[CLOSE] OSVDB ID : 90282 - Disclosed: 2011-12-09

Description:

AntiSamy contains a flaw that is triggered when handling a tag that contains an injected null byte. This will allow a remote attacker to bypass the XSS filter protection and conduct a cross-site scripting (XSS) attack.

[CLOSE] OSVDB ID : 77688 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : The (1) bin/invscoutClient_VPD_Survey and (2) sbin/invscout_lsvpd programs in invscout.rte before 2.2.0.19 on IBM AIX 7.1, 6.1, 5.3, and earlier allow local users to delete arbitrary files, or trigger inventory scout operations on arbitrary files, via a symlink attack on an unspecified file.

[CLOSE] OSVDB ID : 77689 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : The (1) bin/invscoutClient_VPD_Survey and (2) sbin/invscout_lsvpd programs in invscout.rte before 2.2.0.19 on IBM AIX 7.1, 6.1, 5.3, and earlier allow local users to delete arbitrary files, or trigger inventory scout operations on arbitrary files, via a symlink attack on an unspecified file.

[CLOSE] OSVDB ID : 77587 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : Directory traversal vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to access arbitrary files via unspecified vectors.

[CLOSE] OSVDB ID : 85994 - Disclosed: 2011-12-08

Description:

Final Beta Laboratory MyWebSearch contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'keywords' parameter before returning it to the user. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77570 - Disclosed: 2011-12-08

Description:

CA SiteMinder contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'target' parameter upon submission to the login.fcc script when 'postpreservationdata' is set to fail. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77592 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : samples/powerbtn/powerbtn.sh in acpid (aka acpid2) 2.0.16 and earlier uses the pidof program incorrectly, which allows local users to gain privileges by running a program with the name kded4 and a DBUS_SESSION_BUS_ADDRESS environment variable containing commands.

[CLOSE] OSVDB ID : 77595 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : Heap-based buffer overflow in the jpc_cox_getcompparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted numrlvls value in a coding style default (COD) marker segment in a JPEG2000 file.

[CLOSE] OSVDB ID : 77589 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in /ctrl in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to hijack the authentication of admins for requests that execute arbitrary programs.

[CLOSE] OSVDB ID : 77596 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file.

[CLOSE] OSVDB ID : 77598 - Disclosed: 2011-12-08

Description:

Asterisk contains a NULL pointer dereference flaw in the 'handle_request_info()' function [channels/chan_sip.c] that may allow a remote denial of service when the 'automon' feature is enabled (disabled by default). With a specially crafted sequence of SIP packets, a remote attacker can cause the service to crash.

[CLOSE] OSVDB ID : 77775 - Disclosed: 2011-12-08

Description:

RHQ and JBoss Operations Network contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the applications do not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77586 - Disclosed: 2011-12-08

Description:

HP Application Lifecycle Management contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the foundation.sh script creating temporary files insecurely. It is possible for a local attacker to use a symlink attack to cause the program to unexpectedly write to, or overwrite an attacker specified file.

[CLOSE] OSVDB ID : 77597 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : The SIP over UDP implementation in Asterisk Open Source 1.4.x before 1.4.43, 1.6.x before 1.6.2.21, and 1.8.x before 1.8.7.2 uses different port numbers for responses to invalid requests depending on whether a SIP username exists, which allows remote attackers to enumerate usernames via a series of requests.

[CLOSE] OSVDB ID : 77588 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to inject arbitrary web script or HTML via a request for a crafted URI.

[CLOSE] OSVDB ID : 77611 - Disclosed: 2011-12-08

Description:

phpWebSite contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77682 - Disclosed: 2011-12-08

Description:

(Description Provided by CVE) : Multiple unspecified vulnerabilities in Google Chrome before 16.0.912.63 on the Acer AC700, Samsung Series 5, and Cr-48 Chromebook platforms have unknown impact and attack vectors.

[CLOSE] OSVDB ID : 77703 - Disclosed: 2011-12-08

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 77723 - Disclosed: 2011-12-08

Description:

QContacts Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'filter_order' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 77978 - Disclosed: 2011-12-08

Description:

epesi BIM contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'dir_atual' parameter upon submission to the admin/phpfm.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77979 - Disclosed: 2011-12-08

Description:

epesi BIM contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the admin/themeup.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77980 - Disclosed: 2011-12-08

Description:

epesi BIM contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'msg' parameter upon submission to the admin/wfb.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 83191 - Disclosed: 2011-12-08

Description:

SantriaCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the view.php script not properly sanitizing user-supplied input to the 'idArtikel' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 77568 - Disclosed: 2011-12-07

Description:

FreeIPA contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the manipulation of configuration options. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 77563 - Disclosed: 2011-12-07

Description:

Elxis CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'task' parameter upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77564 - Disclosed: 2011-12-07

Description:

Elxis CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the administrator/index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77698 - Disclosed: 2011-12-07

Description:

International Components for Unicode (ICU) contains an overflow condition in the '_canonicalize()' function. The issue is due to the '_canonicalize()' function in source/common/uloc.c not validating user-supplied input when handling local IDs. With a specially crafted locale ID, a context-dependent attacker can cause a stack-based buffer overflow, resulting in a denial of service or potentially execution of arbitrary code.

[CLOSE] OSVDB ID : 77556 - Disclosed: 2011-12-07

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 77576 - Disclosed: 2011-12-07

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the web interface in Red Hat Network (RHN) Satellite 5.4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field of the asset tag in a Custom Info page.

[CLOSE] OSVDB ID : 77584 - Disclosed: 2011-12-07

Description:

(Description Provided by CVE) : dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service (daemon crash) via a crafted request packet.

[CLOSE] OSVDB ID : 77634 - Disclosed: 2011-12-07

Description:

WP Symposium Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'uid' parameter upon submission to the wp-content/plugins/wp-symposium/uploadify/get_profile_avatar.phpscript. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77702 - Disclosed: 2011-12-07

Description:

(Description Provided by CVE) : The Tadasoft Restorepoint 3.2 evaluation image uses weak permissions (www write access) for unspecified scripts, which allows local users to gain privileges by modifying a script file.

[CLOSE] OSVDB ID : 78584 - Disclosed: 2011-12-07

Description:

Limit My Call Application for Android contains a flaw related that may allow a remote attacker to access and manipulate data relating to call logs and contact lists.

[CLOSE] OSVDB ID : 77553 - Disclosed: 2011-12-07

Description:

Etomite contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the certain unspecified input upon submission to the search functionality. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 77539 - Disclosed: 2011-12-07

Description:

(Description Provided by CVE) : Mozilla Firefox 8.0.1 and earlier does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.

[CLOSE] OSVDB ID : 77538 - Disclosed: 2011-12-07

Description:

(Description Provided by CVE) : Google Chrome 15.0.874.121 and earlier does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.

[CLOSE] OSVDB ID : 77502 - Disclosed: 2011-12-07

Description:

(Description Provided by CVE) : Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 does not properly handle user/action_redir group messages, which allows remote authenticated users to discover e-mail addresses by visiting the messaging interface.

[CLOSE] OSVDB ID : 77503 - Disclosed: 2011-12-07

Description:

(Description Provided by CVE) : CRLF injection vulnerability in calendar/set.php in the Calendar component in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, 2.1.x before 2.1.3, and 2.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors involving the url variable.

[CLOSE] OSVDB ID : 77504 - Disclosed: 2011-12-07

Description:

(Description Provided by CVE) : The ip_in_range function in mnet/lib.php in MNET in Moodle 1.9.x before 1.9.15 uses an incorrect data type, which allows remote attackers to bypass intended IP address restrictions via an XMLRPC request.

[CLOSE] OSVDB ID : 77529 - Disclosed: 2011-12-07

Description:

A memory corruption flaw exists in Adobe Reader and Acrobat . The program fails to sanitize user-supplied input when handling U3D data, resulting in memory corruption. With a specially crafted PDF file, a context-dependent attacker can execute arbitrary code.