http://web.nvd.nist.gov/view/vuln/searchThis feed contains the most recent fully analyzed CVE cyber vulnerabilities published within the National Vulnerability Database.en-usThis material is not copywritten and may be freely used, however, attribution is requested.2009-11-19T11:36:32-05:00nvd@nist.govhttp://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3978The nsGIFDecoder2::GifWrite function in decoders/gif/nsGIFDecoder2.cpp in libpr0n in Mozilla Firefox before 3.5.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an animated GIF file with a large image size, a different vulnerability than CVE-2009-3373.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3977Multiple buffer overflows in a certain ActiveX control in ActiveDom.ocx in HP OpenView Network Node Manager (OV NNM) 7.53 might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via a long string argument to the (1) DisplayName, (2) AddGroup, (3) InstallComponent, or (4) Subscribe method. NOTE: this issue is not a vulnerability in many environments, because the control is not marked as safe for scripting and would not execute with defaul...2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3909Integer overflow in the read_channel_data function in plug-ins/file-psd/psd-load.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a crafted PSD file that triggers a heap-based buffer overflow.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3840The embedded database engine service (aka ovdbrun.exe) in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to cause a denial of service (daemon crash) via an invalid Error Code field in a packet.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3976Buffer overflow in Labtam ProFTP 2.9 allows remote FTP servers to cause a denial of service (application crash) or execute arbitrary code via a long 220 reply (aka connection greeting or welcome message).2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3975SQL injection vulnerability in index.php in Moa Gallery 1.1.0 and 1.2.0 allows remote attackers to execute arbitrary SQL commands via the gallery_id parameter in a gallery_view action.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3974Multiple SQL injection vulnerabilities in Invision Power Board (IPB or IP.Board) 3.0.0, 3.0.1, and 3.0.2 allow remote attackers to execute arbitrary SQL commands via the (1) search_term parameter to admin/applications/core/modules_public/search/search.php and (2) aid parameter to admin/applications/core/modules_public/global/lostpass.php. NOTE: on 20090818, the vendor patched 3.0.2 without changing the version number.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3973SQL injection vulnerability in index.php in Turnkey Arcade Script allows remote attackers to execute arbitrary SQL commands via the id parameter in a browse action, a different vector than CVE-2008-5629.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3972SQL injection vulnerability in the Q-Proje Siirler Bileseni (com_siirler) component 1.2 RC for Joomla! allows remote attackers to execute arbitrary SQL commands via the sid parameter in an sdetay action to index.php.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3971SQL injection vulnerability in the jTips (com_jtips) component 1.0.7 and 1.0.9 for Joomla! allows remote attackers to execute arbitrary SQL commands via the season parameter in a ladder action to index.php.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3970SQL injection vulnerability in index.php in PHP Dir Submit (aka WebsiteSubmitter or Submitter Script) allows remote authenticated users to execute arbitrary SQL commands via the aid parameter in a showarticle action.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3969Stack-based buffer overflow in Faslo Player 7.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a .m3u playlist file.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3968Multiple SQL injection vulnerabilities in ITechBids 8.0 allow remote attackers to execute arbitrary SQL commands via the (1) user_id parameter to feedback.php, (2) cate_id parameter to category.php, (3) id parameter to news.php, and (4) productid parameter to itechd.php. NOTE: the sellers_othersitem.php, classifieds.php, and shop.php vectors are already covered by CVE-2008-3238.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3967SQL injection vulnerability in browse.php in Ed Charkow SuperCharged Linking allows remote attackers to execute arbitrary SQL commands via the id parameter.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3966Arcade Trade Script 1.0 allows remote attackers to bypass authentication and gain administrative access by setting the adminLoggedIn cookie to true.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3965SQL injection vulnerability in rating.php in New 5 star Rating 1.0 allows remote attackers to execute arbitrary SQL commands via the det parameter.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3964SQL injection vulnerability in the NinjaMonials (com_ninjacentral) component 1.1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the testimID parameter in a display action to index.php.2009-11-18http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3963Multiple unspecified vulnerabilities in XOOPS before 2.4.0 Final have unknown impact and attack vectors.2009-11-17http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3962The management interface on the 2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, and 2701HG-T with software before 5.29.52 allows remote attackers to cause a denial of service (reboot) via a %0d%0a sequence in the page parameter to the xslt program on TCP port 50001, a related issue to CVE-2006-4523.2009-11-17http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3961SQL injection vulnerability in user.php in Super Serious Stats (aka superseriousstats) before 1.1.2p1 allows remote attackers to execute arbitrary SQL commands via the uid parameter, related to an "incorrect regexp." NOTE: some of these details are obtained from third party information.2009-11-17http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3892Cross-site scripting (XSS) vulnerability in Best Practical Solutions RT 3.6.x before 3.6.9, 3.8.x before 3.8.5, and other 3.4.6 through 3.8.4 versions allows remote attackers to inject arbitrary web script or HTML via certain Custom Fields.2009-11-17http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3891Cross-site scripting (XSS) vulnerability in wp-admin/press-this.php in WordPress before 2.8.6 allows remote authenticated users to inject arbitrary web script or HTML via the s parameter (aka the selection variable).2009-11-17http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3890Unrestricted file upload vulnerability in the wp_check_filetype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the mod_mime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an attachment with a multiple-extension filename, and then accessing this attachment via a direct request to a wp-content/uploads/ pathname, as demonstrated by a .php.jpg filename.2009-11-17http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3841Unspecified vulnerability in HP Discovery & Dependency Mapping Inventory (DDMI) 2.5x, 7.5x, and 7.60 on Windows allows remote authenticated users to execute arbitrary code via unknown vectors.2009-11-17http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3950Multiple cross-site scripting (XSS) vulnerabilities in Bractus SunTrack allow remote attackers to inject arbitrary web script or HTML via the (1) title parameter to newprofile.html; the (2) firstname, (3) lastname, and (4) company parameters to signup/signup.html; and the (5) firstname, (6) lastname, and (7) address[0].street1 parameters to contact.html.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3949cp/profile.php in VivaPrograms Infinity 2.0.5 and earlier does not require administrative authentication for the donewauthor action, which allows remote attackers to create administrative accounts via the name, password, and conf_password parameters.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3948JetAudio 7.5.3 COWON Media Center allows remote attackers to cause a denial of service (memory consumption and application crash) via a long string at the end of a .wav file.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3947Buffer overflow in the FTP service on the Tandberg MXP F7.0 allows remote attackers to cause a denial of service (process crash or device reboot) or possibly execute arbitrary code via a long USER command, as demonstrated by a command ending with many space characters.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3946Joomla! before 1.5.15 allows remote attackers to read an extension's XML file, and thereby obtain the extension's version number, via a direct request.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3945Unspecified vulnerability in the Front-End Editor in the com_content component in Joomla! before 1.5.15 allows remote authenticated users, with Author privileges, to replace the articles of an arbitrary user via unknown vectors.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3944Research In Motion (RIM) BlackBerry Browser on the BlackBerry 8800 allows remote attackers to cause a denial of service (application hang) via a JavaScript loop that configures the home page by using the setHomePage method and a DHTML behavior property.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3943Microsoft Internet Explorer 6 through 6.0.2900.2180 and 7 through 7.0.6000.16711 allows remote attackers to cause a denial of service (application hang) via a JavaScript loop that configures the home page by using the setHomePage method and a DHTML behavior property.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3942Martin Lambers msmtp before 1.4.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3941Martin Lambers mpop before 1.0.19, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3940Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox 1.6.x and 2.0.x before 2.0.12, 2.1.x, and 2.2.x, and Sun VirtualBox before 3.0.10, allows guest OS users to cause a denial of service (memory consumption) on the guest OS via unknown vectors.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3939The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3889The dbg_lvl file for the megaraid_sas driver in the Linux kernel before 2.6.27 has world-writable permissions, which allows local users to change the (1) behavior and (2) logging level of the driver by modifying this file.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3888The do_mmap_pgoff function in mm/nommu.c in the Linux kernel before 2.6.31.6, when the CPU lacks a memory management unit, allows local users to cause a denial of service (OOPS) via an application that attempts to allocate a large amount of memory.2009-11-16http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2746Cross-site request forgery (CSRF) vulnerability in the administrative console in the Security component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.39, 6.1 before 6.1.0.29, and 7.0 before 7.0.0.7 allows remote attackers to hijack the authentication of administrators via unspecified vectors.2009-11-16