[CLOSE] OSVDB ID : 76759 - Disclosed: 2011-10-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 76761 - Disclosed: 2011-10-26

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 76815 - Disclosed: 2011-10-26

Description:

(Description Provided by CVE) : The Sybase SQL Anywhere database component in Cisco CiscoWorks Common Services 3.x and 4.x before 4.1 allows remote attackers to obtain potentially sensitive information about the engine name and database port via an unspecified request to UDP port 2638, aka Bug ID CSCsk35018.

[CLOSE] OSVDB ID : 76643 - Disclosed: 2011-10-25

Description:

Alsbtain Bulletin contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the index.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'act' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 90390 - Disclosed: 2011-10-25

Description:

WebKit contains a flaw in the 'V8DOMWindow::namedPropertyGetter' function in WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp as the return value from GetRealNamedProperty is not ignored. With a specially crafted web page, a context-dependent attacker can bypass the same-origin policy restrictions.

[CLOSE] OSVDB ID : 76585 - Disclosed: 2011-10-25

Description:

McAfee Web Gateway contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input upon submission to the web interface. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 76552 - Disclosed: 2011-10-25

Description:

WebKit contains a flaw in the 'HTMLPlugInImageElement::allowedToLoadFrameURL' function [WebCore/html/HTMLPlugInImageElement.cpp] as it accepts JavaScript URIs. With a specially crafted web page, a context-dependent attacker can bypass the same-origin policy restrictions.

[CLOSE] OSVDB ID : 76556 - Disclosed: 2011-10-25

Description:

WebKit contains a use-after-free error in the handling of custom fonts. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 90389 - Disclosed: 2011-10-25

Description:

WebKit contains a flaw in the 'XSLTProcessor::createDocumentFromSource' function in WebCore/xml/XSLTProcessor.cpp as an XSLT-generated document does not inherit its SecurityOrigin from the source document. With a specially crafted web page, a context-dependent attacker can bypass the same-origin policy restrictions.

[CLOSE] OSVDB ID : 90388 - Disclosed: 2011-10-25

Description:

WebKit contains a flaw in the 'ScriptController::executeIfJavaScriptURL' function of WebCore/bindings/ScriptControllerBase.cpp as it may be confused by synchronous frame loads. With a specially crafted web page, a context-dependent attacker can bypass the same-origin policy restrictions.

[CLOSE] OSVDB ID : 90450 - Disclosed: 2011-10-25

Description:

WebKit contains a use-after-free error in the 'RenderBlock::updateFirstLetter' function in WebCore/rendering/RenderBlock.cpp as :first-letter after list markers is not updated correctly. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 90449 - Disclosed: 2011-10-25

Description:

WebKit contains an unspecified use-after-free error in the style sheet handling. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 90448 - Disclosed: 2011-10-25

Description:

WebKit contain a use-after-free error in the 'RenderObjectChildList::updateBeforeAfterContent' function in WebCore/rendering/RenderObjectChildList.cpp that is triggered as styles are not updated on text fragments in :first-letter nested in :before tables. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 90447 - Disclosed: 2011-10-25

Description:

WebKit contains a use-after-free error in the 'RenderObject::addChild' function in WebCore/rendering/RenderObject.cpp when handling content around table cells. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 76545 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Google Chrome before 15.0.874.102 does not properly handle history data, which allows user-assisted remote attackers to spoof the URL bar via unspecified vectors.

[CLOSE] OSVDB ID : 90387 - Disclosed: 2011-10-25

Description:

WebKit contains a flaw in WebCore/page/DOMWindow.cpp as DOMWindow sub-objects can be recreated after navigation. With a specially crafted web page, a context-dependent attacker can bypass the same-origin policy restrictions.

[CLOSE] OSVDB ID : 90446 - Disclosed: 2011-10-25

Description:

WebKit contains a use-after-free error in the style sheet handling as :before content cannot be properly located in the presence of list markers and run-ins. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 76642 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager before 1.1, as used in tinymce before 1.4.2, phpMyFAQ 2.6 before 2.6.19 and 2.7 before 2.7.1, and possibly other products, allows remote attackers to inject arbitrary PHP code into data.php via crafted parameters.

[CLOSE] OSVDB ID : 76546 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Google Chrome before 15.0.874.102 does not properly handle drag and drop operations on URL strings, which allows user-assisted remote attackers to spoof the URL bar via unspecified vectors.

[CLOSE] OSVDB ID : 76547 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Google Chrome before 15.0.874.102 does not properly handle downloading files that have whitespace characters at the end of a filename, which has unspecified impact and user-assisted remote attack vectors.

[CLOSE] OSVDB ID : 76548 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the appcache internals page in Google Chrome before 15.0.874.102 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

[CLOSE] OSVDB ID : 76549 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Race condition in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to worker process initialization.

[CLOSE] OSVDB ID : 76550 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Google Chrome before 15.0.874.102 does not prevent redirects to chrome: URLs, which has unspecified impact and remote attack vectors.

[CLOSE] OSVDB ID : 76551 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Google Chrome before 15.0.874.102 does not prevent use of an unspecified special character as a delimiter in HTTP headers, which has unknown impact and remote attack vectors.

[CLOSE] OSVDB ID : 76553 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to media buffers.

[CLOSE] OSVDB ID : 76554 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to counters.

[CLOSE] OSVDB ID : 76555 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Google Chrome before 15.0.874.102 does not properly address timing issues during DOM traversal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document.

[CLOSE] OSVDB ID : 76557 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Google V8, as used in Google Chrome before 15.0.874.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers out-of-bounds write operations.

[CLOSE] OSVDB ID : 76558 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Google Chrome before 15.0.874.102 does not properly handle javascript: URLs, which allows remote attackers to bypass intended access restrictions and read cookies via unspecified vectors.

[CLOSE] OSVDB ID : 76559 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows user-assisted remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to editing operations in conjunction with an unknown plug-in.

[CLOSE] OSVDB ID : 76560 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Heap-based buffer overflow in the Web Audio implementation in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

[CLOSE] OSVDB ID : 76561 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to video source handling.

[CLOSE] OSVDB ID : 76562 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Google Chrome before 15.0.874.102 does not properly restrict access to internal Google V8 functions, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

[CLOSE] OSVDB ID : 77378 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

[CLOSE] OSVDB ID : 76640 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

[CLOSE] OSVDB ID : 76637 - Disclosed: 2011-10-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 77444 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x before 2.2.18, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers by using the HTTP/0.9 protocol with a malformed URI containing an initial @ (at sign) character. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.

[CLOSE] OSVDB ID : 77490 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : Multiple integer overflows in the HTTP server in the Novell XTier framework 3.1.8 allow remote attackers to cause a denial of service (service crash) or possibly execute arbitrary code via crafted header length variables.

[CLOSE] OSVDB ID : 77612 - Disclosed: 2011-10-25

Description:

(Description Provided by CVE) : vtiger CRM before 5.3.0 does not properly recognize the disabled status of a field in the Leads module, which allows remote authenticated users to bypass intended access restrictions by reading a previously created report.

[CLOSE] OSVDB ID : 83419 - Disclosed: 2011-10-25

Description:

BlueZone Desktop contains a flaw that may allow for a denial of service. The issue is triggered when a user opens a malformed ZMD file, resulting in a loss of availability for the program. This can be exploited remotely by tricking a user into opening the crafted file (e.g., via email), or locally by placing it in a location that may seem safe (e.g., a network share).