|
307041
|
- |
|
hp
|
service_manager
|
Unspecified vulnerability in HP Service Manager (HPSM) before 7.01.71 allows remote authenticated users to execute arbitrary code via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4415
|
2012-10-31 12:04 |
2008-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307042
|
- |
|
apple
|
safari
|
Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser…
|
CWE-200
Information Exposure
|
CVE-2008-3644
|
2012-10-31 12:01 |
2008-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307043
|
- |
|
gnome
|
screensaver
|
The notify feature in GNOME screensaver (gnome-screensaver) 2.20.0 might allow local users to read the clipboard contents and X selection data for a locked session by using ctrl-V.
|
NVD-CWE-Other
|
CVE-2007-6389
|
2012-10-31 11:48 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307044
|
- |
|
ssl-explorer
|
ssl-explorer
|
Directory traversal vulnerability in fileSystem.do in SSL-Explorer before 0.2.14 allows remote attackers to access arbitrary files via directory traversal sequences in the path parameter. NOTE: some…
|
CWE-22
Path Traversal
|
CVE-2007-5831
|
2012-10-31 11:46 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307045
|
- |
|
ibm
|
db2_universal_database
|
IBM DB2 UDB 9.1 before Fixpak 4 assigns incorrect privileges to the (1) DB2ADMNS and (2) DB2USERS alternative groups, which has unknown impact. NOTE: the vendor description of this issue is too vagu…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6051
|
2012-10-31 11:46 |
2007-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307046
|
- |
|
david_hansson
|
ruby_on_rails
|
Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.from_xml (Has…
|
CWE-200
Information Exposure
|
CVE-2007-5379
|
2012-10-31 11:44 |
2007-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307047
|
- |
|
ibm
|
websphere_application_server
|
Unspecified vulnerability in the PD tools component in IBM WebSphere Application Server (WAS) 6.1 before Fix Pack 11 (6.1.0.11) has unknown impact and attack vectors, aka PK33803.
|
NVD-CWE-noinfo
|
CVE-2007-4839
|
2012-10-31 11:43 |
2007-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307048
|
- |
|
fail2ban
|
fail2ban
|
fail2ban 0.8 and earlier does not properly parse sshd log files, which allows remote attackers to add arbitrary hosts to the /etc/hosts.deny file and cause a denial of service by adding arbitrary IP …
|
NVD-CWE-Other
|
CVE-2007-4321
|
2012-10-31 11:41 |
2007-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307049
|
- |
|
ac_zoom
|
blockhosts
|
BlockHosts before 2.0.4 does not properly parse (1) sshd and (2) vsftpd log files, which allows remote attackers to add arbitrary deny entries to the /etc/hosts.allow file and cause a denial of servi…
|
NVD-CWE-Other
|
CVE-2007-4322
|
2012-10-31 11:41 |
2007-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307050
|
- |
|
8e6
|
r3000_enterprise_filter
|
Cross-site scripting (XSS) vulnerability in the 8e6 R3000 Enterprise Filter before 2.0.05 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this may be th…
|
NVD-CWE-Other
|
CVE-2007-3842
|
2012-10-31 11:40 |
2007-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
