| OSVDB ID | Disclosure Date | Title |
|---|
|
79577
Description:
Advantech/Broadwin WebAccess contains an unspecified flaw related to the uaddUpAdmin.asp script. This may allow a remote attacker to manipulate an admin's password.
|
2012-02-16
|
Advantech/Broadwin WebAccess uaddUpAdmin.asp Unauthorized Admin Password Manipulation
|
|
79578
Description:
Advantech/Broadwin WebAccess contains a flaw related to the authentication function in the GbScriptAddUp.asp script. This may allow a remote attacker to execute arbitrary code.
|
2012-02-16
|
Advantech/Broadwin WebAccess GbScriptAddUp.asp Authentication Function Remote Code Execution
|
|
79576
Description:
Advantech/Broadwin WebAccess is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted long string passed to parameters, a remote attacker can potentially execute arbitrary code.
|
2012-02-16
|
Advantech/Broadwin WebAccess Unspecified Overflow (2011-4524)
|
|
79585
Description:
Advantech/Broadwin WebAccess is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted long string passed to ActiveX parameters, a remote attacker can potentially execute arbitrary code
|
2012-02-16
|
Advantech/Broadwin WebAccess Unspecified ActiveX Overflow
|
|
79586
Description:
Advantech/Broadwin WebAccess contains a flaw related to the loading of local batch files on remote web pages allowing an attacker to write to them. This may allow a remote attacker to execute arbitrary code.
|
2012-02-16
|
Advantech/Broadwin WebAccess Arbitrary File Write Remote Code Execution
|
|
79567
Description:
Advantech/Broadwin WebAccess contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input upon submission to the bwerrdn.asp script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2012-02-16
|
Advantech/Broadwin WebAccess bwerrdn.asp Unspecified XSS
|
|
79568
Description:
Advantech/Broadwin WebAccess contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input upon submission to the bwview.asp script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2012-02-16
|
Advantech/Broadwin WebAccess bwview.asp Unspecified XSS
|
|
79587
Description:
Advantech/Broadwin WebAccess is prone to an overflow condition. The bwocxrun.ocx component fails to properly sanitize user-supplied input resulting in a buffer overflow. Through insecure methods allowing for the creation of arbitrary files, a remote attacker can potentially execute arbitrary code.
|
2012-02-16
|
Advantech/Broadwin WebAccess bwocxrun.ocx Overflow Arbitrary File Creation Code Execution
|
|
79565
Description:
Advantech/Broadwin WebAccess contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to certain unspecified input not being properly sanitized before use in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2012-02-16
|
Advantech/Broadwin WebAccess Unspecified SQL Injection (2012-0244)
|
|
81977
Description:
The RSA Algorithm Public Key Pair contains a flaw related to the implementation of the algorithm that may allow an attacker to crack public key. No further details have been provided.
|
2012-02-16
|
RSA Algorithm Public Key Pair Implementation Weakness
|
|
80851
Description:
A memory corruption flaw exists in Novell GroupWise Messenger. The nmma.exe binary fails to sanitize user-supplied input resulting in memory corruption. With a specially crafted search request, a context-dependent attacker can cause a denial of service or potentially execute arbitrary code.
|
2012-02-16
|
Novell GroupWise Messenger nmma.exe createsearch Command Memory Corruption
|
|
79276
Description:
The Lenovo ThinkManagement Console contains a flaw related to the ServerSetup web service. The issue is due to the service allowing unauthenticated access to various SOAP-based operations. By issuing a '-PutUpdateFileCore' command in a 'RunAMTCommand' operation, a remote attacker can upload arbitrary files.
|
2012-02-16
|
Lenovo ThinkManagement Console landesk/managementsuite/core/core.anonymous/ServerSetup.asmx RunAMTCommand Operation -PutUpdateFileCore Command Parsing Arbitrary File Upload
|
|
79277
Description:
The Lenovo ThinkManagement Console contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the VulCore web service not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'filename' parameter to the 'SetTaskLogByFile' operation. This directory traversal attack would allow the attacker to delete arbitrary files.
|
2012-02-16
|
Lenovo ThinkManagement Console /WSVulnerabilityCore/VulCore.asmx SetTaskLogByFile Operation filename Parameter Traversal Arbitrary File Deletion
|
|
79303
Description:
Piwik contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate user-supplied input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2012-02-16
|
Piwik Unspecified XSS
|
|
79304
Description:
Piwik contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for certain unspecified actions. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.
|
2012-02-16
|
Piwik Unspecified CSRF
|
|
79603
Description:
Impulsio CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2012-02-16
|
Impulsio CMS index.php id Parameter SQL Injection
|
|
80850
Description:
A memory corruption flaw exists in Novell GroupWise Messenger. The nmma.exe binary fails to sanitize user-supplied input resulting in memory corruption. With a specially crafted login request, a remote attacker can cause a denial of service or potentially execute arbitrary code.
|
2012-02-16
|
Novell GroupWise Messenger nmma.exe login Command NM_A_PARM1 Tag Pre-Authentication Memory Corruption
|
|
79337
Description:
Jenkins contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'description' parameter upon submission to the 'user/<user name>/submitDescription' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2012-02-16
|
Jenkins user/<user name>/submitDescription description Parameter XSS
|
|
80211
Description:
ButorWiki contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'service' upon submission to the 'sso/signin' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2012-02-16
|
ButorWiki sso/signin service Parameter XSS
|
|
80852
Description:
Unknown / Incomplete
|
2012-02-16
|
XnView Screen Width / Height Calculation File Handling Overflow
|
|
80853
Description:
Unknown / Incomplete
|
2012-02-16
|
XnView Baseline DCT Header Samples per Line File Handling Overflow
|
|
80854
Description:
Unknown / Incomplete
|
2012-02-16
|
XnView Bits Per Pixel Header Disagreement ICO File Handling Overflow
|
|
80855
Description:
Unknown / Incomplete
|
2012-02-16
|
XnView PCX File Handling Overflow
|
|
80856
Description:
Unknown / Incomplete
|
2012-02-16
|
XnView FLI File Frame Handling Overflow
|
|
82619
Description:
CMS Faethon contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the article.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.
|
2012-02-16
|
CMS Faethon article.php id Parameter SQL Injection
|
|
84153
Description:
WebKit contains an integer overflow condition in the 'quoteCSSString' function in WebCore/css/CSSParser.cpp when generating quoted strings based on overly large strings. With a specially crafted web page, a context-dependent attacker can cause a heap-based buffer overflow, resulting in a denial of service or potentially execution of arbitrary code.
|
2012-02-16
|
WebKit 'quoteCSSString' Function Overly Long String Quoting Integer Overflow Issue
|
|
90253
Description:
IBM CICS Transaction Server for z/OS contains a flaw in the Web Service. The issue is triggered when an expired password is accepted by the program, during the use of basic authentication. This will allow a user with an expired password to bypass authentication.
|
2012-02-16
|
IBM CICS Transaction Server for z/OS Web Service Expired Password Authentication Bypass
|
|
79228
Description:
Oracle Java SE contains an off-by-one flaw related to the countCENHeaders() function in zip_util.c within the Java Runtime Environment component that may allow a context-dependent attacker to cause a denial of service via an endless recursion with a crafted ZIP file.
|
2012-02-15
|
Oracle Java SE Java Runtime Environment zip_util.c countCENHeaders() Function Off-by-one Remote DoS
|
|
79316
Description:
The Faster Permissions module for Drupal contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is due to the module not properly restricting access to the permission administration, allowing a remote attacker to arbitrary modify access permissions.
|
2012-02-15
|
Faster Permissions Module for Drupal Access Restriction Bypass Permissions Modification
|
|
79290
Description:
(Description Provided by CVE) : translate/translate_manager.cc in Google Chrome before 17.0.963.56 and 19.x before 19.0.1036.7 uses an HTTP session to exchange data for translation, which allows remote attackers to obtain sensitive information by sniffing the network.
|
2012-02-15
|
Google Chrome Translation Script HTTP Use Unspecified Remote Issue
|
|
79291
Description:
WebKit contains a use-after-free error in the 'EventHandler::updateDragAndDrop' function [WebCore/page/EventHandler.cpp] that is triggered when performing drag and drop actions. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.
|
2012-02-15
|
WebKit EventHandler::updateDragAndDrop Drag and Drop Use-after-free
|
|
79296
Description:
Adobe Flash Player contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
|
2012-02-15
|
Adobe Flash Player Unspecified XSS
|
|
79309
Description:
11in1 contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the index.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'class' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.
|
2012-02-15
|
11in1 CMS index.php class Parameter Traversal Local File Inclusion
|
|
79321
Description:
devscripts contains a flaw related to the debdiff.pl script. This flaw exists because the application does not validate the filename parameter upon submission to the debdiff.pl script, which may allow a remote attacker to execute arbitrary code.
|
2012-02-15
|
devscripts debdiff.pl Filename Parameter Parsing Remote Code Execution
|
|
79227
Description:
Oracle Java contains a flaw related to the SE Deployment component. The issue is triggered when Java Webstart fails to safely handle double quotes placed anywhere except the beginning of certain propery names in NJLP files. For example, the 'java-vm-args' parameter in the j2se tag within a jnlp file can be used to inject arbitrary command-line arguments into a javaw.exec process by using double quotes.
|
2012-02-15
|
Oracle Java SE Deployment Component java-vm-args Command Argument Injection Remote Code Execution
|
|
79315
Description:
The Link Checker Module for Drupal contains a flaw that may lead to an unauthorized information disclosure. The issue is due to the module not enforcing access permissions for broken links, which will disclose restricted links to a remote attacker.
|
2012-02-15
|
Link Checker Module for Drupal Restricted Link Disclosure
|
|
79317
Description:
The CDN Module for Drupal contains a flaw that may lead to an unauthorized information disclosure. The issue is due to an unspecified error within the module, which may disclose the source code of PHP files to a remote attacker.
|
2012-02-15
|
CDN Module for Drupal PHP File Source Code Disclosure
|
|
79319
Description:
devscripts contains a flaw related to the debdiff.pl script. This flaw exists because the debdiff.pl script does not validate user-supplied input when handling .dsc and .changes files, which may allow a remote attacker to execute arbitrary code.
|
2012-02-15
|
devscripts debdiff.pl Multiple File Handling Remote Code Execution
|
|
79284
Description:
WebKit contains a use-after-free error in WebCore/rendering/RenderCounter.cpp that is triggered when handling counter nodes. With a specially crafted web page, a context-dependent attacker can dereference already freed memory and potentially execute arbitrary code.
|
2012-02-15
|
WebKit WebCore/rendering/RenderCounter.cpp Counter Nodes Handling Use-after-free
|
|
79298
Description:
A memory corruption flaw exists in Adobe Flash Player. The program fails to sanitize user-supplied input when an unspecified error occurs causing a type confusion, which will result in memory corruption. This may allow a remote attacker to execute arbitrary code.
|
2012-02-15
|
Adobe Flash Player Type Confusion Unspecified Remote Memory Corruption
|
