|
297541
|
- |
|
cisco
|
firewall_services_module
|
The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a…
|
NVD-CWE-Other
|
CVE-2009-0638
|
2017-08-17 10:29 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297542
|
- |
|
falt4
|
falt4_extreme
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the manage_users handler in admin/index.php in Falt4 CMS (aka Falt4 Extreme) RC4 allow remote attackers to hijack the authentication of a…
|
CWE-352
Origin Validation Error
|
CVE-2009-0648
|
2017-08-17 10:29 |
2009-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297543
|
- |
|
symantec
|
veritas_netbackup_server_\/enterprise_server
|
Unspecified vulnerability in the Veritas network daemon (aka vnetd) in Symantec Veritas NetBackup Server / Enterprise Server 5.x, 6.0 before MP7 SP1, and 6.5 before 6.5.3.1 allows remote attackers to…
|
CWE-20
Improper Input Validation
|
CVE-2009-0651
|
2017-08-17 10:29 |
2009-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297544
|
- |
|
lenovo
|
veriface
|
Lenovo Veriface III allows physically proximate attackers to login to a Windows account by presenting a "plain image" of the authorized user.
|
CWE-287
Improper Authentication
|
CVE-2009-0655
|
2017-08-17 10:29 |
2009-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297545
|
- |
|
asus
|
smartlogon
|
Asus SmartLogon 1.0.0005 allows physically proximate attackers to bypass "security functions" by presenting an image with a modified viewpoint that matches the posture of a stored image of the author…
|
CWE-255
Credentials Management
|
CVE-2009-0656
|
2017-08-17 10:29 |
2009-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297546
|
- |
|
toshiba
|
face_recognition
|
Toshiba Face Recognition 2.0.2.32 allows physically proximate attackers to obtain notebook access by presenting a large number of images for which the viewpoint and lighting have been modified to mat…
|
CWE-255
Credentials Management
|
CVE-2009-0657
|
2017-08-17 10:29 |
2009-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297547
|
- |
|
tptest
|
tptest
|
Stack-based buffer overflow in the GetStatsFromLine function in TPTEST 3.1.7 allows remote attackers to have an unknown impact via a STATS line with a long email field. NOTE: the provenance of this …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0659
|
2017-08-17 10:29 |
2009-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297548
|
- |
|
mahara
|
mahara
|
Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.0 before 1.0.10 and 1.1 before 1.1.2 allow remote attackers to inject arbitrary web script or HTML via a (1) profile and (2) blog, a di…
|
CWE-79
Cross-site Scripting
|
CVE-2009-0660
|
2017-08-17 10:29 |
2009-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297549
|
- |
|
flashtux
|
weechat
|
Wee Enhanced Environment for Chat (WeeChat) 0.2.6 allows remote attackers to cause a denial of service (crash) via an IRC PRIVMSG command containing crafted color codes that trigger an out-of-bounds …
|
CWE-20
Improper Input Validation
|
CVE-2009-0661
|
2017-08-17 10:29 |
2009-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297550
|
- |
|
plone
|
plonepas
|
The PlonePAS product 3.x before 3.9 and 3.2.x before 3.2.2, a product for Plone, does not properly handle the login form, which allows remote authenticated users to acquire the identity of an arbitra…
|
CWE-287
Improper Authentication
|
CVE-2009-0662
|
2017-08-17 10:29 |
2009-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
