Primary
Vendor — Product |
Description |
|
CVSS Score |
Source & Patch Info |
| A-blog — A-Blog |
SQL injection vulnerability in blog.php in A-Blog 2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a news action. |
|
7.5 |
CVE-2008-0677
MILW0RM |
| ACDsee — Photo Manager |
Buffer overflow in ACDSee Photo Manager 8.1, 9.0, and 10.0 allows user-assisted remote attackers to execute arbitrary code via a malformed XBM file. NOTE: this might be the same as CVE-2007-6009. |
|
9.3 |
CVE-2008-0715
OTHER-REF
FRSIRT
SECUNIA |
Adobe — Acrobat
Adobe — Acrobat Reader |
Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and earlier allow remote attackers to execute arbitrary code via a PDF file with long arguments to unspecified JavaScript methods. NOTE: this issue might be subsumed by CVE-2008-0655. |
|
9.3 |
CVE-2007-5659
IDEFENSE
OTHER-REF
CERT
CERT-VN |
Adobe — Acrobat
Adobe — Acrobat Reader |
Adobe Reader and Acrobat 8.1.1 and earlier allows remote attackers to execute arbitrary code via a crafted PDF file that calls an insecure JavaScript method in the EScript.api plug-in. NOTE: this issue might be subsumed by CVE-2008-0655. |
|
9.3 |
CVE-2007-5663
IDEFENSE
OTHER-REF
CERT-VN
CERT |
Adobe — Acrobat
Adobe — Acrobat Reader |
Untrusted search path vulnerability in Adobe Reader and Acrobat 8.1.1 and earlier allows local users to execute arbitrary code via a malicious Security Provider library in the reader’s current working directory. NOTE: this issue might be subsumed by CVE-2008-0655. |
|
7.2 |
CVE-2007-5666
IDEFENSE
OTHER-REF
CERT |
Adobe — Flash Media Server 2
Adobe — Connect Enterprise Server |
Use-after-free vulnerability in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allows remote attackers to execute arbitrary code via an unspecified sequence of Real Time Message Protocol (RTMP) requests. |
|
10.0 |
CVE-2007-6148
IDEFENSE
OTHER-REF
OTHER-REF
BID
SECUNIA
FRSIRT
SECTRACK |
Adobe — Flash Media Server 2
Adobe — Connect Enterprise Server |
Multiple integer overflows in the Edge server in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allow remote attackers to execute arbitrary code via a Real Time Message Protocol (RTMP) message with a crafted integer field that is used for allocation. |
|
10.0 |
CVE-2007-6149
IDEFENSE
OTHER-REF
OTHER-REF
BID
SECUNIA
SECUNIA
FRSIRT
SECTRACK |
Adobe — Flash Media Server 2
Adobe — Connect Enterprise Server |
Unspecified vulnerability in Adobe Flash Media Server 2 before 2.0.5, and Connect Enterprise Server 6 before SP3, allows remote attackers to “take control of the affected system” via unspecified vectors, a different issue than CVE-2007-6148 and CVE-2007-6149. |
|
10.0 |
CVE-2007-6431
OTHER-REF
OTHER-REF
BID
SECUNIA
SECUNIA
FRSIRT
SECTRACK |
| Apple — Mac OS X |
Unspecified vulnerability in NFS in Apple Mac OS X 10.5 through 10.5.1 allows remote attackers to cause a denial of service (system shutdown) or execute arbitrary code via unknown vectors related to mbuf chains that trigger memory corruption. |
|
10.0 |
CVE-2008-0040
APPLE
OTHER-REF
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
| Apple — Mobile Safari |
Mobile Safari on Apple iPhone 1.1.2 and 1.1.3 allows remote attackers to cause a denial of service (memory exhaustion and device crash) via certain JavaScript code that constructs a long string and an array containing long string elements, possibly a related issue to CVE-2006-3677. NOTE: some of these details are obtained from third party information. |
|
7.1 |
CVE-2008-0729
BUGTRAQ
BID
XF |
| Apple — Quicktime |
Multiple stack-based buffer overflows in an ActiveX control in QTPlugin.ocx for Apple QuickTime 7.4.1 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long arguments to the (1) SetBgColor, (2) SetHREF, (3) SetMovieName, (4) SetTarget, and (5) SetMatrix methods. |
|
7.5 |
CVE-2008-0778
BUGTRAQ
MILW0RM
BID |
| auraCMS — AuraCMS |
SQL injection vulnerability in mod/gallery/ajax/gallery_data.php in AuraCMS 2.2 allows remote attackers to execute arbitrary SQL commands via the albums parameter. |
|
10.0 |
CVE-2008-0735
MILW0RM |
| BookmarkX — Script |
SQL injection vulnerability in index.php in BookmarkX script 2007 allows remote attackers to execute arbitrary SQL commands via the topicid parameter in a showtopic action. |
|
7.5 |
CVE-2008-0695
MILW0RM |
Brooks Internet Software — RPM Remote Print Manager Elite
Brooks Internet Software — RPM Remote Print Manager Select |
Stack-based buffer overflow in RpmSrvc.exe in Brooks Remote Print Manager (RPM) 4.5.1.11 and earlier (Elite and Select) for Windows allows remote attackers to execute arbitrary code via a long filename in a “Receive data file” LPD command. NOTE: some of these details are obtained from third party information. |
|
10.0 |
CVE-2008-0766
OTHER-REF
FRSIRT
SECUNIA
XF |
| Cacti — Cacti |
Multiple SQL injection vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote authenticated users to execute arbitrary SQL commands via the (1) graph_list parameter to graph_view.php, (2) leaf_id and id parameters to tree.php, (3) local_graph_id parameter to graph_xport.php, and (4) login_username parameter to index.php/login. |
|
7.5 |
CVE-2008-0785
BUGTRAQ
BUGTRAQ
OTHER-REF
BID
FRSIRT
SECTRACK
SECUNIA |
Cisco — Unified CallManager
Cisco — Unified Communications Manager |
SQL injection vulnerability in Cisco Unified CallManager/Communications Manager (CUCM) 5.0/5.1 before 5.1(3a) and 6.0/6.1 before 6.1(1a) allows remote attackers to execute arbitrary SQL commands via the key parameter to the (1) admin and (2) user interface pages. |
|
7.5 |
CVE-2008-0026
CISCO
BID |
Cisco — Session Initiation Protocol (SIP) firmware
Cisco — Skinny Client Control Protocol (SCCP) firmware |
Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP firmware allows remote attackers to cause a denial of service (reboot) via a long ICMP echo request (ping) packet. |
|
7.8 |
CVE-2008-0526
CISCO
BID
FRSIRT
SECTRACK
SECUNIA
XF |
Cisco — Session Initiation Protocol (SIP) firmware
Cisco — Skinny Client Control Protocol (SCCP) firmware |
The HTTP server in Cisco Unified IP Phone 7935 and 7936 running SCCP firmware allows remote attackers to cause a denial of service (reboot) via a crafted HTTP request. |
|
7.8 |
CVE-2008-0527
CISCO
BID
FRSIRT
SECTRACK
SECUNIA
XF |
Cisco — Session Initiation Protocol (SIP) firmware
Cisco — Skinny Client Control Protocol (SCCP) firmware |
Buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SIP firmware might allow remote attackers to execute arbitrary code via a SIP message with crafted MIME data. |
|
10.0 |
CVE-2008-0528
CISCO
BID
FRSIRT
SECTRACK
SECUNIA
XF |
Cisco — Session Initiation Protocol (SIP) firmware
Cisco — Skinny Client Control Protocol (SCCP) firmware |
Buffer overflow in the telnet server in Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, and 7971G running SCCP firmware might allow remote authenticated users to execute arbitrary code via a crafted command. |
|
10.0 |
CVE-2008-0529
CISCO
BID
FRSIRT
SECTRACK
SECUNIA
XF |
Cisco — Session Initiation Protocol (SIP) firmware
Cisco — Skinny Client Control Protocol (SCCP) firmware |
Buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SCCP and SIP firmware might allow remote attackers to execute arbitrary code via a crafted DNS response. |
|
10.0 |
CVE-2008-0530
CISCO
BID
FRSIRT
SECUNIA
XF |
Cisco — Session Initiation Protocol (SIP) firmware
Cisco — Skinny Client Control Protocol (SCCP) firmware |
Heap-based buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SIP firmware might allow remote SIP servers to execute arbitrary code via a crafted challenge/response message. |
|
9.3 |
CVE-2008-0531
CISCO
BID
FRSIRT
SECTRACK
SECUNIA
XF |
| Clam Anti-Virus — ClamAV |
Integer overflow in libclamav in ClamAV before 0.92.1, as used in clamd, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Petite packed PE file, which triggers a heap-based buffer overflow. |
|
10.0 |
CVE-2008-0318
IDEFENSE
OTHER-REF
FRSIRT
SECUNIA |
| Clam Anti-Virus — ClamAV |
libclamav/mew.c in libclamav in ClamAV before 0.92.1 has unknown impact and attack vectors that trigger “heap corruption.” |
|
10.0 |
CVE-2008-0728
OTHER-REF
FRSIRT
SECUNIA |
| COWON America — jetAudio Basic |
Stack-based buffer overflow in COWON America jetAudio 7.0.5 and earlier allows user-assisted remote attackers to execute arbitrary code via a long URL in a .asx file, a different vulnerability than CVE-2007-5487. |
|
9.3 |
CVE-2008-0747
BUGTRAQ
MILW0RM
BID
SECUNIA |
| CS Team — Counter Strike Portal |
SQL injection vulnerability in index.php in CS Team Counter Strike Portals allows remote attackers to execute arbitrary SQL commands via the id parameter, as demonstrated using the downloads page. |
|
7.5 |
CVE-2008-0733
BUGTRAQ
BID |
Cyan Soft — cyanPrintIP Workstation
Cyan Soft — cyanPrintIP Basic
Cyan Soft — cyanPrintIP Professional
Cyan Soft — cyanPrintIP Standard
Cyan Soft — Opium4 OPI Server
Cyan Soft — cyanPrintIP Easy OPI |
Format string vulnerability in the ReportSysLogEvent function in the LPD server in cyan soft Opium OPI Server 4.10.1028 and earlier; cyanPrintIP Easy OPI, Professional, and Basic 4.10.1030 and earlier; Workstation 4.10.836 and earlier; and Standard 4.10.940 and earlier; might allow remote attackers to execute arbitrary code via format string specifiers in the queue name in a request. |
|
7.5 |
CVE-2008-0755
OTHER-REF
BID
SECUNIA |
| DomPHP — DomPHP |
Directory traversal vulnerability in aides/index.php in DomPHP 0.82 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter. |
|
7.5 |
CVE-2008-0745
MILW0RM
BID |
| Fortinet — FortiClient |
The fortimon.sys device driver in Fortinet FortiClient 3.0 MR5 Patch 3 and earlier does not properly initialize its DeviceExtension, which allows local users to access kernel memory and execute arbitrary code via a crafted request. |
|
7.2 |
CVE-2008-0779
BUGTRAQ
BID |
| GNOME — Gnumeric |
The excel_read_HLINK function in plugins/excel/ms-excel-read.c in Gnome Office Gnumeric before 1.8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted XLS file containing XLS HLINK opcodes, possibly because of an integer signedness error that leads to an integer overflow. NOTE: some of these details are obtained from third party information. |
|
9.3 |
CVE-2008-0668
OTHER-REF
OTHER-REF
FEDORA
FEDORA
BID
FRSIRT
SECUNIA
SECUNIA
GENTOO |
HP — Storage Essentials SRM Enterprise
HP — Storage Essentials SRM Standard |
Multiple unspecified vulnerabilities in HP Storage Essentials Storage Resource Management (SRM) before 6.0.0 allow remote attackers to obtain unspecified access to a managed device via unknown attack vectors. |
|
10.0 |
CVE-2008-0215
HP
BID
FRSIRT
SECTRACK
SECUNIA |
| Husrev — Blackboard |
SQL injection vulnerability in philboard_forum.asp in Husrev BlackBoard 2.0.2 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. |
|
7.5 |
CVE-2008-0750
BUGTRAQ
BID
SECUNIA
XF |
| IBM — DB2 |
IBM DB2 Universal Database (UDB) Administration Server (DAS) 8 before Fix Pack 16 and 9 before Fix Pack 4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via modified pointer values in unspecified remote administration requests, which triggers memory corruption or other invalid memory access. NOTE: this might be the same issue as CVE-2008-0698. |
|
10.0 |
CVE-2007-3676
IDEFENSE
SECTRACK |
| IBM — DB2 |
IBM DB2 UDB before 8.2 Fixpak 16 does not properly check authorization for the ALTER TABLE statement, which has unknown impact and attack vectors. |
|
7.5 |
CVE-2008-0696
OTHER-REF
FRSIRT
SECUNIA |
| IBM — DB2 |
Unspecified vulnerability in DB2PD in IBM DB2 UDB before 8.2 Fixpak 16 allows local users to gain root privileges via unspecified vectors. |
|
7.2 |
CVE-2008-0697
OTHER-REF
FRSIRT
SECUNIA |
| IBM — DB2 |
Buffer overflow in the DAS server in IBM DB2 UDB before 8.2 Fixpak 16 has unknown attack vectors, and an impact probably involving “invalid memory access.” |
|
7.8 |
CVE-2008-0698
OTHER-REF
FRSIRT
SECUNIA |
| IBM — DB2 |
Unspecified vulnerability in SYSPROC.ADMIN_SP_C in IBM DB2 UDB before 8.2 Fixpak 16 has unknown impact and attack vectors. |
|
10.0 |
CVE-2008-0699
OTHER-REF
FRSIRT
SECUNIA |
| IBM — WebSphere Application Server |
Unspecified vulnerability in the PropFilePasswordEncoder utility in IBM WebSphere Application Server (WAS) before 6.0.2 Fix Pack 25 (6.0.2.25) has unknown impact and attack vectors. |
|
10.0 |
CVE-2008-0741
OTHER-REF
AIXAPAR
FRSIRT
SECTRACK
SECUNIA |
IBM — Informix Dynamic Server
IBM — Informix Storage Manager |
Multiple stack-based and heap-based buffer overflows in the Windows RPC components for IBM Informix Storage Manager (ISM), as used in Informix Dynamic Server (IDS) 10.00.xC8 and earlier and 11.10.xC2 and earlier, allow attackers to execute arbitrary code via crafted XDR requests. |
|
10.0 |
CVE-2008-0768
AIXAPAR
AIXAPAR
SECTRACK
XF |
| ibProArcade — ibProArcade |
SQL injection vulnerability in arcade.php in ibProArcade 3.3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the g_display_order cookie parameter. |
|
7.5 |
CVE-2008-0770
MILW0RM
FRSIRT |
| iTechScripts — iTechClassifieds |
SQL injection vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to execute arbitrary SQL commands via the CatID parameter. |
|
7.5 |
CVE-2008-0685
BUGTRAQ
BID
SECUNIA |
| iTechScripts — iTechBids |
SQL injection vulnerability in bidhistory.php in iTechBids 3 Gold and 5.0 allows remote attackers to execute arbitrary SQL commands via the item_id parameter. |
|
7.5 |
CVE-2008-0692
MILW0RM |
| iTechScripts — iTechBids |
SQL injection vulnerability in detail.php in iTechBids Gold 6.0 allows remote attackers to execute arbitrary SQL commands via the item_id parameter. |
|
7.5 |
CVE-2008-0776
MILW0RM
BID
SECUNIA |
| Joomla — com_noticias |
SQL injection vulnerability in index.php in the Noticias (com_noticias) 1.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detalhe action. |
|
7.5 |
CVE-2008-0670
MILW0RM
BID |
| Joomla — com_marketplace |
SQL injection vulnerability in index.php in the Marketplace (com_marketplace) 1.1.1 and 1.1.1-pl1 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a show_category action. |
|
7.5 |
CVE-2008-0689
MILW0RM |
| Joomla — com_directory |
SQL injection vulnerability in index.php in the mosDirectory (com_directory) 2.3.2 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a viewcat action. |
|
7.5 |
CVE-2008-0690
MILW0RM |
Joomla — com_gallery
Mambo — com_gallery |
SQL injection vulnerability in index.php in the Gallery (com_gallery) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action. |
|
7.5 |
CVE-2008-0746
MILW0RM
VIM
VIM
BID |
Joomla — com_neogallery
Mambo — com_neogallery |
SQL injection vulnerability in index.php in the Neogallery (com_neogallery) 1.1 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a show action. |
|
7.5 |
CVE-2008-0752
MILW0RM
BID
XF |
| Joomla — com_rapidrecipe |
Multiple SQL injection vulnerabilities in index.php in the Rapid Recipe (com_rapidrecipe) component for Joomla! allow remote attackers to execute arbitrary SQL commands via (1) the user_id parameter in a showuser action or (2) the category_id parameter in a viewcategorysrecipes action. |
|
7.5 |
CVE-2008-0754
BUGTRAQ |
| Joomla — com_pcchess |
SQL injection vulnerability in index.php in the Prince Clan Chess Club (com_pcchess) 0.8 and earlier component for Joomla! allows remote attackers to execute arbitrary SQL commands via the user_id parameter in a players action. |
|
7.5 |
CVE-2008-0761
MILW0RM |
| Joomla — com_iomezun |
SQL injection vulnerability in index.php in the com_iomezun component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action. |
|
7.5 |
CVE-2008-0762
BUGTRAQ |
Joomla — com_doc
Mambo — com_doc |
SQL injection vulnerability in index.php in the com_doc component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the sid parameter in a view task. |
|
7.5 |
CVE-2008-0772
MILW0RM
BID |
| Joovili — Joovili |
PHP remote file inclusion vulnerability in members_help.php in Joovili 2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the hlp parameter. |
|
10.0 |
CVE-2008-0743
BUGTRAQ
BID |
| Larson Software Technology — Network Print Server |
Stack-based buffer overflow in NPSpcSVR.exe in Larson Network Print Server (LstNPS) 9.4.2 build 105 and earlier allows remote attackers to execute arbitrary code via a long argument in a LICENSE command on TCP port 3114. |
|
10.0 |
CVE-2008-0763
OTHER-REF
BID
FRSIRT
SECUNIA
XF |
| Larson Software Technology — Network Print Server |
Format string vulnerability in the logging function in Larson Network Print Server (LstNPS) 9.4.2 build 105 and earlier for Windows might allow remote attackers to execute arbitrary code via format string specifiers in a USEP command on TCP port 3114. |
|
10.0 |
CVE-2008-0764
OTHER-REF
BID
FRSIRT
SECUNIA
XF |
| LI-Scripts — LI-Countdown |
SQL injection vulnerability in countdown.php in LI-Scripts LI-Countdown allows remote attackers to execute arbitrary SQL commands via the years parameter. |
|
7.5 |
CVE-2008-0789
BUGTRAQ
BID |
| Limbo CMS — Limbo CMS |
SQL injection vulnerability in class_auth.php in Limbo CMS 1.0.4.2, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the cuid cookie parameter to admin.php. |
|
7.5 |
CVE-2008-0734
MILW0RM
BID
XF |
| Linux — Kernel |
The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010. |
|
7.2 |
CVE-2008-0600
MILW0RM
MLIST
MLIST
MLIST
MLIST
MLIST
BUGTRAQ
OTHER-REF
DEBIAN
FEDORA
FEDORA
MANDRIVA
MANDRIVA
REDHAT
SUSE
UBUNTU
BID
FRSIRT
SECUNIA
SECUNIA
SECUNIA
SECUNIA |
Mambo — com_neoreferences
Joomla — com_neoreferences |
SQL injection vulnerability in index.php in the NeoReferences (com_neoreferences) 1.3.1 and 1.3.3 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter. |
|
7.5 |
CVE-2008-0686
MILW0RM
BID
SECUNIA
XF |
| Mambo — com_sermon |
SQL injection vulnerability in index.php in the Sermon (com_sermon) 0.2 component for Mambo allows remote attackers to execute arbitrary SQL commands via the gid parameter. |
|
7.5 |
CVE-2008-0721
MILW0RM |
Microsoft — office macos
Microsoft — Visual Basic |
Heap-based buffer overflow in Object Linking and Embedding (OLE) Automation in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, Office 2004 for Mac, and Visual basic 6.0 SP6 allows remote attackers to execute arbitrary code via a crafted script request. |
|
10.0 |
CVE-2007-0065
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
Microsoft — Works
Microsoft — Office
Microsoft — Works Suite |
Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section length headers, aka “Microsoft Works File Converter Input Validation Vulnerability.” |
|
9.3 |
CVE-2007-0216
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — IIS |
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows local users to gain privileges via unknown vectors related to file change notifications in the TPRoot, NNTPFileRoot, or WWWRoot folders. |
|
7.2 |
CVE-2008-0074
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — IIS |
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 through 6.0 allows remote attackers to execute arbitrary code via crafted inputs to ASP pages. |
|
10.0 |
CVE-2008-0075
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — Internet Explorer |
Unspecified vulnerability in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via crafted HTML layout combinations, aka “HTML Rendering Memory Corruption Vulnerability.” |
|
9.3 |
CVE-2008-0076
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — Internet Explorer |
Use-after-free vulnerability in Microsoft Internet Explorer 6 SP1, 6 SP2, and and 7 allows remote attackers to execute arbitrary code by assigning malformed values to certain properties, as demonstrated using the by property of an animateMotion SVG element, aka “Property Memory Corruption Vulnerability.” |
|
9.3 |
CVE-2008-0077
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA
IDEFENSE
BUGTRAQ
OTHER-REF
CERT-VN |
Microsoft — Internet Explorer
Microsoft — ActiveX |
Unspecified vulnerability in an ActiveX control (dxtmsft.dll) in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via a crafted image, aka “Argument Handling Memory Corruption Vulnerability.” |
|
9.3 |
CVE-2008-0078
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — WebDAV Mini-Redirector |
Heap-based buffer overflow in the WebDAV Mini-Redirector in Microsoft Windows XP SP2, Server 2003 SP1 and SP2, and Vista allows remote attackers to execute arbitrary code via a crafted WebDAV response. |
|
10.0 |
CVE-2008-0080
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — windows-nt |
Unspecified vulnerability in the TCP/IP support in Microsoft Windows Vista allows remote DHCP servers to cause a denial of service (hang and restart) via a crafted DHCP packet. |
|
7.8 |
CVE-2008-0084
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
| Microsoft — Publisher |
Unspecified vulnerability in Microsoft Office Publisher 2000, 2002, and 2003 SP2 allows remote attackers to execute arbitrary code via a crafted .pub file, related to invalid “memory values,” aka “Publisher Invalid Memory Reference Vulnerability.” |
|
10.0 |
CVE-2008-0102
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
Microsoft — office macos
Microsoft — Office |
Unspecified vulnerability in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arbitrary code via an Office document that contains a malformed object, related to a “memory handling error,” aka “Microsoft Office Execution Jump Vulnerability.” |
|
9.3 |
CVE-2008-0103
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
Microsoft — Publisher
Microsoft — Office |
Unspecified vulnerability in Microsoft Office Publisher 2000, 2002, and 2003 SP2 allows remote attackers to execute arbitrary code via a crafted .pub file, aka “Publisher Memory Corruption Vulnerability.” |
|
9.3 |
CVE-2008-0104
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
Microsoft — Works
Microsoft — Office
Microsoft — Works Suite |
Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted section header index table information, aka “Microsoft Works File Converter Index Table Vulnerability.” |
|
9.3 |
CVE-2008-0105
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
Microsoft — Works
Microsoft — Office
Microsoft — Works Suite |
Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka “Microsoft Works File Converter Field Length Vulnerability.” |
|
9.3 |
CVE-2008-0108
MS
CERT
BID
FRSIRT
SECTRACK
SECUNIA |
Microsoft — Office
Microsoft — Word |
Word in Microsoft Office 2000 SP3, XP SP3, Office 2003 SP2, and Office Word Viewer 2003 allows remote attackers to execute arbitrary code via crafted fields within the File Information Block (FIB) of a Word file, which triggers length calculation errors and memory corruption. |
|
9.3 |
CVE-2008-0109
MS
CERT
CERT-VN
BID
FRSIRT
SECTRACK
SECUNIA
BUGTRAQ |
| MicroTik — RouterOS |
SNMPd in MicroTik RouterOS 3.2 and earlier allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP SET request. |
|
7.8 |
CVE-2008-0680
MILW0RM
SECUNIA
OTHER-REF
FRSIRT |
Mozilla — SeaMonkey
Mozilla — Firefox |
Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows remote attackers to steal navigation history and cause a denial of service (crash) via images in a page that uses designMode frames, which triggers memory corruption related to resize handles. |
|
10.0 |
CVE-2008-0419
OTHER-REF
OTHER-REF
BUGTRAQ
BUGTRAQ
OTHER-REF
DEBIAN
DEBIAN
DEBIAN
REDHAT
REDHAT
REDHAT
UBUNTU
CERT-VN
BID
FRSIRT
SECTRACK
SECUNIA
SECUNIA
SECUNIA
SECUNIA
SECUNIA
SECUNIA
SECUNIA
SECUNIA
SECUNIA
SECUNIA
SECUNIA |
| Mozilla — Firefox |
Unspecified vulnerability in Mozilla Firefox, as used in Ubuntu 6.06 through 7.10 and possibly other distributions, allows remote attackers to obtain sensitive information via a crafted BMP file. |
|
7.5 |
CVE-2008-0420
UBUNTU
SECUNIA |
| Novell — Novell client |
Multiple stack-based buffer overflows in the Spooler service (nwspool.dll) in Novell Client 4.91 SP4 for Windows allow remote attackers to execute arbitrary code via long arguments to multiple unspecified RPC functions, aka Novell bug 287919, a different vulnerability than CVE-2007-2954. |
|
10.0 |
CVE-2007-6701
BUGTRAQ
OTHER-REF
OTHER-REF
BID
SECTRACK
SECUNIA
XF |
| Novell — Novell client |
Stack-based buffer overflow in the EnumPrinters function in the Spooler service (nwspool.dll) in Novell Client 4.91 SP2, SP3, and SP4 for Windows allows remote attackers to execute arbitrary code via a crafted RPC request, aka Novell bug 353138, a different vulnerability than CVE-2006-5854. NOTE: this issue exists because of an incomplete fix for CVE-2007-6701. |
|
10.0 |
CVE-2008-0639
FULLDISC
OTHER-REF
OTHER-REF
OTHER-REF
BID
FRSIRT
SECTRACK
SECUNIA
BUGTRAQ |
| Novell — AppArmor |
The Linux kernel before 2.6.18.8-0.8 in SUSE openSUSE 10.2 does not properly handle failure of an AppArmor change_hat system call, which might allow attackers to trigger the unconfining of an apparmored task. |
|
7.5 |
CVE-2008-0731
SUSE
SECUNIA |
osCommerce — Customer Testimonials
osCommerce — osCommerce |
SQL injection vulnerability in customer_testimonials.php in the Customer Testimonials 3 and 3.1 Addon for osCommerce Online Merchant 2.2 allows remote attackers to execute arbitrary SQL commands via the testimonial_id parameter. |
|
7.5 |
CVE-2008-0719
MILW0RM
BID
SECUNIA |
Phil Taylor — Comments
Phil Taylor — Review Script
Joomla — com_comments
Mambo — com_comments |
SQL injection vulnerability in Phil Taylor Comments (com_comments, aka Review Script) 0.5.8.5g and earlier component for Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter. |
|
7.5 |
CVE-2008-0773
MILW0RM |
| PowerScripts — PowerNews |
Multiple directory traversal vulnerabilities in PowerScripts PowerNews 2.5.6 allow remote attackers to read and include arbitrary files via a .. (dot dot) in the (1) subpage parameter in (a) categories.inc.php, (b) news.inc.php, (c) other.inc.php, (d) permissions.inc.php, (e) templates.inc.php, and (f) users.inc.php in pnadmin/; and (2) the page parameter to (g) pnadmin/index.php. NOTE: vector 2 is only exploitable by administrators. |
|
7.5 |
CVE-2008-0742
BUGTRAQ
MILW0RM
BID |
| PreProjects.com — Pre Hotels & Resorts Management System |
SQL injection vulnerability in user_login.asp in PreProjects.com Pre Hotels & Resorts Management System allows remote attackers to execute arbitrary SQL commands via the login page. |
|
7.5 |
CVE-2008-0744
BUGTRAQ
BID
XF |
| Print Manager Plus — Client Billing and Authentication |
Stack-based buffer overflow in PQCore.exe in Print Manager Plus 2008 Client Billing and Authentication 7.0.127.16 allows remote attackers to cause a denial of service (service outage) via a series of long packets to TCP port 48101. |
|
7.8 |
CVE-2008-0693
OTHER-REF
SECUNIA
FRSIRT |
| ShoppingTree — CandyPress Store |
SQL injection vulnerability in admin/utilities_ConfigHelp.asp in CandyPress (CP) 4.1.1.26, and other 4.x and 3.x versions, allows remote attackers to execute arbitrary SQL commands via the helpfield parameter. |
|
7.5 |
CVE-2008-0737
BUGTRAQ
MILW0RM
OTHER-REF
BID
SECUNIA |
| ShoppingTree — CandyPress Store |
Multiple SQL injection vulnerabilities in CandyPress (CP) 4.1.1.26, and earlier 4.1.x versions, allow remote attackers to execute arbitrary SQL commands via the (1) idcust parameter to (a) ajax_getTiers.asp and (b) ajax_getCust.asp in ajax/, and the (2) tableName parameter to (c) ajax/ajax_tableFields.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. |
|
7.5 |
CVE-2008-0738
OTHER-REF
SECUNIA |
| ShoppingTree — CandyPress Store |
SQL injection vulnerability in admin/SA_shipFedExMeter.asp in CandyPress (CP) 4.1.1.26, and earlier 4.x and 3.x versions, allows remote attackers to execute arbitrary SQL commands via the FedExAccount parameter. |
|
7.5 |
CVE-2008-0739
OTHER-REF
SECUNIA |
| Site2Nite — Real Estate Web |
Multiple SQL injection vulnerabilities in default.asp in Site2Nite allow remote attackers to execute arbitrary SQL commands via the (1) txtUserName and (2) txtPassword parameters. NOTE: some of these details are obtained from third party information. |
|
7.5 |
CVE-2008-0771
BUGTRAQ
BID
SECUNIA
XF |
Sony — AxRUploadServer_ActiveX_Control
Sony — ImageStation |
Buffer overflow in the Sony AxRUploadServer.AxRUploadControl.1 ActiveX control in AxRUploadServer.dll 1.0.0.38 in SonyISUpload.cab 1.0.0.38 for Sony ImageStation allows remote attackers to execute arbitrary code via a long argument to the SetLogging method. NOTE: some of these details are obtained from third party information. |
|
10.0 |
CVE-2008-0748
BUGTRAQ
BUGTRAQ
MILW0RM
MILW0RM
BID
FRSIRT
SECUNIA |
| South River Technologies — Titan FTP Server |
Multiple heap-based buffer overflows in Titan FTP Server 6.03 and 6.0.5.549 allow remote attackers to cause a denial of service (daemon crash or hang) and possibly execute arbitrary code via a long argument to the (1) USER or (2) PASS command, different vectors than CVE-2004-1641. |
|
9.3 |
CVE-2008-0702
BUGTRAQ
MILW0RM
BID
FRSIRT
SECUNIA |
| The Everything Development Company — The Everything Development Engine |
SQL injection vulnerability in cms/index.pl in The Everything Development Engine in The Everything Development System Pre-1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the node_id parameter. |
|
7.5 |
CVE-2008-0675
BUGTRAQ
MILW0RM
BID |
TinTin — TinTin++
TinTin — WinTin++ |
Stack-based buffer overflow in the add_line_buffer function in TinTin++ 1.97.9 and WinTin++ 1.97.9 allows remote attackers to execute arbitrary code via a long chat message, related to conversion from LF to CRLF. |
|
10.0 |
CVE-2008-0671
BUGTRAQ
OTHER-REF
BID
FRSIRT
SECUNIA |
TinTin — TinTin++
TinTin — WinTin++ |
TinTin++ 1.97.9 and WinTin++ 1.97.9 open files on the basis of an inbound file-transfer request, before the user has an opportunity to decline the request, which allows remote attackers to truncate arbitrary files in the top level of a home directory. |
|
7.5 |
CVE-2008-0673
BUGTRAQ
OTHER-REF
BID
FRSIRT
SECUNIA |
| Titan — FTP_Server |
Multiple heap-based buffer overflows in the (1) FTP service and (2) administration service in Titan FTP Server 6.0.5.549 allow remote attackers to cause a denial of service (daemon hang) and possibly execute arbitrary code via a long command. NOTE: the USER and PASS commands for the FTP service are covered by CVE-2008-0702. |
|
10.0 |
CVE-2008-0725
SECUNIA |
| VWar — Virtual War |
SQL injection vulnerability in calendar.php in Virtual War (VWar) 1.5 allows remote attackers to execute arbitrary SQL commands via the month parameter. |
|
7.5 |
CVE-2008-0753
BUGTRAQ
BID |
| WordPress — Wordspew |
SQL injection vulnerability in wordspew-rss.php in the Wordspew plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter. |
|
7.5 |
CVE-2008-0682
MILW0RM
SECUNIA |
| WordPress — st_newsletter plugin |
SQL injection vulnerability in shiftthis-preview.php in the st_newsletter plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the newsletter parameter. |
|
7.5 |
CVE-2008-0683
MILW0RM |
| Youtube — Clone Script |
Cross-site scripting (XSS) vulnerability in siteadmin/editor_files/includes/load_message.php in the Youtube Clone Script allows remote attackers to inject arbitrary web script or HTML via the lang[please_wait] parameter. |
|
7.5 |
CVE-2008-0687
BUGTRAQ
SECUNIA |
