|
311201
|
- |
|
php
|
php
|
PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as…
|
CWE-20
Improper Input Validation
|
CVE-2006-7243
|
2024-11-21 09:24 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311202
|
- |
|
ibm
|
filenet_p8_application_engine
|
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-001 does not ensure that the AE Administrator role is present for Site Preferences modifications, which…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-7242
|
2024-11-21 09:24 |
2010-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311203
|
- |
|
ibm
|
filenet_p8_application_engine
|
The Image Viewer component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-002 removes a user from an ACL when the user is denied all permissions for an annotation, which might allow r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-7241
|
2024-11-21 09:24 |
2010-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311204
|
- |
|
gnome
|
power_manager
|
gnome-power-manager 2.14.0 does not properly implement the lock_on_suspend and lock_on_hibernate settings for locking the screen when the suspend or hibernate button is pressed, which might make it e…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-7240
|
2024-11-21 09:24 |
2010-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311205
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The altivec_unavailable_exception function in arch/powerpc/kernel/traps.c in the Linux kernel before 2.6.19 on 64-bit systems mishandles the case where CONFIG_ALTIVEC is defined and the CPU actually …
|
CWE-19
Data Processing Errors
|
CVE-2006-5331
|
2024-11-21 09:18 |
2017-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311206
|
8.1 |
HIGH
Network
|
archivemail_project
debian
|
archivemail
debian_linux
|
archivemail 0.6.2 uses temporary files insecurely leading to a possible race condition.
|
CWE-362
Race Condition
|
CVE-2006-4245
|
2024-11-21 09:15 |
2019-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311207
|
9.8 |
CRITICAL
Network
|
linux-vserver
|
linux-vserver
|
linux vserver 2.6 before 2.6.17 suffers from privilege escalation in remount code.
|
CWE-269
Improper Privilege Management
|
CVE-2006-4243
|
2024-11-21 09:15 |
2019-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311208
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The ia64 subsystem in the Linux kernel before 2.6.26 allows local users to cause a denial of service (stack consumption and system crash) via a crafted application that leverages the mishandling of i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2006-3635
|
2024-11-21 09:14 |
2017-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311209
|
9.8 |
CRITICAL
Network
|
termpkg_project
|
termpkg
|
termpkg 3.3 suffers from buffer overflow.
|
CWE-120
Classic Buffer Overflow
|
CVE-2006-3100
|
2024-11-21 09:12 |
2019-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311210
|
7.5 |
HIGH
Network
|
apache
|
http_server
|
A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash.
…
|
-
|
CVE-2006-20001
|
2024-11-21 09:10 |
2023-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
