| OSVDB ID | Disclosure Date | Title |
|---|
|
68738
Description:
(Description Provided by CVE) : The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have accompanying documentation describing how daemon applications should handle unsuccessful calls to the accept function, which makes it easier for remote attackers to conduct denial of service attacks that terminate these applications via network connections.
|
2009-08-14
|
asyncore Module for Python Accept Function Call Network Connection Application Termination DoS
|
|
70182
Description:
MyWeight contains a flaw related to the userphoto.php script. It fails to adequately validate user-suppled input. This may be exploited by a remote attacker to upload arbitrary files, and execute arbitrary code.
|
2009-08-14
|
MyWeight userphoto.php Arbitrary File Upload
|
|
58996
Description:
Unknown / Incomplete
|
2009-08-14
|
Apache Hadoop Map/Reduce LinuxTaskController File Group Ownership Weakness
|
|
57127
Description:
Unknown / Incomplete
|
2009-08-14
|
Sniper Elite Multiple UDP Packet Handling NULL Dereference Remote DoS
|
|
57336
Description:
DS CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'DetailFile.php' script not properly sanitizing user-supplied input to the 'nFileId' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-08-14
|
DS CMS DetailFile.php nFileId Parameter SQL Injection
|
|
57337
Description:
PHP Competition System contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'show_matchs.php' script not properly sanitizing user-supplied input to the 'day' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-08-14
|
PHP Competition System show_matchs.php day Parameter SQL Injection
|
|
57338
Description:
PHP Competition System contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'persons.php' script not properly sanitizing user-supplied input to the 'pageno' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-08-14
|
PHP Competition System persons.php pageno Parameter SQL Injection
|
|
62393
Description:
Unknown / Incomplete
|
2009-08-14
|
Blue Coat Proxy Spoofed Referer Field Authentication Bypass
|
|
62396
Description:
Unknown / Incomplete
|
2009-08-14
|
ICQ Incoming Message Window HTML Injection
|
|
68739
Description:
(Description Provided by CVE) : Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, or the getpeername function having an ENOTCONN error, a related issue to CVE-2010-3492.
|
2009-08-14
|
Python smptd Module smtpd.py Race Condition TCP Connection Termination Multiple Error Remote DoS
|
|
74383
Description:
(Description Provided by CVE) : The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU troff (aka groff) 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro#####.tmp or /tmp/##### temporary file.
|
2009-08-14
|
GNU troff gendef.sh Multiple Temporary File Symlink Arbitrary File Overwrite
|
|
74384
Description:
(Description Provided by CVE) : The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU troff (aka groff) 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro#####.tmp or /tmp/##### temporary file.
|
2009-08-14
|
GNU troff doc/fixinfo.sh Multiple Temporary File Symlink Arbitrary File Overwrite
|
|
74385
Description:
(Description Provided by CVE) : The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU troff (aka groff) 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro#####.tmp or /tmp/##### temporary file.
|
2009-08-14
|
GNU troff contrib/gdiffmk/tests/runtests.in Multiple Temporary File Symlink Arbitrary File Overwrite
|
|
74386
Description:
(Description Provided by CVE) : The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib/pic2graph/pic2graph.sh scripts in GNU troff (aka groff) 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files via a symlink attack on a file in a temporary directory, a different vulnerability than CVE-2004-1296.
|
2009-08-14
|
GNU troff contrib/eqn2graph/eqn2graph.sh Directory Creation Temporary File Symlink Arbitrary File Overwrite
|
|
74387
Description:
(Description Provided by CVE) : The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib/pic2graph/pic2graph.sh scripts in GNU troff (aka groff) 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files via a symlink attack on a file in a temporary directory, a different vulnerability than CVE-2004-1296.
|
2009-08-14
|
GNU troff contrib/grap2graph/grap2graph.sh Directory Creation Temporary File Symlink Arbitrary File Overwrite
|
|
74388
Description:
(Description Provided by CVE) : The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib/pic2graph/pic2graph.sh scripts in GNU troff (aka groff) 1.21 and earlier do not properly handle certain failed attempts to create temporary directories, which might allow local users to overwrite arbitrary files via a symlink attack on a file in a temporary directory, a different vulnerability than CVE-2004-1296.
|
2009-08-14
|
GNU troff contrib/pic2graph/pic2graph.sh Directory Creation Temporary File Symlink Arbitrary File Overwrite
|
|
74389
Description:
(Description Provided by CVE) : The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file, a different vulnerability than CVE-2004-0969.
|
2009-08-14
|
GNU troff config.guess tempfile Function template Argument X Character Temporary File Symlink Arbitrary File Overwrite
|
|
74390
Description:
(Description Provided by CVE) : The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file, a different vulnerability than CVE-2004-0969.
|
2009-08-14
|
GNU troff contrib/groffer/perl/groffer.pl tempfile Function template Argument X Character Temporary File Symlink Arbitrary File Overwrite
|
|
74391
Description:
(Description Provided by CVE) : The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file, a different vulnerability than CVE-2004-0969.
|
2009-08-14
|
GNU troff contrib/groffer/perl/roff2.pl tempfile Function template Argument X Character Temporary File Symlink Arbitrary File Overwrite
|
|
74392
Description:
(Description Provided by CVE) : The (1) configure and (2) config.guess scripts in GNU troff (aka groff) 1.20.1 on Openwall GNU/*/Linux (aka Owl) improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file.
|
2009-08-14
|
GNU troff configure mktemp Function Weakness Temporary File Symlink Arbitrary File Overwrite
|
|
74393
Description:
(Description Provided by CVE) : The (1) configure and (2) config.guess scripts in GNU troff (aka groff) 1.20.1 on Openwall GNU/*/Linux (aka Owl) improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file.
|
2009-08-14
|
GNU troff config.guess mktemp Function Weakness Temporary File Symlink Arbitrary File Overwrite
|
|
56992
Description:
Linux kernel contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the kernel fails to initialize all function pointers for socket operations in proto_ops structures, allowing local users to trigger a null pointer dereference. This flaw may lead to a loss of integrity.
|
2009-08-13
|
Linux Kernel Multiple Protocol proto_ops() Initialization NULL Dereference Local Privilege Escalation
|
|
57112
Description:
Unknown / Incomplete
|
2009-08-13
|
Half-Life 2 Spoofed A2S_INFO Packet Saturation Remote DoS
|
|
57028
Description:
Snom VoIP Phones contains a flaw that may allow a malicious user to bypass authentication. The issue is triggered when a malicious user submits a crafted HTTP request with the Host header set to "127.0.0.1. It is possible that the flaw may allow administrative access resulting in a loss of integrity.
|
2009-08-13
|
Snom VoIP Phones Crafted Host Header Authentication Bypass
|
|
57152
Description:
Elka CMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'q' parameter upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2009-08-13
|
Elka CMS index.php q Parameter XSS
|
|
57133
Description:
(Description Provided by CVE) : The load_flat_shared_library function in fs/binfmt_flat.c in the flat subsystem in the Linux kernel before 2.6.31-rc6 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by executing a shared flat binary, which triggers an access of an "uninitialized cred pointer."
|
2009-08-13
|
Linux Kernel Flat Subsystem fs/binfmt_flat.c load_flat_shared_library Function Local DoS
|
|
56993
Description:
JBLOG contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin.php' script not properly sanitizing user-supplied input to the 'jblog_authkey' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-08-13
|
JBLOG admin.php jblog_authkey Parameter SQL Injection
|
|
56996
Description:
(Description Provided by CVE) : Multiple stack-based buffer overflows in xaudio.dll in Programmed Integration PIPL 2.5.0 and 2.5.0D allow remote attackers to execute arbitrary code via a long string in a (1) .pls or (2) .pl playlist file.
|
2009-08-13
|
PIPL Multiple Playlist File Handling Overflow
|
|
56998
Description:
Chavoosh CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'ContentArchive.aspx' script not properly sanitizing user-supplied input to the 'Cat_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2009-08-13
|
Chavoosh CMS ContentArchive.aspx Cat_id Parameter SQL Injection
|
|
57135
Description:
Unknown / Incomplete
|
2009-08-13
|
Naroun ADSL-Tools members_general_info_print.asp nick Parameter Arbitrary Account Access
|
|
57192
Description:
Print Module for Drupal contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified parameters upon submission to an unspecified script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2009-08-13
|
Drupal Print Module Printer Friendly View Footer XSS
|
|
57204
Description:
(Description Provided by CVE) : WP-Syntax plugin 0.9.1 and earlier for Wordpress, with register_globals enabled, allows remote attackers to execute arbitrary PHP code via the test_filter[wp_head] array parameter to test/index.php, which is used in a call to the call_user_func_array function.
|
2009-08-13
|
WP-Syntax Plugin for Wordpress test/index.php test_filter[wp_head] Array Parameter Arbitrary PHP Code Execution
|
|
57335
Description:
TGS Content Management contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'previous_page' parameters upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2009-08-13
|
TGS Content Management index.php previous_page Parameter XSS
|
|
57477
Description:
TGS Content Management System contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'cms/index.php' script not properly sanitizing user-supplied input to the 'tgs_language_id', 'tpl_dir', 'referer', 'user-agent', 'site', 'option', 'db_optimization', 'owner', 'admin_email', 'default_language', and 'db_host' parameter. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.
|
2009-08-13
|
TGS Content Management cms/index.php Multiple Parameter SQL Injection
|
|
57478
Description:
TGS Content Management System contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'cms/frontpage_ception.php' script not properly sanitizing user-supplied input to the 'cmd', 's_dir', 'minutes', 's_mask', 'test3_mp', 'test15_file1', 'submit', 'brute_method', ftp_server_port', 'userfile14', 'subj', 'mysql_l', 'action', and 'userfile1' parameter. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.
|
2009-08-13
|
TGS Content Management cms/frontpage_ception.ph Multiple Parameter SQL Injection
|
|
58118
Description:
Gazelle CMS contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a malicious user uploads a file with a executable file extension via admin/editor/filemanager/browser.html and then makes a direct request for the uploaded file. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.
|
2009-08-13
|
Gazelle CMS admin/editor/filemanager/browser.html Unrestricted File Upload Arbitrary Code Execution
|
|
57312
Description:
BuildBot contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified parameters upon submission to the 'waterfall view'. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2009-08-12
|
BuildBot Waterfall View Unspecified XSS
|
|
56994
Description:
(Description Provided by CVE) : lib/ssluse.c in cURL and libcurl 7.4 through 7.19.5, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
|
2009-08-12
|
cURL/libcURL w/ OpenSSL X.509 Certificate Authority (CA) Common Name Null Byte Handling SSL MiTM Weakness
|
|
57029
Description:
Sequoia AVC Advantage contains a stack-based buffer overflow related to the processing of a type of auxiliary cartridge. The issue is triggered when an attacker with physical access inserts a memory cartridge with a specially crafted payload. This may allow an attacker to bypass the security mechanisms intended to prevent unauthorized code from running on the device via ROP (Return-Oriented Programming) techniques and execute arbitary code (e.g. manipulating votes) on the device.
|
2009-08-12
|
Sequoia AVC Advantage Auxiliary Cartridge Processing Overflow Security-state Manipulation
|
|
58113
Description:
Gazelle CMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'user' parameters upon submission to the 'user.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2009-08-12
|
Gazelle CMS user.php user Parameter XSS
|
