Primary Vendor -- Product | Description | | CVSS Score | Source & Patch Info | 3Com -- OfficeConnect Wireless 11g Cable_DSL Router
| The 3Com 3CRWER100-75 router with 1.2.10ww software, when enabling an optional virtual server, configures this server to accept all source IP addresses on the external (Internet) interface unless the user selects other options, which might expose the router to unintended incoming traffic from remote attackers, as demonstrated by setting up a virtual server on port 80, which allows remote attackers to access the web management interface. | | 10.0 | CVE-2007-5419 BUGTRAQ BID
| Adobe -- Flash Player Opera Software -- Opera
| Unspecified vulnerability in Adobe Flash Player 9.0.47.0 and earlier, when running on Opera before 9.24 on Mac OS X, has unknown "Highly Severe" impact and unknown attack vectors. | | 10.0 | CVE-2007-5476 OTHER-REF
| Apple -- Safari
| Unspecified vulnerability in Safari on the Apple iPod touch (aka iTouch) and iPhone 1.1.1 allows user-assisted remote attackers to cause a denial of service (application crash), and enable filesystem browsing by the local user, via a certain TIFF file. | | 9.3 | CVE-2007-5450 MILW0RM OTHER-REF FRSIRT SECUNIA
| Artmedic Webdesign -- Artmedic CMS
| Directory traversal vulnerability in index.php in Artmedic CMS 3.4 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter. | | 7.5 | CVE-2007-5489 MILW0RM BID
| Asterisk -- Asterisk-Addons
| Multiple SQL injection vulnerabilities in cdr_addon_mysql in Asterisk-Addons before 1.2.8, and 1.4.x before 1.4.4, allow remote attackers to execute arbitrary SQL commands via the (1) source and (2) destination numbers when inserting a record. | | 7.5 | CVE-2007-5488 OTHER-REF BID SECUNIA
| Avaya -- VoIP Handset
| Unspecified vulnerability in the Avaya VoIP Handset allows remote attackers to cause a denial of service (reboot) via crafted packets. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 7.8 | CVE-2007-5556 OTHER-REF
| CA -- Server Protection Suite CA -- Business Protection Suite CA -- BrightStor Enterprise Backup CA -- BrightStor ARCserve Backup
| Multiple buffer overflows in (1) RPC and (2) rpcx.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote attackers to execute arbitrary code via unspecified vectors. | | 10.0 | CVE-2007-5326 OTHER-REF OTHER-REF
| CA -- Server Protection Suite CA -- Business Protection Suite CA -- BrightStor Enterprise Backup CA -- BrightStor ARCserve Backup
| Unspecified vulnerability in dbasvr in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, has unknown impact and attack vectors related to memory corruption. | | 10.0 | CVE-2007-5329 OTHER-REF
| CA -- Server Protection Suite CA -- Business Protection Suite CA -- BrightStor Enterprise Backup CA -- BrightStor ARCserve Backup
| Multiple unspecified vulnerabilities in (1) lqserver and (2) media server in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, have unknown impact and attack vectors related to memory corruption. | | 10.0 | CVE-2007-5331 OTHER-REF
| CARE2X -- 2G
| Multiple PHP remote file inclusion vulnerabilities in CARE2X 2G 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) en_copyrite.php, (2) vi_copyrite.php, and (3) ar_copyrite.php in language/ directories; (4) class_access.php, (5) class_department.php, (6) class_config.php, (7) class_image.php, (8) class_ward.php, and (9) class_product.php in include/care_api_classes/; (10) gui/smarty_template/smarty_care.class.php; and possibly other components, different vectors than CVE-2007-1458. | | 7.5 | CVE-2007-5418 BUGTRAQ OTHER-REF
| Cisco -- Unified CallManager Cisco -- Unified Communications Manager
| Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(2), and Unified CallManager 5.0, allow remote attackers to cause a denial of service (kernel panic) via a flood of SIP INVITE messages to UDP port 5060, which triggers resource exhaustion, aka CSCsi75822. | | 7.8 | CVE-2007-5537 CISCO
| Cisco -- Unified CallManager Cisco -- Unified Communications Manager
| Buffer overflow in the Centralized TFTP File Locator Service in Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(3), and Unified CallManager 5.0, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors involving the processing of filenames, aka CSCsh47712. | | 10.0 | CVE-2007-5538 CISCO
| Cisco -- Unified Intelligent Contact Management Enterprise Cisco -- Unified Contact Center Hosted Cisco -- Unified Contact Center Enterprise Cisco -- Cisco Unified ICM Hosted Cisco -- Cisco System Unified Contact Center Enterprise
| Unspecified vulnerability in Cisco Unified Intelligent Contact Management Enterprise (ICME), Unified ICM Hosted (ICMH), Unified Contact Center Enterprise (UCCE), Unified Contact Center Hosted (UCCH), and System Unified Contact Center Enterprise (SUCCE) 7.1(5) allow remote authenticated users to gain privileges, and read reports or change the SUCCE configuration, via certain web interfaces, aka CSCsj55686. | | 9.0 | CVE-2007-5539 CISCO
| Cisco -- IOS
| Off-by-one error in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 9.3 | CVE-2007-5551 OTHER-REF
| Cisco -- IOS
| Integer overflow in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 9.3 | CVE-2007-5552 OTHER-REF
| Cisco -- FWSM Cisco -- PIX_ASA
| Cisco PIX and ASA appliances with 7.0 through 8.0 software, and Cisco Firewall Services Module (FWSM) 3.1(5) and earlier, allow remote attackers to cause a denial of service (device reload) via a crafted MGCP packet, aka CSCsi90468 (appliance) and CSCsi00694 (FWSM). | | 7.1 | CVE-2007-5568 CISCO CISCO BID
| Cisco -- PIX_ASA
| Cisco PIX and ASA appliances with 7.1 and 7.2 software, when configured for TLS sessions to the device, allow remote attackers to cause a denial of service (device reload) via a crafted TLS packet, aka CSCsg43276 and CSCsh97120. | | 7.1 | CVE-2007-5569 CISCO BID
| Cisco -- FWSM
| Cisco Firewall Services Module (FWSM) 3.2(1), and 3.1(5) and earlier, allows remote attackers to cause a denial of service (device reload) via a crafted HTTPS request, aka CSCsi77844. | | 7.8 | CVE-2007-5570 CISCO
| Computer Associates -- BrightStor ARCServe Backup Computer Associates -- BrightStor Enterprise Backup
| Multiple buffer overflows in (1) the Message Engine and (2) AScore.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote attackers to execute arbitrary code via unspecified vectors. | | 10.0 | CVE-2007-5325 OTHER-REF
| Computer Associates -- BrightStor ARCServe Backup Computer Associates -- BrightStor Enterprise Backup
| Stack-based buffer overflow in the RPC interface for the Message Engine (mediasvr.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a long argument in the 0x10d opnum. | | 10.0 | CVE-2007-5327 BUGTRAQ OTHER-REF OTHER-REF
| Computer Associates -- BrightStor ARCServe Backup Computer Associates -- BrightStor Enterprise Backup
| CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows attackers to execute arbitrary code via a "Privileged function exposure." | | 10.0 | CVE-2007-5328 OTHER-REF
| Computer Associates -- BrightStor ARCServe Backup Computer Associates -- BrightStor Enterprise Backup
| The cadbd RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to (1) execute arbitrary code via stack-based buffer overflows in unspecified RPC procedures, and (2) trigger memory corruption related to the use of "handle" RPC arguments as pointers. | | 10.0 | CVE-2007-5330 OTHER-REF OTHER-REF
| Computer Associates -- BrightStor ARCServe Backup Computer Associates -- BrightStor Enterprise Backup
| Multiple unspecified vulnerabilities in (1) mediasvr and (2) caloggerd in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, have unknown impact and attack vectors related to memory corruption. | | 10.0 | CVE-2007-5332 OTHER-REF
| COWON America -- jetAudio
| Stack-based buffer overflow in COWON America jetAudio Basic 7.0.3 allows user-assisted remote attackers to execute arbitrary code via a long URL in an EXTM3U section of a .m3u file. | | 9.3 | CVE-2007-5487 MILW0RM BID FRSIRT SECUNIA
| CRS Manager -- CRS Manager
| ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in CRS Manager allow remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter to (1) index.php or (2) login.php. NOTE: this issue is disputed by CVE, since DOCUMENT_ROOT cannot be modified by an attacker. | | 7.5 | CVE-2007-5440 BUGTRAQ OTHER-REF
| eXtremail -- eXtremail
| Multiple buffer overflows in eXtremail 2.1.1 and earlier allow remote attackers to (1) have an unknown impact by sending multiple long strings to the IMAP port (143/tcp); (2) execute arbitrary code via a long string in an IMAP AUTHENTICATE PLAIN action, involving the ifParseAuthPlain function; or (3) execute arbitrary code via a long LOGIN command to the admin interface port (4501/tcp). | | 10.0 | CVE-2007-5466 MILW0RM MILW0RM MILW0RM
| eXtremail -- eXtremail
| Unspecified vulnerability in eXtremail 2.1.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long USER command containing "%s" sequences to the pop3 port (110/tcp), involving the memmove function, possibly similar to CVE-2001-1078 but with later affected versions. | | 10.0 | CVE-2007-5467 MILW0RM
| galmeta -- galmeta post
| PHP remote file inclusion vulnerability in _lib/fckeditor/upload_config.php in Galmeta Post 0.11 allows remote attackers to execute arbitrary PHP code via a URL in the DDS parameter. | | 7.5 | CVE-2007-5567 OTHER-REF VIM
| gdata -- antivirus
| Buffer overflow in a certain ActiveX control in ScanObjectBrowser.DLL in G DATA Antivirus 2007 might allow remote attackers to execute arbitrary code via unspecified parameters to the SelectPath function. NOTE: this issue might not cross privilege boundaries in most environments, since it is not marked as safe for scripting. | | 7.6 | CVE-2007-5436 BUGTRAQ OTHER-REF BID
| HP -- Linux Imaging and Printing Project
| hpssd in Hewlett-Packard Linux Imaging and Printing Project (hplip) 1.x and 2.x before 2.7.10 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a from address, which is not properly handled when invoking sendmail. | | 7.6 | CVE-2007-5208 OTHER-REF OTHER-REF REDHAT UBUNTU
| IBM -- WebSphere Application Server
| Unspecified vulnerability in the Administrative Scripting Tools (such as wsadmin or ANT) in IBM WebSphere Application Server 5.x and 6.0.x has unknown impact and attack vectors. | | 10.0 | CVE-2007-5483 OTHER-REF OTHER-REF BID FRSIRT SECTRACK SECUNIA XF
| IBM -- ThinkVantage TPM
| Heap-based buffer overflow in the IBM ThinkVantage TPM Service allows remote attackers to execute arbitrary code via a crafted HTTP packet. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 10.0 | CVE-2007-5559 OTHER-REF
| JavaAtWork -- MyFTPUploader Module scottmanktelow -- Stride
| include/imageupload.js in the MyFTPUploader module in Stride 1.0 contains sensitive information including FTP login credentials, which might allow remote attackers to gain unauthorized access to the FTP server being used by the module by viewing the source code. | | 7.8 | CVE-2007-5431 BUGTRAQ OTHER-REF
| Juniper -- HTTP Service
| Heap-based buffer overflow in the Juniper HTTP Service allows remote attackers to execute arbitrary code via a crafted HTTP packet. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 10.0 | CVE-2007-5560 OTHER-REF
| KwsPHP -- kwsphp
| SQL injection vulnerability in index.php in the mg2 1.0 module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the album parameter. | | 7.5 | CVE-2007-5485 MILW0RM FRSIRT
| LG Electronics -- LG mobile handset
| Integer overflow in the LG Mobile handset allows remote attackers to cause a denial of service (reboot) via a crafted HTTP packet. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 7.8 | CVE-2007-5558 OTHER-REF
| Microsoft -- Internet Explorer
| Microsoft Internet Explorer 7 and earlier allows remote attackers to bypass the "File Download - Security Warning" dialog box and download arbitrary .exe files by placing a '?' (question mark) followed by a non-.exe filename after the .exe filename, as demonstrated by (1) .txt, (2) .cda, (3) .log, (4) .dif, (5) .sol, (6) .htt, (7) .itpc, (8) .itms, (9) .dvr-ms, (10) .dib, (11) .asf, (12) .tif, and unspecified other extensions, a different issue than CVE-2004-1331. | | 7.5 | CVE-2007-5456 BUGTRAQ
| Microsoft -- ActiveSync
| Microsoft ActiveSync 4.1, as used in Windows Mobile 5.0, uses weak encryption (XOR obfuscation with a fixed key) when sending the user's PIN/Password over the USB connection from the host to the device, which might allow attackers to (1) sniff the PIN/Password or (2) spoof the docking process to trick the user into providing the PIN/Password. | | 7.1 | CVE-2007-5460 BUGTRAQ BID
| mydoop -- doop CMS
| Directory traversal vulnerability in doop CMS 1.3.7 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter to an unspecified component. | | 7.5 | CVE-2007-5465 MILW0RM
| NEC -- Mobile Handset
| Unspecified vulnerability in the NEC mobile handset allows remote attackers to cause a denial of service (reboot) via crafted packets. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 7.8 | CVE-2007-5557 OTHER-REF
| okulumunsitesi -- Portal
| SQL injection vulnerability in default.asp in Okul Otomasyon Portal 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. | | 7.5 | CVE-2007-5490 MILW0RM
| OpenSSL Project -- OpenSSL
| Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f and 0.9.7 allow remote attackers to execute arbitrary code via unspecified vectors. | | 9.3 | CVE-2007-4995 OTHER-REF SECUNIA
| Opera Software -- Opera
| Unspecified vulnerability in Opera before 9.24 allows remote attackers to overwrite functions on pages from other domains and bypass the same-origin policy via unknown vectors. | | 7.5 | CVE-2007-5540 OTHER-REF BID FRSIRT SECUNIA
| Opera Software -- Opera
| Unspecified vulnerability in Opera before 9.24, when using an "external" newsgroup or e-mail client, allows remote attackers to execute arbitrary commands via unknown vectors. | | 9.3 | CVE-2007-5541 OTHER-REF BID FRSIRT SECUNIA
| Oracle -- Oracle Database
| Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+ and 10.1.0.5 unknown impact and remote attack vectors, related to (1) Import (DB01) and (2) Advanced Queuing (DB25). | | 9.0 | CVE-2007-5504 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Database
| Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 have unknown impact and remote attack vectors, related to (1) the Export component (DB02), (2) Oracle Text (DB04), (3) Oracle Text (DB05), (4) Spatial component (DB07), and (5) Advanced Security Option (DB19). | | 7.5 | CVE-2007-5505 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Database
| The Core RDBMS component in Oracle Database 9.0.1.5+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote attackers to cause a denial of service (CPU consumption) via a crafted type 6 Data packet, aka DB20. | | 7.8 | CVE-2007-5506 BUGTRAQ OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Database
| Unspecified vulnerability in the Spatial component in Oracle Database 9.2.0.8 and 9.2.0.8DV has unknown impact and remote attack vectors, aka DB06. | | 9.0 | CVE-2007-5509 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle10g Database Server Release 1 Oracle -- Oracle10g Database Server Release 2 Oracle -- Oracle 9i Database Release 2
| Multiple unspecified vulnerabilities in the Workspace Manager component in Oracle Database before OWM 10.2.0.4.1, OWM 10.1.0.8.0, and OWM 9.2.0.8.0 have unknown impact and remote attack vectors, aka (1) DB08, (2) DB09, (3) DB10, (4) DB11, (5) DB12, (6) DB13, (7) DB14, (8) DB15, (9) DB16, (10) DB17, and (11) DB18. NOTE: one of these issues is probably CVE-2007-5511, but there are insufficient details to be certain. | | 9.0 | CVE-2007-5510 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Database
| Unspecified vulnerability in the Oracle Database Vault component in Oracle Database 9.2.0.8DV and 10.2.0.3 has unknown impact and remote attack vectors, aka DB21. | | 10.0 | CVE-2007-5512 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Database
| Multiple unspecified vulnerabilities in Oracle Database 10.2.0.3 have unknown impact and attack vectors related to (1) Database Vault component (DB24) and (2) SQL Execution component (DB26). | | 9.0 | CVE-2007-5514 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Database
| Unspecified vulnerability in the Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.2, and 10.2.0.3 has unknown impact and remote attack vectors, aka DB27. | | 9.0 | CVE-2007-5515 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle Process Mgmt & Notification component in Oracle Application Server 10.1.3.3 has unknown impact and remote attack vectors, aka AS01. | | 10.0 | CVE-2007-5516 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Collaboration Suite Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.0.2 and 10.1.4.1, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS02. | | 10.0 | CVE-2007-5517 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle HTTP Server component in Oracle Application Server 10.1.3.2 has unknown impact and remote attack vectors, aka AS03. | | 10.0 | CVE-2007-5518 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Collaboration Suite Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3 and 10.1.2.0.2, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS04. | | 10.0 | CVE-2007-5519 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Application Server Oracle -- Oracle Database
| Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8 and 9.2.0.8DV, and Oracle Application Server 9.0.4.3, 10.1.3.0.0 up to 10.1.3.3.0, and 10.1.2.0.1 up to 10.1.2.2.0, has unknown impact and remote attack vectors, aka AS05. | | 10.0 | CVE-2007-5520 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Collaboration Suite Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.3.3, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS06. | | 10.0 | CVE-2007-5521 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.4.1 has unknown impact and remote attack vectors, aka AS07. | | 10.0 | CVE-2007-5522 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Collaboration Suite Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle Internet Directory component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.4.0, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS08. | | 10.0 | CVE-2007-5523 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Collaboration Suite Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS09 or AS9. | | 10.0 | CVE-2007-5524 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Collaboration Suite Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.4.0.1; Collaboration Suite 10.1.2; and Enterprise Manager 10.1.2 has unknown impact and remote attack vectors, aka AS10. | | 10.0 | CVE-2007-5525 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Collaboration Suite Oracle -- Oracle Application Server
| Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.0.2, 10.1.2.2, and 10.1.4.1, and Collaboration Suite 10.1.2, has unknown impact and remote attack vectors, aka AS11. | | 10.0 | CVE-2007-5526 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle E-Business Suite and Applications
| Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10.2 have unknown impact and remote attack vectors, related to (1) Application Object Library component (APP01), (2) Contracts Integration (APP02), (3) Applications Manager (APP04), (4) Marketing component (APP05), and (5) Exchange component (APP07). | | 10.0 | CVE-2007-5527 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle E-Business Suite and Applications
| Multiple unspecified vulnerabilities in Oracle E-Business Suite 12.0.2 have unknown impact and attack vectors related to (1) Public Sector Human Resources (APP03) and (2) Quoting component (APP06). | | 10.0 | CVE-2007-5528 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle E-Business Suite and Applications
| Unspecified vulnerability in the Oracle Self-Service Web Applications component in client-only installations of Oracle E-Business Suite 11.5.10.2 has unknown impact and remote attack vectors, aka APP08. | | 9.0 | CVE-2007-5529 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Database
| Unspecified vulnerability in the Database Control component in Oracle Database 10.1.0.5 and 10.2.0.3, and Enterprise Manager, has unknown impact and remote attack vectors, aka EM01. | | 10.0 | CVE-2007-5530 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle Enterprise Manager Oracle -- Oracle Application Server Oracle -- Oracle Database
| Unspecified vulnerability in Oracle Help for Web, as used in Oracle Application Server, Oracle Database 10.2.0.3, and Enterprise Manager 10.1.0.6, has unknown impact and remote attack vectors, aka EM02. | | 10.0 | CVE-2007-5531 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- PeopleSoft Enterprise
| Unspecified vulnerability in the People Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.22.17, 8.47.14, 8.48.13, 8.49.05 has unknown impact and remote attack vectors, aka PSE01. | | 10.0 | CVE-2007-5532 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- PeopleSoft Enterprise
| Unspecified vulnerability in the People Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.47.14, 8.48.13, 8.49.05 has unknown impact and remote attack vectors, aka PSE02. | | 9.0 | CVE-2007-5533 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- PeopleSoft Enterprise
| Unspecified vulnerability in the HCM component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9 Bundle 13 9.0 Bundle 3 has unknown impact and remote attack vectors, aka PSE_HCM01. | | 9.0 | CVE-2007-5534 OTHER-REF FRSIRT SECTRACK SECUNIA
| Oracle -- Oracle
| Oracle allows remote attackers to obtain server memory contents via crafted packets, aka Oracle reference number 7892711. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 7.1 | CVE-2007-5554 OTHER-REF
| Oracle -- OPMN daemon Oracle -- Enterprise Grid Console Server
| Format string vulnerability in the logging function in the Oracle OPMN daemon, as used on Oracle Enterprise Grid Console server 10.2.0.1, allows remote attackers to execute arbitrary code via format string specifiers in the URI in an HTTP request to port 6003, aka Oracle reference number 6296175. NOTE: this might be the same issue as CVE-2007-0282 or CVE-2007-0280, but there are insufficient details to be sure. | | 10.0 | CVE-2007-5561 OTHER-REF OTHER-REF OTHER-REF
| PHP -- PHP
| The disable_functions feature in PHP 4 and 5 allows attackers to bypass intended restrictions by using an alias, as demonstrated by using ini_alter when ini_set is disabled. | | 7.5 | CVE-2007-5424 BUGTRAQ OTHER-REF OTHER-REF
| PHP File Sharing System -- PHP File Sharing System
| Directory traversal vulnerability in index.php in PHP File Sharing System 1.5.1 allows remote attackers to list or create arbitrary directories, or delete arbitrary files, as demonstrated by listing directories via a .. (dot dot) in the cam parameter. | | 7.5 | CVE-2007-5454 FULLDISC BID
| PHP-Stats -- PHP-Stats
| Multiple SQL injection vulnerabilities in php-stats.recjs.php in Php-Stats 0.1.9.2 allow remote attackers to execute arbitrary SQL commands via the (1) ip or (2) t parameter. | | 10.0 | CVE-2007-5452 MILW0RM BID
| PHP-Stats -- PHP-Stats
| Multiple eval injection vulnerabilities in Php-Stats 0.1.9.2 allow remote authenticated administrators to execute arbitrary code by writing PHP sequences to the php-stats-options record in the _options table, which is used in an eval function call by (1) admin.php, (2) click.php, (3) download.php, and unspecified other files, as demonstrated by modifying _options through a backup restore action in admin.php. | | 8.5 | CVE-2007-5453 MILW0RM BID
| PHPBlog -- PHPBlog
| ** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in PHPBlog 0.1 Alpha allow remote attackers to execute arbitrary PHP code via a URL in the blog_localpath parameter to (1) includes/functions.php or (2) includes/email.php. NOTE: this issue is disputed by CVE because the identified code is in functions that are not accessible via direct request. | | 7.5 | CVE-2007-5566 OTHER-REF
| phpSCMS -- phpSCMS
| ** DISPUTED ** PHP remote file inclusion vulnerability in includes/functions.php in phpSCMS 0.0.1-Alpha1 allows remote attackers to execute arbitrary PHP code via a URL in the dir parameter. NOTE: this issue is disputed by CVE because the identified code is in a function that is not accessible via direct request. | | 7.5 | CVE-2007-5565 OTHER-REF
| RunCMS -- RunCMS
| Unspecified vulnerability in newbb_plus in RunCms 1.5.2 has unknown impact and attack vectors. | | 10.0 | CVE-2007-5535 OTHER-REF SECUNIA
| scottmanktelow -- Stride CMS
| Multiple SQL injection vulnerabilities in Stride 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the p parameter to main.php in the Content Management System, (2) the id parameter in a sto cmd action to shop.php in the Merchant subsystem, or the (3) course or (4) provider parameter to detail.php in the Courses subsystem. | | 7.5 | CVE-2007-5430 BUGTRAQ OTHER-REF
| scottmanktelow -- Stride CMS
| Stride 1.0 has a default administrator username of "scott" with the password "running", which allows remote attackers to obtain administrative access through login.php. | | 7.5 | CVE-2007-5432 BUGTRAQ OTHER-REF
| secureideas -- Basic Analysis and Security Engine
| Basic Analysis and Security Engine (BASE) before 1.3.8 sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication via (1) base_main.php, (2) base_qry_alert.php, and possibly other vectors. | | 7.5 | CVE-2007-5578 FULLDISC FULLDISC OTHER-REF BID OSVDB SECUNIA XF
| SiteBar -- SiteBar
| Directory traversal vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to chmod arbitrary files to 0777 via ".." sequences in the lang parameter. | | 9.0 | CVE-2007-5491 OTHER-REF
| SoftBiz -- Recipes Portal Script
| SQL injection vulnerability in searchresult.php in Softbiz Recipes Portal Script allows remote attackers to execute arbitrary SQL commands via the sbcat_id parameter. | | 7.5 | CVE-2007-5449 MILW0RM
| Sun -- Solaris
| Unspecified vulnerability in the Sun Solaris RPC services library (librpcsvc) on Solaris 8 through 10 allows remote attackers to cause a denial of service (mountd crash) via unspecified packets to a server that exports many filesystems, and allows local users to cause a denial of service (automountd crash) via unspecified requests to mount filesystems from a server that exports many filesystems. | | 7.8 | CVE-2007-5462 SUNALERT
| SuSE -- SuSE Linux Enterprise Desktop
| Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linux Enterprise Desktop 10 allows remote attackers to obtain credentials via a man-in-the-middle attack, a different vulnerability than CVE-2007-5195. | | 7.5 | CVE-2007-5196 SUSE
| SuSE -- SuSE Linux Enterprise Server
| libgssapi before 0.6-13.7, as used by the ISC BIND named daemon in SUSE Linux Enterprise Server 10 SP 1, terminates upon an initialization error, which allows remote attackers to cause a denial of service (daemon exit) via a GSS-TSIG request. NOTE: this issue probably affects other daemons that attempt to initialize this library within a chroot configuration or other invalid configuration. | | 7.8 | CVE-2007-5471 OTHER-REF BID SECUNIA
| Tibco -- Smart PGM FX
| Format string vulnerability in TIBCO SmartPGM FX allows remote attackers to execute arbitrary code via format string specifiers in unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 7.5 | CVE-2007-5545 BUGTRAQ OTHER-REF BID
| Tibco -- Smart PGM FX
| Multiple stack-based buffer overflows in TIBCO SmartPGM FX allow remote attackers to execute arbitrary code or cause a denial of service (service stop and file-transfer outage) via unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 9.3 | CVE-2007-5546 BUGTRAQ OTHER-REF BID
| Tibco -- Rendezvous
| Unspecified vulnerability in rvd in TIBCO Rendezvous allows remote attackers to cause a denial of service (daemon network outage) via unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | | 7.8 | CVE-2007-5553 OTHER-REF
| VirtueMart -- Virtuemart
| Unspecified vulnerability in VirtueMart before 1.0.13 allows remote attackers to execute arbitrary PHP code via unspecified vectors. | | 7.5 | CVE-2007-5563 OTHER-REF BID SECUNIA
|