|
294031
|
- |
|
kolmck
|
kol_player
|
Stack-based buffer overflow in Thaddy de Konng KOL Player 1.0 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long URL in a .MP3 playlist file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2961
|
2017-09-19 10:29 |
2009-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294032
|
- |
|
squirrelmail
|
squirrelmail
|
Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.19 and earlier, and NaSMail before 1.7, allow remote attackers to hijack the authentication of unspecified victims via f…
|
CWE-352
Origin Validation Error
|
CVE-2009-2964
|
2017-09-19 10:29 |
2009-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294033
|
- |
|
sun
|
solaris
|
in.lpd in the print service in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors that trigger a "fork()/exec() bomb."
|
CWE-399
Resource Management Errors
|
CVE-2009-2972
|
2017-09-19 10:29 |
2009-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294034
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 8 allows remote attackers to spoof the address bar, via window.open with a relative URI, to show an arbitrary URL on the web site visited by the victim, as demon…
|
NVD-CWE-Other
|
CVE-2009-3003
|
2017-09-19 10:29 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294035
|
- |
|
maxthon
|
maxthon_browser
|
Maxthon Browser 2.5.3.80 UNICODE allows remote attackers to spoof the address bar, via window.open with a relative URI, to show an arbitrary URL on the web site visited by the victim, as demonstrated…
|
NVD-CWE-Other
|
CVE-2009-3006
|
2017-09-19 10:29 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294036
|
- |
|
apple
|
safari
|
Apple Safari 4.0.3 does not properly block javascript: and data: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors rel…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3016
|
2017-09-19 10:29 |
2009-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294037
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 on Windows XP SP2 and SP3, and Internet Explorer 7 on Vista, allows remote attackers to cause a denial of service (application crash) via JavaScript code that calls crea…
|
CWE-94
Code Injection
|
CVE-2009-3019
|
2017-09-19 10:29 |
2009-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294038
|
- |
|
pidgin
|
pidgin
|
Unspecified vulnerability in Pidgin 2.6.0 allows remote attackers to cause a denial of service (crash) via a link in a Yahoo IM.
|
NVD-CWE-noinfo
|
CVE-2009-3025
|
2017-09-19 10:29 |
2009-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294039
|
- |
|
pidgin
|
pidgin
|
protocols/jabber/auth.c in libpurple in Pidgin 2.6.0, and possibly other versions, does not follow the "require TLS/SSL" preference when connecting to older Jabber servers that do not follow the XMPP…
|
CWE-310
Cryptographic Issues
|
CVE-2009-3026
|
2017-09-19 10:29 |
2009-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294040
|
- |
|
ibm
|
lotus_notes_connector
|
A certain ActiveX control in lnresobject.dll 7.1.1.119 in the Research In Motion (RIM) Lotus Notes connector for BlackBerry Desktop Manager 5.0.0.11 allows remote attackers to cause a denial of servi…
|
NVD-CWE-noinfo
|
CVE-2009-3038
|
2017-09-19 10:29 |
2009-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
