|
278041
|
- |
|
microsoft
|
windows_vista
windows_server_2003
|
Race condition in Microsoft Windows Server 2003 and Vista allows local users to cause a denial of service (crash or hang) via a multi-threaded application that makes many calls to UnhookWindowsHookEx…
|
CWE-362
Race Condition
|
CVE-2008-5044
|
2019-02-26 23:04 |
2008-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278042
|
- |
|
apple
|
safari
|
Apple Safari on Mac OS X, and before 3.1.2 on Windows, does not prompt the user before downloading an object that has an unrecognized content type, which allows remote attackers to place malware into…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2540
|
2019-02-26 23:04 |
2008-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278043
|
- |
|
linux-pam
|
linux-pam
|
Linux-PAM before 1.0.4 does not enforce the minimum password age (MINDAYS) as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0579
|
2019-01-4 00:01 |
2009-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278044
|
- |
|
lighttpd
debian
|
lighttpd
debian_linux
|
lighttpd before 1.4.20 compares URIs to patterns in the (1) url.redirect and (2) url.rewrite configuration settings before performing URL decoding, which might allow remote attackers to bypass intend…
|
CWE-200
Information Exposure
|
CVE-2008-4359
|
2018-11-30 00:46 |
2008-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278045
|
- |
|
lighttpd
debian
|
lighttpd
debian_linux
|
mod_userdir in lighttpd before 1.4.20, when a case-insensitive operating system or filesystem is used, performs case-sensitive comparisons on filename components in configuration options, which might…
|
CWE-200
Information Exposure
|
CVE-2008-4360
|
2018-11-30 00:46 |
2008-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278046
|
- |
|
yate
|
yet_another_telephony_engine
|
The SIP channel module in Yet Another Telephony Engine (Yate) before 1.2.0 sets the caller_info_uri parameter using an incorrect variable that can be NULL, which allows remote attackers to cause a de…
|
CWE-20
Improper Input Validation
|
CVE-2007-1693
|
2018-11-30 00:46 |
2007-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278047
|
- |
|
omegaboard_project
|
omegaboard
|
PHP remote file inclusion vulnerability in includes/functions.php in Omegaboard 1.0beta4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
|
CWE-20
Improper Input Validation
|
CVE-2007-0683
|
2018-11-30 00:45 |
2007-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278048
|
- |
|
apache
debian
|
libapreq2
debian_linux
|
Unspecified vulnerability in (1) apreq_parse_headers and (2) apreq_parse_urlencoded functions in Apache2::Request (Libapreq2) before 2.07 allows remote attackers to cause a denial of service (CPU con…
|
NVD-CWE-noinfo
|
CVE-2006-0042
|
2018-11-30 00:45 |
2006-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278049
|
- |
|
spytech-web
|
spyanywhere
|
Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator access via a single character in the "loginpass" field.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2001-0771
|
2018-11-30 00:45 |
2001-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278050
|
- |
|
bb4
|
big_brother
|
Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attackers to read portions of arbitrary files.
|
CWE-200
Information Exposure
|
CVE-1999-1462
|
2018-11-30 00:44 |
1999-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
