|
284701
|
- |
|
winamp
|
nullsoft_winamp
|
Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6403
|
2018-10-16 06:52 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284702
|
- |
|
shttp
|
shttp
|
Directory traversal vulnerability in Sergey Lyubka Simple HTTPD (shttpd) 1.38 and earlier on Windows allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the URI.
|
CWE-22
Path Traversal
|
CVE-2007-6404
|
2018-10-16 06:52 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284703
|
- |
|
shttpd
|
shttpd
|
Sergey Lyubka Simple HTTPD (shttpd) 1.38 and earlier on Windows allows remote attackers to download arbitrary CGI programs or scripts via a URI with an appended (1) '+' character, (2) '.' character, …
|
CWE-200
Information Exposure
|
CVE-2007-6405
|
2018-10-16 06:52 |
2007-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284704
|
- |
|
hp
|
openview_network_node_manager
|
Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allow remote attackers to execute arbitrary code via unspecified long arguments to (1) ovlogin.…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6204
|
2018-10-16 06:51 |
2007-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284705
|
- |
|
s9y
|
serendipity
|
Cross-site scripting (XSS) vulnerability in the remote RSS sidebar plugin (serendipity_plugin_remoterss) in S9Y Serendipity before 1.2.1 allows remote attackers to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6205
|
2018-10-16 06:51 |
2007-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284706
|
- |
|
sing
|
sing
|
Send ICMP Nasty Garbage (sing) on Debian GNU/Linux allows local users to append to arbitrary files and gain privileges via the -L (output log file) option. NOTE: this issue is only a vulnerability i…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6211
|
2018-10-16 06:51 |
2007-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284707
|
- |
|
irola
|
my-time
|
Multiple SQL injection vulnerabilities in login.asp in Irola My-Time (aka Timesheet) 3.5 allow remote attackers to execute arbitrary SQL commands via the (1) login (aka Username) and (2) password par…
|
CWE-89
SQL Injection
|
CVE-2007-6217
|
2018-10-16 06:51 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284708
|
- |
|
apc
|
oas
switched_rack_pdu_firmware
|
The American Power Conversion (APC) AP7932 0u 30amp Switched Rack Power Distribution Unit (PDU), with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login acces…
|
CWE-287
Improper Authentication
|
CVE-2007-6226
|
2018-10-16 06:51 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284709
|
- |
|
qemu
|
qemu
|
QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have unspecified other impacts related to an "overflo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6227
|
2018-10-16 06:51 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284710
|
- |
|
deluxebb
|
deluxebb
|
cp.php in DeluxeBB 1.09 does not verify that the membercookie parameter corresponds to the authenticated member during a profile update, which allows remote authenticated users to change the e-mail a…
|
CWE-287
Improper Authentication
|
CVE-2007-6237
|
2018-10-16 06:51 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
