activecampaign -- triolive |
SQL injection vulnerability in department_offline_context.php in ActiveCampaign TrioLive before 1.58.7 allows remote attackers to execute arbitrary SQL commands via the department_id parameter to index.php. |
2008-11-13 | 7.5 | CVE-2008-5055 FRSIRT SECUNIA CONFIRM |
adobe -- flash_player |
Unspecified vulnerability in the Flash Player ActiveX control in Adobe Flash Player 9.0.124.0 and earlier on Windows allows attackers to obtain sensitive information via unknown vectors. |
2008-11-10 | 7.1 | CVE-2008-4820 BID CONFIRM |
adobe -- coldfusion |
Unspecified vulnerability in Adobe ColdFusion 8 and 8.0.1 and ColdFusion MX 7.0.2 allows local users to bypass sandbox restrictions, and obtain sensitive information or possibly gain privileges, via unknown vectors. |
2008-11-10 | 7.2 | CVE-2008-4831 CONFIRM |
agaresmedia -- themesitescript |
PHP remote file inclusion vulnerability in upload/admin/frontpage_right.php in Agares Media ThemeSiteScript 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the loadadminpage parameter. |
2008-11-13 | 10.0 | CVE-2008-5066 BID MILW0RM |
aspindir -- dizi_portali |
SQL injection vulnerability in film.asp in Yigit Aybuga Dizi Portali allows remote attackers to execute arbitrary SQL commands via the film parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
2008-11-13 | 7.5 | CVE-2008-5057 XF MISC BID SECUNIA |
clam_anti-virus -- clamav |
Off-by-one error in the get_unicode_name function (libclamav/vba_extract.c) in Clam Anti-Virus (ClamAV) before 0.94.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow. |
2008-11-12 | 9.3 | CVE-2008-5050 BID |
deeserver -- panuwat_promoteweb_mysql |
SQL injection vulnerability in go.php in Panuwat PromoteWeb MySQL, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter. |
2008-11-14 | 7.5 | CVE-2008-5069 XF BID MILW0RM |
develop_it_easy -- membership_system |
Multiple SQL injection vulnerabilities in Develop It Easy Membership System 1.3 allow remote attackers to execute arbitrary SQL commands via the (1) email and (2) password parameters to customer_login.php and the (3) user_name and (4) user_pass parameters to admin/index.php. NOTE: some of these details are obtained from third party information. |
2008-11-13 | 7.5 | CVE-2008-5054 XF BID SECUNIA MILW0RM |
easy-script -- tlguesbook |
TlGuestBook 1.2 allows remote attackers to bypass authentication and gain administrative access by setting the tlGuestBook_login cookie to admin. |
2008-11-13 | 7.5 | CVE-2008-5065 BID MILW0RM |
elkagroup -- image_gallery |
SQL injection vulnerability in view.php in ElkaGroup Image Gallery 1.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter. |
2008-11-12 | 7.5 | CVE-2008-5037 BID SECUNIA MISC |
graphiks -- myforum |
Graphiks MyForum 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the (1) myforum_login and (2) myforum_pass cookies to 1. |
2008-11-12 | 7.5 | CVE-2008-5040 XF BID MILW0RM |
h&h -- websoccer |
SQL injection vulnerability in liga.php in H&H WebSoccer 2.80 allows remote attackers to execute arbitrary SQL commands via the id parameter. |
2008-11-13 | 7.5 | CVE-2008-5064 BID SECUNIA MISC |
hp -- tru64 |
Unspecified vulnerability in the AdvFS showfile command in HP Tru64 UNIX 5.1B-3 and 5.1B-4 allows local users to gain privileges via unspecified vectors. |
2008-11-07 | 7.2 | CVE-2008-4414 BID |
isecsoft -- anti-trojan_elite |
Buffer overflow in Atepmon.sys in ISecSoft Anti-Trojan Elite 4.2.1 and earlier, and possibly 4.2.2, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via long inputs to the 0x00222494 IOCTL. |
2008-11-12 | 7.2 | CVE-2008-5048 BID MISC SECUNIA |
isecsoft -- anti-keylogger_elite |
Buffer overflow in AKEProtect.sys 3.3.3.0 in ISecSoft Anti-Keylogger Elite 3.3.0 and earlier, and possibly other versions including 3.3.3, allows local users to gain privileges via long inputs to the (1) 0x002224A4, (2) 0x002224C0, and (3) 0x002224CC IOCTL. |
2008-11-12 | 7.2 | CVE-2008-5049 BID MISC MILW0RM SECUNIA |
jooblog -- jooblog |
SQL injection vulnerability in the JooBlog (com_jb2) component 0.1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the PostID parameter to index.php. |
2008-11-12 | 7.5 | CVE-2008-5051 BID MILW0RM |
joomla -- com_rssreader |
PHP remote file inclusion vulnerability in admin.rssreader.php in the Simple RSS Reader (com_rssreader) 1.0 component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter. |
2008-11-13 | 10.0 | CVE-2008-5053 BID MILW0RM FRSIRT |
libcaudio -- libcaudio |
Heap-based buffer overflow in the cddb_read_disc_data function in cddb.c in libcdaudio 0.99.12p2 allows remote attackers to execute arbitrary code via long CDDB data. |
2008-11-10 | 10.0 | CVE-2008-5030 BID MLIST MLIST MISC |
linux -- kernel |
The chip_command function in drivers/media/video/tvaudio.c in the Linux kernel 2.6.25.x before 2.6.25.19, 2.6.26.x before 2.6.26.7, and 2.6.27.x before 2.6.27.3 allows attackers to cause a denial of service (NULL function pointer dereference and OOPS) via unknown vectors. |
2008-11-10 | 7.8 | CVE-2008-5033 BID |
microsoft -- windows |
Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote SMB servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, as demonstrated by backrush, aka "SMB Credential Reflection Vulnerability." |
2008-11-12 | 9.3 | CVE-2008-4037 BID MS |
modernbill -- modernbill |
Multiple PHP remote file inclusion vulnerabilities in ModernBill 4.4 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the DIR parameter to (1) export_batch.inc.php, (2) run_auto_suspend.cron.php, and (3) send_email_cache.php in include/scripts/; (4) include/misc/mod_2checkout/2checkout_return.inc.php; and (5) include/html/nettools.popup.php, different vectors than CVE-2006-4034 and CVE-2005-1054. |
2008-11-13 | 10.0 | CVE-2008-5060 XF MILW0RM SECUNIA |
mole_group -- pizza_script |
SQL injection vulnerability in index.php in Mole Group Pizza Script allows remote attackers to execute arbitrary SQL commands via the manufacturers_id parameter. |
2008-11-12 | 7.5 | CVE-2008-5046 XF BID MILW0RM SECUNIA |
mole_group -- rental_script |
SQL injection vulnerability in admin/index.php in Mole Group Rental Script allows remote attackers to execute arbitrary SQL commands via the username parameter. |
2008-11-12 | 7.5 | CVE-2008-5047 BID MILW0RM SECUNIA |
mozilla -- firefox mozilla -- seamonkey |
The http-index-format MIME type parser (nsDirIndexParser) in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP index response with a crafted 200 header, which triggers memory corruption and a buffer overflow. |
2008-11-13 | 7.5 | CVE-2008-0017 MISC CONFIRM |
mozilla -- firefox mozilla -- seamonkey |
Mozilla Firefox 2.x before 2.0.0.18 and SeaMonkey 1.x before 1.1.13 do not properly check when the Flash module has been dynamically unloaded properly, which allows remote attackers to execute arbitrary code via a crafted SWF file that "dynamically unloads itself from an outside JavaScript function," which triggers an access of an expired memory address. |
2008-11-13 | 9.3 | CVE-2008-5013 MISC CONFIRM |
mozilla -- firefox mozilla -- seamonkey mozilla -- thunderbird |
jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native object, which triggers an assertion failure related to the OBJ_IS_NATIVE function. |
2008-11-13 | 10.0 | CVE-2008-5014 MISC CONFIRM |
mozilla -- firefox mozilla -- seamonkey mozilla -- thunderbird |
Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors. |
2008-11-13 | 10.0 | CVE-2008-5017 MISC CONFIRM |
mozilla -- firefox mozilla -- seamonkey mozilla -- thunderbird |
The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via vectors related to "insufficient class checking" in the Date class. |
2008-11-13 | 10.0 | CVE-2008-5018 MISC CONFIRM |
mozilla -- firefox mozilla -- seamonkey mozilla -- thunderbird |
nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying properties of a file input element while it is still being initialized, then using the blur method to access uninitialized memory. |
2008-11-13 | 9.3 | CVE-2008-5021 MISC CONFIRM |
mozilla -- firefox mozilla -- seamonkey mozilla -- thunderbird |
The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the same-origin policy and execute arbitrary script via multiple listeners, which bypass the inner window check. |
2008-11-13 | 7.5 | CVE-2008-5022 MISC CONFIRM |
mozilla -- firefox mozilla -- seamonkey |
Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the protection mechanism for codebase principals and execute arbitrary script via the -moz-binding CSS property in a signed JAR file. |
2008-11-13 | 7.5 | CVE-2008-5023 MISC CONFIRM |
mozilla -- firefox mozilla -- seamonkey mozilla -- thunderbird |
Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, allows remote attackers to conduct XML injection attacks via the default namespace in an E4X document. |
2008-11-13 | 7.5 | CVE-2008-5024 MISC CONFIRM |
mozilla -- firefox mozilla -- seamonkey mozilla -- thunderbird |
The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger memory corruption, as demonstrated by e4x/extensions/regress-410192.js. |
2008-11-13 | 10.0 | CVE-2008-5052 MISC CONFIRM |
network-client.com -- ftp_now |
Heap-based buffer overflow in Network-Client FTP Now 2.6, and possibly other versions, allows remote FTP servers to cause a denial of service (crash) via a 200 server response that is exactly 1024 characters long. |
2008-11-12 | 10.0 | CVE-2008-5045 BID MILW0RM |
novell -- edirectory |
Use after free vulnerability in the NetWare Core Protocol (NCP) feature in Novell eDirectory 8.7.3 SP10 before 8.7.3 SP10 FTF1 and 8.8 SP2 for Windows allows remote attackers to cause a denial of service and possibly execute arbitrary code via a sequence of "Get NCP Extension Information By Name" requests that cause one thread to operate on memory after it has been freed in another thread, which triggers memory corruption, aka Novell Bug 373852. |
2008-11-12 | 10.0 | CVE-2008-5038 CONFIRM CONFIRM |
novell -- zenworks_desktop_management |
Heap-based buffer overflow in an ActiveX control in Novell ZENworks Desktop Management 6.5 allows remote attackers to execute arbitrary code via a long argument to the CanUninstall method. |
2008-11-14 | 9.3 | CVE-2008-5073 XF BID BUGTRAQ |
otmanager -- otmanager |
PHP remote file inclusion vulnerability in Admin/ADM_Pagina.php in OTManager 2.4 allows remote attackers to execute arbitrary PHP code via a URL in the Tipo parameter. |
2008-11-13 | 10.0 | CVE-2008-5063 BID MILW0RM |
php-fusion -- freshlinks_module |
SQL injection vulnerability in index.php in the Freshlinks 1.0 RC1 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the linkid parameter. |
2008-11-14 | 7.5 | CVE-2008-5074 XF BID MILW0RM |
preproject -- pre_simple_cms |
SQL injection vulnerability in siteadmin/loginsucess.php in Pre Simple CMS allows remote attackers to execute arbitrary SQL commands via the user parameter, as reachable from siteadmin/adminlogin.php. NOTE: some of these details are obtained from third party information. |
2008-11-13 | 7.5 | CVE-2008-5058 FRSIRT SECUNIA OSVDB MILW0RM |
pro_chat_rooms -- pro_chat_rooms |
SQL injection vulnerability in Pro Chat Rooms 3.0.3, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the gud parameter to (1) index.php and (2) admin.php. |
2008-11-14 | 7.5 | CVE-2008-5070 BID MILW0RM |
python_software_foundation -- python |
Multiple integer overflows in Python 2.5.2 allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Objects/stringobject.c and (2) the unicode_expandtabs function in Objects/unicodeobject.c. NOTE: this vulnerability reportedly exists because of an incomplete fix for CVE-2008-2315. |
2008-11-10 | 10.0 | CVE-2008-5031 MLIST MLIST CONFIRM CONFIRM CONFIRM MISC |
sap -- sapgui simba_technologies -- mdrmsap_activex_control |
Unspecified vulnerability in the Simba MDrmSap ActiveX control in mdrmsap.dll in SAP SAPgui allows remote attackers to execute arbitrary code via unknown vectors involving instantiation by Internet Explorer. |
2008-11-10 | 9.3 | CVE-2008-4387 CERT-VN XF BID FRSIRT OSVDB |
sun -- opensolaris sun -- solaris |
in.dhcpd in the DHCP implementation in Sun Solaris 8 through 10, and OpenSolaris before snv_103, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via unknown DHCP requests related to the "number of offers," aka Bug ID 6713805. |
2008-11-10 | 10.0 | CVE-2008-5010 CONFIRM |
sweex -- ro002_router |
Sweex RO002 Router with firmware Ts03-072 has "rdc123" as its default password for the "rdc123" account, which makes it easier for remote attackers to obtain access. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
2008-11-12 | 7.5 | CVE-2008-5041 XF BID SECUNIA |
university_of_washington -- alpine university_of_washington -- imap_toolkit |
Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washington Alpine 2.00 and earlier, and (3) Panda IMAP allow (a) local users to gain privileges by specifying a long folder extension argument on the command line to the tmail or dmail program; and (b) remote attackers to execute arbitrary code by sending e-mail to a destination mailbox name composed of a username and '+' character followed by a long string, processed by the tmail or possibly dmail program. |
2008-11-10 | 10.0 | CVE-2008-5005 CONFIRM MLIST |
videolan -- vlc_media_player |
Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, but that issue has been assigned a separate identifier, CVE-2008-5036. |
2008-11-10 | 9.3 | CVE-2008-5032 CONFIRM MISC MLIST MLIST MLIST CONFIRM |
videolan -- vlc_media_player |
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c. NOTE: this issue was SPLIT from CVE-2008-5032 on 20081110. |
2008-11-10 | 9.3 | CVE-2008-5036 CONFIRM MISC MLIST MLIST MLIST CONFIRM |
vmware -- esx vmware -- esxi |
Directory traversal vulnerability in VMWare ESXi 3.5 before ESXe350-200810401-O-UG and ESX 3.5 before ESX350-200810201-UG allows administrators with the Datastore.FileManagement privilege to gain privileges via unknown vectors. |
2008-11-10 | 9.3 | CVE-2008-4281 MLIST |
yoxel -- yoxel |
Multiple eval injection vulnerabilities in itpm_estimate.php in Yoxel 1.23beta and earlier allow remote authenticated users to execute arbitrary PHP code via the proj_id parameter. |
2008-11-14 | 9.0 | CVE-2008-5071 BID MILW0RM |
zeeways -- photovideotube |
Zeeways PhotoVideoTube 1.1 and earlier allows remote attackers to bypass authentication and perform administrative tasks via a direct request to admin/home.php. |
2008-11-12 | 7.5 | CVE-2008-5042 MILW0RM FRSIRT SECUNIA |