[CLOSE] OSVDB ID : 71162 - Disclosed: 2011-02-14

Description:

Tembria Server Monitor contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered the program encrypts credentials with a simple substitution cipher, allowing an attacker who is able to obtain the authentication.dat file through previous compromise of the system to easily decrypt credentials.

[CLOSE] OSVDB ID : 71902 - Disclosed: 2011-02-14

Description:

Atlassian Confluence contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the '{toc}' macro before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72995 - Disclosed: 2011-02-14

Description:

(Description Provided by CVE) : The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do not properly validate data related to the AA resolve registers, which allows local users to write to arbitrary memory locations associated with (1) Video RAM (aka VRAM) or (2) the Graphics Translation Table (GTT) via crafted values.

[CLOSE] OSVDB ID : 75886 - Disclosed: 2011-02-14

Description:

Rapid Leech contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sends a direct request to multiple scripts, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 78995 - Disclosed: 2011-02-13

Description:

(Description Provided by CVE) : Unrestricted file upload vulnerability in attachement.php in HDWiki 5.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in image directory.

[CLOSE] OSVDB ID : 72528 - Disclosed: 2011-02-13

Description:

OpenLDAP contains a flaw in the 'back-ldap' component. The issue is due to an error within chain.c when a slave server forwards password failures to a master server. With a specially crafted request containing an invalid password, a remote attacker can bypass authentication settings.

[CLOSE] OSVDB ID : 72529 - Disclosed: 2011-02-13

Description:

OpenLDAP contains a flaw in the 'back-ndb' component. The issue is due to an error within bind.cpp when handling authentication for a 'rootdn' Distinguished Name (DN). This flaw may allow a remote attacker to bypass authentication settings and perform arbitrary actions.

[CLOSE] OSVDB ID : 72530 - Disclosed: 2011-02-13

Description:

OpenLDAP contains a flaw in the handling of certain MODRDN requests that may allow a remote denial of service. The issue is due to an error when handling relative Distinguished Name (DN) modification requests (aka MODRDN operation). With a specially crafted request containing an empty value for the OldDN field, a remote attacker can cause the service to crash.

[CLOSE] OSVDB ID : 73279 - Disclosed: 2011-02-13

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 73770 - Disclosed: 2011-02-13

Description:

(Description Provided by CVE) : Unspecified vulnerability in the PEF input file loader in Hex-Rays IDA Pro 5.7 and 6.0 has unknown impact and attack vectors.

[CLOSE] OSVDB ID : 75805 - Disclosed: 2011-02-13

Description:

(Description Provided by CVE) : Escort Agency CMS (aka escort-agency-cms) allows remote attackers to obtain sensitive information via crafted array parameters in a request to a .php file, which reveals the installation path in an error message, as demonstrated by makethumb.php and certain other files.

[CLOSE] OSVDB ID : 70949 - Disclosed: 2011-02-12

Description:

Dokeos contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'code' parameter upon submission to the main/inc/latex.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 70876 - Disclosed: 2011-02-12

Description:

Escort Agency CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the program not properly sanitizing user-supplied input from the URL when viewing model information. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 70868 - Disclosed: 2011-02-12

Description:

ProFTPD contains a flaw that may allow a remote denial of service. The issue is triggered when the 'mod_sftp' module fails to restrict the maximum payload size of SSH packets, which may be exploited via crafted SSH packets sent to the server to cause a denial of service.

[CLOSE] OSVDB ID : 71009 - Disclosed: 2011-02-12

Description:

Simple Machines Forum contains a flaw related to the SSI.php failing to check for guest access permission during function calls. This may allow an attacker to call restricted functions and disclose 'Recent Posts' and 'Recent Topics' in forums which have guest access disabled.

[CLOSE] OSVDB ID : 75901 - Disclosed: 2011-02-12

Description:

Virtual War contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sends a direct request to multiple scripts, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 85709 - Disclosed: 2011-02-12

Description:

GlobalSCAPE CuteZIP is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted ZIP file, a context-dependent attacker can potentially execute arbitrary code or cause a denial of service.

[CLOSE] OSVDB ID : 70925 - Disclosed: 2011-02-11

Description:

Apache Continuum contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 70960 - Disclosed: 2011-02-11

Description:

MySQL Eventum contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input appended to the URL upon submission to the forgot_password.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 70961 - Disclosed: 2011-02-11

Description:

MySQL Eventum contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'keywords', 'customer_id', 'status', 'priority', 'category', 'customer_email', 'reporter', 'release' and 'pageRow' parameters upon submission to the list.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 70962 - Disclosed: 2011-02-11

Description:

phpMyAdmin contains a flaw related to the 'PMA_Bookmark_get' function in 'libraries/bookmark.lib.php' failing to properly restrict bookmark queries. This makes it easier for a remote authenticated attacker to cause another user to execute bookmarked SQL queries.

[CLOSE] OSVDB ID : 70877 - Disclosed: 2011-02-11

Description:

TaskFreak contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'sContext', 'sort', 'dir' and 'show' POST parameters upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 70878 - Disclosed: 2011-02-11

Description:

TaskFreak contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'dir' and 'show' GET parameters upon submission to the print_list.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 70932 - Disclosed: 2011-02-11

Description:

TaskFreak contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the HTTP referer header upon submission to the 'rss.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 70924 - Disclosed: 2011-02-11

Description:

Apache Continuum contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for administrative credential modification actions. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 70896 - Disclosed: 2011-02-11

Description:

Kunena contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'catids' parameter on the search page. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data. Additionally, if a failed query is performed, the program will disclose stacktrace information, along with the full version of Kunena, PHP and MySQL as well as the path to kunena.search.class.php, which often starts with /home/username, which may disclose a username. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 75233 - Disclosed: 2011-02-11

Description:

Simple Machines Forum contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'cleanRequest' function in the QueryString.php script not properly sanitizing user-supplied input to the 'start' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 75235 - Disclosed: 2011-02-11

Description:

(Description Provided by CVE) : The loadUserSettings function in Load.php in Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, does not properly handle invalid login attempts, which might make it easier for remote attackers to obtain access or cause a denial of service via a brute-force attack.

[CLOSE] OSVDB ID : 75234 - Disclosed: 2011-02-11

Description:

Simple Machines Forum contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'constructPageIndex' function in the Subs.php script not properly sanitizing user-supplied input to the 'start' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 78892 - Disclosed: 2011-02-11

Description:

HDWiki contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the model/comment.class.php script not properly sanitizing user-supplied input passed via the URL after hdwiki/index.php. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 80821 - Disclosed: 2011-02-11

Description:

FreeNAS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'ifname', 'ifnum', 'fetch_link', and 'error_text' parameters upon submission to the program. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 70872 - Disclosed: 2011-02-11

Description:

ManageEngine ADSelfService Plus contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'searchString', 'searchType' and 'actionID' parameters upon submission to the EmployeeSearch.cc script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 70859 - Disclosed: 2011-02-11

Description:

VMware vCenter Server contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when the Apache Tomcat Manager configuration file contains logon crednetials, which will disclose the credentials to a local attacker who reads the file.

[CLOSE] OSVDB ID : 73322 - Disclosed: 2011-02-11

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 73131 - Disclosed: 2011-02-11

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in admin/index.php in Pixelpost 1.7.3 allow remote authenticated users to execute arbitrary SQL commands via the (1) findfid, (2) id, (3) selectfcat, (4) selectfmon, or (5) selectftag parameter in an images action.

[CLOSE] OSVDB ID : 73767 - Disclosed: 2011-02-11

Description:

(Description Provided by CVE) : Integer overflow in the COFF/EPOC/EXPLOAD input file loaders in Hex-Rays IDA Pro 5.7 and 6.0 has unknown impact and attack vectors related to memory allocation.

[CLOSE] OSVDB ID : 73768 - Disclosed: 2011-02-11

Description:

(Description Provided by CVE) : Integer overflow in the PSX/GEOS input file loaders in Hex-Rays IDA Pro 5.7 and 6.0 has unknown impact and attack vectors related to memory allocation.

[CLOSE] OSVDB ID : 73769 - Disclosed: 2011-02-11

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Mach-O input file loader in Hex-Rays IDA Pro 5.7 and 6.0 allows user-assisted remote attackers to cause a denial of service (out-of-memory exception and inability to analyze code) via a crafted Mach-O file.

[CLOSE] OSVDB ID : 74121 - Disclosed: 2011-02-11

Description:

(Description Provided by CVE) : The PlushSearch2 function in Search.php in Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, uses certain cached data in a situation where a temporary table has been created, even though this cached data is intended only for situations where a temporary table has not been created, which might allow remote attackers to obtain sensitive information via a search.

[CLOSE] OSVDB ID : 70869 - Disclosed: 2011-02-10

Description:

ManageEngine ADSelfService Plus contains a flaw related to the password reset mechanism. This may allow an attacker to bypass security questions to change an arbitrary user's password by directly accessing the 'accounts/ResetResult' page.