|
307431
|
- |
|
zilab
|
zim_server
|
The Local ZIM Server (zcs.exe) in Zilab Chat and Instant Messaging (ZIM) Server 2.1 and earlier allow remote attackers to execute arbitrary code via (1) heap-based buffer overflows involving multiple…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5279
|
2011-03-8 12:14 |
2008-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307432
|
- |
|
zilab
|
zim_server
|
The Local ZIM Server in Zilab Chat and Instant Messaging (ZIM) Server 2.0 and 2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted requests without required…
|
CWE-399
Resource Management Errors
|
CVE-2008-5280
|
2011-03-8 12:14 |
2008-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307433
|
- |
|
typo3
|
commerce_extension
|
SQL injection vulnerability in the Commerce extension 0.9.6 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2008-5609
|
2011-03-8 12:14 |
2008-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307434
|
- |
|
ibm
|
websphere_portal
|
Unspecified vulnerability in IBM WebSphere Portal 6.0 before 6.0.1.5 has unknown impact and attack vectors related to "Access problems with BasicAuthTAI."
|
NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5675
|
2011-03-8 12:14 |
2008-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307435
|
- |
|
sun
|
scapp
|
Sun ScApp firmware 5.18.x, 5.19.x, and 5.20.0 through 5.20.10 on Sun Fire and Netra platforms allows remote attackers to access the System Controller (SC), the system console, and possibly the host O…
|
NVD-CWE-noinfo
|
CVE-2008-5685
|
2011-03-8 12:14 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307436
|
- |
|
sun
|
scapp
|
Note: This issue only impacts systems that have a System Controller V2 without SSH enabled.
|
NVD-CWE-noinfo
|
CVE-2008-5685
|
2011-03-8 12:14 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307437
|
- |
|
ibm
|
tivoli_provisioning_manager
|
IBM Tivoli Provisioning Manager (TPM) before 5.1.1.1 IF0006, when its LDAP service is shared with other applications, does not require that an LDAP user be listed in the TPM user records, which allow…
|
CWE-287
Improper Authentication
|
CVE-2008-5686
|
2011-03-8 12:14 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307438
|
- |
|
adobe
|
coldfusion
|
Unspecified vulnerability in Adobe ColdFusion 8 and 8.0.1 and ColdFusion MX 7.0.2 allows local users to bypass sandbox restrictions, and obtain sensitive information or possibly gain privileges, via …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4831
|
2011-03-8 12:13 |
2008-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307439
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in the redirect function in functions.php in MyBB (aka MyBulletinBoard) 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the url param…
|
CWE-79
Cross-site Scripting
|
CVE-2008-4928
|
2011-03-8 12:13 |
2008-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307440
|
- |
|
ultravnc
|
ultravnc
|
Multiple stack-based buffer overflows in multiple functions in vncviewer/FileTransfer.cpp in vncviewer for UltraVNC 1.0.2 and 1.0.4 before 01252008, when in LISTENING mode or when using the DSM plugi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5001
|
2011-03-8 12:13 |
2008-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
