|
306241
|
- |
|
opera
|
opera_browser
|
Opera cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7297
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306242
|
- |
|
apple
|
safari
|
Apple Safari cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7296
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306243
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Se…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7295
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306244
|
- |
|
google
|
chrome
|
Google Chrome before 4.0.211.0 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7294
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306245
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 4 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-C…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7293
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306246
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 2.20.x before 2.20.5, 2.22.x before 2.22.3, and 3.0.x before 3.0.3 on Windows does not delete the temporary files associated with uploaded attachments, which allows local users to obtain sen…
|
CWE-200
Information Exposure
|
CVE-2008-7292
|
2024-11-21 09:58 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306247
|
- |
|
ibm
|
tivoli_directory_server
|
Memory leak in the ldap_explode_rdn API function in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 allows remote authenticated users to cause a denial of service (memory consump…
|
CWE-399
Resource Management Errors
|
CVE-2008-7290
|
2024-11-21 09:58 |
2011-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306248
|
- |
|
ibm
|
tivoli_directory_server
|
IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 does not properly handle the simultaneous changing of multiple passwords, which makes it easier for remote authenticated users to …
|
CWE-20
Improper Input Validation
|
CVE-2008-7289
|
2024-11-21 09:58 |
2011-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306249
|
- |
|
ibm
|
tivoli_directory_server
|
IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 on AIX allows remote attackers to cause a denial of service (server destabilization) via an anonymous DIGEST-MD5 LDAP Bind operati…
|
CWE-399
Resource Management Errors
|
CVE-2008-7288
|
2024-11-21 09:58 |
2011-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306250
|
- |
|
ibm
|
tivoli_directory_server
|
Multiple memory leaks in the (1) ldap_init and (2) ldap_url_search_direct API functions in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-LA0007 allow remote authenticated users to cau…
|
CWE-399
Resource Management Errors
|
CVE-2008-7287
|
2024-11-21 09:58 |
2011-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
