|
299621
|
- |
|
carbon_communities
|
carbon_communities
|
CarbonCommunities stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing passwords via a direct request for …
|
NVD-CWE-Other
|
CVE-2007-0096
|
2017-07-29 10:29 |
2007-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299622
|
- |
|
spine
|
spine
|
Cross-site request forgery (CSRF) vulnerability in SPINE allows remote attackers to perform unauthorized actions as administrators via unspecified vectors. NOTE: some of these details are obtained f…
|
NVD-CWE-Other
|
CVE-2007-0101
|
2017-07-29 10:29 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299623
|
- |
|
apple
|
preview
|
The Adobe PDF specification 1.3, as implemented by Apple Mac OS X Preview, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code exec…
|
CWE-20
Improper Input Validation
|
CVE-2007-0102
|
2017-07-29 10:29 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299624
|
- |
|
adobe
|
acrobat_reader
|
The Adobe PDF specification 1.3, as implemented by Adobe Acrobat before 8.0.0, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code …
|
CWE-20
Improper Input Validation
|
CVE-2007-0103
|
2017-07-29 10:29 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299625
|
- |
|
cisco
|
secure_access_control_server
|
Stack-based buffer overflow in the CSAdmin service in Cisco Secure Access Control Server (ACS) for Windows before 4.1 and ACS Solution Engine before 4.1 allows remote attackers to execute arbitrary c…
|
NVD-CWE-Other
|
CVE-2007-0105
|
2017-07-29 10:29 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299626
|
- |
|
novell
|
client
|
nwgina.dll in Novell Client 4.91 SP3 for Windows 2000/XP/2003 does not delete user profiles during a Terminal Service or Citrix session, which allows remote authenticated users to invoke alternate us…
|
NVD-CWE-Other
|
CVE-2007-0108
|
2017-07-29 10:29 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299627
|
- |
|
sun
|
java_system_content_delivery_server
|
Sun Java System Content Delivery Server 5.0 and 5.0 PU1 allows remote attackers to obtain sensitive information regarding "content details" via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2007-0114
|
2017-07-29 10:29 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299628
|
- |
|
kaspersky_lab
|
kaspersky_antivirus_engine
|
Kaspersky Labs Antivirus Engine 6.0 for Windows and 5.5-10 for Linux before 20070102 enter an infinite loop upon encountering an invalid NumberOfRvaAndSizes value in the Optional Windows Header of a …
|
NVD-CWE-Other
|
CVE-2007-0125
|
2017-07-29 10:29 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299629
|
- |
|
opera
|
opera_browser
|
Heap-based buffer overflow in Opera 9.02 allows remote attackers to execute arbitrary code via a JPEG file with an invalid number of index bytes in the Define Huffman Table (DHT) marker.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-0126
|
2017-07-29 10:29 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299630
|
- |
|
jamwiki
|
jamwiki
|
JAMWiki before 0.5.0 does not properly check permissions during moves of "read-only or admin-only topics," which allows remote attackers to make unauthorized changes to the wiki.
|
NVD-CWE-Other
|
CVE-2007-0131
|
2017-07-29 10:29 |
2007-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
