|
258341
|
- |
|
sonicwall
|
global_vpn_client
|
Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string …
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2007-6273
|
2011-03-8 12:02 |
2007-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258342
|
- |
|
ibm
|
hardware_management_console
|
Multiple unspecified vulnerabilities in IBM Hardware Management Console (HMC) 6 R1.3 allow attackers to gain privileges via "some HMC commands."
|
NVD-CWE-noinfo
|
CVE-2007-6293
|
2011-03-8 12:02 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258343
|
- |
|
ibm
|
hardware_management_console
|
Multiple unspecified vulnerabilities in IBM Hardware Management Console (HMC) 7 R3.2.0 allow attackers to gain privileges via "some HMC commands."
|
CWE-264
CWE-119
Permissions, Privileges, and Access Controls
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6305
|
2011-03-8 12:02 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258344
|
- |
|
mysql
|
mysql_community_server
|
MySQL Server 5.1.x before 5.1.23 and 6.0.x before 6.0.4 does not check the rights of the entity executing BINLOG, which allows remote authorized users to execute arbitrary BINLOG statements.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6313
|
2011-03-8 12:02 |
2008-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258345
|
- |
|
clam_anti-virus
|
clamav
|
Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV before 0.92 has unknown impact and remote attack vectors.
|
NVD-CWE-noinfo
|
CVE-2007-6337
|
2011-03-8 12:02 |
2008-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258346
|
- |
|
hp
|
openview_network_node_manager
|
Cross-site scripting (XSS) vulnerability in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2007-6343
|
2011-03-8 12:02 |
2007-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258347
|
- |
|
aertherwide
|
exiftags
|
exiftags before 1.01 allows attackers to cause a denial of service (infinite loop) via recursive IFD references in the EXIF data in a JPEG image.
|
CWE-399
Resource Management Errors
|
CVE-2007-6356
|
2011-03-8 12:02 |
2007-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258348
|
- |
|
nokia
|
n95
|
Nokia N95 cell phone with RM-159 12.0.013 firmware allows remote attackers to cause a denial of service (device inoperability) via a SIP INVITE message accompanied by an immediately subsequent SIP CA…
|
CWE-20
Improper Input Validation
|
CVE-2007-6371
|
2011-03-8 12:02 |
2007-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258349
|
- |
|
chandler_project
|
chandler_server
|
The DAV component in Chandler Server (Cosmo) before 0.10.1 does not check resource creation permissions, which allows remote authenticated users to create arbitrary resources in another user's home c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6383
|
2011-03-8 12:02 |
2007-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258350
|
- |
|
jboss
|
seam
|
The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before 2.0.0.CR3 allows remote attackers to inject and execute arbitrary EJBQL commands via the order paramet…
|
CWE-20
Improper Input Validation
|
CVE-2007-6433
|
2011-03-8 12:02 |
2007-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
