|
307701
|
- |
|
realnetworks
|
helix_server
helix_server_mobile
|
Per: http://docs.real.com/docs/security/SecurityUpdate121508HS.pdf
The Fix:
Version 11.1.8 and Version 12.0.1 of the Helix Server and the Helix Mobile Server have been updated to ensure that the …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5911
|
2011-03-8 12:15 |
2009-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307702
|
- |
|
juniper
|
netscreen_screenos
|
Cross-site scripting (XSS) vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web script or HTML via the user name parameter to th…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6096
|
2011-03-8 12:15 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307703
|
- |
|
typo3
|
wec_discussion_forum
|
Multiple cross-site scripting (XSS) vulnerabilities in the WEC Discussion Forum (wec_discussion) extension 1.7.0 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2008-6144
|
2011-03-8 12:15 |
2009-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307704
|
- |
|
typo3
|
wec_discussion_forum
|
Multiple SQL injection vulnerabilities in the WEC Discussion Forum (wec_discussion) extension 1.7.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vect…
|
CWE-89
SQL Injection
|
CVE-2008-6145
|
2011-03-8 12:15 |
2009-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307705
|
- |
|
enlightenment
|
imlib2
|
The load function in the XPM loader for imlib2 1.4.2, and possibly other versions, allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted XPM file tha…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5187
|
2011-03-8 12:14 |
2008-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307706
|
- |
|
xine
|
xine
|
Heap-based buffer overflow in the demux_real_send_chunk function in src/demuxers/demux_real.c in xine-lib before 1.1.15 allows remote attackers to execute arbitrary code via a crafted Real Media file…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5235
|
2011-03-8 12:14 |
2008-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307707
|
- |
|
zilab
|
zim_server
|
The Local ZIM Server (zcs.exe) in Zilab Chat and Instant Messaging (ZIM) Server 2.1 and earlier allow remote attackers to execute arbitrary code via (1) heap-based buffer overflows involving multiple…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5279
|
2011-03-8 12:14 |
2008-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307708
|
- |
|
zilab
|
zim_server
|
The Local ZIM Server in Zilab Chat and Instant Messaging (ZIM) Server 2.0 and 2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted requests without required…
|
CWE-399
Resource Management Errors
|
CVE-2008-5280
|
2011-03-8 12:14 |
2008-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307709
|
- |
|
typo3
|
commerce_extension
|
SQL injection vulnerability in the Commerce extension 0.9.6 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2008-5609
|
2011-03-8 12:14 |
2008-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307710
|
- |
|
ibm
|
websphere_portal
|
Unspecified vulnerability in IBM WebSphere Portal 6.0 before 6.0.1.5 has unknown impact and attack vectors related to "Access problems with BasicAuthTAI."
|
NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5675
|
2011-03-8 12:14 |
2008-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
