[CLOSE] OSVDB ID : 81851 - Disclosed: 2012-04-25

Description:

Cisco IOS contains a flaw related to the Policy Feature Card 3C that may allow a remote attacker to have an unspecified impact when parsing a ICMPv6 ACL. No further details have been provided.

[CLOSE] OSVDB ID : 84757 - Disclosed: 2012-04-25

Description:

Python contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the utf-16 decoder fails to properly update the variable of aligned_end after a call is sent to the unicode_decode_call_errorhandler function. This may allow a remote attacker to gain access to potentially sensitive information.

[CLOSE] OSVDB ID : 81486 - Disclosed: 2012-04-24

Description:

PHP Ticket System contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'p' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81559 - Disclosed: 2012-04-24

Description:

C4B XPhone contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via company names in the contacts section before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81566 - Disclosed: 2012-04-24

Description:

Car Portal CMS contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the forcing of a password change of another user, creating a user, creating a sub user, and changing profile information. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 81662 - Disclosed: 2012-04-24

Description:

OSSIM contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'url' parameter upon submission to the top.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 86529 - Disclosed: 2012-04-24

Description:

Mozilla Firefox contains many flaw that may allow a denial of service. When a major version of Firefox is released, the vendor includes a lengthy list of issues fixed. Among these are a wide variety of crashes in the browser, some that initially show signs of memory corruption or exploitable overflows. In many cases, the issues are not fully examined, or examined and found not to allow for privilege escalation. Due to the large number of crash conditions, many of which could be leveraged as a remote or context-dependent denial of service, they are all included in one entry, grouped by major version. The bug list attached to this entry provides a concise list of crash reports and other behavior that could represent DoS conditions. Note that not all of these are necessarily exploitable, even for a DoS, as the attack vector may be too severely limited. These issues were reported by a wide variety of people, too numerous to list in the creditee section.

[CLOSE] OSVDB ID : 81563 - Disclosed: 2012-04-24

Description:

Car Portal CMS contains a flaw related to news creation that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate an unspecified field before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81567 - Disclosed: 2012-04-24

Description:

Car Portal CMS contains a flaw that allows a remote user to execute arbitrary PHP code. This flaw exists because the program does not properly verify or sanitize user-uploaded files. By uploading a .php file, the remote system will place the file in a user-accessible path. Making a direct request to the uploaded file will allow the user to execute the script.

[CLOSE] OSVDB ID : 81564 - Disclosed: 2012-04-24

Description:

Car Portal CMS contains a flaw related to sub user creation that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate an unspecified field before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81565 - Disclosed: 2012-04-24

Description:

Car Portal CMS contains a flaw related to group creation that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate an unspecified field before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81620 - Disclosed: 2012-04-24

Description:

Multiple IBM Rational products contains a flaw that may allow an attacker to upload .aspx files without restrictions, which will execute ASP.NET code.

[CLOSE] OSVDB ID : 81623 - Disclosed: 2012-04-24

Description:

Multiple Rational IBM produts contain a flaw related to the validation of SSL certificates when accessing certain services. This may allow a man-in-the-middle attacker to spoof a valid server.

[CLOSE] OSVDB ID : 81626 - Disclosed: 2012-04-24

Description:

Multiple IBM Rational products contain a flaw that may lead to an unauthorized information disclosure. The issue is triggered when parsing URLs, which may allow an attacker to perform a Man in the Middle Attack. This may disclose sensitive information.

[CLOSE] OSVDB ID : 81472 - Disclosed: 2012-04-24

Description:

Multiple JustSystems products are prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a DLL file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

[CLOSE] OSVDB ID : 81476 - Disclosed: 2012-04-24

Description:

Beyond CHM is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted CHM file, a context-dependent attacker can potentially execute arbitrary code or cause a denial of service.

[CLOSE] OSVDB ID : 81619 - Disclosed: 2012-04-24

Description:

bind-dyndb-ldap contains a flaw that may allow a remote denial of service. The issue is triggered by an error in the handle_connection_error() function in idap_helper.c when handling LDAP connection errors, and will result in loss of availability for the application.

[CLOSE] OSVDB ID : 81621 - Disclosed: 2012-04-24

Description:

Multiple Rational IBM products contain a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the addition of administrators. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 81622 - Disclosed: 2012-04-24

Description:

Multiple Rational IBM products contain a Service-Account impersonation weakness. This may allow a remote attacker to gain access to arbitrary files.

[CLOSE] OSVDB ID : 81624 - Disclosed: 2012-04-24

Description:

Multiple Rational IBM products contains a flaw related to the Windows Authentication. The issue may allow an attacker to hijack the Service Account.

[CLOSE] OSVDB ID : 81625 - Disclosed: 2012-04-24

Description:

Multiple Rational IBM products contain a flaw that may lead to an unauthorized information disclosure. The issue is triggered by an error when importing jobs, which may allow an attacker to perform a Man in the Middle Attack and disclose sensitive information.

[CLOSE] OSVDB ID : 81627 - Disclosed: 2012-04-24

Description:

Multiple Rational IBM products contain a flaw related to the creation of Scan Jobs when scanning websites, which may allow a remote attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 81628 - Disclosed: 2012-04-24

Description:

Multiple Rational IBM products contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 86482 - Disclosed: 2012-04-24

Description:

Mozilla Firefox contains a flaw that is triggered during the handling of a null Location header. This may allow a remote attacker to inject CRLF sequences within a Location element of an HTTP response header, helping to facilitate XSS and other attacks.

[CLOSE] OSVDB ID : 86528 - Disclosed: 2012-04-24

Description:

Mozilla Thunderbird contains many flaw that may allow a denial of service. When a major version of Thunderbird is released, the vendor includes a lengthy list of issues fixed. Among these are a wide variety of crashes in the mail client, some that initially show signs of memory corruption or exploitable overflows. In many cases, the issues are not fully examined, or examined and found not to allow for privilege escalation. Due to the large number of crash conditions, many of which could be leveraged as a remote or context-dependent denial of service, they are all included in one entry, grouped by major version. The bug reports attached to this entry provides a concise list of crash reports and other behavior that could represent DoS conditions. Note that not all of these are necessarily exploitable, even for a DoS, as the attack vector may be too severely limited. These issues were reported by a wide variety of people, too numerous to list in the creditee section.

[CLOSE] OSVDB ID : 81465 - Disclosed: 2012-04-24

Description:

Sharebar Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'status' parameter upon submission to the wp-admin/options-general.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81471 - Disclosed: 2012-04-24

Description:

Multiple JustSystems products are prone to an overflow condition. The JSJPEG.DLL library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JPEG image in an Ichitaro document file, a context-dependent attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 81513 - Disclosed: 2012-04-24

Description:

Multiple memory corruption flaws exist in multiple Mozilla products. The program fails to sanitize user-supplied input resulting in memory corruption. This may allow a remote attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 81515 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products contain a use-after-free flaw related to XPConnect hashtables when handling IDBKeyRange indexedDB. This may potentially allow a remote attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 81516 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products are prone to an overflow condition. The gfxImageSurface class fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted graphic value, a remote attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 81517 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via multi-octet encodings before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81519 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products contain a flaw related to the WebGL.drawElements() function that may lead to an unauthorized information disclosure.  The issue is triggered when handling template arguments, which will disclose video memory information to a remote attacker.

[CLOSE] OSVDB ID : 81521 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products contain a flaw that may allow an attacker to bypass the same origin policy when handling XMLHttpRequest and WebSocket via a IPv6 address. No further details have been provided.

[CLOSE] OSVDB ID : 81523 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products contain a flaw related to the texImage2D() function in WebGL. The issue is triggered when an unspecified error occurs when using JSVAL_TO_OBJECT, which may allow a remote attacker to execute arbitrary code.

[CLOSE] OSVDB ID : 81524 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products contain a spoofing weakness. The issue is triggered when loading RSS and Atom XML content via a HTTPS. This may allow a remote attacker to spoof the address in the location bar.

[CLOSE] OSVDB ID : 81526 - Disclosed: 2012-04-24

Description:

Multiple Mozilla products contain a flaw that may allow an attacker to bypass the cross-origin policy, which would lead to an unauthorized information disclosure. This issue will disclose error message information to a remote attacker.

[CLOSE] OSVDB ID : 81539 - Disclosed: 2012-04-24

Description:

Website Design Cardiff contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the viewdivetrip.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 81544 - Disclosed: 2012-04-24

Description:

Ettercap is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a DLL file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

[CLOSE] OSVDB ID : 81540 - Disclosed: 2012-04-24

Description:

Hispanic Digital Network CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'topic_id' parameter upon submission to the posts.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 81541 - Disclosed: 2012-04-24

Description:

Hispanic Digital Network CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the posts.php script not properly sanitizing user-supplied input to the 'topic_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.