| OSVDB ID | Disclosure Date | Title |
|---|
|
63686
Description:
Unknown / Incomplete
|
2010-01-05
|
Ofilter Player Application Skin Handling Local DoS
|
|
87490
Description:
Apple Mac OS X contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when an error occurs in vfork() during the handling of mach exceptions. This may allow a local attacker to gain escalated privileges.
|
2010-01-05
|
Apple Mac OS X Mach Exception Handling vfork() Local Privilege Escalation
|
|
93153
Description:
Apache PDFBox contains a flaw in PDFXrefStreamParser that may allow a denial of service. The issue is triggered during the handling of a missing element when parsing PDF files. This may allow a context-dependent attacker to crash the program.
|
2010-01-05
|
Apache PDFBox PDFXrefStreamParser Missing Element Handling PDF Parsing DoS
|
|
61442
Description:
Hit Counter contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URI upon submission to the 'index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-04
|
Hit Counter index.php URI XSS
|
|
61443
Description:
Hit Counter contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URI upon submission to the 'inc/login.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-04
|
Hit Counter inc/login.php URI XSS
|
|
61444
Description:
Hit Counter contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URI upon submission to the 'admin/index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-04
|
Hit Counter admin/index.php URI XSS
|
|
61440
Description:
VisionGate contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'url' parameter upon submission to the 'login.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-04
|
VisionGate login.php url Parameter XSS
|
|
70480
Description:
gif2png contains a flaw in the handling of Graphics Interchange Format (GIF) media files that may allow a remote denial of service. The issue is due to an error within gif2png.c not validating user-supplied input. With a specially crafted request containing many images, a context-dependent attacker can cause the program that uses the library to crash.
|
2010-01-04
|
gif2png gif2png.c Multiple Image GIF File Handling Overflow DoS
|
|
62461
Description:
(Description Provided by CVE) : Stack consumption vulnerability in the ChildProcessSecurityPolicy::CanRequestURL function in browser/child_process_security_policy.cc in Google Chrome before 4.0.249.78 allows remote attackers to cause a denial of service (memory consumption and application crash) via a URL that specifies multiple protocols, as demonstrated by a URL that begins with many repetitions of the view-source: substring.
|
2010-01-04
|
Google Chrome browser/child_process_security_policy.cc ChildProcessSecurityPolicy::CanRequestURL Function DoS
|
|
63644
Description:
W-Agora contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'rss.php' script not properly sanitizing user input supplied to the 'bn' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2010-01-04
|
W-Agora rss.php bn Parameter Remote File Inclusion
|
|
61437
Description:
Unknown / Incomplete
|
2010-01-04
|
phpYellow Unspecified File Upload Arbitrary PHP Code Execution
|
|
61438
Description:
BF Survey Component for Joomla! contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'controller' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.
|
2010-01-04
|
BF Survey Component for Joomla! index.php controller Traversal Local File Inclusion
|
|
61439
Description:
Imagevue Gallery contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'path' parameter upon submission to the 'admin/upload.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-04
|
Imagevue Gallery admin/upload.php path Parameter XSS
|
|
61446
Description:
phpBannerExchange contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'bannerurl' parameter upon submission to the 'signupconfirm.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-04
|
phpBannerExchange signupconfirm.php bannerurl Parameter XSS
|
|
61456
Description:
BF Survey Pro Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'catid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-04
|
BF Survey Pro Component for Joomla! index.php catid Parameter SQL Injection
|
|
61481
Description:
eMerge Management Component contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker send a crafted HTTP request, and will result in loss of availability for the service.
|
2010-01-04
|
eMerge Management Component Crafted HTTP Request Remote DoS
|
|
61482
Description:
Deviant Art Clone contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'seid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-04
|
Deviant Art Clone index.php seid Parameter SQL Injection
|
|
62325
Description:
Unknown / Incomplete
|
2010-01-04
|
tnftpd Internal ls Command Unspecified Issue
|
|
61601
Description:
(Description Provided by CVE) : Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a pathname within a .torrent file.
|
2010-01-04
|
Transmission libtransmission/metainfo.c Torrent File Traversal Arbitrary File Overwrite
|
|
61649
Description:
(Description Provided by CVE) : Heap-based buffer overflow in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to discover process memory locations via crafted data to TCP port 80, as demonstrated by the vd_sjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no actionable information. However, because the VulnDisco author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.
|
2010-01-04
|
Sun Java System Web Server on Linux Crafted Data Remote Memory Location Disclosure
|
|
61650
Description:
(Description Provided by CVE) : Unspecified vulnerability in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to execute arbitrary code by sending a process memory address and crafted data to TCP port 80, as demonstrated by the vd_sjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no actionable information. However, because the VulnDisco author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.
|
2010-01-04
|
Sun Java System Web Server on Linux Crafted Memory Address Request Remote Code Execution
|
|
62307
Description:
WebKit contains a flaw that may lead to unauthorized disclosure of sensitive information and is triggered when handling cross-origin loading of stylesheets. With a specially crafted web page, a context-dependent attacker may disclose content from another domain.
|
2010-01-04
|
WebKit CSS Stylesheet Cross-origin Loading Information Disclosure
|
|
62326
Description:
Unknown / Incomplete
|
2010-01-04
|
tnftpd Unspecified Integer Overflow (590371)
|
|
63737
Description:
JProject Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'project' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-04
|
JProject Component for Joomla! index.php project Parameter SQL Injection
|
|
65344
Description:
Unknown / Incomplete
|
2010-01-04
|
Winamp AVI File Handling DoS
|
|
65425
Description:
Pay Per Minute Video Chat Script contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index_ie.php' script not properly sanitizing user-supplied input to the 'page' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-04
|
Pay Per Minute Video Chat Script index_ie.php page Parameter SQL Injection
|
|
67708
Description:
(Description Provided by CVE) : Off-by-one error in the Ins_MINDEX function in the TrueType bytecode interpreter in Ghostscript before 8.71 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a malformed TrueType font in a document that trigger an integer overflow and a heap-based buffer overflow.
|
2010-01-04
|
Ghostscript TrueType Bytecode Interpreter Off-by-one Memory Corruption
|
|
80644
Description:
Quake 3 Engine contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker sends a specially crafted getstatus UDP request to the server, which will result in loss of availability for the server.
|
2010-01-03
|
Quake 3 Engine getstatus UDP Request Parsing Remote DoS
|
|
61436
Description:
(Description Provided by CVE) : Acidcat CMS 3.5.3 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing credentials via a direct request for databases/acidcat_3.mdb.
|
2010-01-03
|
Acidcat CMS acidcat_3.mdb Direct Request Admin Credentials Disclosure
|
|
61441
Description:
BLOG:CMS contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate input to the 'Comment Body' upon submission to the 'libs/MEMBER.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-01-03
|
BLOG:CMS libs/MEMBER.php Comment Body XSS
|
|
61450
Description:
Rezervi contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'include/mail.inc.php' script not properly sanitizing user input supplied to the 'root' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2010-01-03
|
Rezervi include/mail.inc.php root Parameter Remote File Inclusion
|
|
61447
Description:
CARTwebERP Component for Joomla! contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'controller' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.
|
2010-01-03
|
CARTwebERP Component for Joomla! index.php controller Parameter Traversal Arbitrary File Access
|
|
61455
Description:
Joomla! component oziogallery contains a flaw that may allow an attacker to write to anywhere in the server. The issue is triggered when the attacker manupilate the POST 'path' parameter.
|
2010-01-03
|
IMAGIN scripts_ralcr/filesystem/writeToFile.php Multiple Parameter Arbitrary File Creation
|
|
61457
Description:
Bible Study Component for Joomla contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the index.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'controller' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.
|
2010-01-03
|
Bible Study Component for Joomla! index.php controller Parameter Traversal Local File Inclusion
|
|
61458
Description:
(Description Provided by CVE) : Directory traversal vulnerability in the Abbreviations Manager (com_abbrev) component 1.1 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
|
2010-01-03
|
Abbreviations Manager Component for Joomla! index.php controller Parameter Traversal Local File Inclusion
|
|
61477
Description:
TPJobs Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'id_c[]' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-03
|
TPJobs Component for Joomla! index.php id_c[] Parameter SQL Injection Authentication Bypass
|
|
61566
Description:
JoomlaBamboo (JB) Simpla Admin Template for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-03
|
JoomlaBamboo (JB) Simpla Admin Template for Joomla! index.php id Parameter SQL Injection
|
|
62825
Description:
HotBrackets Tournament Brackets Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-03
|
HotBrackets Tournament Brackets Component for Joomla! index.php id Parameter SQL Injection
|
|
63077
Description:
(Description Provided by CVE) : Acidcat CMS 3.5.x does not prevent access to install.asp after installation finishes, which might allow remote attackers to restart the installation process and have unspecified other impact via requests to install.asp and other install_*.asp scripts. NOTE: the final installation screen states "Important: you must now delete all files beginning with 'install' from the root directory."
|
2010-01-03
|
Acidcat CMS install.asp Permission Weakness Installation Process Manipulation
|
|
65426
Description:
Shape5 Bridge of Hope Template for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-01-03
|
Shape5 Bridge of Hope Template for Joomla! index.php id Parameter SQL Injection
|
