[CLOSE] OSVDB ID : 53179 - Disclosed: 2009-03-31

Description:

Sun Java System Calendar Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'Fmt-out' parameters upon submission to the 'login.wcap' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 53180 - Disclosed: 2009-03-31

Description:

Sun Java System Calendar Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'date' parameters upon submission to the 'command.shtml' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 53181 - Disclosed: 2009-03-31

Description:

(Description Provided by CVE) : Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 through 6.3-7.01 allows remote attackers to cause a denial of service (daemon crash) via multiple requests to the default URI with alphabetic characters in the tzid parameter.

[CLOSE] OSVDB ID : 55245 - Disclosed: 2009-03-31

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 53549 - Disclosed: 2009-03-31

Description:

(Description Provided by CVE) : Unspecified vulnerability in futomi's CGI Cafe Access Analyzer CGI Professional Version 4.11.5 and earlier allows remote attackers to gain administrative privileges via unknown vectors.

[CLOSE] OSVDB ID : 53064 - Disclosed: 2009-03-31

Description:

(Description Provided by CVE) : Multiple insecure method vulnerabilities in PRECIS~2.DLL in the PrecisionID Datamatrix ActiveX control (DMATRIXLib.Datamatrix) allow remote attackers to overwrite arbitrary files via the (1) SaveBarCode and (2) SaveEnhWMF methods.

[CLOSE] OSVDB ID : 53147 - Disclosed: 2009-03-31

Description:

Cisco Adaptive Security Appliance (ASA5520) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate HTTP Host: header upon submission to the /+webvpn+/index.html script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 53194 - Disclosed: 2009-03-31

Description:

(Description Provided by CVE) : core/admin/delete.php in Podcast Generator 1.1 and earlier does not properly restrict access to administrative functions, which allows remote attackers to delete arbitrary files via the file parameter.

[CLOSE] OSVDB ID : 53068 - Disclosed: 2009-03-31

Description:

(Description Provided by CVE) : Directory traversal vulnerability in index.php in webEdition 6.0.0.4 and earlier, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the WE_LANGUAGE parameter.

[CLOSE] OSVDB ID : 53066 - Disclosed: 2009-03-31

Description:

A buffer overflow exists in SAPgui. The WebViewer 3D ActiveX control fails to validate data passed to the SaveViewToSessionFile() method resulting in a stack overflow. With a specially crafted website, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 53067 - Disclosed: 2009-03-31

Description:

(Description Provided by CVE) : Unspecified vulnerability in the eClient in IBM DB2 Content Manager 8.4.1 before 8.4.1.1 has unknown impact and attack vectors.

[CLOSE] OSVDB ID : 53121 - Disclosed: 2009-03-31

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in index.php in Turnkey Ebook Store 1.1 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in a search action.

[CLOSE] OSVDB ID : 53199 - Disclosed: 2009-03-31

Description:

(Description Provided by CVE) : Static code injection vulnerability in index.php in Podcast Generator 1.1 and earlier allows remote authenticated administrators to inject arbitrary PHP code into config.php via the recent parameter in a config change action.

[CLOSE] OSVDB ID : 53201 - Disclosed: 2009-03-31

Description:

vsp stats processor contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'vsp-core/pub/themes/bismarck/gamestat.php' script not properly sanitizing user-supplied input to the 'gameID' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 53231 - Disclosed: 2009-03-31

Description:

(Description Provided by CVE) : Apple Safari 3.2.2 and 4 Beta on Windows allows remote attackers to cause a denial of service (application crash) via an XML document containing many nested A elements.

[CLOSE] OSVDB ID : 62677 - Disclosed: 2009-03-31

Description:

A buffer overflow exists in SAPgui. The WebViewer 3D ActiveX control fails to validate file path data passed to the multiple methods resulting in a stack overflow. With a specially crafted website, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 62678 - Disclosed: 2009-03-31

Description:

A buffer overflow exists in SAPgui. The WebViewer 3D ActiveX control fails to validate domain information data passed to multiple methods resulting in a stack overflow. With a specially crafted website, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 53139 - Disclosed: 2009-03-30

Description:

(Description Provided by CVE) : Race condition in the dircmp script in Sun Solaris 8 through 10, and OpenSolaris snv_01 through snv_111, allows local users to overwrite arbitrary files, probably involving a symlink attack on temporary files.

[CLOSE] OSVDB ID : 53140 - Disclosed: 2009-03-30

Description:

Family Connections contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'addressbook.php' script not properly sanitizing user-supplied input to the 'letter' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 53075 - Disclosed: 2009-03-30

Description:

Banshee DAAP Extension contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'server' parameter upon submission to the 'apps/web/vs_diag.cgi' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 53141 - Disclosed: 2009-03-30

Description:

Family Connections contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'recipes.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 53142 - Disclosed: 2009-03-30

Description:

Family Connections contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'home.php' script not properly sanitizing user-supplied input to the 'poll_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 53143 - Disclosed: 2009-03-30

Description:

Family Connections contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'register.php' script not properly sanitizing user-supplied input to the 'year' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 53144 - Disclosed: 2009-03-30

Description:

Family Connections contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'lostpw.php' script not properly sanitizing user-supplied input to the 'email' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 56085 - Disclosed: 2009-03-30

Description:

Community CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the view.php script not properly sanitizing user-supplied input to the 'article_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 56086 - Disclosed: 2009-03-30

Description:

Community CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'a' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 56145 - Disclosed: 2009-03-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 56146 - Disclosed: 2009-03-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 56147 - Disclosed: 2009-03-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52996 - Disclosed: 2009-03-30

Description:

(Description Provided by CVE) : Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 56329 - Disclosed: 2009-03-30

Description:

(Description Provided by CVE) : Stack-based buffer overflow in mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2, when the server has a map with a long IMAGEPATH or NAME attribute, allows remote attackers to execute arbitrary code via a crafted id parameter in a query action.

[CLOSE] OSVDB ID : 53005 - Disclosed: 2009-03-30

Description:

Diskos CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'side.asp' script not properly sanitizing user-supplied input to the 'kat' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 53001 - Disclosed: 2009-03-30

Description:

JobHut contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'browse.php' script not properly sanitizing user-supplied input to the 'pk' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 53069 - Disclosed: 2009-03-30

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows remote attackers to hijack the authentication of arbitrary users for requests that use attachment editing.

[CLOSE] OSVDB ID : 53002 - Disclosed: 2009-03-30

Description:

(Description Provided by CVE) : Stack-based buffer overflow in W3C Amaya Web Browser 11.1 allows remote attackers to execute arbitrary code via a script tag with a long defer attribute.

[CLOSE] OSVDB ID : 53209 - Disclosed: 2009-03-30

Description:

(Description Provided by CVE) : The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service (daemon crash and restart) via a crafted (1) R_U_THERE or (2) R_U_THERE_ACK Dead Peer Detection (DPD) IPsec IKE Notification message that triggers a NULL pointer dereference related to inconsistent ISAKMP state and the lack of a phase2 state association in DPD.

[CLOSE] OSVDB ID : 53120 - Disclosed: 2009-03-30

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 53208 - Disclosed: 2009-03-30

Description:

(Description Provided by CVE) : The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service (daemon crash and restart) via a crafted (1) R_U_THERE or (2) R_U_THERE_ACK Dead Peer Detection (DPD) IPsec IKE Notification message that triggers a NULL pointer dereference related to inconsistent ISAKMP state and the lack of a phase2 state association in DPD.

[CLOSE] OSVDB ID : 53006 - Disclosed: 2009-03-30

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Diskos CMS 6.x allow remote attackers to execute arbitrary SQL commands via the (1) kat parameter to side.asp, and the (2) brugerid and (3) password fields to the administration login feature.

[CLOSE] OSVDB ID : 53007 - Disclosed: 2009-03-30

Description:

Diskos CMS contains a flaw that may lead to an unauthorized information disclosure.  The issue is due to the medlemmer.mdb database file being stored in a location which allows direct download, which will disclose database contents resulting in a loss of confidentiality.