|
303351
|
- |
|
ibm
|
websphere_mq
|
IBM WebSphere MQ 6.0 before 6.0.2.8 and 7.0 before 7.0.1.0 does not properly handle long group names, which might allow local users to gain privileges by leveraging combinations of group names with t…
|
CWE-20
Improper Input Validation
|
CVE-2009-0905
|
2024-11-21 10:01 |
2011-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303352
|
- |
|
ibm
|
websphere_mq
|
Heap-based buffer overflow in the client in IBM WebSphere MQ 6.0 before 6.0.2.7 and 7.0 before 7.0.1.0 allows local users to gain privileges via crafted SSL information in a Client Channel Definition…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0900
|
2024-11-21 10:01 |
2011-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303353
|
- |
|
dell
|
wyse_device_manager
|
hagent.exe in Wyse Device Manager (WDM) 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 que…
|
CWE-287
Improper Authentication
|
CVE-2009-0695
|
2024-11-21 10:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303354
|
- |
|
dell
|
wyse_device_manager
|
Multiple buffer overflows in Wyse Device Manager (WDM) 4.7.x allow remote attackers to execute arbitrary code via (1) the User-Agent HTTP header to hserver.dll or (2) unspecified input to hagent.exe.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0693
|
2024-11-21 10:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303355
|
- |
|
redhat
|
network_satellite_server
|
Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote attackers to (1) obtain unspecified sensitive host information or (2) use the server…
|
CWE-200
Information Exposure
|
CVE-2009-0788
|
2024-11-21 10:00 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303356
|
7.5 |
HIGH
Network
|
mirc
|
mirc
|
mIRC before 6.35 allows attackers to cause a denial of service (crash) via a long nickname.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2008-7314
|
2024-11-21 09:58 |
2020-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303357
|
7.8 |
HIGH
Local
|
getfiregpg
|
iceweasel-firegpg
|
A symlink issue exists in Iceweasel-firegpg before 0.6 due to insecure tempfile handling.
|
CWE-59
Link Following
|
CVE-2008-7273
|
2024-11-21 09:58 |
2019-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303358
|
5.5 |
MEDIUM
Local
|
alsa-project
|
alsa
|
alsa-utils 1.0.19 and later versions allows local users to overwrite arbitrary files via a symlink attack via the /usr/bin/alsa-info and /usr/bin/alsa-info.sh scripts.
|
CWE-59
Link Following
|
CVE-2009-0035
|
2024-11-21 09:58 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303359
|
9.8 |
CRITICAL
Network
|
gri_project
debian
|
gri
debian_linux
|
gri before 2.12.18 generates temporary files in an insecure way.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2008-7291
|
2024-11-21 09:58 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303360
|
7.5 |
HIGH
Network
|
getfiregpg
|
firegpg
|
FireGPG before 0.6 handle user’s passphrase and decrypted cleartext insecurely by writing pre-encrypted cleartext and the user's passphrase to disk which may result in the compromise of secure commun…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2008-7272
|
2024-11-21 09:58 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
