|
268371
|
- |
|
sentex
|
jhead
|
Buffer overflow in the DoCommand function in jhead before 2.84 might allow context-dependent attackers to cause a denial of service (crash) via (1) a long -cmd argument and (2) unspecified vectors re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-4575
|
2009-02-10 15:55 |
2008-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268372
|
- |
|
onlinegrades
|
online_grades
|
Multiple SQL injection vulnerabilities in admin/admin_login.php in Online Grades 3.2.4 allow remote attackers to execute arbitrary SQL commands via the (1) uname or (2) pword parameter. NOTE: the pr…
|
CWE-89
SQL Injection
|
CVE-2009-0479
|
2009-02-9 14:00 |
2009-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268373
|
- |
|
goahead
goahead_software
|
goahead_webserver
|
GoAhead WebServer before 2.1.6 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an invalid URL, related to the websSafeUrl function.
|
CWE-20
Improper Input Validation
|
CVE-2003-1568
|
2009-02-9 14:00 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268374
|
- |
|
goahead
|
goahead_webserver
|
GoAhead WebServer before 2.1.5 on Windows 95, 98, and ME allows remote attackers to cause a denial of service (daemon crash) via an HTTP request with a (1) con, (2) nul, (3) clock$, or (4) config$ de…
|
CWE-20
Improper Input Validation
|
CVE-2003-1569
|
2009-02-9 14:00 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268375
|
- |
|
goahead
|
goahead_webserver
|
Unspecified vulnerability in GoAhead WebServer before 2.1.4 allows remote attackers to cause "incorrect behavior" via unknown "malicious code," related to incorrect use of the socketInputBuffered fun…
|
NVD-CWE-noinfo
|
CVE-2002-2431
|
2009-02-9 14:00 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268376
|
- |
|
goahead
|
goahead_webserver
|
webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request that contains a negative integer in the Content-Length header.
|
CWE-20
Improper Input Validation
|
CVE-2002-2429
|
2009-02-7 04:30 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268377
|
- |
|
goahead
|
goahead_webserver
|
GoAhead WebServer before 2.1.1 allows remote attackers to cause a denial of service (CPU consumption) by performing a socket disconnect to terminate a request before it has been fully processed by th…
|
CWE-399
Resource Management Errors
|
CVE-2002-2430
|
2009-02-7 04:30 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268378
|
- |
|
arrl
|
tqsllib
|
The tqsl_verifyDataBlock function in openssl_cert.cpp in American Radio Relay League (ARRL) tqsllib 2.0 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allow…
|
CWE-287
Improper Authentication
|
CVE-2009-0124
|
2009-02-6 16:05 |
2009-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268379
|
- |
|
punbb
|
punbb
|
Cross-site scripting (XSS) vulnerability in login.php in PunBB 1.3 and 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the password field.
|
CWE-79
Cross-site Scripting
|
CVE-2008-5433
|
2009-02-6 16:03 |
2008-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268380
|
- |
|
freeradius
|
freeradius
|
freeradius-dialupadmin in freeradius 2.0.4 allows local users to overwrite arbitrary files via a symlink attack on temporary files in (1) backup_radacct, (2) clean_radacct, (3) monthly_tot_stats, (4)…
|
CWE-59
Link Following
|
CVE-2008-4474
|
2009-02-6 16:00 |
2008-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
