/2006, allows remote attackers to inject arbitrary web script or HTML via the (1) To and (2) From fields in openwebmail-main.pl, and possibly (3) other unspecified vectors related to "openwebmailerror calls that need to display HTML."

[CLOSE] OSVDB ID : 40804 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : The ip6_savecontrol function in NetBSD 2.0 through 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service (crash) by creating an IPv4-mapped IPv6 socket with the SO_TIMESTAMP socket option set, then sending an IPv4 packet through the socket.

[CLOSE] OSVDB ID : 61190 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate; Cisco ASA; SonicWALL E-Class SSL VPN and SonicWALL SSL VPN; SafeNet SecureWire Access Gateway; Juniper Networks Secure Access; Nortel CallPilot; Citrix Access Gateway; and other products, when running in configurations that do not restrict access to the same domain as the VPN, retrieve the content of remote URLs from one domain and rewrite them so they originate from the VPN's domain, which violates the same origin policy and allows remote attackers to conduct cross-site scripting attacks, read cookies that originated from other domains, access the Web VPN session to gain access to internal resources, perform key logging, and conduct other attacks. NOTE: it could be argued that this is a fundamental design problem in any clientless VPN solution, as opposed to a commonly-introduced error that can be fixed in separate implementations. Therefore a single CVE has been assigned for all products that have this design.