|
266671
|
- |
|
hitachi
|
groupmax_collaboration_portal
groupmax_collaboration_web_client
ucosminexus_collaboration_portal
|
Unspecified vulnerability in the Groupmax Collaboration - Schedule component in Hitachi Groupmax Collaboration Portal 07-30 through 07-30-/F and 07-32 through 07-32-/C, uCosminexus Collaboration Port…
|
NVD-CWE-noinfo
|
CVE-2007-5808
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266672
|
- |
|
ibm
|
tivoli_continuous_data_protection_for_files
|
IBM Tivoli Continuous Data Protection for Files (CDP) 3.1.0 uses weak permissions (unrestricted write) for the Central Admin Global download directory, which allows local users to place arbitrary fil…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5819
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266673
|
- |
|
iscsitarget
|
iscsitarget
|
iSCSI Enterprise Target (iscsitarget) 0.4.15 uses weak permissions for /etc/ietd.conf, which allows local users to obtain passwords.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5827
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266674
|
- |
|
symantec
|
norton_antivirus
norton_internet_security
|
The Disk Mount scanner in Symantec AntiVirus for Macintosh 9.x and 10.x, Norton AntiVirus for Macintosh 10.0 and 10.1, and Norton Internet Security for Macintosh 3.x, uses a directory with weak permi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5829
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266675
|
- |
|
afcommerce
|
afcommerce
|
SQL injection vulnerability in Amazing Flash AFCommerce allows remote attackers to execute arbitrary SQL commands via the firstname parameter to an unspecified component, a different issue than CVE-2…
|
CWE-89
SQL Injection
|
CVE-2007-5836
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266676
|
- |
|
yarssr
|
yarssr
|
GUI.pm in yarssr 0.2.2, when Gnome default URL handling is disabled, allows remote attackers to execute arbitrary commands via shell metacharacters in a link element in a feed.
|
CWE-94
Code Injection
|
CVE-2007-5837
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266677
|
- |
|
symantec
|
altiris_deployment_solution
|
Aclient in Symantec Altiris Deployment Solution 6.x before 6.8.380.0 allows local users to gain local System privileges via the "Enable key-based authentication to Deployment server" browser option, …
|
CWE-16
Configuration
|
CVE-2007-5838
|
2017-07-29 10:33 |
2007-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266678
|
- |
|
bitchx
|
bitchx
|
The e_hostname function in commands.c in BitchX 1.1a allows local users to overwrite arbitrary files via a symlink attack on temporary files when using the (1) HOSTNAME or (2) IRCHOST command.
|
CWE-59
Link Following
|
CVE-2007-5839
|
2017-07-29 10:33 |
2007-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266679
|
- |
|
apple
|
mac_os_x
|
Race condition in the CFURLWriteDataAndPropertiesToResource API in Core Foundation in Apple Mac OS X 10.4.11 creates files with insecure permissions, which might allow local users to obtain sensitive…
|
CWE-362
Race Condition
|
CVE-2007-5847
|
2017-07-29 10:33 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266680
|
- |
|
easy_software_products
|
cups
|
Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) for CUPS 1.2 through 1.3.4 allows remote attackers to execute arbitrary code via a crafted SNMP response that t…
|
CWE-189
Numeric Errors
|
CVE-2007-5849
|
2017-07-29 10:33 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
