|
346951
|
- |
|
vmware
|
workstation
player
|
The USB service in VMware Workstation 7.0 before 7.0.1 build 227600 and VMware Player 3.0 before 3.0.1 build 227600 on Windows might allow host OS users to gain privileges by placing a Trojan horse p…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1140
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346952
|
- |
|
vmware
|
workstation
player
ace
server
fusion
esxi
esx
|
VMware Tools in VMware Workstation 6.5.x before 6.5.4 build 246459; VMware Player 2.5.x before 2.5.4 build 246459; VMware ACE 2.5.x before 2.5.4 build 246459; VMware Server 2.x before 2.0.2 build 203…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1142
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346953
|
- |
|
apple
|
cups
|
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0393
|
2013-05-15 12:06 |
2010-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346954
|
- |
|
oracle
|
sun_products_suite
|
Unspecified vulnerability in the Sun Java System Communications Express component in Oracle Sun Product Suite 6 2005Q4 (6.2) and and 6.3 allows remote authenticated users to affect confidentiality vi…
|
NVD-CWE-noinfo
|
CVE-2010-0885
|
2013-02-8 14:00 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346955
|
- |
|
ibm
symantec
|
lotus_notes
brightmail_gateway
data_loss_prevention_detection_servers
data_loss_prevention_endpoint_agents
im_manager_2007
mail_security
|
Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13, and o…
|
CWE-189
Numeric Errors
|
CVE-2009-3032
|
2013-02-7 13:21 |
2010-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346956
|
- |
|
symantec
|
im_manager
|
Cross-site scripting (XSS) vulnerability in the console in Symantec IM Manager 8.3 and 8.4 before 8.4.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3036
|
2013-02-7 13:21 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346957
|
- |
|
oracle
|
mojarra
|
Oracle Mojarra 1.2_14 and 2.0.2, as used in IBM WebSphere Application Server, Caucho Resin, and other applications, does not properly handle an unencrypted view state, which allows remote attackers t…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2087
|
2013-01-28 14:00 |
2010-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346958
|
- |
|
mybb
|
mybb
|
Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to (1) admin/moderate.php, (2) admin/themes.php, (3) inc/functions.php,…
|
NVD-CWE-noinfo
|
CVE-2006-0218
|
2013-01-3 14:00 |
2006-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346959
|
- |
|
invisionpower
|
invision_power_board
|
The make_password function in ipsclass.php in Invision Power Board (IPB) 2.1.4 uses random data generated from partially predictable seeds to create the authentication code that is sent by e-mail to …
|
CWE-287
Improper Authentication
|
CVE-2006-0633
|
2013-01-3 14:00 |
2006-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346960
|
- |
|
zen-cart
|
zen_cart
|
Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers to cause unknown impact via unspecified vectors, probably direct requests.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-0697
|
2013-01-3 14:00 |
2006-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
