| OSVDB ID | Disclosure Date | Title |
|---|
|
61894
Description:
PHP Calendars contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'cat' parameter upon submission to the 'product_list.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-10
|
PHP Calendars product_list.php cat Parameter XSS
|
|
61986
Description:
(Description Provided by CVE) : main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain privileges via a crafted file.
|
2010-01-10
|
maildrop main.C Supplementary Group Local Privilege Escalation
|
|
61982
Description:
(Description Provided by CVE) : install.php in JCE-Tech PHP Calendars, downloaded 20100121, allows remote attackers to bypass intended access restrictions and modify application settings via a direct request. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation.
|
2010-01-10
|
PHP Calendars intstall.php Direct Request Access Restriction Bypass
|
|
62826
Description:
JCollection Component for Joomla! contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'controller' parameter. This directory traversal attack would allow the attacker to read arbitrary files.
|
2010-01-10
|
JCollection Component for Joomla! index.php controller Parameter Traversal Arbitrary File Access
|
|
62827
Description:
JA Showcase Component for Joomla! contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'controller' parameter (when "option" is set to "com_jashowcase"). This directory traversal attack would allow the attacker to include arbitrary files from local resources.
|
2010-01-10
|
JA Showcase Component for Joomla! index.php controller Parameter Traversal Arbitrary File Access
|
|
62828
Description:
jVideoDirect Component for Joomla! contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'controller' parameter. This directory traversal attack would allow the attacker to read arbitrary files.
|
2010-01-10
|
jVideoDirect Component for Joomla! index.php controller Parameter Traversal Arbitrary File Access
|
|
62834
Description:
(Description Provided by CVE) : Visialis ABB Forum 1.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for fpdb/abb.mdb.
|
2010-01-10
|
ABB Forum fpdb/abb.mdb Direct Request Database Disclosure
|
|
63205
Description:
phpMDJ contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'profil.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-10
|
phpMDJ profil.php id Parameter SQL Injection
|
|
64454
Description:
Unknown / Incomplete
|
2010-01-10
|
Simply Classifieds classified/new_cats.php description Field XSS
|
|
64372
Description:
Unknown / Incomplete
|
2010-01-10
|
Blogumus tagcloud.swf tagcloud Parameter XSS
|
|
64455
Description:
Unknown / Incomplete
|
2010-01-10
|
Simply Classifieds edit_advert.php CSRF
|
|
61792
Description:
WebKit contains a flaw that is triggered when handling stylesheet 'href' properties. With a specially crafted web page, a context-dependent attacker can potentially disclose sensitive information (e.g. session IDs) contained in the final redirected URL.
|
2010-01-09
|
WebKit Stylesheet href Property Redirected Target URL Information Disclosure Weakness
|
|
66144
Description:
Unknown / Incomplete
|
2010-01-09
|
Z-Stack ZigBee Smart Energy Profile ECC Session Key / Cryptographic Signature RNG Weakness
|
|
61608
Description:
Unknown / Incomplete
|
2010-01-09
|
PPVChat registration/user.php Multiple Parameter XSS
|
|
61609
Description:
Unknown / Incomplete
|
2010-01-09
|
PPVChat registration/model.php Multiple Parameter XSS
|
|
61610
Description:
Unknown / Incomplete
|
2010-01-09
|
wview FTP Verbose Logging Unspecified Overflow
|
|
61717
Description:
Unknown / Incomplete
|
2010-01-09
|
D-Link Multiple Routers HNAP Implementation Admin Access Restriction Weakness
|
|
61762
Description:
Jamit Job Board contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'post_id' parameter upon submission to the 'jobs/index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-09
|
Jamit Job Board jobs/index.php post_id Parameter XSS
|
|
61793
Description:
(Description Provided by CVE) : Apple Safari allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets[0].href property value.
|
2010-01-09
|
Apple Safari document.styleSheets[0].href Property URL Redirect Target Disclosure
|
|
64398
Description:
Audiotran is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a stack overflow. With a specially crafted file, a remote attacker can potentially cause arbitrary code execution.
|
2010-01-09
|
Audiotran PLS File Handling Overflow
|
|
61670
Description:
(Description Provided by CVE) : net/bridge/netfilter/ebtables.c in the ebtables module in the netfilter framework in the Linux kernel before 2.6.33-rc4 does not require the CAP_NET_ADMIN capability for setting or modifying rules, which allows local users to bypass intended access restrictions and configure arbitrary network-traffic filtering via a modified ebtables application.
|
2010-01-08
|
Linux Kernel net/bridge/netfilter/ebtables.c do_ebt_set_ctl Function Ethernet Bridging ACL Manipulation
|
|
61578
Description:
Power Search contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'uid' parameter upon submission to the 'svc/search.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-08
|
Power Search svc/search.php uid Parameter XSS
|
|
61580
Description:
Unknown / Incomplete
|
2010-01-08
|
Jcom. Band JcomObjMgr2_Eng.ObjMgr2.1 ActiveX (JcomObjMgr2.dll) isRegistered() Method Overflow
|
|
61581
Description:
Unknown / Incomplete
|
2010-01-08
|
TPO Duyuru Scripti duyuruyonetim.php kullanici Cookie Admin Authentication Bypass
|
|
61582
Description:
TPO Duyuru Scripti contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the <SCRIPT> script not properly sanitizing user-supplied input to the <PARAMETER> parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-08
|
TPO Duyuru Scripti yonetim_giris.php kullaniciadi Parameter SQL Injection
|
|
61583
Description:
Unknown / Incomplete
|
2010-01-08
|
TPO Duyuru Scripti Message Deletion CSRF
|
|
61635
Description:
JVClouds3D Module for Joomla! contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'tagcloud' parameter upon submission to the 'tagcloud.swf' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-08
|
JVClouds3D Module for Joomla! tagcloud.swf tagcloud Parameter XSS
|
|
61676
Description:
(Description Provided by CVE) : A certain ActiveX control in msgsc.14.0.8089.726.dll in Microsoft Windows Live Messenger 2009 build 14.0.8089.726 on Windows Vista and Windows 7 allows remote attackers to cause a denial of service (msnmsgr.exe crash) by calling the ViewProfile method with a crafted argument during an MSN Messenger session.
|
2010-01-08
|
Microsoft Windows Live Messenger msnmsgr.exe ActiveX (msgsc.14.0.8089.726.dll) ViewProfile Method MSN Messenger Session Remote DoS
|
|
62824
Description:
KISS Software Advertiser Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'pid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-08
|
KISS Software Advertiser Component for Joomla! index.php pid Parameter SQL Injection
|
|
63646
Description:
(Description Provided by CVE) : Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
|
2010-01-08
|
J Programming Language libc dtoa Implementation Floating Point Parsing Memory Corruption
|
|
63641
Description:
(Description Provided by CVE) : Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
|
2010-01-08
|
Matlab libc dtoa Implementation Floating Point Parsing Memory Corruption
|
|
63645
Description:
Unknown / Incomplete
|
2010-01-08
|
Google Chrome Frame Reloading Memory Allocation Tab Crashing DoS
|
|
63639
Description:
(Description Provided by CVE) : Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
|
2010-01-08
|
Apple Mac OS X libc dtoa Implementation Floating Point Parsing Memory Corruption
|
|
63643
Description:
Multiple ACDSee products are prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in an heap overflow. With a specially crafted file, a remote attacker can potentially cause arbitrary code execution.
|
2010-01-08
|
ACDSee Multiple Products XBM File Handling Overflow
|
|
64391
Description:
Unknown / Incomplete
|
2010-01-08
|
Microsoft Windows Group Policy Management Editor Account Password Removal Weakness
|
|
70276
Description:
MyBB contains a flaw that may allow a remote denial of service. The issue is triggered when the member.php script makes a superfluous call to the SQL COUNT function, allowing a remote attacker to make requests to member.php which scan the entire users table, causing a denial of service via resource consumption.
|
2010-01-08
|
MyBB member.php SQL COUNT Function Call User Table scan Remote DoS
|
|
78607
Description:
Unknown / Incomplete
|
2010-01-07
|
phpBMS Search Screen Unspecified SQL Injection
|
|
62474
Description:
The System Security Services Daemon (SSSD) before 1.0.1, contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when KDC is unreachable, allowing a local attacker to authenticate via an arbitrary password through the screen locking mechanism with a valid TGT (Ticket Granting Ticket)
|
2010-01-07
|
SSSD Kerberos Unreachable Key Distribution Center (KDC) TGT Impersonation Weakness
|
|
79367
Description:
Unknown / Incomplete
|
2010-01-07
|
GSM A5/1 Algorithm Cipher Pre-computation Cryptanalysis Weakness
|
|
61712
Description:
Unknown / Incomplete
|
2010-01-07
|
dotProject index.php Multiple Parameter SQL Injection
|
