|
305841
|
- |
|
canonical
|
telepathy-idle
ubuntu_linux
|
telepathy-idle before 0.1.15 does not verify (1) that the issuer is a trusted CA, (2) that the server hostname matches a domain name in the subject's Common Name (CN), or (3) the expiration date of t…
|
CWE-20
Improper Input Validation
|
CVE-2007-6746
|
2024-11-21 09:40 |
2013-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305842
|
- |
|
freebsd
netbsd
|
freebsd
netbsd
|
The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD does not properly allocate memory, which makes it easier for context-dependent attackers to perform memory-…
|
CWE-189
Numeric Errors
|
CVE-2007-6754
|
2024-11-21 09:40 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305843
|
- |
|
microsoft
|
windows_2000
windows_server_2008
windows_vista
windows_7
windows_xp
|
Untrusted search path vulnerability in Shell32.dll in Microsoft Windows 2000, Windows XP, Windows Vista, Windows Server 2008, and Windows 7, when using an environment configured with a string such as…
|
NVD-CWE-Other
|
CVE-2007-6753
|
2024-11-21 09:40 |
2012-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305844
|
- |
|
drupal
|
drupal
|
Cross-site request forgery (CSRF) vulnerability in Drupal 7.12 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that end a session via the user/logout …
|
CWE-352
Origin Validation Error
|
CVE-2007-6752
|
2024-11-21 09:40 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305845
|
- |
|
flexerasoftware
|
installshield
|
Flexera Macrovision InstallShield before 2008 sends a digital-signature password to an unintended application during certain signature operations involving .spc and .pvk files, which might allow loca…
|
CWE-200
Information Exposure
|
CVE-2007-6744
|
2024-11-21 09:40 |
2012-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305846
|
- |
|
h-fj
|
mailform_plugin
|
Cross-site scripting (XSS) vulnerability in the MailForm plugin before 1.20 for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2007-6751
|
2024-11-21 09:40 |
2012-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305847
|
- |
|
apache
|
http_server
|
The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the mod_reqtime…
|
CWE-399
Resource Management Errors
|
CVE-2007-6750
|
2024-11-21 09:40 |
2011-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305848
|
- |
|
ibm
|
tivoli_directory_server
|
Double free vulnerability in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0005 allows remote authenticated users to cause a denial of service (ABEND) via search operations that tri…
|
CWE-399
Resource Management Errors
|
CVE-2007-6743
|
2024-11-21 09:40 |
2011-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305849
|
- |
|
ibm
|
tivoli_directory_server
|
The get_filter_list function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0006 does not properly perform certain sub filter parsing, which allows remote authenticated users to c…
|
CWE-399
Resource Management Errors
|
CVE-2007-6742
|
2024-11-21 09:40 |
2011-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305850
|
- |
|
g.rodola
|
pyftpdlib
|
The ftp_PORT function in FTPServer.py in pyftpdlib before 0.2.0 does not prevent TCP connections to privileged ports if the destination IP address matches the source IP address of the connection from…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6741
|
2024-11-21 09:40 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
