| OSVDB ID | Disclosure Date | Title |
|---|
|
36754
Description:
(Description Provided by CVE) : Unspecified vulnerability in perl.rte 5.8.0.10 through 5.8.0.95 on IBM AIX 5.2, and 5.8.2.10 through 5.8.2.50 on AIX 5.3, allows local users to gain privileges via unspecified vectors related to the installation and "waiting for a legitimate user to execute a binary that ships with Perl."
|
2007-05-31
|
IBM AIX perl.rte (Perl) Unspecified Local Code Execution
|
|
40566
Description:
(Description Provided by CVE) : Google Desktop allows user-assisted remote attackers to execute arbitrary programs via a man-in-the-middle attack that injects JavaScript, a www.google.com search IFRAME, and a META HTTP-EQUIV="refresh" that targets a www.google.com search for a local .exe file, which is displayed in the "results stored on your computer" portion of the search results, and when clicked invokes Google Desktop to execute this file.
|
2007-05-31
|
Google Desktop MITM Crafted Local Search Arbitrary Program Execution
|
|
45785
Description:
(Description Provided by CVE) : vtiger CRM before 5.0.3, when a migrated build is used, allows remote authenticated users to read certain other users' calendar activities via a (1) home page or (2) event list view.
|
2007-05-31
|
vtiger CRM Arbitrary User Calendar Activity Access
|
|
36799
Description:
(Description Provided by CVE) : Heap-based buffer overflow in the bx_ne2k_c::rx_frame function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register values to exceed the device memory size, aka "RX Frame heap overflow."
|
2007-05-31
|
Bochs NE2000 iodev/ne2k.cc bx_ne2k_c::rx_frame Function Local Overflow
|
|
36896
Description:
(Description Provided by CVE) : The DWUpdateService ActiveX control in the agent (agent.exe) in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allows remote attackers to execute arbitrary commands via (1) the Execute method, and obtain the exit status using (2) the GetExitCode method.
|
2007-05-31
|
Macrovision FLEXnet DWUpdateService ActiveX (agent.exe) Multiple Method Arbitrary Command Execution
|
|
39280
Description:
Unknown / Incomplete
|
2007-05-31
|
PHP openssl_pkcs12_read() Function DoS
|
|
35740
Description:
(Description Provided by CVE) : SendCard 3.3.0 allows remote attackers to obtain sensitive information via an invalid sc_language parameter to sendcard.php, which reveals the path in an error message.
|
2007-05-31
|
sendcard sendcard.php sc_language Variable Path Disclosure
|
|
44736
Description:
Unknown / Incomplete
|
2007-05-31
|
IBM DB2 Universal Database sqnq Malformed values Syntax DoS
|
|
38345
Description:
(Description Provided by CVE) : Multiple SQL injection vulnerabilities in myBloggie 2.1.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat_id or (2) year parameter to index.php in a viewuser action, different vectors than CVE-2005-1500 and CVE-2005-4225.
|
2007-05-31
|
MyBloggie index.php Multiple Parameter SQL Injection
|
|
39230
Description:
(Description Provided by CVE) : Stack-based buffer overflow in the Vivotek Motion Jpeg ActiveX control (aka MjpegControl) in MjpegDecoder.dll 2.0.0.13 allows remote attackers to execute arbitrary code via a long PtzUrl property value.
|
2007-05-31
|
Vivotek Motion Jpeg ActiveX (MjpegDecoder.dll) PtzUrl Property Value Overflow
|
|
43455
Description:
(Description Provided by CVE) : Buffer overflow in Acoustica MP3 CD Burner 4.32 allows user-assisted remote attackers to execute arbitrary code via a .asx playlist file with a REF element containing a long string in the HREF attribute. NOTE: it was later claimed that 4.51 Build 147 is also affected.
|
2007-05-31
|
Acoustica MP3 CD Burner ASX File Handling Overflow Arbitrary Code Execution
|
|
35712
Description:
(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in Softnews Media Group DataLife Engine allow remote attackers to execute arbitrary PHP code via a URL in the root_dir parameter to (1) init.php and (2) Ajax/editnews.php. NOTE: some of these details are obtained from third party information.
|
2007-05-30
|
DataLife Engine root_dir Multiple Parameter Remote File Inclusion
|
|
35522
Description:
(Description Provided by CVE) : unrar.c in libclamav in ClamAV before 0.90.3 and 0.91 before 0.91rc1 allows remote attackers to cause a denial of service (core dump) via a crafted RAR file with a modified vm_codesize value, which triggers a heap-based buffer overflow.
|
2007-05-30
|
Clam AntiVirus libclamav Multiple Unspecified Issue
|
|
36128
Description:
(Description Provided by CVE) : Apple Xserve Lights-Out Management before Firmware Update 1.0 on Intel hardware does not require a password for remote access to IPMI, which allows remote attackers to gain administrative access via unspecified requests with ipmitool.
|
2007-05-30
|
Apple Xserve Lights-Out Management IPMI Unauthenticated Access
|
|
35576
Description:
A buffer overflow exists in QuickTime. QuickTime for Java fails to validate applets resulting in a heap overflow. With a specially crafted applet, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.
|
2007-05-30
|
Apple QuickTime QTObject Subclassing Arbitrary Code Execution
|
|
36827
Description:
(Description Provided by CVE) : Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
|
2007-05-30
|
GNU findutils locate/locate.c visit_old_format Function Overflow
|
|
36727
Description:
(Description Provided by CVE) : Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and 2007; Anti-Virus 2005, 2006 and 2007; and Solutions based on F-Secure Protection Service for Consumers 6.40 and earlier allows local users to gain privileges via a crafted I/O request packet (IRP), related to IOCTL (Input/Output Control) and "access validation of the address space."
|
2007-05-30
|
F-Secure Multiple Products Real-time Scanning Component Crafted IRP Packet Local Privilege Escalation
|
|
36725
Description:
(Description Provided by CVE) : Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070522 allow remote attackers to cause a denial of service (file scanning infinite loop) via certain crafted (1) ARJ archives or (2) FSG packed files.
|
2007-05-30
|
F-Secure Anti-Virus ARJ File Handling DoS
|
|
36726
Description:
(Description Provided by CVE) : Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070522 allow remote attackers to cause a denial of service (file scanning infinite loop) via certain crafted (1) ARJ archives or (2) FSG packed files.
|
2007-05-30
|
F-Secure Anti-Virus FSG File Handling DoS
|
|
35134
Description:
(Description Provided by CVE) : Multiple vulnerabilities in the layout engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote attackers to cause a denial of service (crash) via vectors related to dangling pointers, heap corruption, signed/unsigned, and other issues.
|
2007-05-30
|
Mozilla Multiple Products Layout Engine Unspecified Memory Corruption
|
|
35135
Description:
(Description Provided by CVE) : The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service (persistent temporary CPU consumption) via a large number of characters in a submitted form.
|
2007-05-30
|
Mozilla Firefox Persistent Auto-complete DoS
|
|
35136
Description:
(Description Provided by CVE) : Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2, allows remote attackers to bypass the same-origin policy and conduct cross-site scripting (XSS) and other attacks by using the addEventListener method to add an event listener for a site, which is executed in the context of that site.
|
2007-05-30
|
Mozilla Multiple Browser addEventListener Method XSS
|
|
35137
Description:
(Description Provided by CVE) : Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2, allows remote attackers to spoof or hide the browser chrome, such as the location bar, by placing XUL popups outside of the browser's content pane. NOTE: this issue can be leveraged for phishing and other attacks.
|
2007-05-30
|
Mozilla Multiple Browser XUL Popup Spoofing
|
|
35138
Description:
(Description Provided by CVE) : Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, Thunderbird 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors that trigger memory corruption.
|
2007-05-30
|
Mozilla Multiple Products JavaScript Engine Unspecified Memory Corruption
|
|
35139
Description:
Mozilla Firefox and SeaMonkey contain a flaw that may allow a remote denial of service. The issue is triggered due to the cookie path parameter not properly verifying user-supplied input, and will result in loss of availability for the application.
|
2007-05-30
|
Mozilla Multiple Browser Cookie Path Data DoS
|
|
35140
Description:
(Description Provided by CVE) : Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2, allows remote attackers to cause a denial of service via (1) a large cookie path parameter, which triggers memory consumption, or (2) an internal delimiter within cookie path or name values, which could trigger a misinterpretation of cookie data, aka "Path Abuse in Cookies."
|
2007-05-30
|
Mozilla Multiple Browser Cross Policy Cookie Handling Weakness
|
|
36819
Description:
(Description Provided by CVE) : Buffer overflow in Advanced Software Production Line Vortex Library before 1.0.3 allows remote attackers to cause a denial of service (listener crash) via unspecified vectors related to the select I/O implementation and the file set buffer. NOTE: some of these details are obtained from third party information.
|
2007-05-30
|
Vortex Library select(2) Overflow DoS
|
|
36724
Description:
(Description Provided by CVE) : Buffer overflow in the LHA decompresion component in F-Secure anti-virus products for Microsoft Windows and Linux before 20070529 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted LHA archive, related to an integer wrap, a similar issue to CVE-2006-4335.
|
2007-05-30
|
F-Secure Anti-Virus LHA Decompresion Component File Handling Overflow
|
|
45393
Description:
(Description Provided by CVE) : PHP JackKnife (PHPJK) allows remote attackers to obtain sensitive information via (1) a request to index.php with an invalid value of the iParentUnq[] parameter, or a request to G_Display.php with an invalid (2) iCategoryUnq[] or (3) sSort[] array parameter, which reveals the path in various error messages.
|
2007-05-30
|
PHP JackKnife (PHPJK) index.php Malformed iParentUnq[] Variable Path Disclosure
|
|
45394
Description:
(Description Provided by CVE) : PHP JackKnife (PHPJK) allows remote attackers to obtain sensitive information via (1) a request to index.php with an invalid value of the iParentUnq[] parameter, or a request to G_Display.php with an invalid (2) iCategoryUnq[] or (3) sSort[] array parameter, which reveals the path in various error messages.
|
2007-05-30
|
PHP JackKnife (PHPJK) G_Display.php Multiple Variable Path Disclosure
|
|
45392
Description:
(Description Provided by CVE) : The parsing engine in ClamAV before 0.90.3 and 0.91 before 0.91rc1 allows remote attackers to bypass scanning via a RAR file with a header flag value of 10, which can be processed by WinRAR.
|
2007-05-30
|
ClamAV Parsing Engine Crafted RAR File Scanning Bypass
|
|
36718
Description:
(Description Provided by CVE) : Multiple buffer overflows in the British Telecommunications Business Connect webhelper ActiveX control before 1.0.0.7 in btbconnectwebcontrol.dll allow remote attackers to execute arbitrary code via unspecified vectors.
|
2007-05-30
|
British Telecommunications Business Connect webhelper btbconnectwebcontrol.dll ActiveX Multiple Unspecified Overflows
|
|
36046
Description:
(Description Provided by CVE) : A certain ActiveX control in sasatl.dll in Zenturi ProgramChecker allows remote attackers to download arbitrary files to the client system via the DownloadFile function.
|
2007-05-30
|
Zenturi ProgramChecker ActiveX (sasatl.dll) DownloadFile Function Arbitrary File Download
|
|
36908
Description:
(Description Provided by CVE) : unsp.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors.
|
2007-05-30
|
Clam AntiVirus unsp.c Unspecified DoS
|
|
36197
Description:
(Description Provided by CVE) : Buffer overflow in Qualcomm Eudora 7.1.0.9 allows user-assisted, remote IMAP servers to execute arbitrary code via a long FLAGS response to a SELECT INBOX command.
|
2007-05-30
|
Eudora IMAP SELECT INBOX Command FLAGS Response Overlfow
|
|
57147
Description:
Unknown / Incomplete
|
2007-05-30
|
RoundCube Webmail Submitted Host Value Unspecified Issue
|
|
57146
Description:
Unknown / Incomplete
|
2007-05-30
|
RoundCube Webmail Contact Deletion Unspecified Issue
|
|
57145
Description:
Unknown / Incomplete
|
2007-05-30
|
RoundCube Webmail Emoticon Path Attachment Unspecified Issue
|
|
57144
Description:
Unknown / Incomplete
|
2007-05-30
|
RoundCube Webmail Unspecified XSS (1484109)
|
|
57140
Description:
Unknown / Incomplete
|
2007-05-30
|
RoundCube Webmail Multiple Unspecified XSS
|
