| OSVDB ID | Disclosure Date | Title |
|---|
|
63176
Description:
(Description Provided by CVE) : Cisco IOS 12.1 through 12.4, when Cisco Unified Communications Manager Express (CME) or Cisco Unified Survivable Remote Site Telephony (SRST) is enabled, allows remote attackers to cause a denial of service (device reload) via a malformed Skinny Client Control Protocol (SCCP) message, aka Bug ID CSCsz48614, the "SCCP Packet Processing Denial of Service Vulnerability."
|
2010-03-24
|
Cisco IOS Unified Communications Manager Express SCCP Message Handling Unspecified Remote DoS (CSCsz48614)
|
|
63177
Description:
Cisco IOS 12.1 through 12.4, when Cisco Unified Communications Manager Express (CME) is enabled, contains a flaw that may allow a remote denial of service (e.g., device reload). The issue is triggered when the Cisco IOS device processes specific, malformed Skinny Call Control Protocol (SCCP) messages, and will result in loss of availability for the device.
|
2010-03-24
|
Cisco IOS Unified Communications Manager Express SCCP Message Handling Unspecified Remote DoS (CSCsz49741)
|
|
63471
Description:
WebKit contains a use-after-free error in the 'Node::notifyLocalNodeListsAttributeChanged' function in WebCore/dom/Node.cpp that is triggered when removing children of attribute nodes. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and execute arbitrary code.
|
2010-03-24
|
WebKit Node::notifyLocalNodeListsAttributeChanged Attribute Child Removal Use-after-free Arbitrary Code Execution
|
|
63166
Description:
(Description Provided by CVE) : Multiple unspecified vulnerabilities in Pulse CMS before 1.2.3 allow (1) remote attackers to write to arbitrary files and execute arbitrary PHP code via vectors related to improper handling of login failures by includes/login.php; and allow remote authenticated users to write to arbitrary files and execute arbitrary PHP code via vectors involving the (2) filename and (3) block parameters to view.php.
|
2010-03-24
|
Pulse CMS includes/login.php Arbitrary PHP Code Execution
|
|
63154
Description:
SMEStorage Component for Joomla! contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'controller' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.
|
2010-03-24
|
SMEStorage Component for Joomla! index.php controller Parameter Traversal Local File Inclusion
|
|
63149
Description:
Insky CMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'insky/modules/city.get/city.get.php' script not properly sanitizing user input supplied to the 'ROOT' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2010-03-24
|
Insky CMS insky/modules/city.get/city.get.php ROOT Parameter Remote File Inclusion
|
|
63159
Description:
Discuz! contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the "Referer" HTTP header upon submission to the 'register.php' and 'logging.php' scripts. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-03-24
|
Discuz! Referer HTTP Header XSS
|
|
63150
Description:
Insky CMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'insky/modules/city.get/index.php' script not properly sanitizing user input supplied to the 'ROOT' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2010-03-24
|
Insky CMS insky/modules/city.get/index.php ROOT Parameter Remote File Inclusion
|
|
63151
Description:
Insky CMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'insky/modules/message2.send/message.send.php' script not properly sanitizing user input supplied to the 'ROOT' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2010-03-24
|
Insky CMS insky/modules/message2.send/message.send.php ROOT Parameter Remote File Inclusion
|
|
63152
Description:
Insky CMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'insky/modules/message.send/message.send.php' script not properly sanitizing user input supplied to the 'ROOT'parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2010-03-24
|
Insky CMS insky/modules/message.send/message.send.php ROOT Parameter Remote File Inclusion
|
|
63153
Description:
Insky CMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'insky/modules/pages.add/pages.add.php' script not properly sanitizing user input supplied to the 'ROOT' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.
|
2010-03-24
|
Insky CMS insky/modules/pages.add/pages.add.php ROOT Parameter Remote File Inclusion
|
|
63161
Description:
Alkacon OpenCms contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate input passed via form fields when creating a comment. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-03-24
|
Alkacon OpenCms Comments Module Form Fields XSS
|
|
63175
Description:
HP Project and Portfolio Management Center contains multiple flaws that allows remote cross site scripting (XSS) attacks. These flaws exists because the application does not sanitize input. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-03-24
|
HP Project and Portfolio Management Center Unspecified XSS
|
|
63167
Description:
Pulse CMS contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the script 'delete.php' not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'f' parameter. This directory traversal attack would allow the attacker to delete arbitrary files.
|
2010-03-24
|
Pulse CMS delete.php f Parameter Traversal Arbitrary File Deletion
|
|
63168
Description:
(Description Provided by CVE) : Multiple unspecified vulnerabilities in Pulse CMS before 1.2.3 allow (1) remote attackers to write to arbitrary files and execute arbitrary PHP code via vectors related to improper handling of login failures by includes/login.php; and allow remote authenticated users to write to arbitrary files and execute arbitrary PHP code via vectors involving the (2) filename and (3) block parameters to view.php.
|
2010-03-24
|
Pulse CMS view.php Multiple Parameter Arbitrary PHP Code Execution
|
|
63171
Description:
Unknown / Incomplete
|
2010-03-24
|
Menu Block Module for Drupal Partial Menu Tree Parent Menu Item XSS
|
|
63172
Description:
Unknown / Incomplete
|
2010-03-24
|
Mime Mail Module for Drupal PCRE Regular Expression Engine Arbitrary PHP Code Execution
|
|
63251
Description:
vBulletin contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the input passed via the URL when creating a new blog post. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-03-24
|
vBulletin New Blog Post Creation XSS
|
|
63252
Description:
vBulletin contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the unspecified input to the content type search widget. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-03-24
|
vBulletin CMS Content Type Search Widgets XSS
|
|
63253
Description:
vBulletin contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the unspecified input upon submission CMS article previews on section pages. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-03-24
|
vBulletin Section Page CMS Article Preview XSS
|
|
63254
Description:
vBulletin contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the unspecified input upon submission to the CMS article editor. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-03-24
|
vBulletin CMS Article Editor XSS
|
|
63286
Description:
(Description Provided by CVE) : Chip Salzenberg Deliver does not properly associate a lockfile with the user who created the file, which allows local users to cause a denial of service (blockage of incoming e-mail) by creating lockfiles for arbitrary mailboxes.
|
2010-03-24
|
Deliver Mailbox Lock File Creation Local DoS
|
|
63287
Description:
(Description Provided by CVE) : Chip Salzenberg Deliver allows local users to cause a denial of service, obtain sensitive information, and possibly change the ownership of arbitrary files via a symlink attack on an unspecified file.
|
2010-03-24
|
Deliver NFS System Race Condition Local Privilege Escalation
|
|
63299
Description:
(Description Provided by CVE) : The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remote attackers to cause a denial of service (crash) via a malformed record in a TLS connection that triggers a NULL pointer dereference, related to the minor version number. NOTE: some of these details are obtained from third party information.
|
2010-03-24
|
OpenSSL ssl/s3_pkt.c ssl3_get_record Function TLS Connection Record Remote DoS
|
|
63418
Description:
(Description Provided by CVE) : Multiple format string vulnerabilities in isns.c in (1) Linux SCSI target framework (aka tgt or scsi-target-utils) 1.0.3, 0.9.5, and earlier and (2) iSCSI Enterprise Target (aka iscsitarget) 0.4.16 allow remote attackers to cause a denial of service (tgtd daemon crash) or possibly have unspecified other impact via vectors that involve the isns_attr_query and qry_rsp_handle functions, and are related to (a) client appearance and (b) client disappearance messages.
|
2010-03-24
|
Linux SCSI Target Framework (tgt) usr/iscsi/isns.c Multiple Function Format String
|
|
63457
Description:
(Description Provided by CVE) : Mozilla Firefox 3.6.x before 3.6.3 does not properly manage the scopes of DOM nodes that are moved from one document to another, which allows remote attackers to conduct use-after-free attacks and execute arbitrary code via unspecified vectors involving improper interaction with garbage collection, as demonstrated by Nils during a Pwn2Own competition at CanSecWest 2010.
|
2010-03-24
|
Mozilla Firefox Cross Document DOM Node Moving Arbitrary Code Execution (PWN2OWN)
|
|
63469
Description:
(Description Provided by CVE) : Heap-based buffer overflow in Internet Explorer 8 on Microsoft Windows 7 allows remote attackers to discover the base address of a Windows .dll file, and possibly have unspecified other impact, via unknown vectors, as demonstrated by Peter Vreugdenhil during a Pwn2Own competition at CanSecWest 2010.
|
2010-03-24
|
Microsoft IE DLL File Base Address Discovery Overflow (PWN2OWN)
|
|
63470
Description:
(Description Provided by CVE) : Unspecified vulnerability in Internet Explorer 8 on Microsoft Windows 7 allows remote attackers to execute arbitrary code via unknown vectors, possibly related to a use-after-free issue, as demonstrated by Peter Vreugdenhil during a Pwn2Own competition at CanSecWest 2010.
|
2010-03-24
|
Microsoft IE Unspecified Arbitrary Code Execution (PWN2OWN)
|
|
63472
Description:
(Description Provided by CVE) : Unspecified vulnerability in Safari 4 on Apple Mac OS X 10.6 allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by Charlie Miller during a Pwn2Own competition at CanSecWest 2010.
|
2010-03-24
|
Apple Safari on Mac OS X libFontParser.dylib TType1ParsingContext::SpecialEncoding() Function Arbitrary Code Execution (PWN2OWN)
|
|
64285
Description:
Unknown / Incomplete
|
2010-03-24
|
Firebird Database Unspecified Admin Role Issue
|
|
63890
Description:
Unknown / Incomplete
|
2010-03-24
|
LX-office Search Engine History Unspecified Issue
|
|
63891
Description:
Unknown / Incomplete
|
2010-03-24
|
tnftpd Path Globbing Unspecified Issue
|
|
64286
Description:
Unknown / Incomplete
|
2010-03-24
|
Firebird Database Unspecified Authentication Issue
|
|
89817
Description:
By default, Multiple TAC Xenta Devices install with default user credentials (username/password combination). The 'root' account has a password of 'root', which is publicly known and documented. This allows remote attackers to trivially access the program or system and gain privileged access.
|
2010-03-24
|
Multiple TAC Xenta Devices Default Credentials
|
|
66208
Description:
Unknown / Incomplete
|
2010-03-23
|
Serv-U FTP Server Concurrent HTTP Request Saturation Remote DoS
|
|
66209
Description:
Unknown / Incomplete
|
2010-03-23
|
Serv-U FTP Server Restricted Admin User Import Cross Home Directory Account Creation
|
|
66210
Description:
Unknown / Incomplete
|
2010-03-23
|
Serv-U FTP Server Restricted Admin User Export Information Disclosure
|
|
66211
Description:
Unknown / Incomplete
|
2010-03-23
|
Serv-U FTP Server Restricted Domain Admin User / Group Creation Weakness
|
|
63144
Description:
OpenPage contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'id' parameter (when "pagina" is set to "news"). This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2010-03-23
|
OpenPage index.php id Parameter SQL Injection
|
|
63141
Description:
RepairShop2 contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'Prod' parameter upon submission to the 'index.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2010-03-23
|
RepairShop2 index.php Prod Parameter XSS
|
