|
298371
|
- |
|
emacspeak_inc
|
emacspeak
|
extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file.
|
CWE-59
Link Following
|
CVE-2008-4191
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298372
|
- |
|
redhat
|
cman
|
The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.
|
CWE-59
Link Following
|
CVE-2008-4192
|
2017-08-8 10:32 |
2008-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298373
|
- |
|
pdnsd
|
pdnsd
|
The p_exec_query function in src/dns_query.c in pdnsd before 1.2.7-par allows remote attackers to cause a denial of service (daemon crash) via a long DNS reply with many entries in the answer section…
|
CWE-399
Resource Management Errors
|
CVE-2008-4194
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298374
|
- |
|
opera
|
opera_browser
|
Opera before 9.52 does not properly restrict the ability of a framed web page to change the address associated with a different frame, which allows remote attackers to trigger the display of an arbit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4195
|
2017-08-8 10:32 |
2008-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298375
|
- |
|
opera
|
opera_browser
|
Opera before 9.52, when rendering an http page that has loaded an https page into a frame, displays a padlock icon and offers a security information dialog reporting a secure connection, which might …
|
NVD-CWE-Other
|
CVE-2008-4198
|
2017-08-8 10:32 |
2008-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298376
|
- |
|
opera
|
opera_browser
|
Opera before 9.52 does not prevent use of links from web pages to feed source files on the local disk, which might allow remote attackers to determine the validity of local filenames via vectors invo…
|
CWE-200
Information Exposure
|
CVE-2008-4199
|
2017-08-8 10:32 |
2008-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298377
|
- |
|
opera
|
opera_browser
|
Opera before 9.52 does not ensure that the address field of a news feed represents the feed's actual URL, which allows remote attackers to change this field to display the URL of a page containing we…
|
CWE-20
Improper Input Validation
|
CVE-2008-4200
|
2017-08-8 10:32 |
2008-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298378
|
- |
|
osads_alliance_database
|
osads_alliance_database
|
Unspecified vulnerability in OSADS Alliance Database before 2.1 has unknown impact and attack vectors, possibly related to includes/functions.php, a different issue than CVE-2006-2874.
|
NVD-CWE-noinfo
|
CVE-2008-4208
|
2017-08-8 10:32 |
2008-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298379
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in rlogind in the rlogin component in Mac OS X 10.4.11 and 10.5.5 applies hosts.equiv entries to root despite what is stated in documentation, which might allow remote attac…
|
CWE-16
Configuration
|
CVE-2008-4212
|
2017-08-8 10:32 |
2008-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298380
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in Script Editor in Mac OS X 10.4.11 and 10.5.5 allows local users to cause the scripting dictionary to be written to arbitrary locations, related to an "insecure file opera…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4214
|
2017-08-8 10:32 |
2008-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
