|
285361
|
- |
|
microsoft
|
windows_mobile
|
Windows Mobile 6 on the HTC Hermes device makes WLAN passwords available to an auto-completion mechanism for the password input field, which allows physically proximate attackers to bypass password a…
|
CWE-255
Credentials Management
|
CVE-2008-4540
|
2018-10-12 05:52 |
2008-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285362
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows remote web servers to cause a denial of service (NULL pointer dereference and browser crash) b…
|
CWE-399
Resource Management Errors
|
CVE-2008-4546
|
2018-10-12 05:52 |
2008-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285363
|
- |
|
imageshack
|
imageshack_toolbar
|
The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7, possibly including 4.5.7.69, allows remote attackers to force the upload of arbitrary image files to the Im…
|
CWE-20
Improper Input Validation
|
CVE-2008-4549
|
2018-10-12 05:52 |
2008-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285364
|
- |
|
nfs
|
nfs-utils
|
The good_client function in nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hosts_ctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4552
|
2018-10-12 05:52 |
2008-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285365
|
- |
|
graphviz
|
graphviz
|
Stack-based buffer overflow in the push_subg function in parser.y (lib/graph/parser.c) in Graphviz 2.20.2, and possibly earlier versions, allows user-assisted remote attackers to cause a denial of se…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-4555
|
2018-10-12 05:52 |
2008-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285366
|
- |
|
sun
|
solaris
|
Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-4556
|
2018-10-12 05:52 |
2008-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285367
|
- |
|
videolan
|
vlc_media_player
|
Array index error in VLC media player 0.9.2 allows remote attackers to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a s…
|
CWE-399
Resource Management Errors
|
CVE-2008-4558
|
2018-10-12 05:52 |
2008-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285368
|
- |
|
dovecot
|
dovecot
|
The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4578
|
2018-10-12 05:52 |
2008-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285369
|
- |
|
belong_software
|
site_builder
|
Belong Software Site Builder 0.1 beta allows remote attackers to bypass intended access restrictions and perform administrative actions via a direct request to admin/home.php.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4585
|
2018-10-12 05:52 |
2008-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285370
|
- |
|
lenovo
|
resuce_and_recovery
|
Heap-based buffer overflow in the tvtumin.sys kernel driver in Lenovo Rescue and Recovery 4.20, including 4.20.0511 and 4.20.0512, allows local users to execute arbitrary code via a long file name.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-4589
|
2018-10-12 05:52 |
2008-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
