U.S. Flag Official website of the Department of Homeland Security

Note: This page is part of the us-cert.gov archive.This document is part of the US-CERT website archive. These documents are no longer updated and may contain outdated information. Links may also no longer function. Please contact info@us-cert.gov if you have any questions about the US-CERT website archive.

TLP:WHITE

Bulletin (SB08-154)

Vulnerability Summary for the Week of May 26, 2008

Original release date: June 02, 2008

The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information.

The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

  • High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0

  • Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9

  • Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9

Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.

">

High Vulnerabilities
Primary
Vendor -- Product
Description
Discovered
Published
CVSS ScoreSource & Patch Info
Aspindir -- meto_forumMultiple SQL injection vulnerabilities in Meto Forum 1.1 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to (a) admin/duzenle.asp and (b) admin_oku.asp; the (2) kid parameter to (c) kategori.asp and (d) admin_kategori.asp; and unspecified parameters to (e) uye.asp and (f) oku.asp.
unknown
2008-05-27
7.5CVE-2008-2448
MILW0RM
BID
BID
badongo -- campus_bulletin_boardMultiple SQL injection vulnerabilities in Campus Bulletin Board 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to post3/view.asp and the (2) review parameter to post3/book.asp.
unknown
2008-05-28
7.5CVE-2008-2492
BUGTRAQ
BID
bitmixsoft -- php-jokesiteSQL injection vulnerability in jokes_category.php in PHP-Jokesite 2.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
unknown
2008-05-27
7.5CVE-2008-2457
MILW0RM
BID
CaLogic -- CaLogic CalendarsSQL injection vulnerability in userreg.php in CaLogic Calendars 1.2.2 allows remote attackers to execute arbitrary SQL commands via the langsel parameter.
unknown
2008-05-27
7.5CVE-2008-2444
MILW0RM
BID
Cerulean Studios -- TrillianStack-based buffer overflow in Cerulean Studios Trillian before 3.1.10.0 allows remote attackers to execute arbitrary code via unspecified attributes in the X-MMS-IM-FORMAT header in an MSN message.
unknown
2008-05-23
9.3CVE-2008-2409
BID
SECTRACK
XF
ceruleanstudios -- trillianStack-based buffer overflow in AIM.DLL in Cerulean Studios Trillian before 3.1.10.0 allows user-assisted remote attackers to execute arbitrary code via a long attribute value in a FONT tag in a message.
unknown
2008-05-23
9.3CVE-2008-2407
BUGTRAQ
OTHER-REF
SECTRACK
XF
ceruleanstudios -- trillian_proHeap-based buffer overflow in the XML parsing functionality in talk.dll in Cerulean Studios Trillian Pro before 3.1.10.0 allows remote attackers to execute arbitrary code via a malformed attribute in an IMG tag.
unknown
2008-05-23
10.0CVE-2008-2408
BUGTRAQ
OTHER-REF
SECTRACK
XF
Cisco -- CiscoWorks Common ServicesUnspecified vulnerability in Cisco CiscoWorks Common Services 3.0.3 through 3.1.1 allows remote attackers to execute arbitrary code on a client machine via unknown vectors.
unknown
2008-05-29
9.3CVE-2008-2054
CISCO
comicshout -- comicshoutSQL injection vulnerability in index.php in ComicShout 2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the comic_id parameter.
unknown
2008-05-27
7.5CVE-2008-2456
MILW0RM
OTHER-REF
BID
XF
cPanel -- cPanel** DISPUTED ** scripts/wwwacct in cPanel 11.18.6 STABLE and earlier and 11.23.1 CURRENT and earlier allows remote authenticated users with reseller privileges to execute arbitrary code via shell metacharacters in the Email address field (aka Email text box). NOTE: the vendor disputes this, stating "I'm unable to reproduce such an issue on multiple servers running different versions of cPanel."
unknown
2008-05-28
9.0CVE-2008-2478
BUGTRAQ
BUGTRAQ
BID
SECTRACK
XF
creative -- creative_software_autoupdate_engineStack-based buffer overflow in the Creative Software AutoUpdate Engine ActiveX control in CTSUEng.ocx allows remote attackers to execute arbitrary code via a long CacheFolder property value.
unknown
2008-05-29
9.3CVE-2008-0955
MILW0RM
CERT-VN
e107coders -- e107_blog_engineSQL injection vulnerability in comment.php in the MacGuru BLOG Engine plugin 2.2 for e107 allows remote attackers to execute arbitrary SQL commands via the rid parameter.
unknown
2008-05-27
7.5CVE-2008-2455
MILW0RM
BID
XF
EMC Corporation -- AlphaStorrobotd in the Library Manager in EMC AlphaStor 3.1 SP1 for Windows allows remote attackers to execute arbitrary commands via an unspecified string field in a packet to TCP port 3500.
unknown
2008-05-29
10.0CVE-2008-2157
IDEFENSE
SECTRACK
EMC Corporation -- AlphaStorMultiple stack-based buffer overflows in the Command Line Interface process in the Server Agent in EMC AlphaStor 3.1 SP1 for Windows allow remote attackers to execute arbitrary code via crafted TCP packets to port 41025.
unknown
2008-05-29
10.0CVE-2008-2158
IDEFENSE
SECTRACK
Emule -- emule_plusUnspecified vulnerability in eMule Plus before 1.2d has unknown impact and attack vectors related to "staticservers.dat processing."
unknown
2008-05-28
10.0CVE-2008-2486
OTHER-REF
BID
XF
Emule -- X_RayUnspecified vulnerability in the web server in eMule X-Ray before 1.4 allows remote attackers to trigger memory corruption via unknown attack vectors.
unknown
2008-05-29
7.5CVE-2008-2502
OTHER-REF
Excuse Online -- Excuse OnlineSQL injection vulnerability in pwd.asp in Excuse Online allows remote attackers to execute arbitrary SQL commands via the pID parameter.
unknown
2008-05-29
7.5CVE-2008-2509
BUGTRAQ
OTHER-REF
BID
XF
fichive -- fichiveSQL injection vulnerability in index.php in FicHive 1.0 allows remote attackers to execute arbitrary SQL commands via the letter parameter in a Search action, a different vector than CVE-2008-2416. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
unknown
2008-05-23
7.5CVE-2008-2425
Henning Stoverud -- PHPhotoalbumMultiple SQL injection vulnerabilities in PHPhotoalbum 0.5 allow remote attackers to execute arbitrary SQL commands via the (1) album parameter to thumbnails.php and the (2) pid parameter to displayimage.php.
unknown
2008-05-29
7.5CVE-2008-2501
MILW0RM
XF
Hotscripts -- ablespaceSQL injection vulnerability in adv_cat.php in AbleSpace 1.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
unknown
2008-05-28
7.5CVE-2008-2491
BUGTRAQ
BID
icdevgroup -- interchangeUnspecified vulnerability in the 404 error page for the "Standard demo" in Interchange before 5.6.0 has unknown impact and attack vectors.
unknown
2008-05-23
10.0CVE-2008-2424
OTHER-REF
insanevisions -- onecmsDirectory traversal vulnerability in install_mod.php in insanevisions OneCMS 2.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the load parameter in a go action.
unknown
2008-05-28
7.5CVE-2008-2482
BUGTRAQ
MILW0RM
BID
XF
Interchange Development Group -- InterchangeUnspecified vulnerability in Interchange before 5.6.0 allows remote attackers to cause an denial of service via crafted HTTP requests. NOTE: this might be overlap CVE-2007-2635.
unknown
2008-05-23
10.0CVE-2008-2423
OTHER-REF
Joomla -- com_xsstream-dmSQL injection vulnerability in the xsstream-dm (com_xsstream-dm) component 0.01 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the movie parameter to index.php.
unknown
2008-05-27
7.5CVE-2008-2454
BUGTRAQ
MILW0RM
BID
mambo-foundation -- mamboMultiple SQL injection vulnerabilities in index.php in Mambo before 4.6.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) articleid and (2) mcname parameters. NOTE: some of these details are obtained from third party information.
unknown
2008-05-28
7.5CVE-2008-2498
maxsite -- maxsiteSQL injection vulnerability in index.php in MAXSITE 1.10 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter in a webboard action.
unknown
2008-05-28
7.5CVE-2008-2487
MILW0RM
mx-system -- mxbb_portalSQL injection vulnerability in index.php in MxBB (aka MX-System) Portal 2.7.3 allows remote attackers to execute arbitrary SQL commands via the page parameter.
unknown
2008-05-28
7.5CVE-2008-2477
MILW0RM
BID
mytipper -- zogo_shopSQL injection vulnerability in products.php in the Mytipper ZoGo-shop plugin 1.15.5 and 1.16 Beta 13 for e107 allows remote attackers to execute arbitrary SQL commands via the cat parameter.
unknown
2008-05-27
7.5CVE-2008-2447
MILW0RM
BID
XF
nctsoft -- NCTAudioeditor_activeX_controlMultiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioGrabber2 ActiveX control in NCTAudioGrabber2.dll allow remote attackers to execute arbitrary code via unspecified vectors.
unknown
2008-05-29
9.3CVE-2008-0958
CERT-VN
XF
netious -- netious_cmsSQL injection vulnerability in index.php in Netious CMS 0.4 allows remote attackers to execute arbitrary SQL commands via the pageid parameter, a different vector than CVE-2006-4047.
unknown
2008-05-27
7.5CVE-2008-2461
MILW0RM
pancake -- zinaDirectory traversal vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to have an unknown impact via a .. (dot dot) in the p parameter.
unknown
2008-05-28
7.5CVE-2008-2495
BUGTRAQ
BID
phpclassifiedsscript -- php_classifieds_scriptMultiple SQL injection vulnerabilities in PHP Classifieds Script allow remote attackers to execute arbitrary SQL commands via the fatherID parameter to (1) browse.php and (2) search.php.
unknown
2008-05-27
7.5CVE-2008-2453
MILW0RM
BID
XF
phpRaider -- phpRaiderPHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[phpbb_path] parameter.
unknown
2008-05-28
10.0CVE-2008-2481
MILW0RM
BID
plusphp -- plusphp_short_url_multi-user_scriptPHP remote file inclusion vulnerability in plus.php in plusPHP Short URL Multi-User Script 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the _pages_dir parameter.
unknown
2008-05-28
10.0CVE-2008-2480
MILW0RM
BID
redhat -- linux_advanced_workstation
redhat -- Enterprise Linux Desktop
redhat -- enterprise_linux
redhat -- Enterprise Linux Desktop Workstation
redhat -- desktop
Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps.
unknown
2008-05-23
7.5CVE-2008-1767
OTHER-REF
REDHAT
BID
SECTRACK
XF
Samba -- SambaHeap-based buffer overflow in the receive_smb_raw function in util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers to execute arbitrary code via a crafted SMB response.
unknown
2008-05-29
7.5CVE-2008-1105
BUGTRAQ
OTHER-REF
SECTRACK
Simpel Side -- NetbutikMultiple SQL injection vulnerabilities in Simpel Side Netbutik 1 through 4 allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to netbutik.php and the (2) id parameter to product.php.
unknown
2008-05-29
7.5CVE-2008-2504
MILW0RM
BID
XF
Simpel Side -- WeblosningMultiple SQL injection vulnerabilities in Simpel Side Weblosning 1 through 4 allow remote attackers to execute arbitrary SQL commands via the (1) mainid and (2) id parameters to index2.php.
unknown
2008-05-29
7.5CVE-2008-2506
MILW0RM
BID
XF
therealestatescript -- the_real_estate_scriptSQL injection vulnerability in dpage.php in The Real Estate Script allows remote attackers to execute arbitrary SQL commands via the docID parameter.
unknown
2008-05-27
7.5CVE-2008-2443
MILW0RM
BID
TYPO3 -- TYPO3Multiple SQL injection vulnerabilities in the Statistics (aka ke_stats) extension 0.1.2 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
unknown
2008-05-27
7.5CVE-2008-2451
XF
TYPO3 -- sg_zfelibSQL injection vulnerability in the Library for Frontend Plugins (aka sg_zfelib) extension 1.1.512 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified "user input."
unknown
2008-05-28
7.5CVE-2008-2489
vbulletin -- vbulletinSQL injection vulnerability in faq.php in vBulletin 3.7.0 Gold allows remote attackers to execute arbitrary SQL commands via the q parameter in a search action.
unknown
2008-05-27
7.5CVE-2008-2460
BUGTRAQ
BID
WebSlider -- WebSliderSQL injection vulnerability in index.php in Web Slider 0.6 allows remote attackers to execute arbitrary SQL commands via the slide parameter in a slides action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
unknown
2008-05-23
7.5CVE-2008-2422
BID
XF
wgcc -- web_group_communication_centerMultiple SQL injection vulnerabilities in Web Group Communication Center (WGCC) 1.0.3 PreRelease 1 and earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) userid parameter to (a) profile.php in a "show moreinfo" action; the (2) bildid parameter to (b) picturegallery.php in a shownext action; the (3) id parameter to (c) filebase.php in a freigeben action, (d) schedule.php in a del action, and (e) profile.php in an observe action; and the (4) pmid parameter in a delete action and (5) folderid parameter in a showfolder action to (f) message.php.
unknown
2008-05-27
7.5CVE-2008-2446
MILW0RM
BID
XF
WordPress -- Upload File pluginSQL injection vulnerability in wp-uploadfile.php in the Upload File plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the f_id parameter.
unknown
2008-05-29
7.5CVE-2008-2510
BUGTRAQ
BID

Back to top

Medium Vulnerabilities
Primary
Vendor -- Product
Description
Discovered
Published
CVSS ScoreSource & Patch Info
4shared -- starsgames_control_panelCross-site scripting (XSS) vulnerability in index.php in Starsgames Control Panel 4.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the st parameter.
unknown
2008-05-27
4.3CVE-2008-2458
BUGTRAQ
BID
XF
badongo -- phpfixMultiple SQL injection vulnerabilities in phpFix 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) kind parameter to fix/browse.php and the (2) account parameter to auth/00_pass.php.
unknown
2008-05-28
6.8CVE-2008-2479
BUGTRAQ
BID
badongo -- campus_bulletin_boardCross-site scripting (XSS) vulnerability in post3/Book.asp in Campus Bulletin Board 3.4 allows remote attackers to inject arbitrary web script or HTML via the review parameter.
unknown
2008-05-28
4.3CVE-2008-2493
BUGTRAQ
BID
Barracuda Networks -- Barracuda Spam FirewallCross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.
unknown
2008-05-23
4.3CVE-2008-2333
OTHER-REF
beaussier -- roomphplanningadmin/userform.php in RoomPHPlanning 1.5 does not require administrative credentials, which allows remote authenticated users to create new admin accounts.
unknown
2008-05-28
6.5CVE-2008-2488
MILW0RM
BID
Brown Bear Software -- CalciumCross-site scripting (XSS) vulnerability in Calcium40.pl in Brown Bear Software Calcium 3.10 and 4.0.4 allows remote attackers to inject arbitrary web script or HTML via the CalendarName parameter in a ShowIt action.
unknown
2008-05-29
4.3CVE-2008-2507
BUGTRAQ
BID
Django Project -- DjangoCross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject arbitrary web script or HTML via the URI of a certain previous request.
unknown
2008-05-23
4.3CVE-2008-2302
SECTRACK
entertainmentscript -- entertainmentscriptDirectory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter.
unknown
2008-05-27
6.8CVE-2008-2459
MILW0RM
BID
XF
IBM -- Lotus SametimeStack-based buffer overflow in the Community Services Multiplexer (aka MUX or StMux.exe) in IBM Lotus Sametime 7.5.1 CF1 and earlier, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code via a crafted URL.
unknown
2008-05-29
5.0CVE-2008-2499
OTHER-REF
OTHER-REF
BID
ikemcg -- phpinstantgalleryMultiple cross-site scripting (XSS) vulnerabilities in Isaac McGowan phpInstantGallery 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) gallery parameter to (a) index.php and (b) image.php, and the (2) imgnum parameter to image.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
unknown
2008-05-27
4.3CVE-2008-2449
BID
XF
Linux -- Kernel
Debian -- Debian Linux
The (1) sparc_mmap_check function in arch/sparc/kernel/sys_sparc.c and the (2) sparc64_mmap_check function in arch/sparc64/kernel/sys_sparc.c, in the Linux kernel before 2.6.25.3, omit some virtual-address range (aka span) checks when the mmap MAP_FIXED bit is not set, which allows local users to cause a denial of service (panic) via unspecified mmap calls.
unknown
2008-05-29
4.4CVE-2008-2137
MLIST
OTHER-REF
DEBIAN
BID
Mambo -- MostlyCECross-site scripting (XSS) vulnerability in the MOStlyContent Editor (MOStlyCE) component before 3.0 for Mambo allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
unknown
2008-05-29
5.0CVE-2008-2500
mambo-foundation -- mamboCRLF injection vulnerability in Mambo before 4.6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
unknown
2008-05-28
5.0CVE-2008-2497
Mozilla -- FirefoxMozilla Firefox 2.0.0.14 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly execute arbitrary code by triggering an error condition during certain Iframe operations between a JSframe write and a JSframe close, as demonstrated by an error in loading an empty Java applet defined by a 'src="javascript:"' sequence.
unknown
2008-05-23
4.3CVE-2008-2419
OTHER-REF
BID
XF
openssl -- opensslDouble free vulnerability in OpenSSL 0.9.8f and 0.9.8g, when the TLS server name extensions are enabled, allows remote attackers to cause a denial of service (crash) via a crafted packet. NOTE: some of these details are obtained from third party information.
unknown
2008-05-29
4.3CVE-2008-0891
OTHER-REF
OpenSSL Project -- OpenSSLOpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of service (crash) via a TLS handshake that omits the Server Key Exchange message and uses "particular cipher suites."
unknown
2008-05-29
4.3CVE-2008-1672
OTHER-REF
pancake -- zinaCross-site scripting (XSS) vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML via the l parameter.
unknown
2008-05-28
4.3CVE-2008-2494
BUGTRAQ
BID
PCPIN -- PCPIN ChatCross-site scripting (XSS) vulnerability in the URL redirection script (inc/url_redirection.inc.php) PCPIN Chat before 6.11 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
unknown
2008-05-28
4.3CVE-2008-2485
BUGTRAQ
OTHER-REF
BID
quate -- quate_cmsMultiple cross-site scripting (XSS) vulnerabilities in Quate CMS 0.3.4 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) index.php, (2) login.php, and (3) credits.php in admin/, and (4) upgrade/index.php.
unknown
2008-05-28
4.3CVE-2008-2496
MILW0RM
BID
XF
redhat -- network_satellite_serverCross-site scripting (XSS) vulnerability in the Red Hat Network channel search feature, as used in RHN and Red Hat Network Satellite before 5.0.2, allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
unknown
2008-05-23
4.3CVE-2007-5961
OTHER-REF
REDHAT
SECTRACK
XF
SAP -- Web Dynpro
SAP -- SAP Web Application Server
Cross-site scripting (XSS) vulnerability in the Web GUI in SAP Web Application Server (WAS) 7.0, Web Dynpro for ABAP (aka WD4A or WDA), and Web Dynpro for BSP allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI under bc/gui/sap/its/webgui/.
unknown
2008-05-23
4.3CVE-2008-2421
BUGTRAQ
BID
selinux -- setroubleshootsealert in setroubleshoot 2.0.5 allows local users to overwrite arbitrary files via a symlink attack on the sealert.log temporary file.
unknown
2008-05-23
4.4CVE-2007-5495
OTHER-REF
BID
SECTRACK
Simpel Side -- WeblosningerCross-site scripting (XSS) vulnerability in result.php in Simpel Side Weblosning 1 through 4 allows remote attackers to inject arbitrary web script or HTML via the search parameter.
unknown
2008-05-29
4.3CVE-2008-2505
MILW0RM
BID
XF
SourceForge -- eMule X-RayBuffer overflow in Uploadlist in eMule X-Ray before 1.4 has unknown impact and remote attack vectors.
unknown
2008-05-29
6.8CVE-2008-2503
OTHER-REF
XF
Stunnel -- StunnelThe OCSP functionality in stunnel before 4.24 does not properly search certificate revocation lists (CRL), which allows remote attackers to bypass intended access restrictions by using revoked certificates.
unknown
2008-05-23
6.8CVE-2008-2420
MLIST
XF
Sun -- SolarisRace condition in the STREAMS Administrative Driver (sad) in Sun Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors.
unknown
2008-05-23
4.7CVE-2008-2418
SUNALERT
BID
TYPO3 -- TYPO3Multiple cross-site scripting (XSS) vulnerabilities in the Statistics (aka ke_stats) extension 0.1.2 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
unknown
2008-05-27
4.3CVE-2008-2450
XF
TYPO3 -- TYPO3Cross-site scripting (XSS) vulnerability in the Questionaire (aka pbsurvey) extension 1.2.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
unknown
2008-05-27
4.3CVE-2008-2452
XF
TYPO3 -- kj_imagelightbox2Cross-site scripting (XSS) vulnerability in the KJ Image Lightbox 2 (aka kj_imagelightbox2) extension 1.4.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified "user input."
unknown
2008-05-28
4.3CVE-2008-2490
Ussun -- Power Audio CD Grabber
Orion Studios -- CinematicMP3
AliveMedia -- Alive MP3 WAV Converter
Online Media Technologies -- NCTAudioStudio ActiveX control
Online Media Technologies -- NCTAudioEditor ActiveX control
Ussun -- Power Audio CD Burner
Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control in NCTAudioInformation2.dll allow remote attackers to execute arbitrary code via unspecified vectors.
unknown
2008-05-29
5.1CVE-2008-0959
CERT-VN
XF
wgcc -- web_group_communication_centerCross-site scripting (XSS) vulnerability in profile.php in Web Group Communication Center (WGCC) 1.0.3 PreRelease 1 and earlier allows remote attackers to inject arbitrary web script or HTML via the userid parameter in a show action.
unknown
2008-05-27
4.3CVE-2008-2445
MILW0RM
BID
XF
xomol -- xomol_cmsDirectory traversal vulnerability in index.php in Xomol CMS 1.20071213 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the op parameter.
unknown
2008-05-28
6.8CVE-2008-2483
MILW0RM
BID
xomol -- xomol_cmsSQL injection vulnerability in index.php in Xomol CMS 1.20071213, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the email parameter.
unknown
2008-05-28
6.8CVE-2008-2484
MILW0RM
BID

Back to top

Low Vulnerabilities
Primary
Vendor -- Product
Description
Discovered
Published
CVSS ScoreSource & Patch Info
selinux -- setroubleshootCross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject arbitrary web script or HTML via a crafted (1) file or (2) process name, which triggers an Access Vector Cache (AVC) log entry in a log file used during composition of HTML documents for sealert.
unknown
2008-05-23
1.9CVE-2007-5496
OTHER-REF
BID
Tr Script News -- Tr Script NewsCross-site scripting (XSS) vulnerability in news.php in Tr Script News 2.1 allows remote attackers to inject arbitrary web script or HTML via the "nb" parameter in voir mode.
unknown
2008-05-29
2.8CVE-2008-2508
OTHER-REF
BID
XF

Back to top

">

High Vulnerabilities
Primary
Vendor -- Product
Description
Discovered
Published
CVSS ScoreSource & Patch Info
Aspindir -- meto_forumMultiple SQL injection vulnerabilities in Meto Forum 1.1 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to (a) admin/duzenle.asp and (b) admin_oku.asp; the (2) kid parameter to (c) kategori.asp and (d) admin_kategori.asp; and unspecified parameters to (e) uye.asp and (f) oku.asp.
unknown
2008-05-27
7.5CVE-2008-2448
MILW0RM
BID
BID
badongo -- campus_bulletin_boardMultiple SQL injection vulnerabilities in Campus Bulletin Board 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to post3/view.asp and the (2) review parameter to post3/book.asp.
unknown
2008-05-28
7.5CVE-2008-2492
BUGTRAQ
BID
bitmixsoft -- php-jokesiteSQL injection vulnerability in jokes_category.php in PHP-Jokesite 2.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
unknown
2008-05-27
7.5CVE-2008-2457
MILW0RM
BID
CaLogic -- CaLogic CalendarsSQL injection vulnerability in userreg.php in CaLogic Calendars 1.2.2 allows remote attackers to execute arbitrary SQL commands via the langsel parameter.
unknown
2008-05-27
7.5CVE-2008-2444
MILW0RM
BID
Cerulean Studios -- TrillianStack-based buffer overflow in Cerulean Studios Trillian before 3.1.10.0 allows remote attackers to execute arbitrary code via unspecified attributes in the X-MMS-IM-FORMAT header in an MSN message.
unknown
2008-05-23
9.3CVE-2008-2409
BID
SECTRACK
XF
ceruleanstudios -- trillianStack-based buffer overflow in AIM.DLL in Cerulean Studios Trillian before 3.1.10.0 allows user-assisted remote attackers to execute arbitrary code via a long attribute value in a FONT tag in a message.
unknown
2008-05-23
9.3CVE-2008-2407
BUGTRAQ
OTHER-REF
SECTRACK
XF
ceruleanstudios -- trillian_proHeap-based buffer overflow in the XML parsing functionality in talk.dll in Cerulean Studios Trillian Pro before 3.1.10.0 allows remote attackers to execute arbitrary code via a malformed attribute in an IMG tag.
unknown
2008-05-23
10.0CVE-2008-2408
BUGTRAQ
OTHER-REF
SECTRACK
XF
Cisco -- CiscoWorks Common ServicesUnspecified vulnerability in Cisco CiscoWorks Common Services 3.0.3 through 3.1.1 allows remote attackers to execute arbitrary code on a client machine via unknown vectors.
unknown
2008-05-29
9.3CVE-2008-2054
CISCO
comicshout -- comicshoutSQL injection vulnerability in index.php in ComicShout 2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the comic_id parameter.
unknown
2008-05-27
7.5CVE-2008-2456
MILW0RM
OTHER-REF
BID
XF
cPanel -- cPanel** DISPUTED ** scripts/wwwacct in cPanel 11.18.6 STABLE and earlier and 11.23.1 CURRENT and earlier allows remote authenticated users with reseller privileges to execute arbitrary code via shell metacharacters in the Email address field (aka Email text box). NOTE: the vendor disputes this, stating "I'm unable to reproduce such an issue on multiple servers running different versions of cPanel."
unknown
2008-05-28
9.0CVE-2008-2478
BUGTRAQ
BUGTRAQ
BID
SECTRACK
XF
creative -- creative_software_autoupdate_engineStack-based buffer overflow in the Creative Software AutoUpdate Engine ActiveX control in CTSUEng.ocx allows remote attackers to execute arbitrary code via a long CacheFolder property value.
unknown
2008-05-29
9.3CVE-2008-0955
MILW0RM
CERT-VN
e107coders -- e107_blog_engineSQL injection vulnerability in comment.php in the MacGuru BLOG Engine plugin 2.2 for e107 allows remote attackers to execute arbitrary SQL commands via the rid parameter.
unknown
2008-05-27
7.5CVE-2008-2455
MILW0RM
BID
XF
EMC Corporation -- AlphaStorrobotd in the Library Manager in EMC AlphaStor 3.1 SP1 for Windows allows remote attackers to execute arbitrary commands via an unspecified string field in a packet to TCP port 3500.
unknown
2008-05-29
10.0CVE-2008-2157
IDEFENSE
SECTRACK
EMC Corporation -- AlphaStorMultiple stack-based buffer overflows in the Command Line Interface process in the Server Agent in EMC AlphaStor 3.1 SP1 for Windows allow remote attackers to execute arbitrary code via crafted TCP packets to port 41025.
unknown
2008-05-29
10.0CVE-2008-2158
IDEFENSE
SECTRACK
Emule -- emule_plusUnspecified vulnerability in eMule Plus before 1.2d has unknown impact and attack vectors related to "staticservers.dat processing."
unknown
2008-05-28
10.0CVE-2008-2486
OTHER-REF
BID
XF
Emule -- X_RayUnspecified vulnerability in the web server in eMule X-Ray before 1.4 allows remote attackers to trigger memory corruption via unknown attack vectors.
unknown
2008-05-29
7.5CVE-2008-2502
OTHER-REF
Excuse Online -- Excuse OnlineSQL injection vulnerability in pwd.asp in Excuse Online allows remote attackers to execute arbitrary SQL commands via the pID parameter.
unknown
2008-05-29
7.5CVE-2008-2509
BUGTRAQ
OTHER-REF
BID
XF
fichive -- fichiveSQL injection vulnerability in index.php in FicHive 1.0 allows remote attackers to execute arbitrary SQL commands via the letter parameter in a Search action, a different vector than CVE-2008-2416. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
unknown
2008-05-23
7.5CVE-2008-2425
Henning Stoverud -- PHPhotoalbumMultiple SQL injection vulnerabilities in PHPhotoalbum 0.5 allow remote attackers to execute arbitrary SQL commands via the (1) album parameter to thumbnails.php and the (2) pid parameter to displayimage.php.
unknown
2008-05-29
7.5CVE-2008-2501
MILW0RM
XF
Hotscripts -- ablespaceSQL injection vulnerability in adv_cat.php in AbleSpace 1.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
unknown
2008-05-28
7.5CVE-2008-2491
BUGTRAQ
BID
icdevgroup -- interchangeUnspecified vulnerability in the 404 error page for the "Standard demo" in Interchange before 5.6.0 has unknown impact and attack vectors.
unknown
2008-05-23
10.0CVE-2008-2424
OTHER-REF
insanevisions -- onecmsDirectory traversal vulnerability in install_mod.php in insanevisions OneCMS 2.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the load parameter in a go action.
unknown
2008-05-28
7.5CVE-2008-2482
BUGTRAQ
MILW0RM
BID
XF
Interchange Development Group -- InterchangeUnspecified vulnerability in Interchange before 5.6.0 allows remote attackers to cause an denial of service via crafted HTTP requests. NOTE: this might be overlap CVE-2007-2635.
unknown
2008-05-23
10.0CVE-2008-2423
OTHER-REF
Joomla -- com_xsstream-dmSQL injection vulnerability in the xsstream-dm (com_xsstream-dm) component 0.01 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the movie parameter to index.php.
unknown
2008-05-27
7.5CVE-2008-2454
BUGTRAQ
MILW0RM
BID
mambo-foundation -- mamboMultiple SQL injection vulnerabilities in index.php in Mambo before 4.6.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) articleid and (2) mcname parameters. NOTE: some of these details are obtained from third party information.
unknown
2008-05-28
7.5CVE-2008-2498
maxsite -- maxsiteSQL injection vulnerability in index.php in MAXSITE 1.10 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter in a webboard action.
unknown
2008-05-28
7.5CVE-2008-2487
MILW0RM
mx-system -- mxbb_portalSQL injection vulnerability in index.php in MxBB (aka MX-System) Portal 2.7.3 allows remote attackers to execute arbitrary SQL commands via the page parameter.
unknown
2008-05-28
7.5CVE-2008-2477
MILW0RM
BID
mytipper -- zogo_shopSQL injection vulnerability in products.php in the Mytipper ZoGo-shop plugin 1.15.5 and 1.16 Beta 13 for e107 allows remote attackers to execute arbitrary SQL commands via the cat parameter.
unknown
2008-05-27
7.5CVE-2008-2447
MILW0RM
BID
XF
nctsoft -- NCTAudioeditor_activeX_controlMultiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioGrabber2 ActiveX control in NCTAudioGrabber2.dll allow remote attackers to execute arbitrary code via unspecified vectors.
unknown
2008-05-29
9.3CVE-2008-0958
CERT-VN
XF
netious -- netious_cmsSQL injection vulnerability in index.php in Netious CMS 0.4 allows remote attackers to execute arbitrary SQL commands via the pageid parameter, a different vector than CVE-2006-4047.
unknown
2008-05-27
7.5CVE-2008-2461
MILW0RM
pancake -- zinaDirectory traversal vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to have an unknown impact via a .. (dot dot) in the p parameter.
unknown
2008-05-28
7.5CVE-2008-2495
BUGTRAQ
BID
phpclassifiedsscript -- php_classifieds_scriptMultiple SQL injection vulnerabilities in PHP Classifieds Script allow remote attackers to execute arbitrary SQL commands via the fatherID parameter to (1) browse.php and (2) search.php.
unknown
2008-05-27
7.5CVE-2008-2453
MILW0RM
BID
XF
phpRaider -- phpRaiderPHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[phpbb_path] parameter.
unknown
2008-05-28
10.0CVE-2008-2481
MILW0RM
BID
plusphp -- plusphp_short_url_multi-user_scriptPHP remote file inclusion vulnerability in plus.php in plusPHP Short URL Multi-User Script 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the _pages_dir parameter.
unknown
2008-05-28
10.0CVE-2008-2480
MILW0RM
BID
redhat -- linux_advanced_workstation
redhat -- Enterprise Linux Desktop
redhat -- enterprise_linux
redhat -- Enterprise Linux Desktop Workstation
redhat -- desktop
Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps.
unknown
2008-05-23
7.5CVE-2008-1767
OTHER-REF
REDHAT
BID
SECTRACK
XF
Samba -- SambaHeap-based buffer overflow in the receive_smb_raw function in util/sock.c in Samba 3.0.0 through 3.0.29 allows remote attackers to execute arbitrary code via a crafted SMB response.
unknown
2008-05-29
7.5CVE-2008-1105
BUGTRAQ
OTHER-REF
SECTRACK
Simpel Side -- NetbutikMultiple SQL injection vulnerabilities in Simpel Side Netbutik 1 through 4 allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to netbutik.php and the (2) id parameter to product.php.
unknown
2008-05-29
7.5CVE-2008-2504
MILW0RM
BID
XF
Simpel Side -- WeblosningMultiple SQL injection vulnerabilities in Simpel Side Weblosning 1 through 4 allow remote attackers to execute arbitrary SQL commands via the (1) mainid and (2) id parameters to index2.php.
unknown
2008-05-29
7.5CVE-2008-2506
MILW0RM
BID
XF
therealestatescript -- the_real_estate_scriptSQL injection vulnerability in dpage.php in The Real Estate Script allows remote attackers to execute arbitrary SQL commands via the docID parameter.
unknown
2008-05-27
7.5CVE-2008-2443
MILW0RM
BID
TYPO3 -- TYPO3Multiple SQL injection vulnerabilities in the Statistics (aka ke_stats) extension 0.1.2 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
unknown
2008-05-27
7.5CVE-2008-2451
XF
TYPO3 -- sg_zfelibSQL injection vulnerability in the Library for Frontend Plugins (aka sg_zfelib) extension 1.1.512 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified "user input."
unknown
2008-05-28
7.5CVE-2008-2489
vbulletin -- vbulletinSQL injection vulnerability in faq.php in vBulletin 3.7.0 Gold allows remote attackers to execute arbitrary SQL commands via the q parameter in a search action.
unknown
2008-05-27
7.5CVE-2008-2460
BUGTRAQ
BID
WebSlider -- WebSliderSQL injection vulnerability in index.php in Web Slider 0.6 allows remote attackers to execute arbitrary SQL commands via the slide parameter in a slides action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
unknown
2008-05-23
7.5CVE-2008-2422
BID
XF
wgcc -- web_group_communication_centerMultiple SQL injection vulnerabilities in Web Group Communication Center (WGCC) 1.0.3 PreRelease 1 and earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) userid parameter to (a) profile.php in a "show moreinfo" action; the (2) bildid parameter to (b) picturegallery.php in a shownext action; the (3) id parameter to (c) filebase.php in a freigeben action, (d) schedule.php in a del action, and (e) profile.php in an observe action; and the (4) pmid parameter in a delete action and (5) folderid parameter in a showfolder action to (f) message.php.
unknown
2008-05-27
7.5CVE-2008-2446
MILW0RM
BID
XF
WordPress -- Upload File pluginSQL injection vulnerability in wp-uploadfile.php in the Upload File plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the f_id parameter.
unknown
2008-05-29
7.5CVE-2008-2510
BUGTRAQ
BID

Back to top

Medium Vulnerabilities
Primary
Vendor -- Product
Description
Discovered
Published
CVSS ScoreSource & Patch Info
4shared -- starsgames_control_panelCross-site scripting (XSS) vulnerability in index.php in Starsgames Control Panel 4.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the st parameter.
unknown
2008-05-27
4.3CVE-2008-2458
BUGTRAQ
BID
XF
badongo -- phpfixMultiple SQL injection vulnerabilities in phpFix 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) kind parameter to fix/browse.php and the (2) account parameter to auth/00_pass.php.
unknown
2008-05-28
6.8CVE-2008-2479
BUGTRAQ
BID
badongo -- campus_bulletin_boardCross-site scripting (XSS) vulnerability in post3/Book.asp in Campus Bulletin Board 3.4 allows remote attackers to inject arbitrary web script or HTML via the review parameter.
unknown
2008-05-28
4.3CVE-2008-2493
BUGTRAQ
BID
Barracuda Networks -- Barracuda Spam FirewallCross-site scripting (XSS) vulnerability in ldap_test.cgi in Barracuda Spam Firewall (BSF) before 3.5.11.025 allows remote attackers to inject arbitrary web script or HTML via the email parameter.
unknown
2008-05-23
4.3CVE-2008-2333
OTHER-REF
beaussier -- roomphplanningadmin/userform.php in RoomPHPlanning 1.5 does not require administrative credentials, which allows remote authenticated users to create new admin accounts.
unknown
2008-05-28
6.5CVE-2008-2488
MILW0RM
BID
Brown Bear Software -- CalciumCross-site scripting (XSS) vulnerability in Calcium40.pl in Brown Bear Software Calcium 3.10 and 4.0.4 allows remote attackers to inject arbitrary web script or HTML via the CalendarName parameter in a ShowIt action.
unknown
2008-05-29
4.3CVE-2008-2507
BUGTRAQ
BID
Django Project -- DjangoCross-site scripting (XSS) vulnerability in the login form in the administration application in Django 0.91 before 0.91.2, 0.95 before 0.95.3, and 0.96 before 0.96.2 allows remote attackers to inject arbitrary web script or HTML via the URI of a certain previous request.
unknown
2008-05-23
4.3CVE-2008-2302
SECTRACK
entertainmentscript -- entertainmentscriptDirectory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter.
unknown
2008-05-27
6.8CVE-2008-2459
MILW0RM
BID
XF
IBM -- Lotus SametimeStack-based buffer overflow in the Community Services Multiplexer (aka MUX or StMux.exe) in IBM Lotus Sametime 7.5.1 CF1 and earlier, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code via a crafted URL.
unknown
2008-05-29
5.0CVE-2008-2499
OTHER-REF
OTHER-REF
BID
ikemcg -- phpinstantgalleryMultiple cross-site scripting (XSS) vulnerabilities in Isaac McGowan phpInstantGallery 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) gallery parameter to (a) index.php and (b) image.php, and the (2) imgnum parameter to image.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
unknown
2008-05-27
4.3CVE-2008-2449
BID
XF
Linux -- Kernel
Debian -- Debian Linux
The (1) sparc_mmap_check function in arch/sparc/kernel/sys_sparc.c and the (2) sparc64_mmap_check function in arch/sparc64/kernel/sys_sparc.c, in the Linux kernel before 2.6.25.3, omit some virtual-address range (aka span) checks when the mmap MAP_FIXED bit is not set, which allows local users to cause a denial of service (panic) via unspecified mmap calls.
unknown
2008-05-29
4.4CVE-2008-2137
MLIST
OTHER-REF
DEBIAN
BID
Mambo -- MostlyCECross-site scripting (XSS) vulnerability in the MOStlyContent Editor (MOStlyCE) component before 3.0 for Mambo allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
unknown
2008-05-29
5.0CVE-2008-2500
mambo-foundation -- mamboCRLF injection vulnerability in Mambo before 4.6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
unknown
2008-05-28
5.0CVE-2008-2497
Mozilla -- FirefoxMozilla Firefox 2.0.0.14 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly execute arbitrary code by triggering an error condition during certain Iframe operations between a JSframe write and a JSframe close, as demonstrated by an error in loading an empty Java applet defined by a 'src="javascript:"' sequence.
unknown
2008-05-23
4.3CVE-2008-2419
OTHER-REF
BID
XF
openssl -- opensslDouble free vulnerability in OpenSSL 0.9.8f and 0.9.8g, when the TLS server name extensions are enabled, allows remote attackers to cause a denial of service (crash) via a crafted packet. NOTE: some of these details are obtained from third party information.
unknown
2008-05-29
4.3CVE-2008-0891
OTHER-REF
OpenSSL Project -- OpenSSLOpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of service (crash) via a TLS handshake that omits the Server Key Exchange message and uses "particular cipher suites."
unknown
2008-05-29
4.3CVE-2008-1672
OTHER-REF
pancake -- zinaCross-site scripting (XSS) vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML via the l parameter.
unknown
2008-05-28
4.3CVE-2008-2494
BUGTRAQ
BID
PCPIN -- PCPIN ChatCross-site scripting (XSS) vulnerability in the URL redirection script (inc/url_redirection.inc.php) PCPIN Chat before 6.11 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
unknown
2008-05-28
4.3CVE-2008-2485
BUGTRAQ
OTHER-REF
BID
quate -- quate_cmsMultiple cross-site scripting (XSS) vulnerabilities in Quate CMS 0.3.4 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) index.php, (2) login.php, and (3) credits.php in admin/, and (4) upgrade/index.php.
unknown
2008-05-28
4.3CVE-2008-2496
MILW0RM
BID
XF
redhat -- network_satellite_serverCross-site scripting (XSS) vulnerability in the Red Hat Network channel search feature, as used in RHN and Red Hat Network Satellite before 5.0.2, allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
unknown
2008-05-23
4.3CVE-2007-5961
OTHER-REF
REDHAT
SECTRACK
XF
SAP -- Web Dynpro
SAP -- SAP Web Application Server
Cross-site scripting (XSS) vulnerability in the Web GUI in SAP Web Application Server (WAS) 7.0, Web Dynpro for ABAP (aka WD4A or WDA), and Web Dynpro for BSP allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI under bc/gui/sap/its/webgui/.
unknown
2008-05-23
4.3CVE-2008-2421
BUGTRAQ
BID
selinux -- setroubleshootsealert in setroubleshoot 2.0.5 allows local users to overwrite arbitrary files via a symlink attack on the sealert.log temporary file.
unknown
2008-05-23
4.4CVE-2007-5495
OTHER-REF
BID
SECTRACK
Simpel Side -- WeblosningerCross-site scripting (XSS) vulnerability in result.php in Simpel Side Weblosning 1 through 4 allows remote attackers to inject arbitrary web script or HTML via the search parameter.
unknown
2008-05-29
4.3CVE-2008-2505
MILW0RM
BID
XF
SourceForge -- eMule X-RayBuffer overflow in Uploadlist in eMule X-Ray before 1.4 has unknown impact and remote attack vectors.
unknown
2008-05-29
6.8CVE-2008-2503
OTHER-REF
XF
Stunnel -- StunnelThe OCSP functionality in stunnel before 4.24 does not properly search certificate revocation lists (CRL), which allows remote attackers to bypass intended access restrictions by using revoked certificates.
unknown
2008-05-23
6.8CVE-2008-2420
MLIST
XF
Sun -- SolarisRace condition in the STREAMS Administrative Driver (sad) in Sun Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors.
unknown
2008-05-23
4.7CVE-2008-2418
SUNALERT
BID
TYPO3 -- TYPO3Multiple cross-site scripting (XSS) vulnerabilities in the Statistics (aka ke_stats) extension 0.1.2 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
unknown
2008-05-27
4.3CVE-2008-2450
XF
TYPO3 -- TYPO3Cross-site scripting (XSS) vulnerability in the Questionaire (aka pbsurvey) extension 1.2.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
unknown
2008-05-27
4.3CVE-2008-2452
XF
TYPO3 -- kj_imagelightbox2Cross-site scripting (XSS) vulnerability in the KJ Image Lightbox 2 (aka kj_imagelightbox2) extension 1.4.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified "user input."
unknown
2008-05-28
4.3CVE-2008-2490
Ussun -- Power Audio CD Grabber
Orion Studios -- CinematicMP3
AliveMedia -- Alive MP3 WAV Converter
Online Media Technologies -- NCTAudioStudio ActiveX control
Online Media Technologies -- NCTAudioEditor ActiveX control
Ussun -- Power Audio CD Burner
Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control in NCTAudioInformation2.dll allow remote attackers to execute arbitrary code via unspecified vectors.
unknown
2008-05-29
5.1CVE-2008-0959
CERT-VN
XF
wgcc -- web_group_communication_centerCross-site scripting (XSS) vulnerability in profile.php in Web Group Communication Center (WGCC) 1.0.3 PreRelease 1 and earlier allows remote attackers to inject arbitrary web script or HTML via the userid parameter in a show action.
unknown
2008-05-27
4.3CVE-2008-2445
MILW0RM
BID
XF
xomol -- xomol_cmsDirectory traversal vulnerability in index.php in Xomol CMS 1.20071213 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the op parameter.
unknown
2008-05-28
6.8CVE-2008-2483
MILW0RM
BID
xomol -- xomol_cmsSQL injection vulnerability in index.php in Xomol CMS 1.20071213, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the email parameter.
unknown
2008-05-28
6.8CVE-2008-2484
MILW0RM
BID

Back to top

Low Vulnerabilities
Primary
Vendor -- Product
Description
Discovered
Published
CVSS ScoreSource & Patch Info
selinux -- setroubleshootCross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject arbitrary web script or HTML via a crafted (1) file or (2) process name, which triggers an Access Vector Cache (AVC) log entry in a log file used during composition of HTML documents for sealert.
unknown
2008-05-23
1.9CVE-2007-5496
OTHER-REF
BID
Tr Script News -- Tr Script NewsCross-site scripting (XSS) vulnerability in news.php in Tr Script News 2.1 allows remote attackers to inject arbitrary web script or HTML via the "nb" parameter in voir mode.
unknown
2008-05-29
2.8CVE-2008-2508
OTHER-REF
BID
XF

Back to top

Was this document helpful?  Yes  |  Somewhat  |  No

Back to Top