| OSVDB ID | Disclosure Date | Title |
|---|
|
70754
Description:
HP OpenView Performance Insight contains a flaw related to a hidden account within the 'com.trinagy.security.XMLUserManager' Java class. This may allow a remote attacker access to the 'com.trinagy.servlet.HelpManagerServlet' class, where they gain acess to the 'doPost()' method, which they may use to upload arbitrary files and execute arbitrary code.
|
2011-01-31
|
HP OpenView Performance Insight com.trinagy.security.XMLUserManager Default Account Arbitrary File Upload
|
|
75734
Description:
(Description Provided by CVE) : 60cycleCMS 2.5.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by post.php and certain other files.
|
2011-01-31
|
60cycleCMS Multiple Script Direct Request Path Disclosure
|
|
75735
Description:
(Description Provided by CVE) : Achievo 1.4.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/graph/jpgraph/jpgraph_radar.php and certain other files.
|
2011-01-31
|
Achievo Multiple Script Direct Request Path Disclosure
|
|
75739
Description:
(Description Provided by CVE) : AlegroCart 1.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by common.php and certain other files.
|
2011-01-31
|
AlegroCart Multiple Script Direct Request Path Disclosure
|
|
75894
Description:
SimpleTest contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sends a direct request to multiple scripts, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2011-01-31
|
SimpleTest Multiple Script Direct Request Path Disclosure
|
|
70695
Description:
Virtuosa is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted ASX playlist file with an overly long HREF attribute in the REF element, a context-dependent attacker can potentially execute arbitrary code.
|
2011-01-31
|
Virtuosa ASX Playlist File Handling Overflow
|
|
70756
Description:
Multiple Hitachi JP1 / NETM / DM products contain a flaw related to the improper setting of file permissions that may allow a local attacker to access unintended files. No further details have been provided.
|
2011-01-31
|
Hitachi JP1 / NETM / DM Multiple Products Permissions Weakness Unspecified Local File Access
|
|
70755
Description:
Symantec IM Manager contains a flaw related to the 'ScheduleTask()' function in 'IMAdminSchedTask.asp'. The function does not properly sanitise certain input before using it in an 'Eval()' call. This may allow a context-dependent attacker who tricks an administrator into visiting a crafted link to execute arbitrary ASP code.
|
2011-01-31
|
Symantec IM Manager IMAdminSchedTask.asp ScheduleTask() Method Arbitrary ASP Code Injection
|
|
70738
Description:
Frontend-User-Access Component for Joomla! contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'controller' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.
|
2011-01-31
|
Frontend-User-Access Component for Joomla! index.php controller Parameter Traversal Local File Inclusion
|
|
70739
Description:
VirtueMart Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' not properly sanitizing user-supplied input to the 'search_category' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2011-01-31
|
VirtueMart Component for Joomla! index.php search_category Parameter SQL Injection
|
|
70740
Description:
PostgreSQL is prone to an overflow condition. The 'gettoken' function in 'contrib/intarray/_int_bool.c' in the intarray array module fails to properly sanitize user-supplied input resulting in a buffer overflow. With specially crafted integers with large numbers of digits to unspecified functions, a remote authenticated attacker can potentially execute arbitrary code.
|
2011-01-31
|
PostgreSQL intarray Module contrib/intarray/_int_bool.c gettoken() Function Overflow
|
|
70758
Description:
Aruba Mobility Controller contains a flaw that may allow a remote denial of service. The issue is triggered when [processing 802.11 packets, and may be exploited by a remote attacker via a crafted wireless probe request frame to cause a denial of service.
|
2011-01-31
|
Aruba Mobility Controller Crafted 802.11 Wireless Probe Request Frame Remote DoS
|
|
70757
Description:
Multiple Hitachi JP1 / NETM / DM products contain an unspecified flaw that may allow a local attacker to cause a denial of service. No further details have been provided.
|
2011-01-31
|
Hitachi JP1 / NETM / DM Multiple Products Unspecified Local DoS
|
|
70759
Description:
Aruba Mobility Controller contains a flaw related to the EAP-TLS Dot1X termination component. This may be exploited by a remote attacker to bypass authentication and gain wireless network access.
|
2011-01-31
|
Aruba Mobility Controller EAP-TLS Dot1X Termination Component Wireless User Authentication Bypass
|
|
70942
Description:
Newscoop contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'request' parameter upon submission to the do_logon.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-01-31
|
Newscoop do_logon.php request Parameter XSS
|
|
72432
Description:
Cisco WebEx is prone to an overflow condition. The WebEx Recording Format and Advanced Recording Format Players fail to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted .wrf or .arf file, a context-dependent attacker can potentially execute arbitrary code.
|
2011-01-31
|
Cisco WebEx WRF File Handling Overflow
|
|
72433
Description:
Cisco WebEx is prone to an overflow condition. WebEx Meeting Center fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted .atp file, a context-dependent attacker can potentially execute arbitrary code.
|
2011-01-31
|
Cisco WebEx Meeting Center ATP File Handling Overflow
|
|
72877
Description:
Custom Pagers Module for Drupal contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the title field before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-01-31
|
Custom Pagers Module for Drupal Title Field XSS
|
|
75737
Description:
(Description Provided by CVE) : John Lim ADOdb Library for PHP 5.11 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tests/test-active-record.php and certain other files.
|
2011-01-31
|
ADOdb Library for PHP Multiple Script Direct Request Path Disclosure
|
|
75913
Description:
Your Own URL Shortener contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'url' parameter upon submission to the sample-public-front-page.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-01-31
|
Your Own URL Shortener (YOURLS) sample-public-front-page.php url Parameter XSS
|
|
72768
Description:
Unknown / Incomplete
|
2011-01-30
|
Google Android Account Manager INSTALL_ASSET Arbitrary Application Installation
|
|
70763
Description:
IBM Rational Build Forge contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'bf_session' and 'PHPSESSID' cookies, and the 'mod', 'type', 'count', 'offset' and 'filter' parameters upon submission to the 'fullcontrol/' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-01-30
|
IBM Rational Build Forge fullcontrol/ Multiple Parameter XSS
|
|
75733
Description:
(Description Provided by CVE) : 111WebCalendar 1.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by footer.php and certain other files.
|
2011-01-30
|
111WebCalendar Multiple Script Direct Request Path Disclosure
|
|
75747
Description:
(Description Provided by CVE) : bbPress 1.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by bb-templates/kakumei/view.php and certain other files.
|
2011-01-30
|
bbPress Multiple Script Direct Request Path Disclosure
|
|
75821
Description:
(Description Provided by CVE) : Joomla! 1.6.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by libraries/phpmailer/language/phpmailer.lang-joomla.php.
|
2011-01-30
|
Joomla! Multiple Script Direct Request Path Disclosure
|
|
70698
Description:
VLC Media Player contains an input validation error within the 'MKV_IS_ID' macro in 'modules/demux/mkv/mkv.hpp' of the MKV demuxer. This may be exploited by a context-dependent attacker with a crafted MKV file to execute arbitrary code.
|
2011-01-30
|
VLC Media Player MKV Demuxer modules/demux/mkv/mkv.hpp MKV_IS_ID Macro Arbitrary Code Execution
|
|
70737
Description:
TagNinja Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'id' parameter upon submission to the 'wp-content/plugins/tagninja/fb_get_profile.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-01-30
|
TagNinja Plugin for WordPress wp-content/plugins/tagninja/fb_get_profile.php id Parameter XSS
|
|
83436
Description:
RealNetworks Netzip Classic is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted ZIP file, a context-dependent attacker can potentially execute arbitrary code.
|
2011-01-30
|
RealNetworks Netzip Classic ZIP File Handling Overflow
|
|
73690
Description:
Xoda contains multiple unspecified flaws that may allow an attacker to have an unspecified impact. No further details have been provided.
|
2011-01-29
|
XODA Multiple Unspecified Issues (0.2.2)
|
|
74841
Description:
(Description Provided by CVE) : Ruby before 1.8.6-p114 does not reset the random seed upon forking, which makes it easier for context-dependent attackers to predict the values of random numbers by leveraging knowledge of the number sequence obtained in a different child process, a related issue to CVE-2003-0900.
|
2011-01-29
|
Ruby Random Seed Reset Random Number Value Prediction Weakness
|
|
73281
Description:
Unknown / Incomplete
|
2011-01-29
|
CMS WebManager-Pro Multiple Page Text Field Arbitrary PHP Code Execution
|
|
73282
Description:
Unknown / Incomplete
|
2011-01-29
|
CMS WebManager-Pro edit_content.php Arbitrary Page Edit CSRF
|
|
75907
Description:
WoW Server Status Multiple contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sends a direct request to multiple scripts or malformed input to the wow_ss.php script, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2011-01-29
|
WoW Server Status Multiple Script Direct Request Path Disclosure
|
|
75911
Description:
Yamamah contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sends a direct request to multiple scripts, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.
|
2011-01-29
|
Yamamah Multiple Script Direct Request Path Disclosure
|
|
73463
Description:
(Description Provided by CVE) : Buffer overflow in the mainloop function in nbd-server.c in the server in Network Block Device (nbd) before 2.9.20 might allow remote attackers to execute arbitrary code via a long request. NOTE: this issue exists because of a CVE-2005-3534 regression.
|
2011-01-28
|
Network Block Device nbd-server.c mainloop Function Remote Overflow
|
|
73334
Description:
Unknown / Incomplete
|
2011-01-28
|
FreeBSD Unspecified Network Driver NULL Pointer Dereference Local DoS
|
|
84283
Description:
Automatic File Distributor (AFD) is prone to an overflow condition. This issue is triggerd when init_afd fails to properly sanitize user-supplied input resulting in a buffer overflow. No further details have been provided.
|
2011-01-28
|
Automatic File Distributor (AFD) init_afd Unspecified Overflow
|
|
70773
Description:
IBM DB2 contains a flaw related to the failure to properly revoke the DBADM authority. This may allow a remote authenticated attacker who previously had this authority to continue to execute non-DDL statements.
|
2011-01-28
|
IBM DB2 Non-DDL Statement Execution DBADM Privilege Revocation Weakness
|
|
72672
Description:
Microsoft Windows contains a flaw that may allow a local denial of service. The issue is triggered when an AppFix error occurs in systest.sdb, which will result in loss of availability for the system.
|
2011-01-28
|
Microsoft Windows AppFix systest.sdb Local DoS
|
|
72968
Description:
Adobe ColdFusion contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'User-Agent' header and 'id' parameter upon submission to the page.cfm script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2011-01-28
|
Adobe ColdFusion page.cfm Multiple Parameter XSS
|
