|
285201
|
- |
|
axis
|
207w_network_camera
|
The AXIS 207W camera stores a WEP or WPA key in cleartext in the configuration file, which might allow local users to obtain sensitive information.
|
CWE-310
Cryptographic Issues
|
CVE-2007-4928
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285202
|
- |
|
axis
|
207w_network_camera
|
Multiple cross-site scripting (XSS) vulnerabilities in the AXIS 207W camera allow remote attackers to inject arbitrary web script or HTML via the camNo parameter to incl/image_incl.shtml, and other u…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4929
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285203
|
- |
|
axis
|
207w_network_camera
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the AXIS 207W camera allow remote attackers to perform certain actions as administrators via (1) axis-cgi/admin/restart.cgi, (2) the user…
|
CWE-352
Origin Validation Error
|
CVE-2007-4930
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285204
|
- |
|
comscripts
|
cs_guestbook
|
CS Guestbook stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain the admin name and MD5 password hash via a direct request for ba…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4937
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285205
|
- |
|
mplayer
sgi
|
mplayer
irix
|
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4938
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285206
|
- |
|
guliverkli
mympc
verycd
|
media_player_classic
cd-storm
stormplayer
|
Heap-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4939
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285207
|
- |
|
guliverkli
mympc
verycd
|
media_player_classic
cd-storm
stormplayer
|
Multiple integer overflows in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allow remote atta…
|
CWE-189
Numeric Errors
|
CVE-2007-4940
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285208
|
- |
|
kde
|
kmplayer
|
KMPlayer 2.9.3.1210 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a .avi file with certain large "indx truck size" and nEntriesInuse values.
|
CWE-399
Resource Management Errors
|
CVE-2007-4941
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285209
|
- |
|
linden_lab
|
second_life
|
Argument injection vulnerability in the Linden Lab Second Life secondlife:// protocol handler, as used in Internet Explorer and possibly Firefox, allows remote attackers to obtain sensitive informati…
|
CWE-255
CWE-310
Credentials Management
Cryptographic Issues
|
CVE-2007-4960
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285210
|
- |
|
winimage
|
winimage
|
Directory traversal vulnerability in WinImage 8.10 and earlier allows user-assisted remote attackers to create or overwrite arbitrary files via a .. (dot dot) in a filename within a (1) .IMG or (2) .…
|
CWE-22
Path Traversal
|
CVE-2007-4962
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
