[CLOSE] OSVDB ID : 38694 - Disclosed: 2007-09-27

Description:

(Description Provided by CVE) : libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge messages from users who are not on the receiver's buddy list, which allows remote attackers to cause a denial of service (crash) via a nudge message that triggers an access of "an invalid memory location."

[CLOSE] OSVDB ID : 37504 - Disclosed: 2007-09-27

Description:

(Description Provided by CVE) : Cisco Catalyst 6500 and Cisco 7600 series devices use 127/8 IP addresses for Ethernet Out-of-Band Channel (EOBC) internal communication, which might allow remote attackers to send packets to an interface for which network exposure was unintended.

[CLOSE] OSVDB ID : 37712 - Disclosed: 2007-09-27

Description:

(Description Provided by CVE) : Race condition in the kernel in Sun Solaris 8 through 10 allows local users to cause a denial of service (panic) via unspecified vectors related to "the handling of thread contexts."

[CLOSE] OSVDB ID : 37757 - Disclosed: 2007-09-27

Description:

(Description Provided by CVE) : Unspecified vulnerability in Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 8.x container, allows remote attackers to execute arbitrary code via unspecified vectors.

[CLOSE] OSVDB ID : 37758 - Disclosed: 2007-09-27

Description:

(Description Provided by CVE) : Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 9.1 container, does not demand authentication after a container restart, which allows remote attackers to perform administrative tasks.

[CLOSE] OSVDB ID : 41377 - Disclosed: 2007-09-27

Description:

(Description Provided by CVE) : F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus scanning by using the system32 directory to store a crafted (1) archive or (2) packed executable. NOTE: in many environments, this does not cross privilege boundaries because any process able to write to system32 could also shut off F-Secure Anti-Virus.

[CLOSE] OSVDB ID : 41363 - Disclosed: 2007-09-27

Description:

A buffer overflow exists in HSM. The CsAgent service fails to validate certain opcodes resulting in a stack overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 41364 - Disclosed: 2007-09-27

Description:

(Description Provided by CVE) : Multiple integer overflows in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r11.6 allow remote attackers to execute arbitrary code via unspecified CsAgent service commands that trigger a heap-based buffer overflow.

[CLOSE] OSVDB ID : 37370 - Disclosed: 2007-09-27

Description:

Nederland contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'includes/archive/archive_topic.php' not properly sanitizing user input supplied to the 'phpbb_root_path' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 37965 - Disclosed: 2007-09-27

Description:

Newswriter contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'editfunc.inc.php' script not properly sanitizing user input supplied to the 'NWCONF_SYSTEM[server_path]' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 38883 - Disclosed: 2007-09-27

Description:

Chupix CMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'admin/include/header.php' script not properly sanitizing user input supplied to the 'repertoire' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 39626 - Disclosed: 2007-09-27

Description:

lustig.cms contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'forum/forum.php' not properly sanitizing user input supplied to the 'view' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 39630 - Disclosed: 2007-09-27

Description:

SiteX CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'search.php' script not properly sanitizing user-supplied input to the 'search' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 39633 - Disclosed: 2007-09-27

Description:

Novus contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'p' variables upon submission to the 'buscar.asp' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 39643 - Disclosed: 2007-09-27

Description:

phpFidoNode contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'phfito-post.php' script not properly sanitizing user input supplied to the 'SRC_PATH' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 50706 - Disclosed: 2007-09-27

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51208 - Disclosed: 2007-09-27

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 87466 - Disclosed: 2007-09-27

Description:

MySQL contains a flaw that is due to the application not properly revoking SSL certificates once they've been authenticated. This may allow a remote attacker to more easily compromise a user's system.

[CLOSE] OSVDB ID : 90273 - Disclosed: 2007-09-27

Description:

libpixman contains a flaw in the create_bits function of pixman-image.c that may allow a denial of service. The issue is triggered when writing to a PNG image file. With a specially crafted file, a context-dependent attacker can cause an integer overflow. This will result in a loss of availability for the program.

[CLOSE] OSVDB ID : 41013 - Disclosed: 2007-09-26

Description:

(Description Provided by CVE) : Unspecified vulnerability in the SSL LOAD GSKIT action in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors, involving a call to dlopen when the effective uid is root.

[CLOSE] OSVDB ID : 40614 - Disclosed: 2007-09-26

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in SimpGB 1.46.02 allow remote attackers to inject arbitrary web script or HTML via (1) the l_username parameter to the default URI under admin/ or (2) the l_emoticonlist parameter to admin/emoticonlist.php.

[CLOSE] OSVDB ID : 40615 - Disclosed: 2007-09-26

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in SimpGB 1.46.02 allow remote attackers to inject arbitrary web script or HTML via (1) the l_username parameter to the default URI under admin/ or (2) the l_emoticonlist parameter to admin/emoticonlist.php.

[CLOSE] OSVDB ID : 37328 - Disclosed: 2007-09-26

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in FrontAccounting (FA) 1.13, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_to_root parameter to (1) access/login.php and (2) includes/lang/language.php, different vectors than CVE-2007-4279.

[CLOSE] OSVDB ID : 37329 - Disclosed: 2007-09-26

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in FrontAccounting (FA) 1.13, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the path_to_root parameter to (1) access/login.php and (2) includes/lang/language.php, different vectors than CVE-2007-4279.

[CLOSE] OSVDB ID : 51173 - Disclosed: 2007-09-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 37344 - Disclosed: 2007-09-26

Description:

(Description Provided by CVE) : SQL injection vulnerability in notas.asp in Novus 1.0 allows remote attackers to execute arbitrary SQL commands via the nota_id parameter.

[CLOSE] OSVDB ID : 39623 - Disclosed: 2007-09-26

Description:

SoftBiz Classifieds contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'store_info.php' script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 39624 - Disclosed: 2007-09-26

Description:

(Description Provided by CVE) : SQL injection vulnerability in index.php in Interspire ActiveKB NX 2.x allows remote attackers to execute arbitrary SQL commands via the catId parameter in a browse action. NOTE: it was separately reported that ActiveKB 1.5 is also affected.

[CLOSE] OSVDB ID : 43674 - Disclosed: 2007-09-26

Description:

(Description Provided by CVE) : The disable_functions feature in PHP 4 and 5 allows attackers to bypass intended restrictions by using an alias, as demonstrated by using ini_alter when ini_set is disabled.

[CLOSE] OSVDB ID : 50463 - Disclosed: 2007-09-26

Description:

(Description Provided by CVE) : SQL injection vulnerability in Wiz-Ad 1.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 45521 - Disclosed: 2007-09-25

Description:

(Description Provided by CVE) : Microsoft Windows Explorer (explorer.exe) allows user-assisted remote attackers to cause a denial of service (CPU consumption) via a certain PNG file with a large tEXt chunk that possibly triggers an integer overflow in PNG chunk size handling, as demonstrated by badlycrafted.png.

[CLOSE] OSVDB ID : 50781 - Disclosed: 2007-09-25

Description:

Black Lily contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the products.php script not properly sanitizing user-supplied input to the class parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 45479 - Disclosed: 2007-09-25

Description:

(Description Provided by CVE) : SimpNews 2.41.03 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download arbitrary .inc files via a direct request, as demonstrated by admin/includes/dbtables.inc.

[CLOSE] OSVDB ID : 37361 - Disclosed: 2007-09-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in eGroupWare 1.4.001 allow remote attackers to inject arbitrary web script or HTML via the cat_data[color] parameter to (1) preferences/inc/class.uicategories.inc.php and (2) admin/inc/class.uicategories.inc.php.

[CLOSE] OSVDB ID : 37362 - Disclosed: 2007-09-25

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in eGroupWare 1.4.001 allow remote attackers to inject arbitrary web script or HTML via the cat_data[color] parameter to (1) preferences/inc/class.uicategories.inc.php and (2) admin/inc/class.uicategories.inc.php.

[CLOSE] OSVDB ID : 37334 - Disclosed: 2007-09-25

Description:

(Description Provided by CVE) : Unspecified vulnerability in the HID (Human Interface Device) class driver in Sun Solaris 8, 9, and 10 before 20070925 allows local users to cause a denial of service (panic) via unspecified vectors.

[CLOSE] OSVDB ID : 38529 - Disclosed: 2007-09-25

Description:

(Description Provided by CVE) : Unspecified vulnerability in Safari in Apple iPhone 1.1.1, and Safari 3 before Beta Update 3.0.4 on Windows and Mac OS X 10.4 through 10.4.10, allows remote attackers to "alter or access" HTTPS content via an HTTP session with a crafted web page that causes Javascript to be applied to HTTPS pages from the same domain.

[CLOSE] OSVDB ID : 38530 - Disclosed: 2007-09-25

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Safari in Apple iPhone 1.1.1 allows remote attackers to inject arbitrary web script or HTML by causing Javascript events to be applied to a frame in another domain.

[CLOSE] OSVDB ID : 38531 - Disclosed: 2007-09-25

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Safari in Apple iPhone 1.1.1, and Safari 3 before Beta Update 3.0.4 on Windows and Mac OS X 10.4 through 10.4.10, allows remote attackers to inject arbitrary web script or HTML via frame tags.

[CLOSE] OSVDB ID : 38532 - Disclosed: 2007-09-25

Description:

(Description Provided by CVE) : Safari in Apple iPhone 1.1.1, when requested to disable Javascript, does not disable it until Safari is restarted, which might leave Safari open to attacks that the user does not expect.