Software Vulnerability
Main
Software Alerts
Software and Script Bug ExploitsSoftware Vulnerability
Random Feeds
Archives
| Dec 2008 | Nov 2008 | Oct 2008 | Sep 2008 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 | Apr 2008 | Mar 2008 | Feb 2008 | Jan 2008 | Dec 2007 | Nov 2007 |Thu, 30 Oct 08
drupal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4793
The node module API in Drupal 5.x before 5.11 allows remote attackers to bypass node validation and have unspecified other impact via unknown vectors related to contributed modules.
Thu, 30 Oct 08
drupal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4792
The core BlogAPI module in Drupal 5.x before 5.11 and 6.x before 6.5 does not properly validate unspecified content fields of an internal Drupal form, which allows remote authenticated users to bypass intended access restrictions via modified field values.
Thu, 30 Oct 08
drupal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4791
The user module in Drupal 5.x before 5.11 and 6.x before 6.5 might allow remote authenticated users to bypass intended login access rules and successfully login via unknown vectors.
Thu, 30 Oct 08
drupal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4790
The core upload module in Drupal 5.x before 5.11 allows remote authenticated users to bypass intended access restrictions and read "files attached to content" via unknown vectors.
Thu, 30 Oct 08
drupal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4789
The validation functionality in the core upload module in Drupal 6.x before 6.5 allows remote authenticated users to bypass intended access restrictions and "attach files to content," related to a "logic error."
Thu, 30 Oct 08
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4788
Microsoft Internet Explorer 6 omits high-bit URL-encoded characters when displaying the address bar, which allows remote attackers to spoof the address bar via a URL with a domain name that differs from an important domain name only in these characters, as demonstrated by using exam%A9ple.com to spoof example.com, aka MSRC ticket MSRC7900.
Thu, 30 Oct 08
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4787
Visual truncation vulnerability in Microsoft Internet Explorer 6 allows remote attackers to spoof the address bar via a URL with a hostname containing many (Non-Blocking Space character) sequences, which are rendered as whitespace, aka MSRC ticket MSRC7899, a related issue to CVE-2003-1025.
Thu, 30 Oct 08
easyshop_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4786
SQL injection vulnerability in easyshop.php in the EasyShop plugin for e107 allows remote attackers to execute arbitrary SQL commands via the category_id parameter.
Thu, 30 Oct 08
alternate_profiles_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4785
SQL injection vulnerability in newuser.php in the alternate_profiles plugin, possibly 0.2, for e107 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Thu, 30 Oct 08
aflog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4784
aflog 1.01 allows remote attackers to bypass authentication and gain administrative access by setting the aflog_auth_a cookie to "A" or "O" in (1) edit_delete.php, (2) edit_cat.php, (3) edit_lock.php, and (4) edit_form.php.
Thu, 30 Oct 08
tlads
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4783
tlAds 1.0 allows remote attackers to bypass authentication and gain administrative access by setting the tlAds_login cookie to "admin."
Thu, 30 Oct 08
aiocp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4782
SQL injection vulnerability in public/code/cp_polls_results.php in All In One Control Panel (AIOCP) 1.4 allows remote attackers to execute arbitrary SQL commands via the poll_id parameter.
Thu, 30 Oct 08
myktools
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4781
Directory traversal vulnerability in update.php in MyKtools 2.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the langage parameter.
Thu, 30 Oct 08
myforum
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4780
Directory traversal vulnerability in admin/centre.php in MyForum 1.3, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the padmin parameter.
Thu, 30 Oct 08
tguzip
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4779
Stack-based buffer overflow in TUGzip 3.5.0.0 allows remote attackers to denial of service (crash) or execute arbitrary code via a long filename in a .zip file.
Thu, 30 Oct 08
koobi_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4778
SQL injection vulnerability in the gallery module in Koobi CMS 4.3.0 allows remote attackers to execute arbitrary SQL commands via the galid parameter in a showimages action.
Thu, 30 Oct 08
com_lms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4777
SQL injection vulnerability in the Showroom Joomlearn LMS (com_lms) component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showTests task.
Wed, 29 Oct 08
libgadu
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4776
libgadu before 1.8.2 allows remote servers to cause a denial of service (crash) via a contact description with a large length, which triggers a buffer over-read.
Wed, 29 Oct 08
phpmyadmin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4775
Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin 3.0.0, and possibly other versions including 2.11.9.2 and 3.0.1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the db parameter, a different vector than CVE-2006-6942 and CVE-2007-5977.
Wed, 29 Oct 08
questcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4774
Cross-site scripting (XSS) vulnerability in main/main.php in QuestCMS allows remote attackers to inject arbitrary web script or HTML via the cx parameter.
Wed, 29 Oct 08
questcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4773
Directory traversal vulnerability in main/main.php in QuestCMS allows remote attackers to read arbitrary local files via a .. (dot dot) in the theme parameter.
Wed, 29 Oct 08
questcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4772
SQL injection vulnerability in main/main.php in QuestCMS allows remote attackers to execute arbitrary SQL commands via the obj parameter.
Wed, 29 Oct 08
mpeg4_shm_audio_control, rtsp_mpeg4_sp_control, vatctrl_class
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4771
Stack-based buffer overflow in VATDecoder.VatCtrl.1 ActiveX control in (1) 4xem VatCtrl Class (VATDecoder.dll 1.0.0.27 and 1.0.0.51), (2) D-Link MPEG4 SHM Audio Control (VAPGDecoder.dll 1.7.0.5), (3) Vivotek RTSP MPEG4 SP Control (RtspVapgDecoderNew.dll 2.0.0.39), and possibly other products, allows remote attackers to execute arbitrary code via a long Url property. NOTE: some of these details are obtained from third party information.
Wed, 29 Oct 08
wordpress
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4769
Directory traversal vulnerability in the get_category_template function in wp-includes/theme.php in WordPress 2.3.3 and earlier, and 2.5, allows remote attackers to include and possibly execute arbitrary PHP files via the cat parameter in index.php. NOTE: some of these details are obtained from third party information.
Wed, 29 Oct 08
tlm_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4768
SQL injection vulnerability in TLM CMS 3.1 allows remote attackers to execute arbitrary SQL commands via the nom parameter to a-b-membres.php. NOTE: the goodies.php vector is already covered by CVE-2007-4808. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Wed, 29 Oct 08
downloadsplus_module
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4767
Unrestricted file upload vulnerability in the DownloadsPlus module in PHP-Nuke allows remote attackers to execute arbitrary code by uploading a file with (1) .htm, (2) .html, or (3) .txt extensions, then accessing it via a direct request to the file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: it is unclear how allowing the upload of .html or .txt files supports arbitrary code execution; this might be legitimate fu...
Wed, 29 Oct 08
oxygen_bulletin_board
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4766
SQL injection vulnerability in member.php in Oxygen Bulletin Board 1.1.3 allows remote attackers to execute arbitrary SQL commands via the member parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Wed, 29 Oct 08
poll_booth
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4765
SQL injection vulnerability in pollBooth.php in osCommerce Poll Booth Add-On 2.0 allows remote attackers to execute arbitrary SQL commands via the pollID parameter in a results operation. NOTE: this issue was disclosed by an unreliable researcher, so it might be incorrect.
Wed, 29 Oct 08
extplorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4764
Directory traversal vulnerability in the eXtplorer module (com_extplorer) 2.0.0 RC2 and earlier in Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter in a show_error action.
Wed, 29 Oct 08
wclient-php
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4763
Multiple cross-site scripting (XSS) vulnerabilities in sample.php in WiKID wClient-PHP 3.0-2 and earlier allow remote attackers to inject arbitrary web script or HTML via the PHP_SELF variable.
Wed, 29 Oct 08
freesshd
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4762
Stack-based buffer overflow in freeSSHd 1.2.1 allows remote authenticated users to cause a denial of service (service crash) and potentially execute arbitrary code via a long argument to the (1) rename and (2) realpath parameters.
Wed, 29 Oct 08
esupport
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4761
Cross-site scripting (XSS) vulnerability in includes/htmlArea/plugins/HtmlTidy/html-tidy-logic.php in Kayako eSupport 3.20.2 allows remote attackers to inject arbitrary web script or HTML via the jsMakeSrc parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: this issue is probably in the HTMLArea HTMLTidy (HTML Tidy) plugin, not eSupport.
Wed, 29 Oct 08
myforum
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4760
SQL injection vulnerability in lecture.php in Graphiks MyForum 1.3, when register_globals is enabled, allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 29 Oct 08
buzzywall
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4759
Directory traversal vulnerability in download.php in BuzzyWall 1.3.1 allows remote attackers to read arbitrary local files via a .. (dot dot) in the id parameter.
Wed, 29 Oct 08
phpdaily
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4758
Directory traversal vulnerability in download_file.php in PHPdaily allows remote attackers to read arbitrary local files via a .. (dot dot) in the fichier parameter.
Wed, 29 Oct 08
phpdaily
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4757
Multiple SQL injection vulnerabilities in PHPdaily allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to (a) add_postit.php (b) delete.php, and (c) mod_prest_date.php; and the (2) prev parameter to (d) prest_detail.php.
Wed, 29 Oct 08
phpdaily
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4756
Cross-site scripting (XSS) vulnerability in add_prest_date.php in PHPdaily allows remote attackers to inject arbitrary web script or HTML via the date parameter.
Wed, 29 Oct 08
classified_auctions_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4755
SQL injection vulnerability in gotourl.php in PozScripts Classified Auctions Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
Wed, 29 Oct 08
ez_forum
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4754
SQL injection vulnerability in forum.php in Scripts for Sites (SFS) Ez Forum allows remote attackers to execute arbitrary SQL commands via the forum parameter.
Wed, 29 Oct 08
rss_reader
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4753
SQL injection vulnerability in EditUrl.php in AJ Square RSS Reader allows remote attackers to execute arbitrary SQL commands via the url parameter.
Wed, 29 Oct 08
tlnews
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4752
TlNews 2.2 allows remote attackers to bypass authentication and gain administrative access by setting the tlNews_login cookie to admin.
Wed, 29 Oct 08
ipei_guestbook
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4751
Cross-site scripting (XSS) vulnerability in index.php in iPei Guestbook 2.0 allows remote attackers to inject arbitrary web script or HTML via the pg parameter, a different vector than CVE-2005-4597.
Wed, 29 Oct 08
vimp_x
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4750
Stack-based buffer overflow in the VImpX.VImpAX ActiveX control (VImpX.ocx) 4.8.8.0 in DB Software Laboratory VImp X, possibly 4.7.7, allows remote attackers to execute arbitrary code via a long LogFile property.
Wed, 29 Oct 08
vimp_x
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4749
Multiple insecure method vulnerabilities in the VImpX.VImpAX ActiveX control (VImpX.ocx) 4.8.8.0 in DB Software Laboratory VImp X, possibly 4.7.7, allow remote attackers to overwrite arbitrary files via (1) the LogFile property and ClearLogFile method, and (2) the SaveToFile method.
Wed, 29 Oct 08
kvirc
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4748
Format string vulnerability in the URI handler in KVirc 3.4.0, when set as the default application for processing IRC URIs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in the irc:// URI.
Wed, 29 Oct 08
java_access_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4747
Unspecified vulnerability in the search feature in Sun Java System LDAP JDK before 4.20 allows context-dependent attackers to obtain sensitive information via unknown attack vectors related to the LDAP JDK library.
Tue, 28 Oct 08
ecart_professional
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4746
Multiple SQL injection vulnerabilities in Uniwin eCart Professional 2.0.17 allow remote attackers to execute arbitrary SQL commands via unspecified vectors to (1) search.asp and (2) cartUtil.asp.
Tue, 28 Oct 08
ecart_professional
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4745
Cross-site scripting (XSS) vulnerability in emailFriend.asp in Uniwin eCart Professional 2.0.17 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Tue, 28 Oct 08
dxshopcart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4744
SQL injection vulnerability in product_detail.php in DXShopCart 4.30mc allows remote attackers to execute arbitrary SQL commands via the pid parameter.
Tue, 28 Oct 08
faq_management_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4743
SQL injection vulnerability in index.php in QuidaScript FAQ Management Script allows remote attackers to execute arbitrary SQL commands via the catid parameter.
Tue, 28 Oct 08
timetrex
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4742
Multiple cross-site scripting (XSS) vulnerabilities in interface/Login.php in TimeTrex 2.2.11 allow remote attackers to inject arbitrary web script or HTML via the (1) password and (2) user_name parameters.
Tue, 28 Oct 08
far-php
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4741
Directory traversal vulnerability in index.php in FAR-PHP 1.00, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the c parameter.
Tue, 28 Oct 08
tinycms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4740
Directory traversal vulnerability in templater.php in the ZZ_Templater module in TinyCMS 1.1.2, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the config[template] parameter.
Tue, 28 Oct 08
lynx
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-7234
Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory.
Sat, 25 Oct 08
plugspace
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4739
Directory traversal vulnerability in index.php in PlugSpace 0.1, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the navi parameter.
Sat, 25 Oct 08
mycard
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4738
SQL injection vulnerability in gallery.php in MyCard 1.0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Sat, 25 Oct 08
whodomlite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4737
Cross-site scripting (XSS) vulnerability in wholite.cgi in WhoDomLite 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the dom parameter.
Sat, 25 Oct 08
rpg_board
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4736
SQL injection vulnerability in index.php in RPG.Board 0.8 Beta2 and earlier allows remote attackers to execute arbitrary SQL commands via the showtopic parameter.
Sat, 25 Oct 08
coast
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4735
PHP remote file inclusion vulnerability in header.php in Concord Asset, Software, and Ticket system (CoAST) 0.95 allows remote attackers to execute arbitrary PHP code via a URL in the sections_file parameter.
Sat, 25 Oct 08
wp_comment_remix_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4734
Cross-site request forgery (CSRF) vulnerability in the wpcr_do_options_page function in WP Comment Remix plugin before 1.4.4 for WordPress allows remote attackers to perform unauthorized actions as administrators via a request that sets the wpcr_hidden_form_input parameter.
Sat, 25 Oct 08
wp_comment_remix_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4733
Cross-site scripting (XSS) vulnerability in wpcommentremix.php in WP Comment Remix plugin before 1.4.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the (1) replytotext, (2) quotetext, (3) originallypostedby, (4) sep, (5) maxtags, (6) tagsep, (7) tagheadersep, (8) taglabel, and (9) tagheaderlabel parameters.
Sat, 25 Oct 08
wp_comment_remix_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4732
SQL injection vulnerability in ajax_comments.php in the WP Comment Remix plugin before 1.4.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the p parameter.
Sat, 25 Oct 08
yacy
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4731
Multiple unspecified vulnerabilities in YaCy before 0.61 have unknown impact and attack vectors.
Sat, 25 Oct 08
phpmyid
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4730
Cross-site scripting (XSS) vulnerability in MyID.php in phpMyID 0.9 allows remote attackers to inject arbitrary web script or HTML via the openid_trust_root parameter and an inconsistent openid_return_to parameter, which is not properly handled in an error message.
Sat, 25 Oct 08
exceed, exceed_powersuite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4729
Stack-based buffer overflow in Hummingbird.XWebHostCtrl.1 ActiveX control (hclxweb.dll) in Hummingbird Xweb ActiveX Control 13.0 and earlier allows remote attackers to execute arbitrary code via a long PlainTextPassword property. NOTE: code execution might not be possible in 13.0.
Sat, 25 Oct 08
deployment_wizard
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4728
Multiple insecure method vulnerabilities in the DeployRun.DeploymentSetup.1 (DeployRun.dll) ActiveX control 10.0.0.44 in Hummingbird Deployment Wizard 2008 allow remote attackers to execute arbitrary programs via the (1) Run and (2) PerformUpdateAsync methods, and (3) modify arbitrary registry values via the SetRegistryValueAsString method. NOTE: the SetRegistryValueAsString method could be leveraged for code execution by specifying executable file values to Startup folders.
Sat, 25 Oct 08
banner_student
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4727
Cross-site scripting (XSS) vulnerability in the contact update page (ss/bwgkoemr.P_UpdateEmrgContacts) in SunGard Banner Student 7.3 allows remote attackers to inject arbitrary web script or HTML via the addr1 parameter. NOTE: this might be resultant from a CSRF vulnerability, but there are insufficient details to be sure.
Sat, 25 Oct 08
goodtech_ssh
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4726
Stack-based buffer overflow in the SFTP subsystem in GoodTech SSH 6.4 allows remote authenticated users to execute arbitrary code via a long string to the (1) open (aka SSH_FXP_OPEN), (2) unlink, (3) opendir, and other unspecified parameters.
Sat, 25 Oct 08
CVE-2008-4725 (opera, opera9.50)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4725
Cross-site scripting (XSS) vulnerability in Opera.dll in Opera 9.52 allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly escaped before storage in the History Search database (aka md.dat), a different vector than CVE-2008-4696. NOTE: some of these issues were addressed before 9.60.
Sat, 25 Oct 08
chrome
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4724
Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome 0.2.149.30 allow remote attackers to inject arbitrary web script or HTML via an ftp:// URL for an HTML document within a (1) JPG, (2) PDF, or (3) TXT file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 25 Oct 08
firefox
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4723
Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 3.0.1 through 3.0.3 allow remote attackers to inject arbitrary web script or HTML via an ftp:// URL for an HTML document within a (1) JPG, (2) PDF, or (3) TXT file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sat, 25 Oct 08
CVE-2008-4722 (blade_6000_modular_system_with_chassis, blade_6048_modular_system_with_chassis, b...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4722
Unspecified vulnerability in Sun Integrated Lights-Out Manager (ILOM) 2.0.1.5 through 2.0.4.26 allows remote authenticated users to (1) access the service processor (SP) and cause a denial of service (shutdown or reboot), or (2) access the host operating system and have an unspecified impact, via unknown vectors.
Sat, 25 Oct 08
CVE-2008-4698 (opera, opera9.50)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4698
Opera before 9.61 does not properly block scripts during preview of a news feed, which allows remote attackers to create arbitrary new feed subscriptions and read the contents of arbitrary feeds.
Sat, 25 Oct 08
CVE-2008-4697 (opera, opera9.50)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4697
The Fast Forward feature in Opera before 9.61, when a page is located in a frame, executes a javascript: URL in the context of the outermost page instead of the page that contains this URL, which allows remote attackers to conduct cross-site scripting (XSS) attacks.
Sat, 25 Oct 08
opera
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4696
Cross-site scripting (XSS) vulnerability in Opera.dll in Opera before 9.61 allows remote attackers to inject arbitrary web script or HTML via the anchor identifier (aka the "optional fragment"), which is not properly escaped before storage in the History Search database (aka md.dat).
Sat, 25 Oct 08
opera
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4695
Opera before 9.60 allows remote attackers to obtain sensitive information and have unspecified other impact by predicting the cache pathname of a cached Java applet and then launching this applet from the cache, leading to applet execution within the local-machine context.
Sat, 25 Oct 08
CVE-2008-4694 (opera, opera9.50)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4694
Unspecified vulnerability in Opera before 9.60 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a redirect that specifies a crafted URL.
Sat, 25 Oct 08
windows_2000, windows_2003_server, windows_vista, windows_xp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4250
The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request, as exploited in the wild in October 2008, aka "Server Service Vulnerability."
Sat, 25 Oct 08
enscript
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3863
Stack-based buffer overflow in the read_special_escape function in src/psgen.c in GNU Enscript 1.6.1 and 1.6.4 beta, when the -e (aka special escapes processing) option is enabled, allows user-assisted remote attackers to execute arbitrary code via a crafted ASCII file, related to the setfilename command.
Sat, 25 Oct 08
officescan
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3862
Stack-based buffer overflow in CGI programs in the server in Trend Micro OfficeScan 7.3 Patch 4 build 1367 and other builds before 1374, and 8.0 SP1 Patch 1 before build 3110, allows remote attackers to execute arbitrary code via an HTTP POST request containing crafted form data, related to "parsing CGI requests."
Sat, 25 Oct 08
adaptive_security_appliance_5500_series, pix_security_appliance
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3817
Memory leak in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 8.0 before 8.0(4) and 8.1 before 8.1(2) allows remote attackers to cause a denial of service (memory consumption) via an unspecified sequence of packets, related to the "initialization code for the hardware crypto accelerator."
Sat, 25 Oct 08
adaptive_security_appliance_5500_series, pix_security_appliance
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3816
Unspecified vulnerability in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.2(4)9 and 7.2(4)10 allows remote attackers to cause a denial of service (device reload) via a crafted IPv6 packet.
Sat, 25 Oct 08
asa_5500, pix
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3815
Unspecified vulnerability in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.0 before 7.0(8)3, 7.1 before 7.1(2)78, 7.2 before 7.2(4)16, 8.0 before 8.0(4)6, and 8.1 before 8.1(1)13, when configured as a VPN using Microsoft Windows NT Domain authentication, allows remote attackers to bypass VPN authentication via unknown vectors.
Sat, 25 Oct 08
libspf2
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2469
Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Spf_dns_resolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field.
Sat, 25 Oct 08
openview_report, performance_agent
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-4349
The Shared Trace Service (aka OVTrace) in HP OpenView Report 3.70 and Performance Agent 4.70 allows remote attackers to cause a denial of service via an unspecified series of RPC requests that triggers an out-of-bounds memory access, related to an erroneous object reference.
Sat, 25 Oct 08
post_comment
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4721
PHP Jabbers Post Comment 3.0 allows remote attackers to bypass authentication and gain administrative access by setting the PostCommentsAdmin cookie to "logged."
Sat, 25 Oct 08
gemini_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4720
Multiple PHP remote file inclusion vulnerabilities in The Gemini Portal 4.7 allow remote attackers to execute arbitrary PHP code via a URL in the lang parameter to (1) page/forums/bottom.php and (2) page/forums/category.php.
Sat, 25 Oct 08
openengine
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4719
PHP remote file inclusion vulnerability in cms/classes/openengine/filepool.php in openEngine 2.0 beta2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the oe_classpath parameter, a different vector than CVE-2008-4329.
Sat, 25 Oct 08
x7_chat
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4718
Directory traversal vulnerability in help/mini.phpin X7 Chat 2.0.1 A1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the help_file parameter, a different vector than CVE-2006-2156.
Sat, 25 Oct 08
zeelyrics
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4717
SQL injection vulnerability in bannerclick.php in ZEELYRICS 2.0 allows remote attackers to execute arbitrary SQL commands via the adid parameter.
Sat, 25 Oct 08
php-lance
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4716
SQL injection vulnerability in show.php in BitmixSoft PHP-Lance 1.52 allows remote attackers to execute arbitrary SQL commands via the catid parameter.
Sat, 25 Oct 08
joomla
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4715
SQL injection vulnerability in the Jpad (com_jpad) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter to index.php.
Sat, 25 Oct 08
atomic_photo_album
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4714
Atomic Photo Album 1.1.0 pre4 does not properly handle the apa_cookie_login and apa_cookie_password cookies, which probably allows remote attackers to bypass authentication and gain administrative access via modified cookies.
Sat, 25 Oct 08
212cafeboard
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4713
SQL injection vulnerability in view.php in 212cafe Board 0.07 allows remote attackers to execute arbitrary SQL commands via the qID parameter.
Sat, 25 Oct 08
lnblog
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4712
Directory traversal vulnerability in pages/showblog.php in LnBlog 0.9.0 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the plugin parameter.
Sat, 25 Oct 08
joovili
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4711
SQL injection vulnerability in Joovili 3.0 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) view.blog.php, (2) view.event.php, (3) view.group.php, (4) view.music.php, (5) view.picture.php, and (6) view.video.php.
Sat, 25 Oct 08
stock_module
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4710
Cross-site scripting (XSS) vulnerability in the stock quotes page in Stock 6.x before 6.x-1.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Sat, 25 Oct 08
etraining
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4709
SQL injection vulnerability in news_read.php in Pilot Group (PG) eTraining allows remote attackers to execute arbitrary SQL commands via the id parameter.
Sat, 25 Oct 08
CVE-2008-4708 (bbzl.php)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4708
BbZL.PhP 0.92 allows remote attackers to bypass authentication and gain administrative access by setting the phorum_admin_session cookie to 1.
Sat, 25 Oct 08
bbzl_php
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4707
Directory traversal vulnerability in index.php in BbZL.PhP 0.92 allows remote attackers to access unauthorized directories via a .. (dot dot) in the lien_2 parameter.
Sat, 25 Oct 08
vbgooglemap
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4706
SQL injection vulnerability in VBGooglemap Hotspot Edition 1.0.3, a vBulletin module, allows remote attackers to execute arbitrary SQL commands via the mapid parameter in a showdetails action to (1) vbgooglemaphse.php and (2) mapa.php.
Sat, 25 Oct 08
myphpdating
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4705
SQL injection vulnerability in success_story.php in php Online Dating Software MyPHPDating allows remote attackers to execute arbitrary SQL commands via the id parameter.
Sat, 25 Oct 08
sezhoo
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4704
PHP remote file inclusion vulnerability in SezHooTabsAndActions.php in SezHoo 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the IP parameter.
Sat, 25 Oct 08
bosnews
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4703
SQL injection vulnerability in news.php in BosDev BosNews 4.0 allows remote attackers to execute arbitrary SQL commands via the article parameter.
Fri, 24 Oct 08
phpwebgallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4702
Multiple directory traversal vulnerabilities in PhpWebGallery 1.3.4 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) user[language] and (2) user[template] parameters to (a) init.inc.php, and (b) the user[language] parameter to isadmin.inc.php.
Fri, 24 Oct 08
liberia_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4701
SQL injection vulnerability in admin.php in Libera CMS 1.12, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the libera_staff_user cookie parameter, a different vector than CVE-2008-4700. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Fri, 24 Oct 08
liberia_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4700
SQL injection vulnerability in admin.php in Libera CMS 1.12 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the libera_staff_pass cookie parameter.
Fri, 24 Oct 08
peachtree_accounting
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4699
Insecure method vulnerability in the ActiveX control (PAWWeb11.ocx) in Peachtree Accounting 2004 allows remote attackers to execute arbitrary programs via the ExecutePreferredApplication method.
Fri, 24 Oct 08
db2
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4693
The SORT/LIST SERVICES component in IBM DB2 9.1 before FP6 and 9.5 before FP2 writes sensitive information to the trace output, which allows attackers to obtain sensitive information by reading "PASSWORD-RELATED CONNECTION STRING KEYWORD VALUES."
Fri, 24 Oct 08
db2
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4692
The Native Managed Provider for .NET component in IBM DB2 8 before FP17, 9.1 before FP6, and 9.5 before FP2, when a definer cannot maintain objects, preserves views and triggers without marking them inoperative or dropping them, which has unknown impact and attack vectors.
Fri, 24 Oct 08
db2
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4691
Unspecified vulnerability in the SQLNLS_UNPADDEDCHARLEN function in the New Compiler (aka Starburst derived compiler) component in the server in IBM DB2 9.1 before FP6 allows attackers to cause a denial of service (segmentation violation and trap) via unknown vectors.
Fri, 24 Oct 08
lynx
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4690
lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler.
Fri, 24 Oct 08
mantis
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4689
Mantis before 1.1.3 does not unset the session cookie during logout, which makes it easier for remote attackers to hijack sessions.
Fri, 24 Oct 08
mantis
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4688
core/string_api.php in Mantis before 1.1.3 does not check the privileges of the viewer before composing a link with issue data in the source anchor, which allows remote attackers to discover an issue's title and status via a request with a modified issue number.
Fri, 24 Oct 08
mantis
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4687
manage_proj_page.php in Mantis before 1.1.4 allows remote authenticated users to execute arbitrary code via a sort parameter containing PHP sequences, which are processed by create_function within the multi_sort function in core/utility_api.php.
Fri, 24 Oct 08
vlc_media_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4686
Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, allow remote attackers to have an unknown impact via a crafted .ty file, a different vulnerability than CVE-2008-4654.
Fri, 24 Oct 08
wireshark
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4685
Use-after-free vulnerability in the dissect_q931_cause_ie function in packet-q931.c in the Q.931 dissector in Wireshark 0.10.3 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via certain packets that trigger an exception.
Fri, 24 Oct 08
wireshark
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4684
packet-frame in Wireshark 0.99.2 through 1.0.3 does not properly handle exceptions thrown by post dissectors, which allows remote attackers to cause a denial of service (application crash) via a certain series of packets, as demonstrated by enabling the (1) PRP or (2) MATE post dissector.
Thu, 23 Oct 08
wireshark
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4683
The dissect_btacl function in packet-bthci_acl.c in the Bluetooth ACL dissector in Wireshark 0.99.2 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a packet with an invalid length, related to an erroneous tvb_memcpy call.
Thu, 23 Oct 08
wireshark
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4682
wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application abort) via a malformed Tamos CommView capture file (aka .ncf file) with an "unknown/unexpected packet type" that triggers a failed assertion.
Thu, 23 Oct 08
wireshark
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4681
Unspecified vulnerability in the Bluetooth RFCOMM dissector in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via unknown packets.
Thu, 23 Oct 08
wireshark
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4680
packet-usb.c in the USB dissector in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a malformed USB Request Block (URB).
Thu, 23 Oct 08
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4679
The Web Services Security component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.31 and 6.1 before 6.1.0.19, when Certificate Store Collections is configured to use Certificate Revocation Lists (CRL), does not call the setRevocationEnabled method on the PKIXBuilderParameters object, which prevents the "Java security method" from checking the revocation status of X.509 certificates and allows remote attackers to bypass intended access restrictions via a SOAP message with a revo...
Thu, 23 Oct 08
websphere_application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4678
The HTTP_Request_Parser method in the HTTP Transport component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.31 allows remote attackers to cause a denial of service (controller 0C4 abend and application hang) via a long HTTP Host header, related to "storage overlay" on the stack and a "parse failure."
Thu, 23 Oct 08
netrw
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4677
autoload/netrw.vim (aka the Netrw Plugin) 109, 131, and other versions before 133k for Vim 7.1.266, other 7.1 versions, and 7.2 stores credentials for an FTP session, and sends those credentials when attempting to establish subsequent FTP sessions to servers on different hosts, which allows remote FTP servers to obtain sensitive information in opportunistic circumstances by logging usernames and passwords. NOTE: the upstream vendor disputes a vector involving different ports on the same host...
Thu, 23 Oct 08
access_essentials, presentation_server, xenapp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4676
Unspecified vulnerability in Citrix XenApp (formerly Presentation Server) 4.5 Feature Pack 1 and earlier, Presentation Server 4.0, and Access Essentials 1.0, 1.5, and 2.0 allows local users to gain privileges via unknown attack vectors related to creating an unspecified file. NOTE: this might be the same issue as CVE-2008-3485, but the vendor advisory is too vague to be certain.
Thu, 23 Oct 08
phpcounter
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4675
SQL injection vulnerability in index.php in PHPcounter 1.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the name parameter.
Thu, 23 Oct 08
real_estate
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4674
SQL injection vulnerability in realestate-index.php in Conkurent Real Estate Manager 1.01 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in browse mode.
Thu, 23 Oct 08
events_calendar
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4673
PHP remote file inclusion vulnerability in panel/common/theme/default/header_setup.php in WebBiscuits Software Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the (1) path[docroot] and (2) component parameters.
Thu, 23 Oct 08
lyrics_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4672
Cross-site scripting (XSS) vulnerability in search_results.php in buymyscripts Lyrics Script allows remote attackers to inject arbitrary web script or HTML via the k parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Thu, 23 Oct 08
wordpress_mu
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4671
Cross-site scripting (XSS) vulnerability in wp-admin/wp-blogs.php in Wordpress MU (WPMU) before 2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) s and (2) ip_address parameters.
Thu, 23 Oct 08
clickbank_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4670
Cross-site scripting (XSS) vulnerability in search.php in Ed Pudol Clickbank Portal allows remote attackers to inject arbitrary web script or HTML via the search box. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Thu, 23 Oct 08
recipe_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4669
Cross-site scripting (XSS) vulnerability in search.php in Dan Fletcher Recipe Script allows remote attackers to inject arbitrary web script or HTML via the keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Thu, 23 Oct 08
com_imagebrowser
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4668
Directory traversal vulnerability in the Image Browser (com_imagebrowser) 0.1.5 component for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the folder parameter to index.php.
Thu, 23 Oct 08
arabcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4667
Directory traversal vulnerability in rss.php in ArabCMS 2.0 beta 1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the rss parameter.
Thu, 23 Oct 08
ultimate_webboard
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4666
SQL injection vulnerability in webboard.php in Ultimate Webboard 3.00 allows remote attackers to execute arbitrary SQL commands via the Category parameter.
Thu, 23 Oct 08
matchmaking
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4665
SQL injection vulnerability in PG Matchmaking allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) news_read.php and (2) gifts_show.php.
Thu, 23 Oct 08
ks_cgi_access_log
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4663
Cross-site scripting (XSS) vulnerability in analysis.cgi 1.44, as used in K's CGI Access Log Kaiseki (1) jcode.pl and (2) Jcode.pm, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Thu, 23 Oct 08
lokicms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4662
Directory traversal vulnerability in admin.php in LokiCMS 0.3.4, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
Thu, 23 Oct 08
qvod_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4664
Heap-based buffer overflow in QvodInsert.QvodCtrl.1 ActiveX control (QvodInsert.dll) in QVOD Player before 2.1.5 build 0053 allows remote attackers to execute arbitrary code via a long URL property. NOTE: some of these details are obtained from third party information.
Thu, 23 Oct 08
page_improvements
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4661
Cross-site scripting (XSS) vulnerability in the Page Improvements (sm_pageimprovements) 1.1.0 and earlier extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Thu, 23 Oct 08
m1_intern
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4660
SQL injection vulnerability in the M1 Intern (m1_intern) 1.0.0 extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Thu, 23 Oct 08
mannschaftsliste
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4659
SQL injection vulnerability in the Mannschaftsliste (kiddog_playerlist) 1.0.3 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Thu, 23 Oct 08
jobcontrol
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4658
SQL injection vulnerability in the JobControl (dmmjobcontrol) 1.15.4 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Thu, 23 Oct 08
econda_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4657
SQL injection vulnerability in the Econda Plugin (econda) 0.0.2 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Thu, 23 Oct 08
frontend_users_view
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4656
SQL injection vulnerability in the Frontend Users View (feusersview) 0.1.6 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Thu, 23 Oct 08
simplesurvey
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4655
SQL injection vulnerability in the Simple survey (simplesurvey) 1.7.0 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Thu, 23 Oct 08
vlc_media_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4654
Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty.c) in VLC Media Player 0.9.0 through 0.9.4 allows remote attackers to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value.
Thu, 23 Oct 08
makale
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4653
SQL injection vulnerability in makale.php in Makale 0.26 and possibly other versions, a module for XOOPS, allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information.
Thu, 23 Oct 08
powertcp_ftp_for_activex
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4652
Buffer overflow in the ActiveX control (DartFtp.dll) in Dart Communications PowerTCP FTP for ActiveX 2.0.2 0 allows remote attackers to execute arbitrary code via a long SecretKey property.
Thu, 23 Oct 08
jetbox_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4651
Multiple SQL injection vulnerabilities in Jetbox CMS 2.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) orderby parameter to admin/cms/images.php and the (2) nav_id parameter in an editrecord action to admin/cms/nav.php.
Thu, 23 Oct 08
myevent
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4650
SQL injection vulnerability in viewevent.php in myEvent 1.6 allows remote attackers to execute arbitrary SQL commands via the eventdate parameter.
Thu, 23 Oct 08
elxis_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4649
Session fixation vulnerability in Elxis CMS 2008.1 revision 2204 allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
Thu, 23 Oct 08
elxis_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4648
Cross-site scripting (XSS) vulnerability in index.php in Elxis CMS 2008.1 revision 2204 allows remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO or the (2) option, (3) Itemid, (4) id, (5) task, (6) bid, and (7) contact_id parameters. NOTE: the error might be located in modules/mod_language.php, and index.php might be the interaction point.
Thu, 23 Oct 08
sweetcms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4647
SQL injection vulnerability in index.php in sweetCMS 1.5.2 allows remote attackers to execute arbitrary SQL commands via the page parameter.
Thu, 23 Oct 08
enterpise
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4646
The Websense Reporter Module in Websense Enterprise 6.3.2 stores the SQL database system administrator password in plaintext in CreateDbInstall.log, which allows local users to gain privileges to the database.
Thu, 23 Oct 08
phpwebgallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4645
plugins/event_tracer/event_list.php in PhpWebGallery 1.7.2 and earlier allows remote authenticated administrators to execute arbitrary PHP code via PHP sequences in the sort parameter, which is processed by create_function.
Thu, 23 Oct 08
mystats
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4644
hits.php in myWebland myStats allows remote attackers to bypass IP address restrictions via a modified X-Forwarded-For HTTP header.
Thu, 23 Oct 08
mystats
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4643
SQL injection vulnerability in hits.php in myWebland myStats allows remote attackers to execute arbitrary SQL commands via the sortby parameter.
Wed, 22 Oct 08
astrospaces
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4642
SQL injection vulnerability in profile.php in AstroSPACES 1.1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action.
Wed, 22 Oct 08
jhead
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4641
The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows attackers to execute arbitrary commands via shell metacharacters in unspecified input.
Wed, 22 Oct 08
jhead
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4640
The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to delete arbitrary files via vectors involving a modified input filename in which (1) a final "z" character is replaced by a "t" character or (2) a final "t" character is replaced by a "z" character.
Wed, 22 Oct 08
jhead
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4639
jhead.c in Matthias Wandel jhead before 2.84 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
Wed, 22 Oct 08
veritas_file_system
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4638
qioadmin in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX, and before 5.0 MP3 on Solaris, Linux, and AIX, allows local users to read arbitrary files by causing qioadmin to write a file's content to standard error.
Wed, 22 Oct 08
cpcommerce
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4637
Cross-site scripting (XSS) vulnerability in cpCommerce before 1.2.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors in the advanced search feature. NOTE: this is probably a variant of CVE-2008-4121.
Wed, 22 Oct 08
cpcommerce
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4121
Multiple cross-site scripting (XSS) vulnerabilities in cpCommerce before 1.2.4 allow remote attackers to inject arbitrary web script or HTML via (1) the search parameter in a search.quick action to search.php and (2) the name parameter in a sendtofriend action to sendtofriend.php.
Wed, 22 Oct 08
veritas_file_system
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3248
qiomkfile in the Quick I/O for Database feature in Symantec Veritas File System (VxFS) on HP-UX, and before 5.0 MP3 on Solaris, Linux, and AIX, does not initialize filesystem blocks during creation of a file, which allows local users to obtain sensitive information by creating and then reading files.
Wed, 22 Oct 08
sitescope
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-4350
Cross-site scripting (XSS) vulnerability in the management interface in HP SiteScope 9.0 build 911 allows remote attackers to inject arbitrary web script or HTML via an SNMP trap message.
Wed, 22 Oct 08
hisa_cart
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4635
Unspecified vulnerability in Hisanaga Electric Co, Ltd. hisa_cart 1.29 and earlier, a module for XOOPS, allows remote attackers to obtain sensitive user information via unknown vectors.
Wed, 22 Oct 08
movable_type
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4634
Cross-site scripting (XSS) vulnerability in Movable Type 4 through 4.21 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to the administrative page, a different vulnerability than CVE-2008-4079.
Wed, 22 Oct 08
node_clone
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4633
SQL injection vulnerability in Node Vote 5.x before 5.x-1.1 and 6.x before 6.x-1.0, a module for Drupal, when "Allow user to vote again" is enabled, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors related to a "previously cast vote."
Wed, 22 Oct 08
kure
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4632
Multiple directory traversal vulnerabilities in index.php in Kure 0.6.3, when magic_quotes_gpc is disabled, allow remote attackers to read and possibly execute arbitrary local files via a .. (dot dot) in the (1) post and (2) doc parameters.
Wed, 22 Oct 08
muscle
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4631
Stack-based buffer overflow in the Message::AddToString function in message/Message.cpp in MUSCLE before 4.40 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted message. NOTE: some of these details are obtained from third party information.
Wed, 22 Oct 08
midgard_components_framework
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4630
Multiple unspecified vulnerabilities in Midgard Components (MidCOM) Framework before 8.09.1 have unknown impact and attack vectors.
Wed, 22 Oct 08
mynets
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4629
Cross-site scripting (XSS) vulnerability in Usagi Project MyNETS 1.2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Wed, 22 Oct 08
minibloggie
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4628
SQL injection vulnerability in del.php in myWebland miniBloggie 1.0 allows remote attackers to execute arbitrary SQL commands via the post_id parameter.
Wed, 22 Oct 08
rgallery_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4627
SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab Burning Board (WBB) allows remote attackers to execute arbitrary SQL commands via the itemID parameter in the RGalleryImageWrapper page in index.php.
Wed, 22 Oct 08
yappa-ng
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4626
Directory traversal vulnerability in index.php in Fritz Berger yet another php photo album - next generation (yappa-ng) 2.3.2 and possibly other versions through 2.3.3-beta0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the album parameter.
Wed, 22 Oct 08
shifthis_newsletter
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4625
SQL injection vulnerability in stnl_iframe.php in the ShiftThis Newsletter (st_newsletter) plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the newsletter parameter, a different vector than CVE-2008-0683.
Wed, 22 Oct 08
fast_click_sql_lite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4624
PHP remote file inclusion vulnerability in init.php in Fast Click SQL Lite 1.1.7, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the CFG[CDIR] parameter.
Wed, 22 Oct 08
com_ds-syndicate
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4623
SQL injection vulnerability in the DS-Syndicate (com_ds-syndicate) component 1.1.1 for Joomla allows remote attackers to execute arbitrary SQL commands via the feed_id parameter to index.php.
Wed, 22 Oct 08
phpfastnews
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4622
fastnews-code.php in phpFastNews 1.0.0 allows remote attackers to bypass authentication and gain administrative access by setting the fn-loggedin cookie to 1.
Wed, 22 Oct 08
zeeproperty
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4621
SQL injection vulnerability in bannerclick.php in ZeeScripts Zeeproperty allows remote attackers to execute arbitrary SQL commands via the adid parameter.
Wed, 22 Oct 08
mrbs
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4620
SQL injection vulnerability in Meeting Room Booking System (MRBS) before 1.4 allows remote attackers to execute arbitrary SQL commands via the area parameter to (1) month.php, and possibly (2) day.php and (3) week.php.
Wed, 22 Oct 08
exchange_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-1547
Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access (OWA) for Exchange Server 2003 SP2 (aka build 6.5.7638) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the URL parameter.
Wed, 22 Oct 08
solaris
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4619
The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8, related to the XDR_DECODE operation and the taddr2uaddr function.
Wed, 22 Oct 08
kernel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4618
The Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.27 does not properly handle a protocol violation in which a parameter has an invalid length, which allows attackers to cause a denial of service (panic) via unspecified vectors, related to sctp_sf_violation_paramlen, sctp_sf_abort_violation, sctp_make_abort_violation, and incorrect data types in function calls.
Tue, 21 Oct 08
com_actualite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4617
SQL injection vulnerability in the actualite module 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter.
Tue, 21 Oct 08
spambam_plugin
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4616
The SpamBam plugin for WordPress allows remote attackers to bypass restrictions and add blog comments by using server-supplied values to calculate a shared key.
Tue, 21 Oct 08
portalapp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4615
Unspecified vulnerability in i_utils.asp in PortalApp before 4.01a has unknown impact and attack vectors.
Tue, 21 Oct 08
portalapp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4614
PortalApp 4.0 does not require authentication for (1) forums.asp and (2) content.asp, which allows remote attackers to create and delete forums, topics, and replies.
Tue, 21 Oct 08
portalapp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4613
SQL injection vulnerability in forums.asp in PortalApp 4.0 allows remote attackers to execute arbitrary SQL commands via the sortby parameter.
Tue, 21 Oct 08
portalapp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4612
Cross-site scripting (XSS) vulnerability in PortalApp 4.0 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter to (1) forums.asp and (2) content.asp.
Tue, 21 Oct 08
php_ziyaretci_defteri
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4611
SQL injection vulnerability in index.php in PHP Arsivimiz Php Ziyaretci Defteri allows remote attackers to execute arbitrary SQL commands via the sayfa parameter.
Tue, 21 Oct 08
mplayer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4610
MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different vectors than CVE-2007-6718.
Tue, 21 Oct 08
CVE-2008-4609
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4609
The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.
Tue, 21 Oct 08
kernel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3831
The i915 driver in (1) drivers/char/drm/i915_dma.c in the Linux kernel 2.6.24 on Debian GNU/Linux and (2) sys/dev/pci/drm/i915_drv.c in OpenBSD does not restrict the DRM_I915_HWS_ADDR ioctl to the Direct Rendering Manager (DRM) master, which allows local users to cause a denial of service (memory corruption) via a crafted ioctl call, related to absence of the DRM_MASTER and DRM_ROOT_ONLY flags in the ioctl's configuration.
Tue, 21 Oct 08
mplayer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-6718
MPlayer, possibly 1.0rc1, allows remote attackers to cause a denial of service (SIGSEGV and application crash) via (1) a malformed MP3 file, as demonstrated by lol-mplayer.mp3; (2) a malformed Ogg Vorbis file, as demonstrated by lol-mplayer.ogg; (3) a malformed MPEG-1 file, as demonstrated by lol-mplayer.mpg; (4) a malformed MPEG-2 file, as demonstrated by lol-mplayer.m2v; (5) a malformed MPEG-4 AVI file, as demonstrated by lol-mplayer.avi; (6) a malformed FLAC file, as demonstrated by lol-mp...
Tue, 21 Oct 08
ip_reg
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4606
Multiple SQL injection vulnerabilities in IP Reg 0.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) location_id parameter to locationdel.php and (2) vlan_id parameter to it.php. NOTE: the vlanview.php and vlandel.php vectors are already covered by CVE-2007-6579.
Tue, 21 Oct 08
easycafeengine
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4605
SQL injection vulnerability in CafeEngine allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) dish.php and (2) menu.php.
Tue, 21 Oct 08
easycafeengine
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4604
SQL injection vulnerability in index.php in Easy CafeEngine 1.1 allows remote attackers to execute arbitrary SQL commands via the itemid parameter.
Tue, 21 Oct 08
cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4603
SQL injection vulnerability in search.php in iGaming CMS 2.0 Alpha 1 allows remote attackers to execute arbitrary SQL commands via the keywords parameter in a search_games action.
Tue, 21 Oct 08
post_affiliate_pro
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4602
Directory traversal vulnerability in index.php in Post Affiliate Pro 2.0 allows remote authenticated users to read and possibly execute arbitrary local files via a .. (dot dot) in the md parameter.
Tue, 21 Oct 08
cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4601
Cross-site scripting (XSS) vulnerability in the login feature in Habari CMS 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the habari_username parameter.
Tue, 21 Oct 08
pokermax_poker_league_tournament_script
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4600
configure.php in PokerMax Poker League Tournament Script 0.13 allows remote attackers to bypass authentication and gain administrative access by setting the ValidUserAdmin cookie.
Tue, 21 Oct 08
mosaic_commerce
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4599
SQL injection vulnerability in category.php in Mosaic Commerce allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Tue, 21 Oct 08
shindig-integrator
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4598
Unspecified vulnerability in Shindig-Integrator 5.x, a module for Drupal, has unspecified impact and remote attack vectors related to "numerous flaws" that are not related to XSS or access control, a different vulnerability than CVE-2008-4596 and CVE-2008-4597.
Tue, 21 Oct 08
shindig-integrator
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4597
Shindig-Integrator 5.x, a module for Drupal, does not properly restrict generated page access, which allows remote attackers to gain privileges via unspecified vectors.
Tue, 21 Oct 08
shindig-integrator
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4596
Cross-site scripting (XSS) vulnerability in Shindig-Integrator 5.x, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in generated pages.
Tue, 21 Oct 08
content_plus
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4595
Multiple unspecified vulnerabilities in Slaytanic Scripts Content Plus 2.1.1 have unknown impact and remote attack vectors.
Tue, 21 Oct 08
wap400n
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4594
Unspecified vulnerability in the SNMPv3 component in Linksys WAP4400N firmware 1.2.14 on the Marvell Semiconductor 88W8361P-BEM1 chipset has unknown impact and attack vectors, probably remote.
Tue, 21 Oct 08
iphone
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4593
Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled and Show SMS Preview is disabled, allows physically proximate attackers to obtain sensitive information by performing an Emergency Call tap and then reading SMS messages on the device screen, aka Apple bug number 6267416.
Tue, 21 Oct 08
systems_insight_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4412
Unspecified vulnerability in HP Systems Insight Manager (SIM) before 5.2 Update 2 (C.05.02.02.00) allows remote attackers to obtain sensitive information via unspecified vectors.
Tue, 21 Oct 08
flash_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4473
Multiple heap-based buffer overflows in Adobe Flash CS3 Professional on Windows and Flash MX 2004 allow remote attackers to execute arbitrary code via an SWF file containing long control parameters.
Sat, 18 Oct 08
flash_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4401
ActionScript in Adobe Flash Player 9.0.124.0 and earlier does not require user interaction in conjunction with (1) the FileReference.browse operation in the FileReference upload API or (2) the FileReference.download operation in the FileReference download API, which allows remote attackers to create a browse dialog box, and possibly have unspecified other impact, via an SWF file.
Fri, 17 Oct 08
sports_clubs_web_portal
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4592
Directory traversal vulnerability in index.php in Sports Clubs Web Panel 0.0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter.
Fri, 17 Oct 08
phpwebgallery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4591
Multiple cross-site scripting (XSS) vulnerabilities in admin/include/isadmin.inc.php in PhpWebGallery 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) lang[access_forbiden] and (2) lang[ident_title] parameters.
Fri, 17 Oct 08
stash
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4590
Multiple SQL injection vulnerabilities in Stash 1.0.3 allow remote attackers to execute arbitrary SQL commands via (1) the username parameter to admin/login.php and (2) the post parameter to admin/news.php.
Fri, 17 Oct 08
resuce_and_recovery
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4589
Heap-based buffer overflow in the tvtumin.sys kernel driver in Lenovo Rescue and Recovery 4.20, including 4.20.0511 and 4.20.0512, allows local users to execute arbitrary code via a long file name.
Fri, 17 Oct 08
eserv
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4588
Stack-based buffer overflow in the FTP server in Etype Eserv 3.x, possibly 3.26, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long argument to the ABOR command.
Fri, 17 Oct 08
flexnet_connect
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4587
Insecure method vulnerability in the MSVNClientDownloadManager61Lib.DownloadManager.1 ActiveX control (ISDM.exe 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the AddFile and RunScheduledJobs methods. NOTE: this could be leveraged for code execution by uploading executable files to Startup folders.
Fri, 17 Oct 08
flexnet_connect
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4586
Insecure method vulnerability in the MVSNCLientWebAgent61.WebAgent.1 ActiveX control (isusweb.dll 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the DownloadAndExecute method.
Fri, 17 Oct 08
site_builder
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4585
Belong Software Site Builder 0.1 beta allows remote attackers to bypass intended access restrictions and perform administrative actions via a direct request to admin/home.php.
Fri, 17 Oct 08
mail
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4584
Insecure method vulnerability in Chilkat Mail 7.8 ActiveX control (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname to the SaveLastError method.
Fri, 17 Oct 08
ftp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4583
Insecure method vulnerability in the Chilkat FTP 2.0 ActiveX component (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname in the SavePkcs8File method.
Fri, 17 Oct 08
firefox
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4582
Mozilla Firefox 3.0.1 through 3.0.3 on Windows does not properly identify the context of Windows .url shortcut files, which allows user-assisted remote attackers to bypass the Same Origin Policy and obtain sensitive information via an HTML document that is directly accessible through a filesystem, as demonstrated by documents in (1) local folders, (2) Windows share folders, and (3) RAR archives, and as demonstrated by IFRAMEs referencing shortcuts that point to (a) about:cache?device=memory a...
Fri, 17 Oct 08
enovia_smarteam
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4581
The Editor in IBM ENOVIA SmarTeam 5 before release 18 SP5, and release 19 before SP01, allows remote authenticated users to bypass intended access restrictions and read Document objects via the Workflow Process (aka Flow Process) view.
Fri, 17 Oct 08
cman, fence
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4580
fence_manual in fence allows local users to modify arbitrary files via a symlink attack on the fence_manual.fifo temporary file.
Fri, 17 Oct 08
cman, fence
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4579
The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly (b) cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file.
Fri, 17 Oct 08
dovecot
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4578
The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.
Fri, 17 Oct 08
dovecot
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4577
The ACL plugin in Dovecot before 1.1.4 treats negative access rights as if they are positive access rights, which allows attackers to bypass intended access restrictions.
Fri, 17 Oct 08
kernel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4576
sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service (OOPS) via an INIT-ACK that states the peer does not support AUTH, which causes the sctp_process_init function to clean up active transports and triggers the OOPS when the T1-Init timer expires.
Fri, 17 Oct 08
jhead
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4575
Buffer overflow in the DoCommand function in jhead before 2.84 might allow context-dependent attackers to cause a denial of service (crash) via (1) a long -cmd argument and (2) possibly other unspecified vectors.
Fri, 17 Oct 08
kernel
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4554
The do_splice_from function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the O_APPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file.
Fri, 17 Oct 08
qemu
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4553
qemu-make-debian-root in qemu 0.9.1-5 on Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack on temporary files and directories.
Fri, 17 Oct 08
ayco_okul_portali
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4574
SQL injection vulnerability in default.asp in Ayco Okul Portali allows remote attackers to execute arbitrary SQL commands via the linkid parameter.
Fri, 17 Oct 08
munzursoft_web_portal_w3
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4573
SQL injection vulnerability in kategori.asp in MunzurSoft Wep Portal W3 allows remote attackers to execute arbitrary SQL commands via the kat parameter.
Fri, 17 Oct 08
guildftpd
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4572
GuildFTPd 0.999.14, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long arguments to the CWD and LIST commands, which triggers heap corruption related to an improper free call, and possibly triggering a heap-based buffer overflow.
Fri, 17 Oct 08
plone
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4571
Cross-site scripting (XSS) vulnerability in the LiveSearch module in Plone before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via the Description field for search results, as demonstrated using the onerror Javascript even in an IMG tag.
Fri, 17 Oct 08
real-estate-scripts
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4570
SQL injection vulnerability in index.php in Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the cat parameter.
Fri, 17 Oct 08
absolute_poll_manager_xe
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4569
SQL injection vulnerability in xlacomments.asp in XIGLA Software Absolute Poll Manager XE 4.1 allows remote attackers to execute arbitrary SQL commands via the p parameter.
Thu, 16 Oct 08
windows_2000, windows_server_2003, windows_server_2008, windows_vista, windows_xp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4038
Buffer underflow in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to execute arbitrary code via a Server Message Block (SMB) request that contains a filename with a crafted length, aka "SMB Buffer Underflow Vulnerability."
Thu, 16 Oct 08
windows_server_2003, windows_server_2008, windows_vista, windows_xp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4036
Integer overflow in Memory Manager in Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows local users to gain privileges via a crafted application that triggers an erroneous decrement of a variable, related to validation of parameters for Virtual Address Descriptors (VADs) and a "memory allocation mapping error," aka "Virtual Address Descriptor Elevation of Privilege Vulnerability."
Thu, 16 Oct 08
windows_2000
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4023
Active Directory in Microsoft Windows 2000 SP4 does not properly allocate memory for (1) LDAP and (2) LDAPS requests, which allows remote attackers to execute arbitrary code via a crafted request, aka "Active Directory Overflow Vulnerability."
Thu, 16 Oct 08
office
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4020
Cross-site scripting (XSS) vulnerability in Microsoft Office XP SP3 allows remote attackers to inject arbitrary web script or HTML via a document that contains a "Content-Disposition: attachment" header and is accessed through a cdo: URL, which renders the content instead of raising a File Download dialog box, aka "Vulnerability in Content-Disposition Header Vulnerability."
Thu, 16 Oct 08
CVE-2008-4019 (office, office_compatibility_pack_for_word_excel_ppt_2007, office_excel_viewer, o...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4019
Integer overflow in the REPT function in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 2003 SP3; Office Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office SharePoint Server 2007 Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file containing a formula within a cell, aka "Formula Pars...
Thu, 16 Oct 08
windows_2000
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3479
The Microsoft Message Queuing (MSMQ) service in Microsoft Windows 2000 SP4 does not properly validate parameters to string APIs, which allows remote attackers to execute arbitrary code via a crafted RPC call that overflows a "heap request," aka "Message Queuing Service Remote Code Execution Vulnerability."
Thu, 16 Oct 08
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3477
Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3 does not properly validate data in the VBA Performance Cache, which allows remote attackers to execute arbitrary code via a crafted Excel file, aka "Calendar Object Validation Vulnerability."
Thu, 16 Oct 08
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3476
Microsoft Internet Explorer 5.01 SP4 and 6 does not properly handle errors associated with access to uninitialized memory, which allows remote attackers to execute arbitrary code via a crafted HTML document, aka "HTML Objects Memory Corruption Vulnerability."
Thu, 16 Oct 08
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3475
Microsoft Internet Explorer 6 does not properly handle errors associated with access to an object that has been (1) incorrectly initialized or (2) deleted, which allows remote attackers to execute arbitrary code via a crafted HTML document, aka "Uninitialized Memory Corruption Vulnerability."
Thu, 16 Oct 08
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3474
Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origin of web script, which allows remote attackers to bypass the intended cross-domain security policy and obtain sensitive information via a crafted HTML document, aka "Cross-Domain Information Disclosure Vulnerability."
Thu, 16 Oct 08
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3473
Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origin of web script, which allows remote attackers to bypass the intended cross-domain security policy, and execute arbitrary code or obtain sensitive information, via a crafted HTML document, aka "Event Handling Cross-Domain Vulnerability."
Thu, 16 Oct 08
internet_explorer
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3472
Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origin of web script, which allows remote attackers to bypass the intended cross-domain security policy, and execute arbitrary code or obtain sensitive information, via a crafted HTML document, aka "HTML Element Cross-Domain Vulnerability."
Thu, 16 Oct 08
CVE-2008-3471 (office, office_compatibility_pack_for_word_excel_ppt_2007, office_excel_viewer, o...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3471
Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 2003 SP3; Office Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac do not properly allocate memory when loading Excel objects during parsing of the Excel spreadsheet file format, which allows remote attackers to execute arbitrary code via a crafted BIFF file, aka "File For...
Thu, 16 Oct 08
host_integration_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3466
Microsoft Host Integration Server (HIS) 2000, 2004, and 2006 does not limit RPC access to administrative functions, which allows remote attackers to bypass authentication and execute arbitrary code via a crafted SNA RPC message, aka "HIS Command Execution Vulnerability."
Thu, 16 Oct 08
windows_2003_server, windows_xp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3464
afd.sys in the Ancillary Function Driver (AFD) component in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP1 and SP2 does not properly validate input sent from user mode to the kernel, which allows local users to gain privileges via a crafted application, aka "AFD Kernel Overwrite Vulnerability."
Thu, 16 Oct 08
windows_2000, windows_server_2003, windows_server_2008, windows_vista, windows_xp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2252
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate parameters sent from user mode to the kernel, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Memory Corruption Vulnerability."
Thu, 16 Oct 08
windows_2000, windows_server_2003, windows_server_2008, windows_xp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2251
Double free vulnerability in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows local users to gain privileges via a crafted application that makes system calls within multiple threads, aka "Windows Kernel Unhandled Exception Vulnerability." NOTE: according to Microsoft, this is not a duplicate of CVE-2008-4510.
Thu, 16 Oct 08
windows_2000, windows_server_2003, windows_server_2008, windows_vista, windows_xp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2250
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate window properties sent from a parent window to a child window during creation of a new window, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Window Creation Vulnerability."
Thu, 16 Oct 08
iis, windows_2000, windows_server_2003, windows_server_2008, windows_xp
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-1446
Integer overflow in the Internet Printing Protocol (IPP) ISAPI extension in Microsoft Internet Information Services (IIS) 5.0 through 7.0 on Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, and Server 2008 allows remote authenticated users to execute arbitrary code via an HTTP POST request that triggers an outbound IPP connection from a web server to a machine operated by the attacker, aka "Integer Overflow in IPP Service Vulnerability."
Thu, 16 Oct 08
vlc_media_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4558
Array index error in VLC media player 0.9.2 allows remote attackers to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a signed comparison.
Thu, 16 Oct 08
cutenews
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4557
plugins/wacko/highlight/html.php in Strawberry in CuteNews.ru 1.1.1 (aka Strawberry) allows remote attackers to execute arbitrary PHP code via the text parameter, which is inserted into an executable regular expression.
Thu, 16 Oct 08
solaris
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4556
Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.
Thu, 16 Oct 08
edirectory
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4480
Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.x before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a crafted Netware Core Protocol opcode 0x24 message that triggers a calculation error that under-allocates a heap buffer.
Thu, 16 Oct 08
edirectory
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4479
Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a SOAP request with a long Accept-Language header.
Thu, 16 Oct 08
edirectory
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4478
Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted (1) Content-Length header in a SOAP request or (2) Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer overflow.
Thu, 16 Oct 08
bea_product_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4013
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
Thu, 16 Oct 08
weblogic_workshop
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4012
Unspecified vulnerability in the WebLogic Workshop component in BEA Product Suite WLW 8.1SP5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
Thu, 16 Oct 08
bea_product_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4011
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote authenticated users to affect integrity via unknown vectors.
Thu, 16 Oct 08
bea_product_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4010
Unspecified vulnerability in the WebLogic Workshop component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
Thu, 16 Oct 08
bea_product_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4009
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
Thu, 16 Oct 08
bea_product_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4008
Unspecified vulnerability in the WebLogic Server Plugins for Apache component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
Thu, 16 Oct 08
database_11i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4005
Unspecified vulnerability in the Oracle Application Express component in Oracle Database 11.1.0.6 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Thu, 16 Oct 08
enterpriseone, peoplesoft_enterprise
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4004
Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.2 and 8.98.0.1 allows local users to affect confidentiality and integrity via unknown vectors.
Thu, 16 Oct 08
jd_edwards_enterpriseone, peoplesoft_enterprise
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4003
Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.18 and 8.49.14 allows remote attackers to affect confidentiality via unknown vectors.
Thu, 16 Oct 08
jd_edwards_enterpriseone, peoplesoft_enterprise
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4002
Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.18 and 8.49.14 allows remote authenticated users to affect confidentiality via unknown vectors.
Thu, 16 Oct 08
jd_edwards_enterpriseone_ep, peoplesoft_enterprise
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4001
Unspecified vulnerability in the PeopleSoft Enterprise Portal component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne EP 8.9 and EP 9.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Thu, 16 Oct 08
CVE-2008-4000 (enterpriseone, jd_edwards_enterpriseone, peoplesoft_enterprise, peoplesoft_people...)
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4000
Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.18 and 8.49.14 allows remote attackers to affect confidentiality and integrity via unknown vectors.
Thu, 16 Oct 08
e-business_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3998
Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 12.0.4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Thu, 16 Oct 08
database_10g, database_11i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3996
Unspecified vulnerability in the Change Data Capture component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMS_CDC_IPUBLISH.
Thu, 16 Oct 08
database_10g, database_11i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3995
Unspecified vulnerability in the Change Data Capture component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to DBMS_CDC_PUBLISH.
Thu, 16 Oct 08
database_10g, database_11i, database_9i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3994
Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to WMSYS.LTADM.
Thu, 16 Oct 08
e-business_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3993
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2 and 12.0.4 allows remote authenticated users to affect integrity via unknown vectors.
Thu, 16 Oct 08
database_10g
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3992
Unspecified vulnerability in the Oracle Data Mining component in Oracle Database 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to DMSYS.DBMS_DM_EXP_INTERNAL.
Thu, 16 Oct 08
database_10g, database_9i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3991
Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.08, 9.2.0.8DV, and 10.1.0.5 allows remote authenticated users to affect availability, related to OLAPSYS.CWM2_OLAP_AW_AWUTIL.
Thu, 16 Oct 08
database_10g, database_9i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3990
Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.08, 9.2.0.8DV, and 10.1.0.5 allows remote authenticated users to affect availability, related to OLAPSYS.CWM2_OLAP_AW_AWUTIL.
Thu, 16 Oct 08
database_10g
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3989
Unspecified vulnerability in the Oracle Data Mining component in Oracle Database 10.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability, related to DMSYS.ODM_MODEL_UTIL.
Thu, 16 Oct 08
e-business_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3988
Unspecified vulnerability in the iSupplier Portal component in Oracle E-Business Suite 11.5.10.2 and 12.0.4 allows remote attackers to affect confidentiality via unknown vectors.
Thu, 16 Oct 08
application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3987
Unspecified vulnerability in the Oracle Discoverer Desktop component in Oracle Application Server 10.1.2.3 allows local users to affect confidentiality via unknown vectors.
Thu, 16 Oct 08
application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3986
Unspecified vulnerability in the Oracle Discoverer Administrator component in Oracle Application Server 9.0.4.3 and 10.1.2.2 allows local users to affect confidentiality via unknown vectors.
Thu, 16 Oct 08
e-business_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3985
Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.4 allows remote attackers to affect confidentiality via unknown vectors.
Thu, 16 Oct 08
database_10g, database_11i, database_9i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3984
Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT.
Thu, 16 Oct 08
database_10g, database_11i, database_9i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3983
Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT.
Thu, 16 Oct 08
database_10g, database_11i, database_9i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3982
Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT.
Thu, 16 Oct 08
database_10g
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3980
Unspecified vulnerability in the Upgrade component in Oracle Database 10.1.0.5 and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Thu, 16 Oct 08
application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3977
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3 and 10.1.2.3 allows remote attackers to affect integrity via unknown vectors.
Thu, 16 Oct 08
database_10g, database_9i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3976
Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Thu, 16 Oct 08
application_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3975
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3 and 10.1.2.3 allows remote attackers to affect integrity via unknown vectors.
Thu, 16 Oct 08
database_10g, database_9i
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2625
Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.2 allows remote attackers to affect confidentiality and integrity via unknown vectors.
Thu, 16 Oct 08
database_10g
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2624
Unspecified vulnerability in the Oracle OLAP component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Thu, 16 Oct 08
application_server, e-business_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2619
Unspecified vulnerability in the Oracle Reports Developer component in Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2, and E-Business Suite 11.5.10.2, allows remote authenticated users to affect availability via unknown vectors.
Thu, 16 Oct 08
jdeveloper
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2588
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Application Server 10.1.2.2 allows local users to affect confidentiality via unknown vectors.
Thu, 16 Oct 08
graphviz
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4555
Stack-based buffer overflow in the push_subg function in parser.y (lib/graph/parser.c) in Graphviz 2.20.2, and possibly earlier versions, allows user-assisted remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a DOT file with a large number of Agraph_t elements.
Thu, 16 Oct 08
arcserve_backup, business_protection_suite, server_protection_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4400
Unspecified vulnerability in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote attackers to cause a denial of service (crash of multiple services) via crafted authentication credentials, related to "insufficient validation."
Thu, 16 Oct 08
arcserve_backup, business_protection_suite, server_protection_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4399
Unspecified vulnerability in the database engine service in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote attackers to cause a denial of service (crash) via a crafted request, related to "insufficient validation."
Thu, 16 Oct 08
arcserve_backup, business_protection_suite, server_protection_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4398
Unspecified vulnerability in the tape engine service in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote attackers to cause a denial of service (crash) via a crafted request.
Thu, 16 Oct 08
arcserve_backup, business_protection_suite, server_protection_suite
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4397
Directory traversal vulnerability in the RPC interface (asdbapi.dll) in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote attackers to execute arbitrary commands via a .. (dot dot) in an RPC call with opnum 0x10A.
Thu, 16 Oct 08
system_requirements_lab
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4385
Husdawg, LLC Systems Requirements Lab 3 allows remote attackers to force the download and execution of arbitrary programs via unknown vectors in (1) ActiveX control (sysreqlab.dll, sysreqlabsli.dll, or sysreqlab2.dll) and (2) Java applet in RLApplet.class in sysreqlab2.jar or sysreqlab.jar.
Thu, 16 Oct 08
cups
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3640
Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow.
Thu, 16 Oct 08
cups
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3639
Heap-based buffer overflow in the read_rle16 function in imagetops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via an SGI image with malformed Run Length Encoded (RLE) data containing a small image and a large row count.
Thu, 16 Oct 08
nfs-utils
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4552
nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the host_ctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.
Thu, 16 Oct 08
strongswan
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4551
strongSwan 4.2.6 and earlier allows remote attackers to cause a denial of service (daemon crash) via an IKE_SA_INIT message with a large number of NULL values in a Key Exchange payload, which triggers a NULL pointer dereference for the return value of the mpz_export function in the GNU Multiprecision Library (GMP).
Thu, 16 Oct 08
imageshack_toolbar
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4549
The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7, possibly including 4.5.7.69, allows remote attackers to force the upload of arbitrary image files to the ImageShack site via a file: URI argument to the BuildSlideShow method.
Thu, 16 Oct 08
rtssentry
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4548
Stack-based buffer overflow in the PTZCamPanelCtrl ActiveX control (CamPanel.dll) in RTS Sentry 2.1.0.2 allows remote attackers to execute arbitrary code via a long second argument to the ConnectServer method.
Thu, 16 Oct 08
web_cms
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4547
Heap-based buffer overflow in the PdvrAtl.PdvrOcx.1 ActiveX control (pdvratl.dll) in DVRHOST Web CMS OCX 1.0.1.25 allows remote attackers to execute arbitrary code via a long second argument to the TimeSpanFormat method.
Wed, 15 Oct 08
flash_player
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4546
Adobe Flash Player 9.0.45.0, 9.0.112.0, 9.0.124.0, and 10.0.12.10 allows remote web servers to cause a denial of service (NULL pointer dereference and browser crash) by returning a different response when an HTTP request is sent a second time, as demonstrated by two responses that provide SWF files with different SWF version numbers.
Wed, 15 Oct 08
wap400n
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4441
The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote attackers to cause a denial of service (reboot or hang-up) via a malformed association request containing the WEP flag, as demonstrated by a request that is too short, a different vulnerability than CVE-2008-1144 and CVE-2008-1197.
Wed, 15 Oct 08
unity
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4545
Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8 uses weak permissions for the D:CommServerReports directory, which allows remote authenticated users to obtain sensitive information by reading files in this directory.
Wed, 15 Oct 08
unity
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4544
Unspecified vulnerability in an unspecified Microsoft API, as used by Cisco Unity and possibly other products, allows remote attackers to cause a denial of service by sending crafted packets to dynamic UDP ports, related to a "processing error."
Wed, 15 Oct 08
unity
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4543
Cisco Unity 4.x before 4.2(1)ES161, 5.x before 5.0(1)ES53, and 7.x before 7.0(2)ES8, when using anonymous authentication (aka native Unity authentication), allows remote attackers to cause a denial of service (session exhaustion) via a large number of connections.
Wed, 15 Oct 08
unity
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4542
Cross-site scripting (XSS) vulnerability in Cisco Unity 4.x before 4.2(1)ES162, 5.x before 5.0(1)ES56, and 7.x before 7.0(2)ES8 allows remote authenticated administrators to inject arbitrary web script or HTML by entering it in the database (aka data store).
Wed, 15 Oct 08
java_system_web_proxy_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4541
Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via unspecified vectors.
Wed, 15 Oct 08
windows_mobile
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4540
Windows Mobile 6 on the HTC Hermes device makes WLAN passwords available to an auto-completion mechanism for the password input field, which allows physically proximate attackers to bypass password authentication and obtain WLAN access.
Wed, 15 Oct 08
system_management_homepage
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4411
Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 2.1.15.210 on Linux and Windows allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2008-1663.
Wed, 15 Oct 08
openview_network_node_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3545
Unspecified vulnerability in ovtopmd in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to cause a denial of service via unknown vectors, a different vulnerability than CVE-2008-3536, CVE-2008-3537, and CVE-2008-3544. NOTE: due to insufficient details from the vendor, it is not clear whether this is the same as CVE-2008-1853.
Wed, 15 Oct 08
openview_network_node_manager
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3544
Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, and possibly 7.01, 7.50, and 7.53, allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47), (2) REQUEST_SAVE_STATE (aka number 61), or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954.
Wed, 15 Oct 08
tomcat
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3271
Apache Tomcat 5.5.0 and 4.1.0 through 4.1.31 allows remote attackers to bypass an IP address restriction and obtain sensitive information via a request that is processed concurrently with another request but in a different thread, leading to an instance-variable overwrite associated with a "synchronization problem" and lack of thread safety, and related to RemoteFilterValve, RemoteAddrValve, and RemoteHostValve.
Sat, 11 Oct 08
ec-cube
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4537
Cross-site scripting (XSS) vulnerability in EC-CUBE Ver1 1.4.6 and earlier, Ver1 Beta 1.5.0-beta and earlier, Ver2 2.1.2a and earlier, Ver2 Beta(RC) 2.1.1-beta and earlier, Community Edition 1.3.4 and earlier, and Community Edition Nightly-Build r17336 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-4535 and CVE-2008-4536.
Sat, 11 Oct 08
ec-cube
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4536
Cross-site scripting (XSS) vulnerability in EC-CUBE Ver1 1.4.6 and earlier, Ver1 Beta 1.5.0-beta and earlier, Ver2 2.1.2a and earlier, Ver2 Beta(RC) 2.2.0-beta and earlier, Community Edition 1.3.4 and earlier, and Community Edition Nightly-Build r17319 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-4535 and CVE-2008-4537.
Sat, 11 Oct 08
ec-cube
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4535
Cross-site scripting (XSS) vulnerability in EC-CUBE Ver2 2.1.2a and earlier, EC-CUBE Ver2 Beta(RC) 2.2.0-beta and earlier, and EC-CUBE Community Edition Nighly-Build r17623 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-4536 and CVE-2008-4537.
Sat, 11 Oct 08
ec-cube
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4534
SQL injection vulnerability in EC-CUBE Ver2 2.1.2a and earlier, and Ver2 RC 2.3.0-rc1 and earlier, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Sat, 11 Oct 08
web_server
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4533
Cross-site scripting (XSS) vulnerability in Kantan WEB Server 1.8 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Sat, 11 Oct 08
portage
http://web.nvd.nist.gov/view/v