[CLOSE] OSVDB ID : 33316 - Disclosed: 2007-02-20

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in Francisco Burzi PHP-Nuke 8.0 Final and earlier, when the "HTTP Referers" block is enabled, allows remote attackers to execute arbitrary SQL commands via the HTTP Referer header (HTTP_REFERER variable).

[CLOSE] OSVDB ID : 36843 - Disclosed: 2007-02-20

Description:

(Description Provided by CVE) : SQL injection vulnerability in page.asp in Design4Online UserPages2 2.0 allows remote attackers to execute arbitrary SQL commands via the art_id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 42001 - Disclosed: 2007-02-20

Description:

(Description Provided by CVE) : Unspecified vulnerability in Peanut Knowledge Base (PeanutKB) 0.0.3 and earlier has unknown impact and attack vectors.

[CLOSE] OSVDB ID : 45244 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : VMware Workstation 5.5.3 build 34685 does not provide per-user restrictions on certain privileged actions, which allows local users to perform restricted operations such as changing system time, accessing hardware components, and stopping the "VMware tools service" service. NOTE: exploitation is simplified via (1) weak file permisssions (Users = Read & Execute) for %PROGRAMFILES%\VMware; and weak registry key permissions (access by Users) for (2) vmmouse, (3) vmscsi, (4) VMTools, (5) vmx_svga, and (6) vmxnet in HKLM\SYSTEM\CurrentControlSet\Services\; which allows local users to perform various privileged actions outside of the guest OS by executing certain files under %PROGRAMFILES%\VMware\VMware Tools, as demonstrated by (a) VMControlPanel.cpl and (b) vmwareservice.exe.

[CLOSE] OSVDB ID : 32083 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Format string vulnerability in GnomeMeeting 1.0.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format strings in the name, which is not properly handled in a call to the gnomemeeting_log_insert function.

[CLOSE] OSVDB ID : 33245 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : SQL injection vulnerability in h_goster.asp in Turuncu Portal 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 33248 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in tpl/header.php in VirtualSystem VS-News-System 1.2.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the newsordner parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 33535 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Kayako SupportSuite - ESupport 3.00.13 and 3.04.10 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a (1) lostpassword or (2) register action in index.php, (3) unspecified vectors in the Submit form in a submit action in index.php, and (4) the user's name in index.php; and (5) allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors related to the Admin and Staff Control Panel. NOTE: this might issue overlap CVE-2004-1412, CVE-2005-0487, or CVE-2005-0842.

[CLOSE] OSVDB ID : 33536 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Kayako SupportSuite - ESupport 3.00.13 and 3.04.10 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to a (1) lostpassword or (2) register action in index.php, (3) unspecified vectors in the Submit form in a submit action in index.php, and (4) the user's name in index.php; and (5) allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors related to the Admin and Staff Control Panel. NOTE: this might issue overlap CVE-2004-1412, CVE-2005-0487, or CVE-2005-0842.

[CLOSE] OSVDB ID : 33251 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Unspecified vulnerability in Distributed Checksum Clearinghouse (DCC) before 1.3.51 allows remote attackers to delete or add hosts in /var/dcc/maps.

[CLOSE] OSVDB ID : 34854 - Disclosed: 2007-02-19

Description:

A remote overflow exists in Mac OS X. The gifGetBandProc function in the ImageIO library fails to validate GIF image files resulting in an integer overflow. With a specially crafted file, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 33317 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in index.php in AbleDesign MyCalendar allow remote attackers to inject arbitrary web script or HTML via (1) the go parameter, (2) the keyword parameter in the search menu (go=search), or (3) the username or (4) the password in a go=Login action.

[CLOSE] OSVDB ID : 33318 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in index.php in AbleDesign MyCalendar allow remote attackers to inject arbitrary web script or HTML via (1) the go parameter, (2) the keyword parameter in the search menu (go=search), or (3) the username or (4) the password in a go=Login action.

[CLOSE] OSVDB ID : 33319 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in index.php in AbleDesign MyCalendar allow remote attackers to inject arbitrary web script or HTML via (1) the go parameter, (2) the keyword parameter in the search menu (go=search), or (3) the username or (4) the password in a go=Login action.

[CLOSE] OSVDB ID : 32078 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the AJAX features in index.php in MediaWiki 1.6.x through 1.9.2, when $wgUseAjax is enabled, allows remote attackers to inject arbitrary web script or HTML via a UTF-7 encoded value of the rs parameter, which is processed by Internet Explorer.

[CLOSE] OSVDB ID : 33228 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Niels Provos libevent 1.2 and 1.2a allows remote attackers to cause a denial of service (infinite loop) via a DNS response containing a label pointer that references its own offset.

[CLOSE] OSVDB ID : 33226 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Directory traversal vulnerability in news.php in Xpression News (X-News) 1.0.1, when magic_quotes_gpc is disabled, allows remote attackers to include arbitrary files or obtain sensitive information via a .. (dot dot) in the xnews-template parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 33022 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : The Linux kernel 2.6.13 and other versions before 2.6.20.1 allows remote attackers to cause a denial of service (oops) via a crafted NFSACL 2 ACCESS request that triggers a free of an incorrect pointer.

[CLOSE] OSVDB ID : 33902 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Integer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted QuickTime movie with a User Data Atom (UDTA) with an Atom size field with a large value.

[CLOSE] OSVDB ID : 33905 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Integer overflow in Apple QuickTime before 7.1.5, when installed on Windows operating systems, allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP video file.

[CLOSE] OSVDB ID : 33743 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : SQL injection vulnerability in view.php in XLAtunes 0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the album parameter in view mode. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 33742 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Apple iTunes 7.0.2 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted XML list of radio stations, which results in memory corruption. NOTE: iTunes retrieves the XML document from a static URL, which requires an attacker to perform DNS spoofing or man-in-the-middle attacks for exploitation.

[CLOSE] OSVDB ID : 33741 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Pearson Education PowerSchool 4.3.6 allows remote attackers to list the contents of the admin folder via a URI composed of the admin/ directory name and an arbitrary filename ending in ".js." NOTE: it was later reported that this issue had been addressed by 5.1.2.

[CLOSE] OSVDB ID : 35981 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : SQL injection vulnerability in the category file in modules.php in the Emporium 2.3.0 and earlier module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the category_id parameter.

[CLOSE] OSVDB ID : 37343 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the AJAX features in index.php in MediaWiki 1.9.x before 1.9.0rc2, and 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the rs parameter. NOTE: this issue might be a duplicate of CVE-2007-0177.

[CLOSE] OSVDB ID : 38906 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : Shemes.com Grabit 1.5.3, and possibly earlier, allows remote attackers to cause a denial of service (application crash) via a .nzb file with a subject field containing ';' (semicolon) characters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 53618 - Disclosed: 2007-02-19

Description:

(Description Provided by CVE) : The CCITTFax decoding filter in Ghostscript 8.60, 8.61, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PDF file that triggers a buffer underflow in the cf_decode_2d function.

[CLOSE] OSVDB ID : 32603 - Disclosed: 2007-02-18

Description:

(Description Provided by CVE) : Unspecified vulnerability in phpMyFAQ 1.6.9 and earlier, when register_globals is enabled, allows remote attackers to "gain the privilege for uploading files on the server."

[CLOSE] OSVDB ID : 50180 - Disclosed: 2007-02-18

Description:

(Description Provided by CVE) : Unspecified vulnerability in phpMyFAQ 1.6.9 and earlier, when register_globals is enabled, allows remote attackers to "gain the privilege for uploading files on the server."

[CLOSE] OSVDB ID : 34241 - Disclosed: 2007-02-18

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 33227 - Disclosed: 2007-02-18

Description:

(Description Provided by CVE) : Stack-based buffer overflow in VicFTPS before 5.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long CWD command.

[CLOSE] OSVDB ID : 33225 - Disclosed: 2007-02-18

Description:

(Description Provided by CVE) : Directory traversal vulnerability in archives.php in Xpression News (X-News) 1.0.1 allows remote attackers to include arbitrary files or obtain sensitive information via a .. (dot dot) in the xnews-template parameter.

[CLOSE] OSVDB ID : 33477 - Disclosed: 2007-02-18

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 33223 - Disclosed: 2007-02-18

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in functions_inc.php in VS-Gastebuch 1.5.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the gb_pfad parameter.

[CLOSE] OSVDB ID : 33166 - Disclosed: 2007-02-18

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 32094 - Disclosed: 2007-02-17

Description:

A remote overflow exists in Snort. The DCE/RPC Pre-Processor fails to check if traffic is part of a valid TCP session, and multiple "Write AndX" requests can be chained in the same TCP segment resulting in a stack overflow. With a specially crafted SMB packet, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 34742 - Disclosed: 2007-02-17

Description:

(Description Provided by CVE) : Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet.

[CLOSE] OSVDB ID : 33478 - Disclosed: 2007-02-17

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 33740 - Disclosed: 2007-02-17

Description:

(Description Provided by CVE) : mAlbum 0.3 has default accounts (1) "login"/"pass" for its administrative account and (2) "dqsfg"/"sdfg", which allows remote attackers to gain privileges.

[CLOSE] OSVDB ID : 33739 - Disclosed: 2007-02-17

Description:

Unknown / Incomplete