|
306291
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
drivers/media/video/videobuf-vmalloc.c in the Linux kernel before 2.6.24 does not initialize videobuf_mapping data structures, which allows local users to trigger an incorrect count value and videobu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6761
|
2024-11-21 09:40 |
2017-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306292
|
9.8 |
CRITICAL
Network
|
dataprobe
|
ibootbar_firmware
|
Dataprobe iBootBar (with 2007-09-20 and possibly later beta firmware) allows remote attackers to bypass authentication, and conduct power-cycle attacks on connected devices, via a DCCOOKIE cookie.
|
CWE-287
Improper Authentication
|
CVE-2007-6760
|
2024-11-21 09:40 |
2017-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306293
|
9.8 |
CRITICAL
Network
|
dataprobe
|
ibootbar_firmware
|
Dataprobe iBootBar (with 2007-09-20 and possibly later released firmware) allows remote attackers to bypass authentication, and conduct power-cycle attacks on connected devices, via a DCRABBIT cookie.
|
CWE-287
Improper Authentication
|
CVE-2007-6759
|
2024-11-21 09:40 |
2017-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306294
|
- |
|
gehealthcare
|
centricity_dms_firmware
|
GE Healthcare Centricity DMS 4.2, 4.1, and 4.0 has a password of Muse!Admin for the Museadmin user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is de…
|
CWE-255
Credentials Management
|
CVE-2007-6757
|
2024-11-21 09:40 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306295
|
- |
|
zoll
|
monitor\/defibrillator
|
ZOLL Defibrillator / Monitor M Series, E Series, and R Series have a default password for System Configuration mode, which allows physically proximate attackers to modify device configuration and cau…
|
CWE-255
Credentials Management
|
CVE-2007-6756
|
2024-11-21 09:40 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306296
|
- |
|
dell
|
bsafe_crypto-c-micro-edition
bsafe_crypto-j
|
The NIST SP 800-90A default statement of the Dual Elliptic Curve Deterministic Random Bit Generation (Dual_EC_DRBG) algorithm contains point Q constants with a possible relationship to certain "skele…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2007-6755
|
2024-11-21 09:40 |
2013-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306297
|
- |
|
canonical
|
telepathy-idle
ubuntu_linux
|
telepathy-idle before 0.1.15 does not verify (1) that the issuer is a trusted CA, (2) that the server hostname matches a domain name in the subject's Common Name (CN), or (3) the expiration date of t…
|
CWE-20
Improper Input Validation
|
CVE-2007-6746
|
2024-11-21 09:40 |
2013-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306298
|
- |
|
freebsd
netbsd
|
freebsd
netbsd
|
The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD does not properly allocate memory, which makes it easier for context-dependent attackers to perform memory-…
|
CWE-189
Numeric Errors
|
CVE-2007-6754
|
2024-11-21 09:40 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306299
|
- |
|
microsoft
|
windows_2000
windows_server_2008
windows_vista
windows_7
windows_xp
|
Untrusted search path vulnerability in Shell32.dll in Microsoft Windows 2000, Windows XP, Windows Vista, Windows Server 2008, and Windows 7, when using an environment configured with a string such as…
|
NVD-CWE-Other
|
CVE-2007-6753
|
2024-11-21 09:40 |
2012-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306300
|
- |
|
drupal
|
drupal
|
Cross-site request forgery (CSRF) vulnerability in Drupal 7.12 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that end a session via the user/logout …
|
CWE-352
Origin Validation Error
|
CVE-2007-6752
|
2024-11-21 09:40 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
