|
307571
|
- |
|
ibm
|
tivoli_provisioning_manager
|
IBM Tivoli Provisioning Manager (TPM) before 5.1.1.1 IF0006, when its LDAP service is shared with other applications, does not require that an LDAP user be listed in the TPM user records, which allow…
|
CWE-287
Improper Authentication
|
CVE-2008-5686
|
2011-03-8 12:14 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307572
|
- |
|
adobe
|
coldfusion
|
Unspecified vulnerability in Adobe ColdFusion 8 and 8.0.1 and ColdFusion MX 7.0.2 allows local users to bypass sandbox restrictions, and obtain sensitive information or possibly gain privileges, via …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4831
|
2011-03-8 12:13 |
2008-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307573
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in the redirect function in functions.php in MyBB (aka MyBulletinBoard) 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the url param…
|
CWE-79
Cross-site Scripting
|
CVE-2008-4928
|
2011-03-8 12:13 |
2008-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307574
|
- |
|
ultravnc
|
ultravnc
|
Multiple stack-based buffer overflows in multiple functions in vncviewer/FileTransfer.cpp in vncviewer for UltraVNC 1.0.2 and 1.0.4 before 01252008, when in LISTENING mode or when using the DSM plugi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5001
|
2011-03-8 12:13 |
2008-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307575
|
- |
|
invision_power_services
|
invision_power_board
|
SQL injection vulnerability in xmlout.php in Invision Power Board (IP.Board or IPB) 2.2.x and 2.3.x allows remote attackers to execute arbitrary SQL commands via the name parameter.
|
CWE-89
SQL Injection
|
CVE-2008-4171
|
2011-03-8 12:12 |
2008-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307576
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Integer signedness error in BOM in Apple Mac OS X before 10.5.6 allows remote attackers to execute arbitrary code via the headers in a crafted CPIO archive, leading to a stack-based buffer overflow.
|
CWE-189
Numeric Errors
|
CVE-2008-4217
|
2011-03-8 12:12 |
2008-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307577
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Multiple integer overflows in the kernel in Apple Mac OS X before 10.5.6 on Intel platforms allow local users to gain privileges via a crafted call to (1) i386_set_ldt or (2) i386_get_ldt.
|
CWE-189
Numeric Errors
|
CVE-2008-4218
|
2011-03-8 12:12 |
2008-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307578
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The kernel in Apple Mac OS X before 10.5.6 allows local users to cause a denial of service (infinite loop and system halt) by running an application that is dynamically linked to libraries on an NFS …
|
CWE-399
Resource Management Errors
|
CVE-2008-4219
|
2011-03-8 12:12 |
2008-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307579
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Integer overflow in the inet_net_pton API in Libsystem in Apple Mac OS X before 10.5.6 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) vi…
|
CWE-189
Numeric Errors
|
CVE-2008-4220
|
2011-03-8 12:12 |
2008-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307580
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The strptime API in Libsystem in Apple Mac OS X before 10.5.6 allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a…
|
CWE-399
Resource Management Errors
|
CVE-2008-4221
|
2011-03-8 12:12 |
2008-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
