4xem -- vatctrl_class d-link -- mpeg4_shm_audio_control vivotek -- rtsp_mpeg4_sp_control |
Stack-based buffer overflow in VATDecoder.VatCtrl.1 ActiveX control in (1) 4xem VatCtrl Class (VATDecoder.dll 1.0.0.27 and 1.0.0.51), (2) D-Link MPEG4 SHM Audio Control (VAPGDecoder.dll 1.7.0.5), (3) Vivotek RTSP MPEG4 SP Control (RtspVapgDecoderNew.dll 2.0.0.39), and possibly other products, allows remote attackers to execute arbitrary code via a long Url property. NOTE: some of these details are obtained from third party information. |
2008-10-28 | 9.3 | CVE-2008-4771 XF BID MILW0RM FRSIRT SECUNIA |
adobe -- pagemaker |
Stack-based buffer overflow in Adobe PageMaker 7.0.1 allows user-assisted remote attackers to execute arbitrary code via a .PMD file with a crafted font structure, a different vulnerability than CVE-2007-5169. |
2008-10-30 | 9.3 | CVE-2007-5394 BID |
adobe -- pagemaker |
Heap-based buffer overflow in Adobe PageMaker 7.0.1 allows user-assisted remote attackers to execute arbitrary code via a .PMD file with a crafted font structure. |
2008-10-30 | 9.3 | CVE-2007-6021 BID |
aflog -- aflog |
aflog 1.01 allows remote attackers to bypass authentication and gain administrative access by setting the aflog_auth_a cookie to "A" or "O" in (1) edit_delete.php, (2) edit_cat.php, (3) edit_lock.php, and (4) edit_form.php. |
2008-10-29 | 7.5 | CVE-2008-4784 XF BID MILW0RM |
aiocp -- aiocp |
SQL injection vulnerability in public/code/cp_polls_results.php in All In One Control Panel (AIOCP) 1.4 allows remote attackers to execute arbitrary SQL commands via the poll_id parameter. |
2008-10-29 | 7.5 | CVE-2008-4782 MILW0RM SECUNIA |
aj_square_inc -- rss_reader |
SQL injection vulnerability in EditUrl.php in AJ Square RSS Reader allows remote attackers to execute arbitrary SQL commands via the url parameter. |
2008-10-27 | 7.5 | CVE-2008-4753 XF BID MILW0RM |
andrei_zmievski -- snoopy |
The _httpsrequest function (Snoopy/Snoopy.class.php) in Snoopy 1.2.3 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in https URLs. NOTE: some of these details are obtained from third party information. |
2008-10-30 | 10.0 | CVE-2008-4796 CONFIRM |
db_soft_lab -- vimp_x |
Multiple insecure method vulnerabilities in the VImpX.VImpAX ActiveX control (VImpX.ocx) 4.8.8.0 in DB Software Laboratory VImp X, possibly 4.7.7, allow remote attackers to overwrite arbitrary files via (1) the LogFile property and ClearLogFile method, and (2) the SaveToFile method. |
2008-10-27 | 9.3 | CVE-2008-4749 XF BID MILW0RM |
dbsoftlab -- vimp_x |
Stack-based buffer overflow in the VImpX.VImpAX ActiveX control (VImpX.ocx) 4.8.8.0 in DB Software Laboratory VImp X, possibly 4.7.7, allows remote attackers to execute arbitrary code via a long LogFile property. |
2008-10-27 | 9.3 | CVE-2008-4750 XF BID MILW0RM |
dream4 -- koobi_cms |
SQL injection vulnerability in the gallery module in Koobi CMS 4.3.0 allows remote attackers to execute arbitrary SQL commands via the galid parameter in a showimages action. |
2008-10-29 | 7.5 | CVE-2008-4778 BUGTRAQ MILW0RM |
drupal -- drupal |
The node module API in Drupal 5.x before 5.11 allows remote attackers to bypass node validation and have unspecified other impact via unknown vectors related to contributed modules. |
2008-10-29 | 7.5 | CVE-2008-4793 CONFIRM |
e107 -- alternate_profiles_plugin |
SQL injection vulnerability in newuser.php in the alternate_profiles plugin, possibly 0.2, for e107 allows remote attackers to execute arbitrary SQL commands via the id parameter. |
2008-10-29 | 7.5 | CVE-2008-4785 BID MILW0RM |
e107 -- easyshop_plugin |
SQL injection vulnerability in easyshop.php in the EasyShop plugin for e107 allows remote attackers to execute arbitrary SQL commands via the category_id parameter. |
2008-10-29 | 7.5 | CVE-2008-4786 MILW0RM |
easy-script -- myktools |
Directory traversal vulnerability in update.php in MyKtools 2.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the langage parameter. |
2008-10-29 | 7.5 | CVE-2008-4781 BID MILW0RM |
easy-script -- tlads |
tlAds 1.0 allows remote attackers to bypass authentication and gain administrative access by setting the tlAds_login cookie to "admin." |
2008-10-29 | 7.5 | CVE-2008-4783 BID MILW0RM SECUNIA |
freesshd -- freesshd |
Stack-based buffer overflow in freeSSHd 1.2.1 allows remote authenticated users to cause a denial of service (service crash) and potentially execute arbitrary code via a long argument to the (1) rename and (2) realpath parameters. |
2008-10-27 | 9.0 | CVE-2008-4762 BID BUGTRAQ MILW0RM MILW0RM FRSIRT SECUNIA |
ibm -- tivoli_storage_manager ibm -- tivoli_storage_manager_client ibm -- tivoli_storage_manager_express |
Heap-based buffer overflow in the Data Protection for SQL CAD service (aka dsmcat.exe) in the Client Acceptor Daemon (CAD) and the scheduler in the Backup-Archive client 5.1.0.0 through 5.1.8.1, 5.2.0.0 through 5.2.5.2, 5.3.0.0 through 5.3.6.1, 5.4.0.0 through 5.4.2.2, and 5.5.0.0 through 5.5.0.91 in IBM Tivoli Storage Manager (TSM); and the Backup-Archive client in TSM Express; allows remote attackers to execute arbitrary code by sending a large amount of crafted data to a TCP port. |
2008-10-30 | 10.0 | CVE-2008-4801 XF MISC BID CONFIRM SECUNIA |
joomla -- com_lms |
SQL injection vulnerability in the Showroom Joomlearn LMS (com_lms) component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showTests task. |
2008-10-29 | 7.5 | CVE-2008-4777 BID |
kvirc -- kvirc |
Format string vulnerability in the URI handler in KVirc 3.4.0, when set as the default application for processing IRC URIs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in the irc:// URI. |
2008-10-27 | 7.6 | CVE-2008-4748 BID MILW0RM SECUNIA |
o2php -- oxygen_bulletin_board |
SQL injection vulnerability in member.php in Oxygen Bulletin Board 1.1.3 allows remote attackers to execute arbitrary SQL commands via the member parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
2008-10-27 | 7.5 | CVE-2008-4766 XF MISC BID |
openoffice -- openoffice.org |
Heap-based buffer overflow in OpenOffice.org (OOo) 2.x before 2.4.2 allows remote attackers to execute arbitrary code via a crafted WMF file associated with a StarOffice/StarSuite document. |
2008-10-30 | 9.3 | CVE-2008-2237 BID CONFIRM DEBIAN |
openoffice -- openoffice.org |
Heap-based buffer overflow in OpenOffice.org (OOo) 2.x before 2.4.2 allows remote attackers to execute arbitrary code via a crafted EMF file associated with a StarOffice/StarSuite document. |
2008-10-30 | 9.3 | CVE-2008-2238 BID CONFIRM DEBIAN |
opera -- opera |
Opera before 9.62 allows remote attackers to execute arbitrary commands via the History Search results page, a different vulnerability than CVE-2008-4696. |
2008-10-30 | 9.3 | CVE-2008-4794 XF BID CONFIRM |
oscommerce -- poll_booth |
SQL injection vulnerability in pollBooth.php in osCommerce Poll Booth Add-On 2.0 allows remote attackers to execute arbitrary SQL commands via the pollID parameter in a results operation. NOTE: this issue was disclosed by an unreliable researcher, so it might be incorrect. |
2008-10-27 | 7.5 | CVE-2008-4765 XF BID MISC |
php-nuke -- downloadsplus_module |
Unrestricted file upload vulnerability in the DownloadsPlus module in PHP-Nuke allows remote attackers to execute arbitrary code by uploading a file with (1) .htm, (2) .html, or (3) .txt extensions, then accessing it via a direct request to the file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: it is unclear how allowing the upload of .html or .txt files supports arbitrary code execution; this might be legitimate functionality. |
2008-10-28 | 9.0 | CVE-2008-4767 XF BID MISC |
phpdaily -- phpdaily |
Multiple SQL injection vulnerabilities in PHP-Daily allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to (a) add_postit.php (b) delete.php, and (c) mod_prest_date.php; and the (2) prev parameter to (d) prest_detail.php. |
2008-10-27 | 7.5 | CVE-2008-4757 XF BID MILW0RM |
pozscripts -- classified_auctions_script |
SQL injection vulnerability in gotourl.php in PozScripts Classified Auctions Script allows remote attackers to execute arbitrary SQL commands via the id parameter. |
2008-10-27 | 7.5 | CVE-2008-4755 XF BID MILW0RM FRSIRT SECUNIA |
questwork -- questcms |
SQL injection vulnerability in main/main.php in QuestCMS allows remote attackers to execute arbitrary SQL commands via the obj parameter. |
2008-10-28 | 7.5 | CVE-2008-4772 BID MILW0RM |
tech_logic -- tlnews |
TlNews 2.2 allows remote attackers to bypass authentication and gain administrative access by setting the tlNews_login cookie to admin. |
2008-10-27 | 7.5 | CVE-2008-4752 XF BID MILW0RM SECUNIA |
tguzip -- tguzip |
Stack-based buffer overflow in TUGzip 3.5.0.0 allows remote attackers to denial of service (crash) or execute arbitrary code via a long filename in a .zip file. |
2008-10-29 | 10.0 | CVE-2008-4779 XF BID MILW0RM FRSIRT SECUNIA |
tlm_cms -- tlm_cms |
SQL injection vulnerability in TLM CMS 3.1 allows remote attackers to execute arbitrary SQL commands via the nom parameter to a-b-membres.php. NOTE: the goodies.php vector is already covered by CVE-2007-4808. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
2008-10-28 | 7.5 | CVE-2008-4768 XF MISC BID |
webgui -- webgui |
The loadModule function in lib/WebGUI/Asset.pm in WebGUI before 7.5.30 (stable) allows remote attackers to execute arbitrary code by uploading a Perl module and accessing it via a crafted URL. |
2008-10-30 | 7.6 | CVE-2008-4798 BID |
wordpress -- wordpress |
Directory traversal vulnerability in the get_category_template function in wp-includes/theme.php in WordPress 2.3.3 and earlier, and 2.5, allows remote attackers to include and possibly execute arbitrary PHP files via the cat parameter in index.php. NOTE: some of these details are obtained from third party information. |
2008-10-28 | 9.3 | CVE-2008-4769 BID MISC MISC SECUNIA |