|
285131
|
- |
|
axis
|
207w_camera
|
The AXIS 207W camera uses a base64-encoded cleartext username and password for authentication, which allows remote attackers to obtain sensitive information by sniffing the wireless network or by lev…
|
CWE-310
Cryptographic Issues
|
CVE-2007-4926
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285132
|
- |
|
axis
|
207w_network_camera
|
axis-cgi/buffer/command.cgi on the AXIS 207W camera allows remote authenticated users to cause a denial of service (reboot) via many requests with unique buffer names in the buffername parameter in a…
|
CWE-20
Improper Input Validation
|
CVE-2007-4927
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285133
|
- |
|
axis
|
207w_network_camera
|
The AXIS 207W camera stores a WEP or WPA key in cleartext in the configuration file, which might allow local users to obtain sensitive information.
|
CWE-310
Cryptographic Issues
|
CVE-2007-4928
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285134
|
- |
|
axis
|
207w_network_camera
|
Multiple cross-site scripting (XSS) vulnerabilities in the AXIS 207W camera allow remote attackers to inject arbitrary web script or HTML via the camNo parameter to incl/image_incl.shtml, and other u…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4929
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285135
|
- |
|
axis
|
207w_network_camera
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the AXIS 207W camera allow remote attackers to perform certain actions as administrators via (1) axis-cgi/admin/restart.cgi, (2) the user…
|
CWE-352
Origin Validation Error
|
CVE-2007-4930
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285136
|
- |
|
comscripts
|
cs_guestbook
|
CS Guestbook stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain the admin name and MD5 password hash via a direct request for ba…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4937
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285137
|
- |
|
mplayer
sgi
|
mplayer
irix
|
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4938
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285138
|
- |
|
guliverkli
mympc
verycd
|
media_player_classic
cd-storm
stormplayer
|
Heap-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4939
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285139
|
- |
|
guliverkli
mympc
verycd
|
media_player_classic
cd-storm
stormplayer
|
Multiple integer overflows in Media Player Classic (MPC) 6.4.9.0 and earlier, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allow remote atta…
|
CWE-189
Numeric Errors
|
CVE-2007-4940
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285140
|
- |
|
kde
|
kmplayer
|
KMPlayer 2.9.3.1210 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a .avi file with certain large "indx truck size" and nEntriesInuse values.
|
CWE-399
Resource Management Errors
|
CVE-2007-4941
|
2018-10-16 06:38 |
2007-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
