[CLOSE] OSVDB ID : 62221 - Disclosed: 2010-01-26

Description:

(Description Provided by CVE) : The default configuration of Oracle OpenSolaris snv_77 through snv_131 allows attackers to have an unspecified impact via vectors related to using smbadm to join a Windows Active Directory domain.

[CLOSE] OSVDB ID : 63324 - Disclosed: 2010-01-26

Description:

(Description Provided by CVE) : Microsoft Internet Explorer 6 and 7 does not initialize certain data structures during execution of the createElement method, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted JavaScript code, as demonstrated by setting the (1) outerHTML or (2) value property of an object returned by createElement.

[CLOSE] OSVDB ID : 64400 - Disclosed: 2010-01-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 64434 - Disclosed: 2010-01-26

Description:

ShareTronix contains a flaw that allows arbitrary HTML injection. This flaw exists because the application does not validate the 'page_title' parameter upon submission to the 'header.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 89387 - Disclosed: 2010-01-26

Description:

Foswiki contains a flaw that is due to the cookie URL path always containing '/'. This may allow a remote attacker to gain access to potentially sensitive information in a shared host environment.

[CLOSE] OSVDB ID : 89386 - Disclosed: 2010-01-26

Description:

Foswiki contains a flaw that is due to the program failing to set the secure flag for the session cookie in an HTTPS session. Without this flag, a web browser may transmit the cookie in cleartext (i.e., unencrypted) potentially allowing it to be intercepted.

[CLOSE] OSVDB ID : 61976 - Disclosed: 2010-01-25

Description:

F2L 3000 contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'Login Page' not properly sanitizing user-supplied input to an unspecified parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 62313 - Disclosed: 2010-01-25

Description:

Google Chrome contains a flaw in the 'createWindow' Function in WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp within WebKit when handling the 'window.open()' method. With a specially crafted web page, a context-dependent attacker can bypass the same-origin policy.

[CLOSE] OSVDB ID : 62016 - Disclosed: 2010-01-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 62309 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : Google Chrome before 4.0.249.78 on Windows does not perform the expected encoding, escaping, and quoting for the URL in the --app argument in a desktop shortcut, which allows user-assisted remote attackers to execute arbitrary programs or obtain sensitive information by tricking a user into creating a crafted shortcut.

[CLOSE] OSVDB ID : 62310 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data, related to use of a (1) thumbnail database or (2) HTML canvas.

[CLOSE] OSVDB ID : 62311 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow remote attackers to obtain potentially sensitive information from process memory by providing insufficient data, related to use of a (1) thumbnail database or (2) HTML canvas.

[CLOSE] OSVDB ID : 62312 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : Google Chrome before 4.0.249.78 sends an https URL in the Referer header of an http request in certain circumstances involving https to http redirection, which allows remote HTTP servers to obtain potentially sensitive information via standard HTTP logging.

[CLOSE] OSVDB ID : 62314 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not use the correct variables in calculations designed to prevent integer overflows, which allows attackers to leverage renderer access to cause a denial of service or possibly have unspecified other impact via bitmap data, related to deserialization.

[CLOSE] OSVDB ID : 62463 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : Multiple integer overflows in Skia, as used in Google Chrome before 4.0.249.78, allow remote attackers to execute arbitrary code in the Chrome sandbox or cause a denial of service (memory corruption and application crash) via vectors involving CANVAS elements.

[CLOSE] OSVDB ID : 61922 - Disclosed: 2010-01-25

Description:

JBPublishdownFP Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'cid[]' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 61941 - Disclosed: 2010-01-25

Description:

Publique! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'cgi/cgilua.exe/sys/start.htm' script not properly sanitizing user-supplied input to the 'sid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 62150 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : cache.c in ircd-ratbox before 2.2.9 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a HELP command.

[CLOSE] OSVDB ID : 62151 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a LINKS command.

[CLOSE] OSVDB ID : 62152 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a LINKS command.

[CLOSE] OSVDB ID : 62153 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a LINKS command.

[CLOSE] OSVDB ID : 62949 - Disclosed: 2010-01-25

Description:

WebKit contains a use-after-free error in WebCore/html/HTMLImageElement.cpp, as an image may remain accessible via form.property syntax after having been removed. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 66190 - Disclosed: 2010-01-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 74101 - Disclosed: 2010-01-25

Description:

(Description Provided by CVE) : The AgentTicketForward feature in Open Ticket Request System (OTRS) before 2.4.7 does not properly remove inline images from HTML e-mail messages, which allows remote attackers to obtain potentially sensitive image information in opportunistic circumstances by reading a forwarded message in a standard e-mail client.

[CLOSE] OSVDB ID : 78767 - Disclosed: 2010-01-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 62052 - Disclosed: 2010-01-24

Description:

Apache Tomcat contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the program not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via file names of files contained in a WAR file. This directory traversal attack would allow the attacker to create or overwrite arbitrary files.

[CLOSE] OSVDB ID : 62053 - Disclosed: 2010-01-24

Description:

(Description Provided by CVE) : The autodeployment process in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20, when autoDeploy is enabled, deploys appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests.

[CLOSE] OSVDB ID : 62054 - Disclosed: 2010-01-24

Description:

Apache Tomcat contains a flaw that allows a remote attacker to traverse outside of a restricted path of the host's work directory. The issue is due to Apache Tomcat not properly sanitizing the contents of a WAR file before it is deployed, which could be exploited by a directory traversal sequence in the file name(s) to delete and possibly create malicious files in the host's work directory.

[CLOSE] OSVDB ID : 62056 - Disclosed: 2010-01-24

Description:

Mochigames Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 62059 - Disclosed: 2010-01-24

Description:

PunBB contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'pid' parameter upon submission to the 'forum/viewtopic.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 62708 - Disclosed: 2010-01-24

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 62709 - Disclosed: 2010-01-24

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 64387 - Disclosed: 2010-01-24

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 92782 - Disclosed: 2010-01-24

Description:

OpenVPN contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is due to an unquoted search path, which may allow a local attacker to inject arbitrary code in to the root path. This may allow the attacker to gain escalated privileges.

[CLOSE] OSVDB ID : 61999 - Disclosed: 2010-01-23

Description:

COMTREND CT-507IT contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the 'srvName' parameter upon submission to the 'scvrtsrv.cmd' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 62104 - Disclosed: 2010-01-23

Description:

(Description Provided by CVE) : Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests.

[CLOSE] OSVDB ID : 61915 - Disclosed: 2010-01-23

Description:

ContentBlogList Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'sectionid', 'catid', or 'searchword' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 62033 - Disclosed: 2010-01-23

Description:

(Description Provided by CVE) : Unspecified vulnerability in the WebLogic Server in Oracle WebLogic Server 7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, 10.0 MP2, and 10.3.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

[CLOSE] OSVDB ID : 61947 - Disclosed: 2010-01-23

Description:

(Description Provided by CVE) : sandra.sys 15.18.1.1 and earlier in the Sandra Device Driver in SiSoftware Sandra 16.10.2010.1 and earlier allows local users to gain privileges or cause a denial of service (system crash) via unspecified vectors involving "Model-Specific Registers."

[CLOSE] OSVDB ID : 61945 - Disclosed: 2010-01-23

Description:

(Description Provided by CVE) : Support Incident Tracker before 3.51, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.