|
350911
|
- |
|
apple
perry_kiehtreiber
|
mac_os_x
mac_os_x_server
securityd
|
Authorization Services in securityd for Apple Mac OS X 10.3.9 allows local users to gain privileges by granting themselves certain rights that should be restricted to administrators.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-2741
|
2016-05-10 01:50 |
2005-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350912
|
- |
|
sgi
|
irix
|
Unknown vulnerability in rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not sufficiently restrict access rights for read-mostly exports, which allows attackers to conduct unauthorized activit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-0139
|
2016-05-10 01:49 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350913
|
- |
|
sgi
|
irix
|
rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not correctly allow access to anonymous clients that connect from a system whose hostname can not be determined. NOTE: while this issue occurs …
|
CWE-17
Code
|
CVE-2005-0138
|
2016-05-10 00:32 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350914
|
- |
|
-
|
-
|
Unspecified vulnerability in PeopleTools in Oracle PeopleSoft Enterprise 8.42 up to 8.45.17 has unknown impact and attack vectors, as identified by Oracle Vuln# PSE01.
|
NVD-CWE-Other
|
CVE-2005-3461
|
2016-04-30 10:59 |
2005-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350915
|
- |
|
geodesicsolutions
|
geoauctions_premier
geoclassifieds_basic
|
SQL injection vulnerability in index.php in GeodesicSolutions (1) GeoAuctions Premier 2.0.3 and (2) GeoClassifieds Basic 2.0.3 allows remote attackers to execute arbitrary SQL commands via the b para…
|
CWE-89
SQL Injection
|
CVE-2006-3823
|
2015-09-2 01:59 |
2006-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350916
|
- |
|
geodesicsolutions
|
geoauctions_premier
geoclassifieds_basic
|
Successful exploitation requires that the 'accumulative feedback' feature is turned on.
|
CWE-89
SQL Injection
|
CVE-2006-3823
|
2015-09-2 01:59 |
2006-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350917
|
- |
|
roundcube
|
webmail
|
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the netwo…
|
CWE-200
Information Exposure
|
CVE-2010-0464
|
2015-08-25 01:43 |
2010-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350918
|
- |
|
ez
|
ez_publish
|
eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051128 allows remote authenticated users to cause a denial of service (Apache httpd segmentation fault) via a request…
|
CWE-399
Resource Management Errors
|
CVE-2005-4857
|
2015-07-29 00:04 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350919
|
- |
|
ez
|
ez_publish
|
The admin interface in eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051110 does not properly handle authorization errors, which allows remote attackers to obtain …
|
CWE-19
Data Processing Errors
|
CVE-2005-4856
|
2015-07-29 00:03 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350920
|
- |
|
ez
|
ez_publish
|
eZ publish 3.5 through 3.7 before 20050830 does not use a folder's read permissions to restrict notifications, which allows remote authenticated users to obtain sensitive information about changes to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-4854
|
2015-07-28 23:55 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
