|
287851
|
- |
|
netbsd
|
netbsd
|
The kernel in NetBSD, probably 5.0.1 and earlier, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2793
|
2018-10-11 04:42 |
2009-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287852
|
- |
|
samba
apple
fedoraproject
|
samba
mac_os_x
mac_os_x_server
fedora
|
Samba 3.4 before 3.4.2, 3.3 before 3.3.8, 3.2 before 3.2.15, and 3.0.12 through 3.0.36, as used in the SMB subsystem in Apple Mac OS X 10.5.8 when Windows File Sharing is enabled, Fedora 11, and othe…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2813
|
2018-10-11 04:42 |
2009-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287853
|
- |
|
springsource
|
application_management_suite
hyperic_hq
tc_server
|
Multiple cross-site scripting (XSS) vulnerabilities in hq/web/common/GenericError.jsp in the generic exception handler in the web interface in SpringSource Hyperic HQ 3.2.x before 3.2.6.1, 4.0.x befo…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2897
|
2018-10-11 04:42 |
2009-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287854
|
- |
|
springsource
|
application_management_suite
hyperic_hq
tc_server
|
Cross-site scripting (XSS) vulnerability in the Alerts list feature in the web interface in SpringSource Hyperic HQ 3.2.x before 3.2.6.1, 4.0.x before 4.0.3.1, 4.1.x before 4.1.2.1, and 4.2-beta1; Ap…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2898
|
2018-10-11 04:42 |
2009-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287855
|
- |
|
thegreenbow
|
thegreenbow_vpn_client
|
The tgbvpn.sys driver in TheGreenBow IPSec VPN Client 4.61.003 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a crafted request to the 0x80000034 IOCT…
|
CWE-20
Improper Input Validation
|
CVE-2009-2918
|
2018-10-11 04:42 |
2009-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287856
|
- |
|
elkagroup
|
elkapax_cms
|
Cross-site scripting (XSS) vulnerability in the Search feature in elka CMS (aka Elkapax) allows remote attackers to inject arbitrary web script or HTML via the q parameter to the default URI.
|
CWE-79
Cross-site Scripting
|
CVE-2009-2930
|
2018-10-11 04:42 |
2009-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287857
|
- |
|
slideshowpro
|
director
|
Directory traversal vulnerability in p.php in SlideShowPro Director 1.1 through 1.3.8 allows remote attackers to read arbitrary files via directory traversal sequences in the a parameter.
|
CWE-22
Path Traversal
|
CVE-2009-2931
|
2018-10-11 04:42 |
2009-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287858
|
- |
|
sap
|
netweaver
|
Cross-site scripting (XSS) vulnerability in uddiclient/process in the UDDI client in SAP NetWeaver Application Server (Java) 7.0 allows remote attackers to inject arbitrary web script or HTML via the…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2932
|
2018-10-11 04:42 |
2009-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287859
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox 3.0.6 through 3.0.13, and 3.5.x, allows remote attackers to cause a denial of service (CPU consumption) via JavaScript code with a long string value for the hash property (aka locatio…
|
CWE-399
Resource Management Errors
|
CVE-2009-2953
|
2018-10-11 04:42 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287860
|
- |
|
google
|
chrome
|
Google Chrome 1.0.154.48 and earlier allows remote attackers to cause a denial of service (CPU consumption and application hang) via JavaScript code with a long string value for the hash property (ak…
|
CWE-20
Improper Input Validation
|
CVE-2009-2955
|
2018-10-11 04:42 |
2009-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
