[CLOSE] OSVDB ID : 77734 - Disclosed: 2011-12-14

Description:

BrowserCRM contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the modules/Documents/index.php script not properly sanitizing user-supplied input to the 'contact_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 77735 - Disclosed: 2011-12-14

Description:

BrowserCRM contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'login[username]' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 77738 - Disclosed: 2011-12-14

Description:

JBoss Enterprise Portal Platform contains multiple unspecified flaws that allow remote cross-site scripting (XSS) attacks. These flaw exist because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77770 - Disclosed: 2011-12-14

Description:

Nagios XI contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'hostgroup' and 'style' parameters upon submission to the includes/components/xicore/status.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78084 - Disclosed: 2011-12-14

Description:

Zabbix contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'gname' (Host name) parameter upon submission to the usergrps.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78589 - Disclosed: 2011-12-14

Description:

Scan to PDF Free Application for Android contains a flaw related that may allow a remote attacker to access and manipulate data relating to a user's Google account and scanned files.

[CLOSE] OSVDB ID : 78591 - Disclosed: 2011-12-14

Description:

360 KouXin Application for Android contains a flaw related that may allow a remote attacker to access and manipulate data relating to a user's SMS or contact list.

[CLOSE] OSVDB ID : 78592 - Disclosed: 2011-12-14

Description:

AnGuanJia Application for Android contains a flaw related that may allow a remote attacker to access and manipulate data relating to a user's SMS or contact list.

[CLOSE] OSVDB ID : 79418 - Disclosed: 2011-12-14

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 82684 - Disclosed: 2011-12-14

Description:

Roundcube Webmail contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via embedded image attachments before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 84175 - Disclosed: 2011-12-14

Description:

WebKit contains a use-after-free error that is triggered when parsing isolates during run layout. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 91857 - Disclosed: 2011-12-14

Description:

Juniper IVE OS Secure Access (SA) contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input passed via the JSAM (Secure Access Manager) page before returning it to the user. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77668 - Disclosed: 2011-12-13

Description:

Microsoft Office PowerPoint is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a PowerPoint file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

[CLOSE] OSVDB ID : 78667 - Disclosed: 2011-12-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 77659 - Disclosed: 2011-12-13

Description:

Microsoft Office contains a flaw that is triggered when a use-after-free error occurs during the handling of certain border properties with in word documents. This may allow a remote attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 77660 - Disclosed: 2011-12-13

Description:

A memory corruption flaw exists in Microsoft Windows Media Player and Windows Media Center. The program fails to sanitize user-supplied input resulting in memory corruption. With a specially crafted DVR-MS file, a context-dependent attacker can execute arbitrary code.

[CLOSE] OSVDB ID : 77662 - Disclosed: 2011-12-13

Description:

Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when an error occurs in the Client/Server Run-time Subsystem (CSRSS) within Csrsrv.dll when parsing a device event message. This may potentially allow an attacker to gain escalated privileges.

[CLOSE] OSVDB ID : 77663 - Disclosed: 2011-12-13

Description:

Microsoft Windows contains a flaw that is triggered when an error occurs in Object Linking and Embedding, when parsing an object file. This may allow an attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 77666 - Disclosed: 2011-12-13

Description:

Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when error occurs in the kernel exception handler, which may allow a local attacker to gain escalated privileges.

[CLOSE] OSVDB ID : 77667 - Disclosed: 2011-12-13

Description:

Microsoft Windows is prone to an overflow condition. The Active Directory implementation fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted query, a remote attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 77674 - Disclosed: 2011-12-13

Description:

Microsoft IE is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening an HTML file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

[CLOSE] OSVDB ID : 77700 - Disclosed: 2011-12-13

Description:

Bokken contains a flaw that may allow a malicious local user to create arbitrary files on the system. The issue is due to the program creating temporary files insecurely. It is possible for a local attacker to use a symlink attack to cause the program to unexpectedly write to, or overwrite an attacker specified file.

[CLOSE] OSVDB ID : 77721 - Disclosed: 2011-12-13

Description:

Adobe ColdFusion contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input passed via the cfform tag before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77715 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to Range handling.

[CLOSE] OSVDB ID : 77720 - Disclosed: 2011-12-13

Description:

WebKit contains a use-after-free error in the 'InlineBidiResolver::appendRun' function in WebCore/rendering/InlineIterator.h when handling mixed direction text runs. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.

[CLOSE] OSVDB ID : 77722 - Disclosed: 2011-12-13

Description:

Adobe ColdFusion contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input passed via the RDS component before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77748 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : ipmievd (aka the IPMI event daemon) in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux (RHEL) 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this file.

[CLOSE] OSVDB ID : 78669 - Disclosed: 2011-12-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 78668 - Disclosed: 2011-12-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 78666 - Disclosed: 2011-12-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 79497 - Disclosed: 2011-12-13

Description:

phpDenora contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the libs/phpdenora/graphs/line.php script not properly sanitizing user-supplied input to the 'sy', 'sm', 'sd', 'ey', 'em' and 'ed' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 78623 - Disclosed: 2011-12-13

Description:

The Cut the Rope application for Android has trojaned copies available for download on some app markets. These trojans will cause a phone to send SMS messages to premium numbers, charging the user money.

[CLOSE] OSVDB ID : 77661 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : Microsoft Excel 2003 SP3 and Office 2004 for Mac do not properly handle objects in memory, which allows remote attackers to execute arbitrary code via a crafted Excel spreadsheet, aka "Record Memory Corruption Vulnerability."

[CLOSE] OSVDB ID : 77664 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : Microsoft PowerPoint 2007 SP2; Office 2008 for Mac; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; and PowerPoint Viewer 2007 SP2 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an invalid OfficeArt record in a PowerPoint document, aka "OfficeArt Shape RCE Vulnerability."

[CLOSE] OSVDB ID : 77665 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : The Microsoft Time component in DATIME.DLL in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted web site that leverages an unspecified "binary behavior" in Internet Explorer, aka "Microsoft Time Remote Code Execution Vulnerability."

[CLOSE] OSVDB ID : 77670 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : Array index error in Microsoft Publisher 2003 SP3, and 2007 SP2 and SP3, allows remote attackers to execute arbitrary code via a crafted Publisher file that leverages incorrect handling of values in memory, aka "Publisher Out-of-bounds Array Index Vulnerability."

[CLOSE] OSVDB ID : 77671 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that leverages incorrect handling of values in memory, aka "Publisher Invalid Pointer Vulnerability."

[CLOSE] OSVDB ID : 77672 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : Microsoft Publisher 2003 SP3, and 2007 SP2 and SP3, allows remote attackers to execute arbitrary code via a crafted Publisher file that leverages incorrect memory handling, aka "Publisher Memory Corruption Vulnerability."

[CLOSE] OSVDB ID : 77684 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : The br_parse_ip_options function in net/bridge/br_netfilter.c in the Linux kernel before 2.6.39 does not properly initialize a certain data structure, which allows remote attackers to cause a denial of service by leveraging connectivity to a network interface that uses an Ethernet bridge device.

[CLOSE] OSVDB ID : 77673 - Disclosed: 2011-12-13

Description:

(Description Provided by CVE) : The XSS Filter in Microsoft Internet Explorer 8 allows remote attackers to read content from a different (1) domain or (2) zone via a "trial and error" attack, aka "XSS Filter Information Disclosure Vulnerability."