[CLOSE] OSVDB ID : 32356 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Buffer overflow in Astonsoft DeepBurner Pro and Free 1.8.0 and earlier allows user-assisted remote attackers to execute arbitrary code via a long file name tag in a dbr file.

[CLOSE] OSVDB ID : 32363 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/account.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32364 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/admin_newcomm.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32365 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/body.inc.php script not properly sanitizing user input supplied to the 'incpath' and 'menu' variables. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32366 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/body_admin.inc.php script not properly sanitizing user input supplied to the 'incpath' and 'menu' variables. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32367 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/comm_post.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32368 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/commrecc.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32369 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/do_reg.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32370 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/friends.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32371 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/header.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32372 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/header_admin.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32373 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/index.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32374 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/menu_u.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32375 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/menu_v.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32376 - Disclosed: 2006-12-19

Description:

phpProfiles contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the /include/notify.inc.php script not properly sanitizing user input supplied to the 'incpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 32393 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Unspecified vulnerability in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 5 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_10 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allows attackers to use untrusted applets to "access data in other applets," aka "The first issue."

[CLOSE] OSVDB ID : 32353 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in export_handler.php in WebCalendar 1.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the format parameter.

[CLOSE] OSVDB ID : 32360 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Variable overwrite vulnerability in blog.php in PHP-Update 2.7 and earlier allows remote attackers to overwrite arbitrary program variables and execute arbitrary PHP code via multiple vectors that use the extract function, as demonstrated by the (1) f, (2) newmessage, (3) newusername, (4) adminuser, and (5) permission parameters.

[CLOSE] OSVDB ID : 32361 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Variable overwrite vulnerability in blog.php in PHP-Update 2.7 and earlier allows remote attackers to overwrite arbitrary program variables and execute arbitrary PHP code via multiple vectors that use the extract function, as demonstrated by the (1) f, (2) newmessage, (3) newusername, (4) adminuser, and (5) permission parameters.

[CLOSE] OSVDB ID : 37125 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Unspecified versions of the Linux kernel allow local users to cause a denial of service (unrecoverable zombie process) via a program with certain instructions that prevent init from properly reaping a child whose parent has died.

[CLOSE] OSVDB ID : 32357 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, and Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, allow attackers to develop Java applets or applications that are able to gain privileges, related to serialization in JRE.

[CLOSE] OSVDB ID : 32358 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Multiple buffer overflows in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allow attackers to develop Java applets that read, write, or execute local files, possibly related to (1) integer overflows in the Java_sun_awt_image_ImagingLib_convolveBI, awt_parseRaster, and awt_parseColorModel functions; (2) a stack overflow in the Java_sun_awt_image_ImagingLib_lookupByteRaster function; and (3) improper handling of certain negative values in the Java_sun_font_SunLayoutEngine_nativeLayout function. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 32931 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Multiple buffer overflows in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allow attackers to develop Java applets that read, write, or execute local files, possibly related to (1) integer overflows in the Java_sun_awt_image_ImagingLib_convolveBI, awt_parseRaster, and awt_parseColorModel functions; (2) a stack overflow in the Java_sun_awt_image_ImagingLib_lookupByteRaster function; and (3) improper handling of certain negative values in the Java_sun_font_SunLayoutEngine_nativeLayout function. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 32932 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Multiple buffer overflows in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allow attackers to develop Java applets that read, write, or execute local files, possibly related to (1) integer overflows in the Java_sun_awt_image_ImagingLib_convolveBI, awt_parseRaster, and awt_parseColorModel functions; (2) a stack overflow in the Java_sun_awt_image_ImagingLib_lookupByteRaster function; and (3) improper handling of certain negative values in the Java_sun_font_SunLayoutEngine_nativeLayout function. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 32933 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Multiple buffer overflows in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allow attackers to develop Java applets that read, write, or execute local files, possibly related to (1) integer overflows in the Java_sun_awt_image_ImagingLib_convolveBI, awt_parseRaster, and awt_parseColorModel functions; (2) a stack overflow in the Java_sun_awt_image_ImagingLib_lookupByteRaster function; and (3) improper handling of certain negative values in the Java_sun_font_SunLayoutEngine_nativeLayout function. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 32934 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Multiple buffer overflows in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allow attackers to develop Java applets that read, write, or execute local files, possibly related to (1) integer overflows in the Java_sun_awt_image_ImagingLib_convolveBI, awt_parseRaster, and awt_parseColorModel functions; (2) a stack overflow in the Java_sun_awt_image_ImagingLib_lookupByteRaster function; and (3) improper handling of certain negative values in the Java_sun_font_SunLayoutEngine_nativeLayout function. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 32380 - Disclosed: 2006-12-19

Description:

Mac OS X contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when Quicktime for Java is used in conjunction with Quartz Composer to grab local screen images, which will disclose window contents information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 32390 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in urlobox in MKPortal allows remote attackers to delete arbitrary messages as an administrator via a delete operation in an img BBcode tag.

[CLOSE] OSVDB ID : 32076 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : SQL injection vulnerability in down.asp in Burak Yylmaz Download Portal allows remote attackers to execute arbitrary SQL commands via the id parameter.

[CLOSE] OSVDB ID : 32346 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Race condition in W29N51.SYS in the Intel 2200BG wireless driver 9.0.3.9 allows remote attackers to cause memory corruption and execute arbitrary code via a series of crafted beacon frames. NOTE: some details are obtained solely from third party information.

[CLOSE] OSVDB ID : 32077 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in support/view.php in Support Cards 1 (osTicket) allows remote attackers to inject arbitrary web script or HTML via the e parameter.

[CLOSE] OSVDB ID : 32379 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in the (1) LIST or (2) NLST command.

[CLOSE] OSVDB ID : 32362 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : WinFtp Server 2.0.2 allows remote attackers to cause a denial of service (crash) via long (1) PASV, (2) LIST, (3) USER, (4) PORT, and possibly other commands.

[CLOSE] OSVDB ID : 32383 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in statistic.php in cwmCounter 5.1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.

[CLOSE] OSVDB ID : 38216 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : ** DISPUTED ** Absolute path traversal vulnerability in Oracle Database Server, when utl_file_dir is set to a wildcard value or "CREATE ANY DIRECTORY to PUBLIC" privileges exist, allows remote authenticated users to read and modify arbitrary files via full filepaths to utl_file functions such as (1) utl_file.put_line and (2) utl_file.get_line, a related issue to CVE-2005-0701. NOTE: this issue is disputed by third parties who state that this is due to an insecure configuration instead of an inherent vulnerability.

[CLOSE] OSVDB ID : 37389 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Directory traversal vulnerability in index.php in cwmExplorer 1.0 allows remote attackers to read arbitrary files and source code, and obtain sensitive information via directory traversal sequences in the show_file parameter.

[CLOSE] OSVDB ID : 35200 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : The nodeType function in KDE libkhtml 4.2.0 and earlier, as used by Konquerer, KMail, and other programs, allows remote attackers to cause a denial of service (crash) via malformed HTML tags, possibly involving a COL SPAN tag embedded in a RANGE tag.

[CLOSE] OSVDB ID : 34830 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : The Microsoft Office Outlook Recipient ActiveX control (ole32.dll) in Windows XP SP2 allows remote attackers to cause a denial of service (Internet Explorer 7 hang) via crafted HTML.

[CLOSE] OSVDB ID : 35709 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in buycd.php in Paristemi 0.8.3 allows remote attackers to execute arbitrary PHP code via a URL in the HTTP_DOCUMENT_ROOT parameter, a different vector than CVE-2006-6689.

[CLOSE] OSVDB ID : 30854 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Unspecified vulnerability in CA CleverPath Portal before maintenance version 4.71.001_179_060830, as used in multiple products including BrightStor Portal r11.1, CleverPath Aion BPM r10 through r10.2, eTrust Security Command Center r1 and r8, and Unicenter, does not properly handle when multiple Portal servers are started at the same time and share the same data store, which might cause a Portal user to inherit the session and credentials of a user who is on another Portal server.