270021
|
- |
|
inktomi
|
inktomi_search
|
Inktomi Search 4.1.4 allows remote attackers to obtain sensitive information via direct requests with missing parameters to (1) help/header.html, (2) thesaurus.html, and (3) topics.html, which leak t…
|
NVD-CWE-Other
|
CVE-2006-6658
|
2008-09-6 06:15 |
2006-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270022
|
- |
|
microsoft
|
ie outlook windows_xp
|
The Microsoft Office Outlook Recipient ActiveX control (ole32.dll) in Windows XP SP2 allows remote attackers to cause a denial of service (Internet Explorer 7 hang) via crafted HTML.
|
NVD-CWE-Other
|
CVE-2006-6659
|
2008-09-6 06:15 |
2006-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270023
|
- |
|
suse
|
suse_open_enterprise_server linux_enterprise_desktop suse_linux
|
Unspecified vulnerability in Linux User Management (novell-lum) on SUSE Linux Enterprise Desktop 10 and Open Enterprise Server 9, under unspecified conditions, allows local users to log in to the con…
|
NVD-CWE-noinfo CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-6662
|
2008-09-6 06:15 |
2006-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270024
|
- |
|
suse
|
suse_open_enterprise_server linux_enterprise_desktop suse_linux
|
Under certain circumstances it is possible to login to the console without a legitimate password. However, those circumstances are unspecified.
|
NVD-CWE-noinfo CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-6662
|
2008-09-6 06:15 |
2006-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270025
|
- |
|
chetcpasswd
|
chetcpasswd
|
Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the need for 0400 permissions on /etc/chetcpasswd.allow, which might allow local users to gain sensitive information by reading this file.
|
NVD-CWE-Other
|
CVE-2006-6680
|
2008-09-6 06:15 |
2006-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270026
|
- |
|
web-app.net
|
webapp
|
Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET) allows remote attackers to bypass filtering mechanisms via unknown vectors. NOTE: The provenance of th…
|
NVD-CWE-Other
|
CVE-2006-6688
|
2008-09-6 06:15 |
2006-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270027
|
- |
|
calacode
|
atmail_webmail_system
|
Cross-site scripting (XSS) vulnerability in @Mail WebMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: This information is based upon a vague initial…
|
NVD-CWE-Other
|
CVE-2006-6700
|
2008-09-6 06:15 |
2006-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270028
|
- |
|
mcafee
|
neotrace visual_trace
|
Stack-based buffer overflow in the NeoTraceExplorer.NeoTraceLoader ActiveX control (NeoTraceExplorer.dll) in NeoTrace Express 3.25 and NeoTrace Pro (aka McAfee Visual Trace) 3.25 allows remote attack…
|
NVD-CWE-Other
|
CVE-2006-6707
|
2008-09-6 06:15 |
2006-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270029
|
- |
|
knusperleicht
|
shoutbox
|
Multiple cross-site scripting (XSS) vulnerabilities in shout.php in Knusperleicht ShoutBox 2.6 allow remote attackers to inject arbitrary web script or HTML via the (1) sbNick or (2) sbKommentar para…
|
NVD-CWE-Other
|
CVE-2006-6721
|
2008-09-6 06:15 |
2006-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270030
|
- |
|
phpprofiles
|
phpprofiles
|
phpProfiles before 2.1.1 does not have an index.php or other index file in the (1) image_data, (2) graphics/comm, or (3) users read/write directories, which might allow remote attackers to list direc…
|
NVD-CWE-Other
|
CVE-2006-6744
|
2008-09-6 06:15 |
2006-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|