|
308221
|
- |
|
ibm
|
websphere_application_server
|
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.1.0.1 have unspecified impact and attack vectors involving (1) "SOAP requests and responses", (2) mbean, (3) ThreadId…
|
CWE-200
CWE-264
Information Exposure
Permissions, Privileges, and Access Controls
|
CVE-2006-4136
|
2011-03-8 11:40 |
2006-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308222
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server before 6.1.0.1 allows attackers to obtain sensitive information via unspecified vectors related to (1) the log file, (2) "script generated syntax on wsadmin command l…
|
NVD-CWE-Other
|
CVE-2006-4137
|
2011-03-8 11:40 |
2006-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308223
|
- |
|
invision_power_services
|
invision_power_board
|
Unspecified vulnerability in func_topic_threaded.php (aka threaded view mode) in Invision Power Board (IPB) before 2.1.7 21013.60810.s allows remote attackers to "access posts outside the topic."
|
NVD-CWE-Other
|
CVE-2006-4155
|
2011-03-8 11:40 |
2006-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308224
|
- |
|
novell
|
groupwise
groupwise_webaccess
|
Multiple cross-site scripting (XSS) vulnerabilities in webacc in Novell GroupWise WebAccess before 7 Support Pack 3 Public Beta allow remote attackers to inject arbitrary web script or HTML via the (…
|
CWE-79
Cross-site Scripting
|
CVE-2006-4220
|
2011-03-8 11:40 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308225
|
- |
|
ibm
|
websphere_application_server
|
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.0.2.13 have unspecified vectors and impact, including (1) an "authority problem" in ThreadIdentitySupport as identifi…
|
NVD-CWE-Other
|
CVE-2006-4222
|
2011-03-8 11:40 |
2006-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308226
|
- |
|
twiki
|
twiki
|
Directory traversal vulnerability in viewfile in TWiki 4.0.0 through 4.0.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
|
NVD-CWE-Other
|
CVE-2006-4294
|
2011-03-8 11:40 |
2006-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308227
|
- |
|
cgi-rescue
|
mail_f_w_system
|
CRLF injection vulnerability in CGI-Rescue Mail F/W System (formd) before 8.3 allows remote attackers to spoof e-mails and inject e-mail headers via unspecified vectors in (1) mail.cgi and (2) query.…
|
NVD-CWE-Other
|
CVE-2006-4344
|
2011-03-8 11:40 |
2006-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308228
|
- |
|
apple
|
mac_os_x
|
The Apple Type Services (ATS) server in Mac OS X 10.4.8 and earlier does not securely create log files, which allows local users to create and modify arbitrary files via unspecified vectors, possibly…
|
NVD-CWE-Other
|
CVE-2006-4396
|
2011-03-8 11:40 |
2006-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308229
|
- |
|
apple
|
mac_os_x
|
Unchecked error condition in LoginWindow in Apple Mac OS X 10.4 through 10.4.7 prevents Kerberos tickets from being destroyed if a user does not successfully log on to a network account from the logi…
|
NVD-CWE-Other
|
CVE-2006-4397
|
2011-03-8 11:40 |
2006-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308230
|
- |
|
apple
|
mac_os_x
|
Multiple buffer overflows in the Apple Type Services (ATS) server in Mac OS X 10.4 through 10.4.8 allow local users to execute arbitrary code via crafted service requests.
|
NVD-CWE-Other
|
CVE-2006-4398
|
2011-03-8 11:40 |
2006-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
