267721
|
- |
|
ibm
|
db2
|
IBM DB2 8 before FP18, 9.1 before FP8, and 9.5 before FP4 allows remote authenticated users to bypass intended access restrictions, and update, insert, or delete table rows, via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3472
|
2009-10-14 14:26 |
2009-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267722
|
- |
|
strongswan
|
strongswan
|
charon/sa/ike_sa.c in the charon daemon in strongSWAN before 4.3.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an invalid IKE_SA_INIT request that tr…
|
CWE-399
Resource Management Errors
|
CVE-2009-1957
|
2009-10-14 14:24 |
2009-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267723
|
- |
|
strongswan
|
strongswan
|
charon/sa/tasks/child_create.c in the charon daemon in strongSWAN before 4.3.1 switches the NULL checks for TSi and TSr payloads, which allows remote attackers to cause a denial of service via an IKE…
|
CWE-399
Resource Management Errors
|
CVE-2009-1958
|
2009-10-14 14:24 |
2009-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267724
|
- |
|
mediawiki
|
mediawiki
|
Multiple cross-site scripting (XSS) vulnerabilities in the web-based installer (config/index.php) in MediaWiki 1.6 before 1.6.12, 1.12 before 1.12.4, and 1.13 before 1.13.4, when the installer is in …
|
CWE-79
Cross-site Scripting
|
CVE-2009-0737
|
2009-10-14 14:22 |
2009-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267725
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in MediaWiki 1.13.0 through 1.13.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-5249
|
2009-10-14 14:17 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267726
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.6.11, 1.12.x before 1.12.2, and 1.13.x before 1.13.3, when Internet Explorer is used and uploads are enabled, or an SVG scripting browse…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5250
|
2009-10-14 14:17 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267727
|
- |
|
mediawiki
|
mediawiki
|
Cross-site request forgery (CSRF) vulnerability in the Special:Import feature in MediaWiki 1.3.0 through 1.6.10, 1.12.x before 1.12.2, and 1.13.x before 1.13.3 allows remote attackers to perform unsp…
|
CWE-352
Origin Validation Error
|
CVE-2008-5252
|
2009-10-14 14:17 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267728
|
- |
|
navision
|
financials_server
|
Integer overflow in the ktruser function in NetBSD-current before 20061022, NetBSD 3 and 3-0 before 20061024, and NetBSD 2 before 20070209, when the kernel is built with the COMPAT_FREEBSD or COMPAT_…
|
NVD-CWE-Other
|
CVE-2007-1273
|
2009-10-14 13:56 |
2007-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267729
|
- |
|
vmware
|
server
|
Unspecified vulnerability in VMware Server before 1.0.4 causes user passwords to be recorded in cleartext in server logs, which might allow local users to gain privileges.
|
NVD-CWE-noinfo
|
CVE-2007-5619
|
2009-10-14 13:00 |
2007-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267730
|
- |
|
apple
|
mac_os_x
|
Mac OS X 10.3.9 and earlier allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow attackers to conduct unauthorized activities with esca…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-0970
|
2009-10-14 13:00 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|