270001
|
- |
|
firebirdsql
|
firebird
|
fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local users to cause a denial of service (blocked query processing) by locking semaphores.
|
NVD-CWE-Other
|
CVE-2006-7211
|
2008-09-6 06:16 |
2007-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270002
|
- |
|
firebirdsql
|
firebird
|
Multiple buffer overflows in Firebird 1.5, one of which affects WNET, have unknown impact and attack vectors. NOTE: this issue might overlap CVE-2006-1240.
|
NVD-CWE-Other
|
CVE-2006-7212
|
2008-09-6 06:16 |
2007-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270003
|
- |
|
firebirdsql
|
firebird
|
Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database.
|
NVD-CWE-Other
|
CVE-2006-7213
|
2008-09-6 06:16 |
2007-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270004
|
- |
|
firebirdsql
|
firebird
|
Multiple unspecified vulnerabilities in Firebird 1.5 allow remote attackers to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of se…
|
NVD-CWE-Other
|
CVE-2006-7214
|
2008-09-6 06:16 |
2007-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270005
|
- |
|
intel
|
core_2_duo_e4000 core_2_duo_e6000 core_2_extreme_x6800
|
The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the…
|
NVD-CWE-Other
|
CVE-2006-7215
|
2008-09-6 06:16 |
2007-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270006
|
- |
|
apache
|
derby
|
Apache Derby before 10.2.1.6 does not determine privilege requirements for lock table statements at compilation time, and consequently does not enforce privilege requirements at execution time, which…
|
NVD-CWE-Other
|
CVE-2006-7216
|
2008-09-6 06:16 |
2007-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270007
|
- |
|
apache
|
derby
|
Apache Derby before 10.2.1.6 does not determine schema privilege requirements during the DropSchemaNode bind phase, which allows remote authenticated users to execute arbitrary drop schema statements…
|
NVD-CWE-Other
|
CVE-2006-7217
|
2008-09-6 06:16 |
2007-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270008
|
- |
|
sap
|
saplpd sapsprint
|
Unspecified vulnerability in SAP SAPLPD and SAPSPRINT allows remote attackers to cause a denial of service (application crash) via a certain print job request. NOTE: the provenance of this informati…
|
NVD-CWE-Other
|
CVE-2006-7220
|
2008-09-6 06:16 |
2007-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270009
|
- |
|
xwiki
|
xwiki
|
PreviewAction in XWiki 0.9.543 through 0.9.1252 does not set the Author field to the identity of the user who last modified a document, which allows remote authenticated users without programming rig…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-7223
|
2008-09-6 06:16 |
2007-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270010
|
- |
|
scriptphp
|
pronews
|
admin/change.php in ProNews 1.5 does not check whether a user is permitted to change news items, which allows remote attackers to add or delete information within an item, and possibly have other imp…
|
NVD-CWE-Other
|
CVE-2006-6580
|
2008-09-6 06:15 |
2006-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|