|
285171
|
- |
|
microsoft
|
internet_explorer
|
The XSS Filter in Microsoft Internet Explorer 8.0 Beta 2 allows remote attackers to bypass the XSS protection mechanism and conduct XSS attacks by injecting data at two different positions within an …
|
CWE-79
Cross-site Scripting
|
CVE-2008-5551
|
2018-10-12 05:56 |
2008-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285172
|
- |
|
microsoft
|
internet_explorer
|
The XSS Filter in Microsoft Internet Explorer 8.0 Beta 2 allows remote attackers to bypass the XSS protection mechanism and conduct XSS attacks via a CRLF sequence in conjunction with a crafted Conte…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5552
|
2018-10-12 05:56 |
2008-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285173
|
- |
|
microsoft
|
internet_explorer
|
The XSS Filter in Microsoft Internet Explorer 8.0 Beta 2 disables itself upon encountering a certain X-XSS-Protection HTTP header, which allows remote attackers to bypass the XSS protection mechanism…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5553
|
2018-10-12 05:56 |
2008-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285174
|
- |
|
microsoft
|
internet_explorer
|
The XSS Filter in Microsoft Internet Explorer 8.0 Beta 2 does not properly handle some HTTP headers that appear after a CRLF sequence in a URI, which allows remote attackers to bypass the XSS protect…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5554
|
2018-10-12 05:56 |
2008-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285175
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 8.0 Beta 2 relies on the XDomainRequestAllowed HTTP header to authorize data exchange between domains, which allows remote attackers to bypass the product's XSS Filter pro…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5555
|
2018-10-12 05:56 |
2008-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285176
|
- |
|
php
|
php
|
Heap-based buffer overflow in ext/mbstring/libmbfl/filters/mbfilter_htmlent.c in the mbstring extension in PHP 4.3.0 through 5.2.6 allows context-dependent attackers to execute arbitrary code via a c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5557
|
2018-10-12 05:56 |
2008-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285177
|
- |
|
asterisk
|
asterisk_business_edition
open_source
|
Asterisk Open Source 1.2.26 through 1.2.30.3 and Business Edition B.2.3.5 through B.2.5.5, when realtime IAX2 users are enabled, allows remote attackers to cause a denial of service (crash) via authe…
|
CWE-287
Improper Authentication
|
CVE-2008-5558
|
2018-10-12 05:56 |
2008-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285178
|
- |
|
aruba_networks
arubanetworks
|
aruba_mobility_controller
aruba_mobility_controllers
|
Aruba Mobility Controller 2.4.8.x-FIPS, 2.5.x, 3.1.x, 3.2.x, 3.3.1.x, and 3.3.2.x allows remote attackers to cause a denial of service (device crash) via a malformed Extensible Authentication Protoco…
|
CWE-399
Resource Management Errors
|
CVE-2008-5563
|
2018-10-12 05:56 |
2008-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285179
|
- |
|
aruba_networks
arubanetworks
|
aruba_mobility_controller
aruba_mobility_controllers
|
http://secunia.com/advisories/33057
Note: When using wireless, this only affects devices running in WPA/WPA2 Enterprise modes.
The vulnerability is reported in ArubaOS 2.4.8.x-FIPS, 2.5.x, 3.1.…
|
CWE-399
Resource Management Errors
|
CVE-2008-5563
|
2018-10-12 05:56 |
2008-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285180
|
- |
|
orb_networks
|
orb
|
Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service (daemon crash) via a malformed HTTP request.
|
NVD-CWE-noinfo
|
CVE-2008-5564
|
2018-10-12 05:56 |
2008-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
