[CLOSE] OSVDB ID : 52024 - Disclosed: 2009-01-30

Description:

Bugs Online contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the help.asp script not properly sanitizing user-supplied input to the style parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 52705 - Disclosed: 2009-01-30

Description:

(Description Provided by CVE) : Unspecified vulnerability in VMware ESXi 3.5 before ESXe350-200901401-I-SG and ESX 3.5 before ESX350-200901401-SG allows local administrators to cause a denial of service (host crash) via a snapshot with a malformed VMDK delta disk.

[CLOSE] OSVDB ID : 52270 - Disclosed: 2009-01-30

Description:

OpenBSD contains a flaw that may allow a remote denial of service. The issue is triggered when bgpd receives a malformed AS4_PATH message, and will result in termination of the BGP session, likely resulting in disruption of network connectivity.

[CLOSE] OSVDB ID : 53635 - Disclosed: 2009-01-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 54352 - Disclosed: 2009-01-30

Description:

(Description Provided by CVE) : Argument injection vulnerability in Enomaly Elastic Computing Platform (ECP), formerly Enomalism, before 2.1.1 allows local users to send signals to arbitrary processes by populating the /tmp/enomalism2.pid file with command-line arguments for the kill program.

[CLOSE] OSVDB ID : 52862 - Disclosed: 2009-01-30

Description:

(Description Provided by CVE) : The console selection feature in the Linux kernel 2.6.28 before 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows physically proximate attackers to cause a denial of service (memory corruption) by selecting a small number of 3-byte UTF-8 characters, which triggers an "an off-by-two memory error." NOTE: it is not clear whether this issue crosses privilege boundaries.

[CLOSE] OSVDB ID : 51724 - Disclosed: 2009-01-30

Description:

BPAutoSales contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'aid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51694 - Disclosed: 2009-01-30

Description:

SalesCart contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the online/menu.asp script not properly sanitizing user-supplied input to the 'name' and 'code' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 51698 - Disclosed: 2009-01-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51693 - Disclosed: 2009-01-30

Description:

(Description Provided by CVE) : The SaveDoc method in the All_In_The_Box.AllBox ActiveX control in ALL_IN_THE_BOX.OCX in Synactis ALL In-The-Box ActiveX 3 allows remote attackers to create and overwrite arbitrary files via an argument ending in a '\0' character, which bypasses the intended .box filename extension, as demonstrated by a C:\boot.ini\0 argument.

[CLOSE] OSVDB ID : 51695 - Disclosed: 2009-01-30

Description:

SalesCart contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'customer/cmenu.asp' script not properly sanitizing user-supplied input to the 'code' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51699 - Disclosed: 2009-01-30

Description:

Twitter Clone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'rss/user_updates.php' script not properly sanitizing user-supplied input to the 'user' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51725 - Disclosed: 2009-01-30

Description:

BPAutoSales contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'type' variables upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 51806 - Disclosed: 2009-01-30

Description:

4Site CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the pcgi/4site.pl script not properly sanitizing user-supplied input to the 'login' and 'password' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 51807 - Disclosed: 2009-01-30

Description:

4Site CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'print/print.shtml' script not properly sanitizing user-supplied input to the 'page' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51808 - Disclosed: 2009-01-30

Description:

4Site CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the portfolio/index.shtml script not properly sanitizing user-supplied input to the 's' and 'i' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 51809 - Disclosed: 2009-01-30

Description:

4Site CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'faq/index.shtml' script not properly sanitizing user-supplied input to the 'th' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 57252 - Disclosed: 2009-01-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Boonex Orca 2.0 and 2.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the topic title field.

[CLOSE] OSVDB ID : 66192 - Disclosed: 2009-01-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52025 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 53897 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : The verifyProof function in the Token Processing System (TPS) component in Red Hat Certificate System (RHCS) 7.1 through 7.3 and Dogtag Certificate System 1.0 returns successfully even when token enrollment did not use the hardware key, which allows remote authenticated users with enrollment privileges to bypass intended authentication policies by performing enrollment with a software key.

[CLOSE] OSVDB ID : 52576 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Embedded Lights Out Manager (ELOM) on the Sun Fire X2100 M2 and X2200 M2 x86 platforms before SP/BMC firmware 3.20 allows remote attackers to obtain privileged ELOM login access or execute arbitrary Service Processor (SP) commands via unknown vectors, aka Bug ID 6633175, a different vulnerability than CVE-2007-5717.

[CLOSE] OSVDB ID : 56434 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Multiple insecure method vulnerabilities in the Web On Windows (WOW) ActiveX control in WOW ActiveX 2 allow remote attackers to (1) create and overwrite arbitrary files via the WriteIniFileString method, (2) execute arbitrary programs via the ShellExecute method, (3) read from the registry via unspecified vectors, and (4) write to the registry via unspecified vectors. NOTE: vectors 1 and 2 can be used together to execute arbitrary code.

[CLOSE] OSVDB ID : 51650 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Bioinformatics htmLawed 1.1.3 and 1.1.4 allow remote attackers to inject arbitrary web script or HTML via invalid Cascading Style Sheets (CSS) expressions in the style attribute, which is processed by Internet Explorer 7.

[CLOSE] OSVDB ID : 52198 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux kernel before 2.6.28.6 permits SKFP_CLR_STATS requests only when the CAP_NET_ADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an "inverted logic" issue.

[CLOSE] OSVDB ID : 52606 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in IBM AIX 5.2.0 through 6.1.2 allow local users to append data to arbitrary files, related to (1) rmsock and (2) rmsock64 not creating "secure log files."

[CLOSE] OSVDB ID : 52472 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52625 - Disclosed: 2009-01-29

Description:

Oracle Forms contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "form" parameter upon submission to "ifcgi60.exe". This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 52626 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52234 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52235 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52194 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_basic_verify function, which might allow remote attackers to successfully present an invalid X.509 certificate, possibly involving a revoked certificate.

[CLOSE] OSVDB ID : 52642 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : ** DISPUTED ** Google Chrome 1.0.154.43 allows remote attackers to trick a user into visiting an arbitrary URL via an onclick action that moves a crafted element to the current mouse position, related to a "Clickjacking" vulnerability. NOTE: a third party disputes the relevance of this issue, stating that "every sufficiently featured browser is and likely will remain susceptible to the behavior known as clickjacking," and adding that the exploit code "is not a valid demonstration of the issue."

[CLOSE] OSVDB ID : 51646 - Disclosed: 2009-01-29

Description:

Simple Machines Forum (SMF) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the text and description elements in a package.xml file. This could allow a user to create a specially crafted packages.xml file that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 53917 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability" or "the Kaminsky bug."

[CLOSE] OSVDB ID : 51663 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Unspecified vulnerability in IBM WebSphere Application Server (WAS) 6.0.1 on z/OS allows attackers to read arbitrary files via unknown vectors.

[CLOSE] OSVDB ID : 51659 - Disclosed: 2009-01-29

Description:

Profense Web Application Firewall contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'proxy' parameter upon submission to the 'proxy.html' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 51662 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51661 - Disclosed: 2009-01-29

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 51660 - Disclosed: 2009-01-29

Description:

(Description Provided by CVE) : Multiple cross-site request forgery (CSRF) vulnerabilities in ajax.html in Profense Web Application Firewall 2.6.2 and 2.6.3 allow remote attackers to hijack the authentication of administrators for requests that (1) shutdown the server, (2) send ping packets, (3) enable network services, (4) configure a proxy server, and (5) modify other settings via parameters in the query string.