|
306271
|
- |
|
g.rodola
|
pyftpdlib
|
The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command…
|
CWE-20
Improper Input Validation
|
CVE-2008-7264
|
2024-11-21 09:58 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306272
|
- |
|
g.rodola
|
pyftpdlib
|
ftpserver.py in pyftpdlib before 0.5.0 does not delay its response after receiving an invalid login attempt, which makes it easier for remote attackers to obtain access via a brute-force attack.
|
CWE-287
Improper Authentication
|
CVE-2008-7263
|
2024-11-21 09:58 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306273
|
- |
|
g.rodola
|
pyftpdlib
|
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a …
|
CWE-22
Path Traversal
|
CVE-2008-7262
|
2024-11-21 09:58 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306274
|
- |
|
ibm
|
filenet_p8_application_engine
|
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-010 records DEBUG messages containing user credentials in the log4j.xml file, which might allow local u…
|
CWE-255
Credentials Management
|
CVE-2008-7261
|
2024-11-21 09:58 |
2010-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306275
|
- |
|
anibal_monsalve_salaz
|
ssmtp
|
The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.62 allows local users to cause a denial of service (application exit) via an e-mail message containing a long line that begins wit…
|
CWE-20
Improper Input Validation
|
CVE-2008-7258
|
2024-11-21 09:58 |
2010-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306276
|
- |
|
cisco
|
asa_5580
|
CRLF injection vulnerability in +webvpn+/index.html in WebVPN on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allows remote attackers to inject arbitrary H…
|
CWE-20
Improper Input Validation
|
CVE-2008-7257
|
2024-11-21 09:58 |
2010-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306277
|
6.5 |
MEDIUM
Network
|
redhat
|
jboss_operations_network
|
In JON 2.1.x before 2.1.2 SP1, users can obtain unauthorized security information about private resources managed by JBoss ON.
|
CWE-200
Information Exposure
|
CVE-2008-5083
|
2024-11-21 09:53 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306278
|
- |
|
symantec
|
workspace_streaming
appstream
|
Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x before 6.1 SP4 do not properly perform authentication, which allows remote Workspace Streaming servers and man-in-the-middle atta…
|
CWE-287
Improper Authentication
|
CVE-2008-4389
|
2024-11-21 09:51 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306279
|
5.9 |
MEDIUM
Network
|
openid
|
openid
|
It was found that various OpenID Providers (OPs) had TLS Server Certificates that used weak keys, as a result of the Debian Predictable Random Number Generator (CVE-2008-0166). In combination with th…
|
-
|
CVE-2008-3280
|
2024-11-21 09:48 |
2021-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306280
|
7.8 |
HIGH
Local
|
redhat
|
frysk
|
frysk packages through 2008-08-05 as shipped in Red Hat Enterprise Linux 5 are built with an insecure RPATH set in the ELF header of multiple binaries in /usr/bin/f* (e.g. fcore, fcatch, fstack, fste…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2008-3278
|
2024-11-21 09:48 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
