| OSVDB ID | Disclosure Date | Title |
|---|
|
61623
Description:
(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in index.html in Wowd client before 1.3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) sortby, (2) tags, or (3) ctx parameter in a search action.
|
2009-10-27
|
Wowd Client index.php Multiple Parameter XSS
|
|
63221
Description:
Unknown / Incomplete
|
2009-10-27
|
Symantec Multiple Products Crafted PDF File Scan Bypass
|
|
67671
Description:
Unknown / Incomplete
|
2009-10-27
|
KDE Protocol Handlers Crafted URL XSS
|
|
67672
Description:
Unknown / Incomplete
|
2009-10-27
|
KDE help:// URI Traversal Arbitrary File Access
|
|
67673
Description:
Unknown / Incomplete
|
2009-10-27
|
KDE KMail Crafted Attachment Arbitrary Remote XMLHTTPRequest
|
|
70339
Description:
Cisco IOS contains a flaw that may allow a remote denial of service. The issue is triggered when the program fails to properly handle IRC traffic after an initial reload, allowing a remote attacker to cause a denial of service by attempting to connect to a certain IRC server. This is related to a 'corrupted magic value', found in Bug ID CSCso05336.
|
2009-10-27
|
Cisco IOS IRC Traffic Initial Reload Corrupted Magic Value Remote DoS
|
|
70340
Description:
Cisco IOS contains a flaw that may allow a remote denial of service. The issue is triggered when a memory leak in the 'gk_circuit_info_do_in_acf' function in the H.323 implementation occurs, allowing a remote attacker to cause a memory cosnumption denial of service via an extended period of call saturation.
|
2009-10-27
|
Cisco IOS H.323 gk_circuit_info_do_in_acf Function Call Saturation Memory Leak Remote DoS
|
|
70341
Description:
Cisco IOS CallManager Express (CME) contains a flaw that may allow a remote denial of service. The issue is triggered when a remote, authenticated attacker uses an extension mobility phone to make SNR number changes in the menu, resulting in a device crash denial of service.
|
2009-10-27
|
Cisco IOS CallManager Express (CME) Extension Mobility Phone SNR Number Change Remote DoS
|
|
89989
Description:
By default, Mutliple Q-See MPEG4 DVRs install with default user credentials (username/password combination). The administrator account has a password of '0000', which is publicly known and documented. This allows remote attackers to trivially access the program or system and gain privileged access.
|
2009-10-27
|
Q-See Multiple MPEG4 DVR Default User Credentials
|
|
59459
Description:
Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered by an alignment error in dissect_paltalk() function in epan/dissectors/packet-paltalk.c of the paltalk dissector, and will result in loss of availability for the service.
|
2009-10-26
|
Wireshark Paltalk Dissector Unspecified DoS
|
|
59460
Description:
Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when a NULL pointer dereference error within the DCERPC/NT dissector occurs, and will result in loss of availability for the service.
|
2009-10-26
|
Wireshark DCERPC/NT Dissector Unspecified DoS
|
|
59458
Description:
Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when off-by-one error within the dissect_negprot_response() function in epan/dissectors/packet-smb.c of the SMB dissector occurs, and will result in loss of availability for the service.
|
2009-10-26
|
Wireshark SMB Dissector Unspecified DoS
|
|
59461
Description:
Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when an unspecified error in the RADIUS dissector occurs, and will result in loss of availability for the service.
|
2009-10-26
|
Wireshark RADIUS Dissector Unspecified DoS
|
|
59332
Description:
(Description Provided by CVE) : Vulnerability in Monitor utility (SYS$SHARE:SPISHR.EXE) in VMS 5.0 through 5.4-2 allows local users to gain privileges.
|
2009-10-26
|
VMS Monitor Utility (SYS$SHARE:SPISHR.EXE) Local Privilege Escalation
|
|
59354
Description:
(Description Provided by CVE) : Unspecified vulnerability in the Solaris Trusted Extensions Policy configuration in Sun Solaris 10, and OpenSolaris snv_37 through snv_125, might allow remote attackers to execute arbitrary code by leveraging access to the X server.
|
2009-10-26
|
Solaris Trusted Extensions Policy Unspecified Remote Bypass
|
|
59333
Description:
(Description Provided by CVE) : The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in.
|
2009-10-26
|
Microsoft Windows NT Winlogon Key Local Shutdown DoS
|
|
59497
Description:
(Description Provided by CVE) : Buffer overflow in Sun Java System Web Server 7.0 Update 6 has unspecified impact and remote attack vectors, as demonstrated by the vd_sjws module in VulnDisco Pack Professional 8.12. NOTE: as of 20091105, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.
|
2009-10-26
|
Sun Java System Web Server Unspecified Overflow
|
|
74278
Description:
(Description Provided by CVE) : ** DISPUTED ** ldd in the GNU C Library (aka glibc or libc6) 2.13 and earlier allows local users to gain privileges via a Trojan horse executable file linked with a modified loader that omits certain LD_TRACE_LOADED_OBJECTS checks. NOTE: the GNU C Library vendor states "This is just nonsense. There are a gazillion other ways to introduce code if people are downloading arbitrary binaries and install them in appropriate directories or set LD_LIBRARY_PATH etc."
|
2009-10-26
|
GNU C Library (glibc) ldd LD_TRACE_LOADED_OBJECTS Check Modified Executable Loader Local Privilege Escalation
|
|
60668
Description:
(Description Provided by CVE) : Unspecified vulnerability in the kernel in Sun Solaris 10 and OpenSolaris 2009.06 on the x86-64 platform allows local users to gain privileges via unknown vectors, as demonstrated by the vd_sol_local module in VulnDisco Pack Professional 8.12. NOTE: as of 20091203, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.
|
2009-10-26
|
Solaris / OpenSolaris Unspecified Overflow Local Privilege Escalation
|
|
86440
Description:
Zigbee (IEEE 802.15.4) contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when information is not cleared from the RAM when it is extracted, even if the chip is 'locked'. This may allow a physically proximate attacker to gain access to encryption key information stored as plaintext.
|
2009-10-26
|
Zigbee (IEEE 802.15.4) RAM Extraction Plaintext Information Disclosure
|
|
59257
Description:
RunCms contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'modules/forum/post.php' script not properly sanitizing user-supplied input to the 'pid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2009-10-26
|
RunCms modules/forum/post.php pid Parameter SQL Injection
|
|
59298
Description:
Unknown / Incomplete
|
2009-10-26
|
FURUKAWA ELECTRIC FITELnet-F Neighbor Discovery Protocol IPv6 Packet Saturation Remote DoS
|
|
59294
Description:
Unknown / Incomplete
|
2009-10-26
|
Yamaha RT Router Neighbor Discovery Protocol IPv6 Packet Saturation Remote DoS
|
|
59279
Description:
TFTgallery contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'album' parameter upon submission to the 'index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2009-10-26
|
TFTgallery index.php album Parameter XSS
|
|
59321
Description:
Aruba Mobility Controller contains a flaw that may allow a remote denial of service. The issue is triggered when a malicious user sends a specially crafted wireless association request frame, and will result in loss of availability for the service.
|
2009-10-26
|
Aruba Mobility Controller Wireless Association Request Frame Remote DoS
|
|
59450
Description:
Asterisk contains a flaw that may allow an attacker to bypass certain security restrictions and can allow unauthorized calls on prohibited networks. The issue is caused due to Asterisk not properly enforcing ACLs when handling 'SIP INVITES' occurs.
|
2009-10-26
|
Asterisk SIP INVITE ACL Enforcement Restriction Bypass
|
|
59361
Description:
(Description Provided by CVE) : Internet Initiative Japan SEIL/X1, SEIL/X2, and SEIL/B1 firmware 2.30 through 2.51, when NAT is enabled, allows remote attackers to cause a denial of service (system restart) via crafted GRE packets.
|
2009-10-26
|
SEIL Routers Crafted GRE Packet Remote DoS
|
|
59349
Description:
Unknown / Incomplete
|
2009-10-26
|
SEIL Routers ICMPv6 Packet Handling Remote DoS
|
|
59362
Description:
(Description Provided by CVE) : Buffer overflow in the URL filtering function in Internet Initiative Japan SEIL/X1, SEIL/X2, and SEIL/B1 firmware 2.40 through 2.51 allows remote attackers to execute arbitrary code via unspecified vectors.
|
2009-10-26
|
SEIL Routers URL Filtering Functionality Unspecified Overflow
|
|
59582
Description:
Attachment Plugin for PunBB contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'misc.php' script not properly sanitizing user-supplied input to the 'secure_str' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2009-10-26
|
Attachment Plugin for PunBB misc.php secure_str Parameter SQL Injection
|
|
60242
Description:
(Description Provided by CVE) : Multiple unspecified vulnerabilities in XOOPS before 2.4.0 Final have unknown impact and attack vectors.
|
2009-10-26
|
XOOPS Multiple Unspecified Issues
|
|
60667
Description:
(Description Provided by CVE) : Unspecified vulnerability in the kernel in Sun OpenSolaris 2009.06 allows remote attackers to cause a denial of service (panic) via unknown vectors, as demonstrated by the vd_solaris2 module in VulnDisco Pack Professional 8.12. NOTE: as of 20091203, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.
|
2009-10-26
|
OpenSolaris Kernel Unspecified Remote DoS
|
|
61624
Description:
(Description Provided by CVE) : Cherokee Web Server 0.5.4 allows remote attackers to cause a denial of service (daemon crash) via an MS-DOS reserved word in a URI, as demonstrated by the AUX reserved word.
|
2009-10-26
|
Cherokee Web Server URI MS-DOS Reserved Word Remote DoS
|
|
86439
Description:
Zigbee (IEEE 802.15.4) contains a flaw related to message integrity. The issue is due to the protocol not using any form of hashing or unique identifier for a message. This allows an attacker to capture traffic and replay it, without any indication it has been sent more than once. This may help facilitate further attacks that result in information disclosure or privilege escalation attacks. Such replay attacks could be conducted until a key rotation occurs.
|
2009-10-25
|
Zigbee (IEEE 802.15.4) Traffic Replay Weakness
|
|
86438
Description:
Zigbee (IEEE 802.15.4) contains a flaw that may lead to an unauthorized information disclosure. This issue is triggered when an Over-the-Air (OTA) key provision occurs, which may allow a remote attacker to gain access to key information sent in cleartext.
|
2009-10-25
|
Zigbee (IEEE 802.15.4) Over-the-Air (OTA) Key Provisioning Cleartext Remote Disclosure
|
|
59964
Description:
(Description Provided by CVE) : UseBB 1.0.9 before 1.0.10 allows remote attackers to cause a denial of service (infinite loop) via crafted BBCode tags.
|
2009-10-25
|
UseBB Crafted Message BBCode Infinite Loop DoS
|
|
69591
Description:
AWStats contains a flaw related to the awredir.pl script. This may allow a remote attacker to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
2009-10-25
|
AWStats awredir.pl Unspecified Arbitrary Site Redirect
|
|
82579
Description:
Eterm contains a flaw that may allow a denial of service. The issue is triggered by an off-by-one error within the visual bell, which will result in a loss of availability for the program.
|
2009-10-25
|
Eterm Visual Bell Off-by-one DoS
|
|
59983
Description:
(Description Provided by CVE) : Martin Lambers mpop before 1.0.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
|
2009-10-24
|
mpop w/ OpenSSL X.509 Certificate Multiple Fields NULL Character Spoofing SSL MiTM Weakness
|
|
59960
Description:
(Description Provided by CVE) : Martin Lambers msmtp before 1.4.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
|
2009-10-24
|
msmtp X.509 Certificate Multiple Fields NULL Character Spoofing SSL MiTM Weakness
|
