|
276491
|
- |
|
ingate
|
ingate_firewall
ingate_siparator
|
The SIP component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0, when Remote NAT Traversal is employed, does not properly perform user registration and message distribution, which might …
|
CWE-200
Information Exposure
|
CVE-2007-6095
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276492
|
- |
|
ingate
|
ingate_firewall
ingate_siparator
|
Ingate Firewall before 4.6.0 and SIParator before 4.6.0 use cleartext storage for passwords of "administrators with less privileges," which might allow attackers to read these passwords via unknown v…
|
CWE-255
Credentials Management
|
CVE-2007-6096
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276493
|
- |
|
ingate
|
ingate_firewall
ingate_siparator
|
Unspecified vulnerability in the ICMP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 has unknown impact and remote attack vectors, related to ICMP packets that are "incorre…
|
NVD-CWE-noinfo
|
CVE-2007-6097
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276494
|
- |
|
ingate
|
ingate_firewall
ingate_siparator
|
Ingate Firewall before 4.6.0 and SIParator before 4.6.0 do not log truncated (1) ICMP, (2) UDP, and (3) TCP packets, which has unknown impact and remote attack vectors; and do not log (4) serial-cons…
|
NVD-CWE-Other
|
CVE-2007-6098
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276495
|
- |
|
claws_mail
|
claws_mail_tools
|
sylprint.pl in claws mail tools (claws-mail-tools) allows local users to overwrite arbitrary files via a symlink attack on the sylprint.[USER].[PID] temporary file.
|
CWE-59
Link Following
|
CVE-2007-6208
|
2008-11-15 16:03 |
2007-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276496
|
- |
|
ossigeno
|
cms
|
Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b)…
|
CWE-20
Improper Input Validation
|
CVE-2007-6218
|
2008-11-15 16:03 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276497
|
- |
|
work_system_e-commerce
|
work_system_e-commerce
|
Unspecified vulnerability in WORK system e-commerce before 4.0.2 has unknown impact and attack vectors related to "Ajax pages."
|
NVD-CWE-noinfo
|
CVE-2007-5801
|
2008-11-15 16:02 |
2007-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276498
|
- |
|
ssreader
|
ultra_star_reader
|
Buffer overflow in the register function in Ultra Star Reader ActiveX control in SSReader allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild. NOTE: t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5807
|
2008-11-15 16:02 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276499
|
- |
|
contentcustomizer
|
contentcustomizer
|
dialog.php in CONTENTCustomizer 3.1mp and earlier allows remote attackers to obtain sensitive author credentials by making a request with an editauthor action, then reading the value of the newlocalp…
|
CWE-200
Information Exposure
|
CVE-2007-5816
|
2008-11-15 16:02 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276500
|
- |
|
avaya
|
message_networking
messaging_storage_server
|
Unspecified vulnerability in the administrative interface in Avaya Messaging Storage Server (MSS) 3.1 before SP1, and Message Networking (MN) 3.1, allows remote attackers to cause a denial of service…
|
NVD-CWE-noinfo
CWE-20
Improper Input Validation
|
CVE-2007-5830
|
2008-11-15 16:02 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
