[CLOSE] OSVDB ID : 38981 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 through 5.5.2 and 6.0 through 6.0.1, when pre-logon sequences are enabled, allow remote attackers to inject arbitrary web script or HTML via the query string to (1) my.activation.php3 and (2) my.logon.php3.

[CLOSE] OSVDB ID : 42984 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have unspecified other impacts related to an "overflow," via certain Windows executable programs, as demonstrated by qemu-dos.com.

[CLOSE] OSVDB ID : 38934 - Disclosed: 2007-11-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 38935 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

[CLOSE] OSVDB ID : 39715 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the Helper class in the yt.ythelper.2 ActiveX control in Yahoo! Toolbar 1.4.1 allows remote attackers to cause a denial of service (browser crash) via a long argument to the c method.

[CLOSE] OSVDB ID : 40549 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in OpenOffice.org code in Planamesa NeoOffice 2.2.2 before Patch 4 has unknown impact and attack vectors related to MacOS 10.3.9 .odb files. NOTE: it is not clear whether this issue is a vulnerability.

[CLOSE] OSVDB ID : 44312 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.

[CLOSE] OSVDB ID : 44313 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.

[CLOSE] OSVDB ID : 44314 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.

[CLOSE] OSVDB ID : 44315 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.

[CLOSE] OSVDB ID : 44316 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.

[CLOSE] OSVDB ID : 44317 - Disclosed: 2007-11-30

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.

[CLOSE] OSVDB ID : 39600 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : The "internal state tracking" code for the random and urandom devices in FreeBSD 5.5, 6.1 through 6.3, and 7.0 beta 4 allows local users to obtain portions of previously-accessed random values, which could be leveraged to bypass protection mechanisms that rely on secrecy of those values.

[CLOSE] OSVDB ID : 38940 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : The PRNG implementation for the OpenSSL FIPS Object Module 1.1.1 does not perform auto-seeding during the FIPS self-test, which generates random data that is more predictable than expected and makes it easier for attackers to bypass protection mechanisms that rely on the randomness.

[CLOSE] OSVDB ID : 42455 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : index.php in FTP Admin 0.1.0 allows remote attackers to bypass authentication and obtain administrative access via a loggedin parameter with a value of true, as demonstrated by adding a user account.

[CLOSE] OSVDB ID : 42456 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in index.php in FTP Admin 0.1.0 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathname or an ftp, ftps, or ssh2.sftp URL.

[CLOSE] OSVDB ID : 42457 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in FTP Admin 0.1.0 allows remote attackers to inject arbitrary web script or HTML via the error parameter in an error page action.

[CLOSE] OSVDB ID : 40827 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Race condition in the Fibre Channel protocol (fcp) driver and Devices filesystem (devfs) in Sun Solaris 10 allows local users to cause a denial of service (system hang) via some programs that access hardware resources, as demonstrated by the (1) cfgadm and (2) format programs.

[CLOSE] OSVDB ID : 40826 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Race condition in the Fibre Channel protocol (fcp) driver and Devices filesystem (devfs) in Sun Solaris 10 allows local users to cause a denial of service (system hang) via some programs that access hardware resources, as demonstrated by the (1) cfgadm and (2) format programs.

[CLOSE] OSVDB ID : 40548 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."

[CLOSE] OSVDB ID : 42454 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : TuMusika Evolution 1.7R5 allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 42809 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : uploadimg.php in the Automatic Image Upload with Thumbnails (imgUpload) module 1.3.2 for PunBB only verifies the Content-type field of uploaded files, which allows remote attackers to upload and execute arbitrary content via a file with a (1) JPG, (2) GIF, or (3) PNG MIME type.

[CLOSE] OSVDB ID : 38924 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in plugins/search/search.php in Neocrome Seditio CMS 121 and earlier allows remote attackers to execute arbitrary SQL commands via the pag_sub[] parameter to plug.php.

[CLOSE] OSVDB ID : 38932 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in the Call Detail Record Postgres logging engine (cdr_pgsql) in Asterisk 1.4.x before 1.4.15, 1.2.x before 1.2.25, B.x before B.2.3.4, and C.x before C.1.0-beta6 allows remote authenticated users to execute arbitrary SQL commands via (1) ANI and (2) DNIS arguments.

[CLOSE] OSVDB ID : 38933 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : SQL injection vulnerability in the Postgres Realtime Engine (res_config_pgsql) in Asterisk 1.4.x before 1.4.15 and C.x before C.1.0-beta6 allows remote attackers to execute arbitrary SQL commands via unknown vectors.

[CLOSE] OSVDB ID : 39697 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in play.php in Web-MeetMe 3.0.3 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) roomNo and possibly the (2) bookid parameter.

[CLOSE] OSVDB ID : 39698 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in include/file_download.php in LearnLoop 2.0 beta7 allows remote attackers to read arbitrary files via a .. (dot dot) in the sFilePath parameter. NOTE: exploitation requires that the product is configured, but has zero files in the database.

[CLOSE] OSVDB ID : 39699 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Multiple directory traversal vulnerabilities in mod/chat/index.php in WebED 0.0.9 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) Root and (2) Path parameters.

[CLOSE] OSVDB ID : 39700 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Directory traversal vulnerability in region.php in KML share 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the layer parameter.

[CLOSE] OSVDB ID : 43715 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Microsoft Windows Media Player (WMP) allows remote attackers to cause a denial of service (application crash) via a certain AIFF file that triggers a divide-by-zero error, as demonstrated by kr.aiff.

[CLOSE] OSVDB ID : 44153 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux (RHEL) 4 and 5 allows local users to cause a denial of service (memory consumption) via a large number of open requests involving O_ATOMICLOOKUP.

[CLOSE] OSVDB ID : 44154 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : The American Power Conversion (APC) AP7932 0u 30amp Switched Rack Power Distribution Unit (PDU), with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access by making a login attempt while a different client is logged in, and then resubmitting the login attempt once the other client exits.

[CLOSE] OSVDB ID : 74029 - Disclosed: 2007-11-29

Description:

(Description Provided by CVE) : Open Ticket Request System (OTRS) before 2.2.6, when customer group support is enabled, allows remote authenticated users to bypass intended access restrictions and perform web-interface updates to tickets by leveraging queue read permissions.

[CLOSE] OSVDB ID : 43316 - Disclosed: 2007-11-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 43317 - Disclosed: 2007-11-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 43318 - Disclosed: 2007-11-28

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 39593 - Disclosed: 2007-11-28

Description:

(Description Provided by CVE) : Unspecified vulnerability in rsync before 3.0.0pre6, when running a writable rsync daemon, allows remote attackers to bypass exclude, exclude_from, and filter and read or write hidden files via (1) symlink, (2) partial-dir, (3) backup-dir, and unspecified (4) dest options.

[CLOSE] OSVDB ID : 39594 - Disclosed: 2007-11-28

Description:

(Description Provided by CVE) : rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy.

[CLOSE] OSVDB ID : 40865 - Disclosed: 2007-11-28

Description:

(Description Provided by CVE) : The Job Engine (bengine.exe) service in Symantec Backup Exec for Windows Servers (BEWS) 11d build 11.0.7170 and 11.0.6.6235 allows remote attackers to cause a denial of service (NULL dereference and service crash) via a crafted packet to port 5633/tcp.

[CLOSE] OSVDB ID : 40821 - Disclosed: 2007-11-28

Description:

(Description Provided by CVE) : Race condition in the Remote Procedure Call kernel module (rpcmod) in Sun Solaris 8 through 10 allows local users to cause a denial of service (NULL dereference and panic) via unspecified vectors.