|
299061
|
- |
|
ssh
|
tectia_server
|
SSH Tectia Server for IBM z/OS before 5.4.0 uses insecure world-writable permissions for (1) the server pid file, which allows local users to cause arbitrary processes to be stopped, or (2) when _BPX…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-2063
|
2017-07-29 10:31 |
2007-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299062
|
- |
|
scramdisk_4_linux
|
scramdisk_4_linux
|
Certain programs in containers in ScramDisk 4 Linux before 1.0-1 execute with SUID permissions, which allows local users to gain privileges via mounted containers.
|
NVD-CWE-Other
|
CVE-2007-2074
|
2017-07-29 10:31 |
2007-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299063
|
- |
|
scramdisk_4_linux
|
scramdisk_4_linux
|
ScramDisk 4 Linux before 1.0-1 does not perform permission checks on mount points, which allows local users to gain privileges by using a system directory as a mount point for a container.
|
NVD-CWE-Other
|
CVE-2007-2075
|
2017-07-29 10:31 |
2007-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299064
|
- |
|
cnstats
|
cnstats
|
Multiple PHP remote file inclusion vulnerabilities in CNStats 2.12, when register_globals is enabled and .htaccess is not recognized, allow remote attackers to execute arbitrary PHP code via a URL in…
|
NVD-CWE-Other
|
CVE-2007-2087
|
2017-07-29 10:31 |
2007-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299065
|
- |
|
cnstats
|
cnstats
|
Successful exploitation requires that "register_globals" is enabled and support for ".htaccess" files is disabled.
|
NVD-CWE-Other
|
CVE-2007-2087
|
2017-07-29 10:31 |
2007-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299066
|
- |
|
fac_guestbook
|
fac_guestbook
|
FAC Guestbook 3.01 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/gbdb.mdb. NOTE: …
|
NVD-CWE-Other
|
CVE-2007-2101
|
2017-07-29 10:31 |
2007-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299067
|
- |
|
mcafee
|
e-business_server
|
The administration server in McAfee e-Business Server before 8.1.1 and 8.5.x before 8.5.2 allows remote attackers to cause a denial of service (service crash) via a large length value in a malformed …
|
NVD-CWE-Other
|
CVE-2007-2151
|
2017-07-29 10:31 |
2007-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299068
|
- |
|
mcafee
|
e-business_server
|
The vendor has addressed this issue in the following product update:
https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751&command=show&forward=nonthreadedKC
|
NVD-CWE-Other
|
CVE-2007-2151
|
2017-07-29 10:31 |
2007-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299069
|
- |
|
mcafee
|
virusscan_enterprise
|
Buffer overflow in the On-Access Scanner in McAfee VirusScan Enterprise before 8.0i Patch 12 allows user-assisted remote attackers to execute arbitrary code via a long filename containing multi-byte …
|
NVD-CWE-Other
|
CVE-2007-2152
|
2017-07-29 10:31 |
2007-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299070
|
- |
|
mcafee
|
virusscan_enterprise
|
The vendor has addressed this issue with the following product update:
https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612750&command=show&forward=nonthreadedKC
|
NVD-CWE-Other
|
CVE-2007-2152
|
2017-07-29 10:31 |
2007-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|