|
298501
|
- |
|
citrix
|
access_essentials
presentation_server
xenapp
|
Unspecified vulnerability in Citrix XenApp (formerly Presentation Server) 4.5 Feature Pack 1 and earlier, Presentation Server 4.0, and Access Essentials 1.0, 1.5, and 2.0 allows local users to gain p…
|
NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4676
|
2017-08-8 10:32 |
2008-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298502
|
- |
|
vim
|
netrw
|
autoload/netrw.vim (aka the Netrw Plugin) 109, 131, and other versions before 133k for Vim 7.1.266, other 7.1 versions, and 7.2 stores credentials for an FTP session, and sends those credentials when…
|
CWE-255
Credentials Management
|
CVE-2008-4677
|
2017-08-8 10:32 |
2008-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298503
|
- |
|
ibm
|
websphere_application_server
|
The HTTP_Request_Parser method in the HTTP Transport component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.31 allows remote attackers to cause a denial of service (controller 0C4 abe…
|
CWE-399
Resource Management Errors
|
CVE-2008-4678
|
2017-08-8 10:32 |
2008-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298504
|
- |
|
ibm
|
websphere_application_server
|
The Web Services Security component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.31 and 6.1 before 6.1.0.19, when Certificate Store Collections is configured to use Certificate Revoca…
|
CWE-287
Improper Authentication
|
CVE-2008-4679
|
2017-08-8 10:32 |
2008-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298505
|
- |
|
mantis
|
mantis
|
Mantis before 1.1.3 does not unset the session cookie during logout, which makes it easier for remote attackers to hijack sessions.
|
CWE-287
Improper Authentication
|
CVE-2008-4689
|
2017-08-8 10:32 |
2008-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298506
|
- |
|
ibm
|
db2
|
The Native Managed Provider for .NET component in IBM DB2 8 before FP17, 9.1 before FP6, and 9.5 before FP2, when a definer cannot maintain objects, preserves views and triggers without marking them …
|
NVD-CWE-noinfo
|
CVE-2008-4692
|
2017-08-8 10:32 |
2008-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298507
|
- |
|
ibm
|
db2
|
The SORT/LIST SERVICES component in IBM DB2 9.1 before FP6 and 9.5 before FP2 writes sensitive information to the trace output, which allows attackers to obtain sensitive information by reading "PASS…
|
CWE-200
Information Exposure
|
CVE-2008-4693
|
2017-08-8 10:32 |
2008-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298508
|
- |
|
opera
|
opera_browser
|
Unspecified vulnerability in Opera before 9.60 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a redirect that specifies a crafted URL.
|
CWE-59
Link Following
|
CVE-2008-4694
|
2017-08-8 10:32 |
2008-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298509
|
- |
|
opera
|
opera
|
Opera before 9.60 allows remote attackers to obtain sensitive information and have unspecified other impact by predicting the cache pathname of a cached Java applet and then launching this applet fro…
|
CWE-200
Information Exposure
|
CVE-2008-4695
|
2017-08-8 10:32 |
2008-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298510
|
- |
|
opera
|
opera_browser
|
The Fast Forward feature in Opera before 9.61, when a page is located in a frame, executes a javascript: URL in the context of the outermost page instead of the page that contains this URL, which all…
|
CWE-79
Cross-site Scripting
|
CVE-2008-4697
|
2017-08-8 10:32 |
2008-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
