LiveActive security incident?Get immediate response
CVE archive

September 2007

Browse CVE records published in September 2007, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 442 matching CVEs · Page 3 of 9.

Unknown · CVSS Not scored

CVE-2007-5053: Multiple incomplete blacklist vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to ex...

Multiple incomplete blacklist vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in (1) the admin_home parameter to modules/poll/poll_summary.php or (2) the rootdp parameter to include/db.php; or a URL in the language_home parameter to (3) search/search.php, (4) poll/inlinepoll.php, (5) poll/showpoll.php, (6) links/showlinks.php, or (7) links/submit_links.php in modules/; related to missing checks in (a) modules/moduleSec.php and (b) include/includeSec.php for inclusion of certain URLs, as demonstrated by an ftps:// URL.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-4985: ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted im...

ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or (2) an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong function calls.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5054: Multiple PHP remote file inclusion vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers...

Multiple PHP remote file inclusion vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the gsLanguage parameter to (1) search/search.php, (2) poll/inlinepoll.php, (3) poll/showpoll.php, (4) links/showlinks.php, or (5) links/submit_links.php in modules/.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5040: Ghost Security Suite alpha 1.200 does not properly validate certain parameters to System Service Descriptor...

Ghost Security Suite alpha 1.200 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the (1) NtCreateKey, (2) NtCreateThread, (3) NtDeleteValueKey, (4) NtQueryValueKey, (5) NtSetSystemInformation, and (6) NtSetValueKey kernel SSDT hooks.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5047: Norton Internet Security 2008 15.0.0.60 does not properly validate certain parameters to System Service Des...

Norton Internet Security 2008 15.0.0.60 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the NtOpenSection kernel SSDT hook. NOTE: the NtCreateMutant and NtOpenEvent function hooks are already covered by CVE-2007-1793.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5064: Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer Active...

Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer ActiveX control in DapPlayer_Now.dll, allows remote attackers to execute arbitrary code via a long first argument to the DownURL2 method. NOTE: some of these details are obtained from third party information.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-4939: Heap-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9.0 and earlier, as used stand...

Heap-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with an "indx truck size" of 0xffffffff, and certain wLongsPerEntry and nEntriesInuse values.

Published Sep 18, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5044: ZoneAlarm Pro 7.0.362.000 does not properly validate certain parameters to System Service Descriptor Table...

ZoneAlarm Pro 7.0.362.000 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the (1) NtCreatePort and (2) NtDeleteFile kernel SSDT hooks, a partial regression of CVE-2007-2083.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5014: Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 allow remote attackers to execute arbitra...

Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 allow remote attackers to execute arbitrary PHP code via a URL in (1) the lvc_admin_dir parameter to modules/visitors2/admin/view-archiver.inc.php or (2) the lvc_include_dir parameter to modules/visitors2/include/menus.inc.php. NOTE: the modules/visitors2/include/config.inc.php vector is already covered by CVE-2006-4373. NOTE: vector 1 is disputed by CVE because PHP encounters a fatal instantiation error on a direct request for the file, before reaching the include statement.

Published Sep 20, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5013: Multiple cross-site scripting (XSS) vulnerabilities in index.php in Phormer 3.31 allow remote attackers to...

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Phormer 3.31 allow remote attackers to inject arbitrary web script or HTML via the (1) u, (2) p, (3) c, and (4) s parameters, and other unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Published Sep 20, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5034: ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content headers of...

ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content headers of the POST request to the CONNECT request in cleartext, which allows remote attackers to sniff sensitive data that would have been protected by TLS. NOTE: this issue only occurs when a proxy is defined for https.

Published Sep 21, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-4967: Online Armor Personal Firewall 2.0.1.215 does not properly validate certain parameters to System Service De...

Online Armor Personal Firewall 2.0.1.215 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via unspecified kernel SSDT hooks for Windows Native API functions including (1) NtAllocateVirtualMemory, (2) NtConnectPort, (3) NtCreateFile, (4) NtCreateKey, (5) NtCreatePort, (6) NtDeleteFile, (7) NtDeleteValueKey, (8) NtLoadKey, (9) NtOpenFile, (10) NtOpenProcess, (11) NtOpenThread, (12) NtResumeThread, (13) NtSetContextThread, (14) NtSetValueKey, (15) NtSuspendProcess, (16) NtSuspendThread, and (17) NtTerminateThread.

Published Sep 19, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5058: Cross-site scripting (XSS) vulnerability in the Web administration interface in Barracuda Spam Firewall bef...

Cross-site scripting (XSS) vulnerability in the Web administration interface in Barracuda Spam Firewall before firmware 3.5.10.016 allows remote attackers to inject arbitrary web script or HTML via the username field in a login attempt, which is not properly handled when the Monitor Web Syslog screen is open.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5012: Cross-site scripting (XSS) vulnerability in picture.php in PhpWebGallery 1.7.0, when Comments for all is en...

Cross-site scripting (XSS) vulnerability in picture.php in PhpWebGallery 1.7.0, when Comments for all is enabled, allows remote attackers to inject arbitrary web script or HTML via the author parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Published Sep 20, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-4960: Argument injection vulnerability in the Linden Lab Second Life secondlife:// protocol handler, as used in I...

Argument injection vulnerability in the Linden Lab Second Life secondlife:// protocol handler, as used in Internet Explorer and possibly Firefox, allows remote attackers to obtain sensitive information via a '" ' (double-quote space) sequence followed by the -autologin and -loginuri arguments, which cause the handler to post login credentials and software installation details to an arbitrary URL.

Published Sep 18, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5029: Dibbler 0.6.0 does not verify that certain length parameters are appropriate for buffer sizes, which allows...

Dibbler 0.6.0 does not verify that certain length parameters are appropriate for buffer sizes, which allows remote attackers to trigger a buffer over-read and cause a denial of service (daemon crash), as demonstrated by incorrect behavior of the TSrvMsg constructor in SrvMessages/SrvMsg.cpp when (1) reading the option code and option length and (2) parsing options.

Published Sep 21, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-4981: Cross-site scripting (XSS) vulnerability in the save function in Obedit 3.03 allows user-assisted remote at...

Cross-site scripting (XSS) vulnerability in the save function in Obedit 3.03 allows user-assisted remote attackers to inject arbitrary web script or HTML via unknown vectors, as demonstrated by a SCRIPT element in an unspecified context when saving a document. NOTE: because the details of the attack are uncertain, it is unclear whether this crosses privilege boundaries.

Published Sep 19, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5051: Multiple cross-site scripting (XSS) vulnerabilities in PhpGedView 4.1.1 allow remote attackers to inject ar...

Multiple cross-site scripting (XSS) vulnerabilities in PhpGedView 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) box_width, (2) PEDIGREE_GENERATIONS, and (3) rootid parameters in ancestry.php, and the (4) newpid parameter in timeline.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5043: Kaspersky Internet Security 7.0.0.125 does not properly validate certain parameters to System Service Descr...

Kaspersky Internet Security 7.0.0.125 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to (1) cause a denial of service (crash) and possibly gain privileges via the NtCreateSection kernel SSDT hook or (2) cause a denial of service (avp.exe service outage) via the NtLoadDriver kernel SSDT hook. NOTE: this issue may partially overlap CVE-2006-3074.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5059: Multiple cross-site scripting (XSS) vulnerabilities in GreenSQL allow remote attackers to inject arbitrary...

Multiple cross-site scripting (XSS) vulnerabilities in GreenSQL allow remote attackers to inject arbitrary web script or HTML via several vectors, as demonstrated by the (1) uname and (2) pass parameters in a login form, and (3) an unspecified "url value," leading to storage of XSS sequences in the database and display of these sequences in the alert section of the admin panel.

Published Sep 24, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5023: Unquoted Windows search path vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x befor...

Unquoted Windows search path vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075, and Server before 1.0.4 Build 56528 allows local users to gain privileges via unspecified vectors, possibly involving a malicious "program.exe" file in the C: folder.

Published Sep 21, 2007 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2007-5039: Ghost Security Suite beta 1.110 does not properly validate certain parameters to System Service Descriptor...

Ghost Security Suite beta 1.110 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the (1) NtCreateKey, (2) NtDeleteValueKey, (3) NtQueryValueKey, (4) NtSetSystemInformation, and (5) NtSetValueKey kernel SSDT hooks.

Published Sep 24, 2007 · Updated Aug 7, 2024