|
285031
|
- |
|
mozilla
|
firefox
seamonkey
|
Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way t…
|
CWE-16
CWE-264
Configuration
Permissions, Privileges, and Access Controls
|
CVE-2007-5338
|
2018-10-16 06:43 |
2007-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285032
|
- |
|
microsoft
|
windows_vista
|
Unspecified vulnerability in the Windows Advanced Local Procedure Call (ALPC) in the kernel in Microsoft Windows Vista allows local users to gain privileges via unspecified vectors involving "legacy …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5350
|
2018-10-16 06:43 |
2007-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285033
|
- |
|
microsoft
|
windows_vista
|
Unspecified vulnerability in Server Message Block Version 2 (SMBv2) signing support in Microsoft Windows Vista allows remote attackers to force signature re-computation and execute arbitrary code via…
|
CWE-94
Code Injection
|
CVE-2007-5351
|
2018-10-16 06:43 |
2007-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285034
|
- |
|
microsoft
|
windows_2000
windows_2003_server
windows_xp
|
Unspecified vulnerability in Local Security Authority Subsystem Service (LSASS) in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2 allows local users to gain privileges via a crafted …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5352
|
2018-10-16 06:43 |
2008-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285035
|
- |
|
digium
|
asterisk
|
Multiple buffer overflows in the voicemail functionality in Asterisk 1.4.x before 1.4.13, when using IMAP storage, might allow (1) remote attackers to execute arbitrary code via a long combination of…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5358
|
2018-10-16 06:43 |
2007-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285036
|
- |
|
libpng
|
libpng
|
Certain chunk handlers in libpng before 1.0.29 and 1.2.x before 1.2.21 allow remote attackers to cause a denial of service (crash) via crafted (1) pCAL (png_handle_pCAL), (2) sCAL (png_handle_sCAL), …
|
CWE-20
Improper Input Validation
|
CVE-2007-5269
|
2018-10-16 06:42 |
2007-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285037
|
- |
|
hp
|
mercury_quality_center
testdirector
|
HP Mercury Quality Center (QC) 9.2 and earlier, and possibly TestDirector, relies on cached client-side scripts to implement "workflow" and decisions about the "capability" of a user, which allows re…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5289
|
2018-10-16 06:42 |
2009-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285038
|
- |
|
idmos
|
idmos
|
Multiple cross-site scripting (XSS) vulnerabilities in IDMOS 1.0-beta (aka Phoenix) allow remote attackers to inject arbitrary web script or HTML via the (1) err_msg parameter to error.php and the (2…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5293
|
2018-10-16 06:42 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285039
|
- |
|
idmos
|
idmos
|
PHP remote file inclusion vulnerability in core/aural.php in IDMOS 1.0-beta (aka Phoenix) allows remote attackers to execute arbitrary PHP code via a URL in the site_absolute_path parameter.
|
CWE-94
Code Injection
|
CVE-2007-5294
|
2018-10-16 06:42 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285040
|
- |
|
creamotion
|
creamotion
|
Multiple PHP remote file inclusion vulnerabilities in CMS Creamotion allow remote attackers to execute arbitrary PHP code via a URL in the cfg[document_uri] parameter to (1) _administration/securite.…
|
CWE-94
Code Injection
|
CVE-2007-5298
|
2018-10-16 06:42 |
2007-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
