| OSVDB ID | Disclosure Date | Title |
|---|
|
47864
Description:
Web Directory Script contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'site' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2008-08-31
|
Web Directory Script index.php site Parameter SQL Injection
|
|
47912
Description:
Words Tag contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'word' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2008-08-31
|
Words Tag index.php word Parameter SQL Injection
|
|
48047
Description:
(Description Provided by CVE) : src/main-win.c in GPicView 0.1.9 in Lightweight X11 Desktop Environment (LXDE) allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename.
|
2008-08-31
|
LXDE GPicView src/main-win.c Shell Metacharacter Arbitrary Command Execution
|
|
48167
Description:
myPHPNuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'sid' variables upon submission to the 'print.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2008-08-31
|
myPHPNuke print.php sid Parameter XSS
|
|
51652
Description:
(Description Provided by CVE) : Plesk 8.6.0, when short mail login names (SHORTNAMES) are enabled, allows remote attackers to bypass authentication and send spam e-mail via a message with (1) a base64-encoded username that begins with a valid shortname, or (2) a username that matches a valid password, as demonstrated using (a) SMTP and qmail, and (b) Courier IMAP and POP3.
|
2008-08-31
|
Plesk SHORTNAMES Function SMTP / POP3 Authentication Bypass Weakness
|
|
54077
Description:
myPHPNuke contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'print.php' script not properly sanitizing user-supplied input to the 'sid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2008-08-31
|
myPHPNuke print.php sid Parameter SQL Injection
|
|
57578
Description:
WeBid contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin panel not properly sanitizing user-supplied input to the 'username' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database and bypass authentication.
|
2008-08-31
|
WeBid Admin Panel username Parameter SQL Injection Authentication Bypass
|
|
57579
Description:
WeBid contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a direct request is made to logs/cron.log, which will disclose SQL query log information resulting in a loss of confidentiality.
|
2008-08-31
|
WeBid logs/cron.log Direct Request Information Disclosure
|
|
57662
Description:
(Description Provided by CVE) : eledicss.php in WeBid auction script 0.5.4 allows remote attackers to modify arbitrary cascading style sheets (CSS) files via a certain request with the file parameter set to style.css. NOTE: this can probably be leveraged for cross-site scripting (XSS) attacks.
|
2008-08-31
|
WeBid eledicss.php file Parameter Arbitrary CSS File Modification
|
|
48471
Description:
(Description Provided by CVE) : The proc_do_xprt function in net/sunrpc/sysctl.c in the Linux kernel 2.6.26.3 does not check the length of a certain buffer obtained from userspace, which allows local users to overflow a stack-based buffer and have unspecified other impact via a crafted read system call for the /proc/sys/sunrpc/transports file.
|
2008-08-30
|
Linux Kernel net/sunrpc/sysctl.c proc_do_xprt Function Local Overflow
|
|
48254
Description:
(Description Provided by CVE) : The VMware Consolidated Backup (VCB) command-line utilities in VMware ESX 3.0.1 through 3.0.3 and ESX 3.5 place a password on the command line, which allows local users to obtain sensitive information by listing the process.
|
2008-08-30
|
VMware ESX / ESXi VMware Consolidated Backup (VCB) Multiple Utility Command Line Cleartext Password Disclosure
|
|
48158
Description:
(Description Provided by CVE) : Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via a long XML entity name.
|
2008-08-30
|
libxml2 parser.c xmlParseAttValueComplex Function XML Entity Name Handling DoS
|
|
48247
Description:
(Description Provided by CVE) : Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-3692, CVE-2008-3693, CVE-2008-3694, CVE-2008-3695, and CVE-2008-3696.
|
2008-08-30
|
VMware Multiple Products Unspecified ActiveX Unspecified Issue (1)
|
|
48248
Description:
(Description Provided by CVE) : Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-3691, CVE-2008-3693, CVE-2008-3694, CVE-2008-3695, and CVE-2008-3696.
|
2008-08-30
|
VMware Multiple Products Unspecified ActiveX Unspecified Issue (2)
|
|
48249
Description:
(Description Provided by CVE) : Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-3691, CVE-2008-3692, CVE-2008-3694, CVE-2008-3695, and CVE-2008-3696.
|
2008-08-30
|
VMware Multiple Products Unspecified ActiveX Unspecified Issue (3)
|
|
48250
Description:
(Description Provided by CVE) : Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-3691, CVE-2008-3692, CVE-2008-3693, CVE-2008-3695, and CVE-2008-3696.
|
2008-08-30
|
VMware Multiple Products Unspecified ActiveX Unspecified Issue (4)
|
|
48251
Description:
(Description Provided by CVE) : Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-3691, CVE-2008-3692, CVE-2008-3693, CVE-2008-3694, and CVE-2008-3696.
|
2008-08-30
|
VMware Multiple Products Unspecified ActiveX Unspecified Issue (5)
|
|
48246
Description:
(Description Provided by CVE) : Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-3691, CVE-2008-3692, CVE-2008-3693, CVE-2008-3694, and CVE-2008-3695.
|
2008-08-30
|
VMware Multiple Products Unspecified ActiveX Unspecified Issue (6)
|
|
48253
Description:
(Description Provided by CVE) : Unspecified vulnerability in the OpenProcess function in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 on Windows allows local host OS users to gain privileges on the host OS via unknown vectors.
|
2008-08-30
|
VMware Workstation OpenProcess Function Local Privilege Escalation
|
|
48252
Description:
(Description Provided by CVE) : An unspecified ISAPI extension in VMware Server before 1.0.7 build 108231 allows remote attackers to cause a denial of service (IIS crash) via a malformed request.
|
2008-08-30
|
VMware Server Unspecified ISAPI Extension Malformed Request Remote DoS
|
|
48435
Description:
(Description Provided by CVE) : Buffer overflow in a certain ActiveX control in the COM API in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a call to the GuestInfo method in which there is a long string argument, and an assignment of a long string value to the result of this call. NOTE: this may overlap CVE-2008-3691, CVE-2008-3692, CVE-2008-3693, CVE-2008-3694, CVE-2008-3695, or CVE-2008-3696.
|
2008-08-30
|
VMware Multiple Products COM API ActiveX GuestInfo Method Overflow
|
|
62579
Description:
Unknown / Incomplete
|
2008-08-30
|
Bournal Insecure File Permissions Weakness
|
|
47862
Description:
(Description Provided by CVE) : Stack-based buffer overflow in Acoustica Beatcraft 1.02 Build 19 allows user-assisted attackers to cause a denial of service or execute arbitrary code via a Beatcraft Project (aka bcproj) file with a long string in a certain instruments title field.
|
2008-08-30
|
Beatcraft Crafted BCPROJ File Handling Overflow
|
|
47860
Description:
Brim contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'value' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2008-08-30
|
Tasks Plugin for Brim index.php value Parameter SQL Injection
|
|
47861
Description:
Brim contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'name' variables upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2008-08-30
|
Bookmarks Plugin for Brim index.php name Parameter XSS
|
|
47882
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in @Mail 5.42 allow remote attackers to inject arbitrary web script or HTML via the (1) file and (2) HelpFile parameters to parse.php, the (3) Folder and (4) start parameters to showmail.php, and the (5) abookview parameter to abook.php.
|
2008-08-30
|
@Mail parse.php Multiple Parameter XSS
|
|
47883
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in @Mail 5.42 allow remote attackers to inject arbitrary web script or HTML via the (1) file and (2) HelpFile parameters to parse.php, the (3) Folder and (4) start parameters to showmail.php, and the (5) abookview parameter to abook.php.
|
2008-08-30
|
@Mail showmail.php start Parameter XSS
|
|
47884
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in @Mail 5.42 allow remote attackers to inject arbitrary web script or HTML via the (1) file and (2) HelpFile parameters to parse.php, the (3) Folder and (4) start parameters to showmail.php, and the (5) abookview parameter to abook.php.
|
2008-08-30
|
@Mail abook.php abookview Parameter XSS
|
|
48165
Description:
myPHPNuke contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'printfeature.php' script not properly sanitizing user-supplied input to the 'artid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2008-08-30
|
myPHPNuke printfeature.php artid Parameter SQL Injection
|
|
58804
Description:
Unknown / Incomplete
|
2008-08-30
|
Apache Wicket Header Contribution Unspecified Issue
|
|
48159
Description:
Unknown / Incomplete
|
2008-08-29
|
Novell Identity Manager (IDM) ForgotPassword.jsf rtnaddr Attribute XSS
|
|
48160
Description:
Unknown / Incomplete
|
2008-08-29
|
Novell Identity Manager (IDM) Detail Portlet Unspecified XSS
|
|
48161
Description:
Unknown / Incomplete
|
2008-08-29
|
Novell Identity Manager (IDM) Request & Approval Forms Unspecified XSS
|
|
48162
Description:
Unknown / Incomplete
|
2008-08-29
|
Novell Identity Manager (IDM) Portal Unspecified XSS
|
|
48212
Description:
Unknown / Incomplete
|
2008-08-29
|
Novell eDirectory SCRIPTS Ndsconfig Upgrade Unspecified Password Bypass
|
|
48211
Description:
(Description Provided by CVE) : Heap-based buffer overflows in Novell eDirectory HTTP protocol stack (HTTPSTK) before 8.8 SP3 have unknown impact and attack vectors related to the (1) HTTP language header and (2) HTTP content-length header.
|
2008-08-29
|
Novell eDirectory HTTPSDK Length Header Handling Overflow
|
|
48210
Description:
(Description Provided by CVE) : Heap-based buffer overflows in Novell eDirectory HTTP protocol stack (HTTPSTK) before 8.8 SP3 have unknown impact and attack vectors related to the (1) HTTP language header and (2) HTTP content-length header.
|
2008-08-29
|
Novell eDirectory HTTPSDK Language Header Handling Overflow
|
|
48209
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the HTTP Protocol Stack (HTTPSTK) in Novell eDirectory before 8.8 SP3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
2008-08-29
|
Novell eDirectory HTTPSDK Unspecified XSS
|
|
48208
Description:
Unknown / Incomplete
|
2008-08-29
|
Novell eDirectory LDAP on Windows Unspecified Memory Corruption DoS
|
|
48207
Description:
(Description Provided by CVE) : Buffer overflow in the LDAP Service in Novell eDirectory 8.7.3 before SP10a and 8.8 before SP3 allows attackers to cause a denial of service (application crash) via vectors involving an "invalid extensibleMatch filter."
|
2008-08-29
|
Novell eDirectory LDAP Unspecified Overflow
|
