|
307481
|
- |
|
amarok
|
amarok
|
The ruby handlers in the Magnatune component in Amarok do not properly quote text in certain contexts, probably including construction of an unzip command line, which allows attackers to execute arbi…
|
CWE-20
Improper Input Validation
|
CVE-2006-6979
|
2011-06-16 13:00 |
2007-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307482
|
- |
|
ibm
|
websphere_application_server
|
The Servlet Engine and Web Container in IBM WebSphere Application Server (WAS) before 6.0.2.17, when ibm-web-ext.xmi sets fileServingEnabled to true and servlet caching is enabled, allows remote atta…
|
CWE-200
Information Exposure
|
CVE-2006-6637
|
2011-06-14 13:00 |
2006-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307483
|
- |
|
sun
|
sparc_enterprise_server
|
The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0171
|
2011-06-13 13:00 |
2009-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307484
|
- |
|
isc
|
dhcpd
|
The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-ide…
|
CWE-399
Resource Management Errors
|
CVE-2006-3122
|
2011-06-13 13:00 |
2006-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307485
|
- |
|
asbru_software
|
asbru_web_content_management
asbru_website_manager
|
The spell checking component of (1) Asbru Web Content Management before 6.1.22, (2) Asbru Web Content Editor before 6.0.22, and (3) Asbru Website Manager before 6.0.22 allows remote attackers to exec…
|
CWE-94
Code Injection
|
CVE-2006-5258
|
2011-06-13 13:00 |
2006-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307486
|
- |
|
apple
freebsd
|
mac_os_x
freebsd
|
The ufs_lookup function in the Mac OS X 10.4.8 and FreeBSD 6.1 kernels allows local users to cause a denial of service (kernel panic) and possibly corrupt other filesystems by mounting a crafted UNIX…
|
CWE-399
Resource Management Errors
|
CVE-2007-0267
|
2011-06-10 13:00 |
2007-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307487
|
- |
|
nlnetlabs
|
unbound
|
Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2010-0969
|
2011-06-2 13:00 |
2010-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307488
|
- |
|
php
|
php
|
The zip:// URL wrapper provided by the PECL zip extension in PHP before 4.4.7, and 5.2.0 and 5.2.1, does not implement safemode or open_basedir checks, which allows remote attackers to read ZIP archi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-1460
|
2011-05-24 13:00 |
2007-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307489
|
- |
|
trend_micro
|
serverprotect_earthagent
|
Trend Micro ServerProtect EarthAgent for Windows Management Console 5.58 and possibly earlier versions, when running with Trend Micro Control Manager 2.5 and 3.0, and Damage Cleanup Server 1.1, allow…
|
CWE-399
Resource Management Errors
|
CVE-2005-1928
|
2011-05-20 13:00 |
2005-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307490
|
- |
|
eric_fichot
|
downfile
|
DownFile 1.3 allows remote attackers to gain administrator privileges via a direct request to (1) update.php, (2) del.php, and (3) add_form.php.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-2819
|
2011-05-19 13:00 |
2005-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
