[CLOSE] OSVDB ID : 66929 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCtf35333.

[CLOSE] OSVDB ID : 66930 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Cisco Wireless Control System (WCS) 7.x before 7.0.164, as used in Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCtg33854.

[CLOSE] OSVDB ID : 66931 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Cisco Wireless Control System (WCS) 7.x before 7.0.164, as used in Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCtg33854.

[CLOSE] OSVDB ID : 67007 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.19), 8.1 before 8.1(2.47), and 8.2 before 8.2(2) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via crafted SunRPC UDP packets, aka Bug ID CSCtc77567.

[CLOSE] OSVDB ID : 67008 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.19), 8.1 before 8.1(2.47), and 8.2 before 8.2(2) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via crafted SunRPC UDP packets, aka Bug ID CSCtc79922.

[CLOSE] OSVDB ID : 67009 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Unspecified vulnerability in the SunRPC inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.19), 8.1 before 8.1(2.47), and 8.2 before 8.2(2) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via crafted SunRPC UDP packets, aka Bug ID CSCtc85753.

[CLOSE] OSVDB ID : 67010 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8.1 before 8.1(2.44), 8.2 before 8.2(2.17), and 8.3 before 8.3(1.6) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via a sequence of crafted TLS packets, aka Bug ID CSCtd32627.

[CLOSE] OSVDB ID : 67012 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8.1 before 8.1(2.44), 8.2 before 8.2(2.17), and 8.3 before 8.3(1.6) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via a sequence of crafted TLS packets, aka Bug ID CSCtf37506.

[CLOSE] OSVDB ID : 67013 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8.1 before 8.1(2.44), 8.2 before 8.2(2.17), and 8.3 before 8.3(1.6) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via a sequence of crafted TLS packets, aka Bug ID CSCtf55259.

[CLOSE] OSVDB ID : 67015 - Disclosed: 2010-08-04

Description:

(Description Provided by CVE) : Unspecified vulnerability in the IKE implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.11), 7.1 and 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8.1 before 8.1(2.44), 8.2 before 8.2(2.10), and 8.3 before 8.3(1.1) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via a crafted IKE message, aka Bug ID CSCte46507.

[CLOSE] OSVDB ID : 67078 - Disclosed: 2010-08-04

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 68757 - Disclosed: 2010-08-04

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 68784 - Disclosed: 2010-08-04

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 68783 - Disclosed: 2010-08-04

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 66830 - Disclosed: 2010-08-03

Description:

(Description Provided by CVE) : Citrix Online Plug-in for Windows for XenApp & XenDesktop before 11.2, Citrix Online Plug-in for Mac for XenApp & XenDesktop before 11.0, Citrix ICA Client for Linux before 11.100, Citrix ICA Client for Solaris before 8.63, and Citrix Receiver for Windows Mobile before 11.5 allow remote attackers to execute arbitrary code via (1) a crafted HTML document, (2) a crafted .ICA file, or (3) a crafted type field in an ICA graphics packet, related to a "heap offset overflow" issue.

[CLOSE] OSVDB ID : 66829 - Disclosed: 2010-08-03

Description:

(Description Provided by CVE) : The IICAClient interface in the ICAClient library in the ICA Client ActiveX Object (aka ICO) component in Citrix Online Plug-in for Windows for XenApp & XenDesktop before 12.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted HTML document that triggers the reading of a .ICA file.

[CLOSE] OSVDB ID : 66863 - Disclosed: 2010-08-03

Description:

NextGEN Smooth Gallery Plugin for WordPress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the wp-content/plugins/nextgen-smooth-gallery/nggSmoothFrame.php script not properly sanitizing user-supplied input to the 'galleryID' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 66827 - Disclosed: 2010-08-03

Description:

(Description Provided by CVE) : Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.

[CLOSE] OSVDB ID : 66932 - Disclosed: 2010-08-03

Description:

(Description Provided by CVE) : Stack-based buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long OvJavaLocale value in a cookie.

[CLOSE] OSVDB ID : 66814 - Disclosed: 2010-08-03

Description:

Amlibweb Library Management System is prone to an overflow condition. webquery.dll fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted request, a remote attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 66917 - Disclosed: 2010-08-03

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 66935 - Disclosed: 2010-08-03

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 66891 - Disclosed: 2010-08-03

Description:

(Description Provided by CVE) : phpCAS before 1.1.2 allows remote authenticated users to hijack sessions via a query string containing a crafted ticket value.

[CLOSE] OSVDB ID : 66890 - Disclosed: 2010-08-03

Description:

(Description Provided by CVE) : Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 through 2.8.8dev.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed URL containing a % (percent) character in the domain name.

[CLOSE] OSVDB ID : 66892 - Disclosed: 2010-08-03

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when proxy mode is enabled, allows remote attackers to inject arbitrary web script or HTML via a callback URL.

[CLOSE] OSVDB ID : 67348 - Disclosed: 2010-08-03

Description:

FuseTalk contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'FTVAR_SORT' parameter upon submission to the 'categories.aspx' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 67844 - Disclosed: 2010-08-03

Description:

(Description Provided by CVE) : The Limit Mail feature in the Parental Controls functionality in Mail on Apple Mac OS X does not properly enforce the correspondence whitelist, which allows remote attackers to bypass intended access restrictions and conduct e-mail communication by leveraging knowledge of a child's e-mail address and a parent's e-mail address, related to parental notification of unapproved e-mail addresses.

[CLOSE] OSVDB ID : 70651 - Disclosed: 2010-08-03

Description:

FFmpeg is prone to an overflow condition. The 'vorbis_residue_decode_internal' function in 'libavcodec/vorbis_dec.c' in the Vorbis decoder fails to properly sanitize user-supplied input resulting in an integer overflow. Through unspecified means, a remote attacker can potentially cause an unspecified impact.

[CLOSE] OSVDB ID : 86375 - Disclosed: 2010-08-02

Description:

Wind River Systems' VxWorks contains a flaw that may lead to unauthorized access. Due to a weakness in the password hashing algorithm, there are only ~ 210,000 combinations for a valid password. If you remove characters that are not easy to type (e.g., high/low ASCII0, the number of permutations drops to ~ 8,000. Since the FTP service allows 4 concurrent connections, and enforces no lockout mechanism for failed password attempts, it only takes ~ 30 minutes at most to brute force a password for any given account.

[CLOSE] OSVDB ID : 66858 - Disclosed: 2010-08-02

Description:

RaidenTunes 2.1.1 suffers from a Cross-Site Scripting (XSS) vulnerability caused by improper validation of user-supplied input by the music_out.php script thru "p" param. A remote attacker could exploit this vulnerability to execute script in a victim's Web browser within the security context of the hosting Web site, allowing the attacker to steal the victim's cookie-based authentication credentials.

[CLOSE] OSVDB ID : 66809 - Disclosed: 2010-08-02

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 69008 - Disclosed: 2010-08-02

Description:

By default, IBM Rational Quality Manager and Rational Test Lab Manager Tomcat installs with a default password. The 'manager' account has a password which is publicly known and documented. This allows attackers to trivially access the program or system.

[CLOSE] OSVDB ID : 66909 - Disclosed: 2010-08-02

Description:

Wind River Systems' VxWorks contains a flaw that may lead to an unauthorized password exposure. It is possible for a remote attacker to gain access to hashed passwords when the 'INCLUDE_SECURITY' configuration setting is enabled and usernames and passwords are hardcoded by using the 'LOGIN_USER_NAME' and 'LOGIN_USER_PASSWORD' parameters, resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 66808 - Disclosed: 2010-08-02

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 66843 - Disclosed: 2010-08-02

Description:

VxWorks contains a flaw that may allow an attacker to brute force a known backdoor account over FTP with trivial effort. The issue is triggered in combination with a flaw that allows arbitrary memory access, which allows the backdoor account name to be discovered.

[CLOSE] OSVDB ID : 66842 - Disclosed: 2010-08-02

Description:

VxWorks contains a flaw that may allow a remote attacker to read and write arbitrary memory on the device. The issue is triggered by leaving the WDB target agent debug service enabled by default.

[CLOSE] OSVDB ID : 66910 - Disclosed: 2010-08-02

Description:

Wind River Systems' VXWorks FTP daemon contains a flaw that may lead to an unauthorized information disclosure. The issue is due to the application not restricting the number of invalid login attempts a client can make. This may allow a remote attacker to more easily conduct brute force attacks and disclose user accounts.

[CLOSE] OSVDB ID : 66971 - Disclosed: 2010-08-02

Description:

FuseTalk contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'keyword' parameter upon submission to the 'usersearchresults.cfm' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 68631 - Disclosed: 2010-08-02

Description:

(Description Provided by CVE) : arch/x86/hvm/vmx/vmcs.c in the virtual-machine control structure (VMCS) implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5, when an Intel platform without Extended Page Tables (EPT) functionality is used, accesses VMCS fields without verifying hardware support for these fields, which allows local users to cause a denial of service (host OS crash) by requesting a VMCS dump for a fully virtualized Xen guest.

[CLOSE] OSVDB ID : 70342 - Disclosed: 2010-08-02

Description:

Cisco Adaptive Security Appliances (ASA) contains a flaw that may allow a remote denial of service. The issue is triggered when an unspecified vulnerability is exploited, allowing a remote attacker to cause a denial of service via LAN-to-LAN IPsec session saturation.