|
307001
|
- |
|
onlinetechtools.com
|
owos_lite
|
SQL injection vulnerability in search.asp in Online Work Order Suite (OWOS) Lite Edition for ASP 3.0 allows remote attackers to execute arbitrary SQL commands via the keyword parameter.
|
NVD-CWE-Other
|
CVE-2005-3852
|
2013-07-3 23:48 |
2005-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307002
|
- |
|
vmware
|
workstation
player
ace
server
fusion
|
The virtual networking stack in VMware Workstation 7.0 before 7.0.1 build 227600, VMware Workstation 6.5.x before 6.5.4 build 246459 on Windows, VMware Player 3.0 before 3.0.1 build 227600, VMware Pl…
|
CWE-200
Information Exposure
|
CVE-2010-1138
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307003
|
- |
|
vmware
|
workstation
player
server
fusion
vix_api
|
Format string vulnerability in vmrun in VMware VIX API 1.6.x, VMware Workstation 6.5.x before 6.5.4 build 246459, VMware Player 2.5.x before 2.5.4 build 246459, and VMware Server 2.x on Linux, and VM…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2010-1139
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307004
|
- |
|
vmware
|
workstation
player
|
The USB service in VMware Workstation 7.0 before 7.0.1 build 227600 and VMware Player 3.0 before 3.0.1 build 227600 on Windows might allow host OS users to gain privileges by placing a Trojan horse p…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1140
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307005
|
- |
|
vmware
|
workstation
player
ace
server
fusion
esxi
esx
|
VMware Tools in VMware Workstation 6.5.x before 6.5.4 build 246459; VMware Player 2.5.x before 2.5.4 build 246459; VMware ACE 2.5.x before 2.5.4 build 246459; VMware Server 2.x before 2.0.2 build 203…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1142
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307006
|
- |
|
apple
|
cups
|
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0393
|
2013-05-15 12:06 |
2010-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307007
|
- |
|
bibtex
|
bibtex
|
Buffer overflow in BibTeX 0.99 allows context-dependent attackers to cause a denial of service (memory corruption and crash) via a long .bib bibliography file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1284
|
2013-04-19 11:49 |
2009-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307008
|
- |
|
matthias_klose
|
bash-doc
|
bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb#####.? temporary file, related to the (1) aliasconv.sh, (2) aliasconv.bash, and (3) cshtobash scripts.
|
CWE-59
Link Following
|
CVE-2008-5374
|
2013-04-19 11:42 |
2008-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307009
|
- |
|
oracle
|
sun_products_suite
|
Unspecified vulnerability in the Sun Java System Communications Express component in Oracle Sun Product Suite 6 2005Q4 (6.2) and and 6.3 allows remote authenticated users to affect confidentiality vi…
|
NVD-CWE-noinfo
|
CVE-2010-0885
|
2013-02-8 14:00 |
2010-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307010
|
- |
|
symantec
|
securityexpressions_audit_and_compliance_server
|
Cross-site scripting (XSS) vulnerability in the console in Symantec SecurityExpressions Audit and Compliance Server 4.1.1, 4.1, and earlier allows remote authenticated users to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3029
|
2013-02-7 13:21 |
2009-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
