267821
|
- |
|
cameron_morland
|
changetrack
|
changetrack 4.3 allows local users to execute arbitrary commands via CRLF sequences and shell metacharacters in a filename in a directory that is checked by changetrack.
|
CWE-78
OS Command
|
CVE-2009-3233
|
2009-09-17 19:30 |
2009-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267822
|
- |
|
sun
|
opensolaris solaris
|
Unspecified vulnerability in the TCP/IP networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through snv_117, when a Cassini GigaSwift Ethernet Adapter (aka CE) inter…
|
NVD-CWE-noinfo
|
CVE-2009-2136
|
2009-09-17 14:26 |
2009-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267823
|
- |
|
sun
|
opensolaris solaris
|
Per http://sunsolve.sun.com/search/document.do?assetkey=1-66-257008-1
"Note 2: A system is only vulnerable to this issue if it is using a GigaSwift Ethernet Adapter (CE) interface (ce(7D)) which h…
|
NVD-CWE-noinfo
|
CVE-2009-2136
|
2009-09-17 14:26 |
2009-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267824
|
- |
|
almondsoft
|
almond_classifieds
|
Multiple cross-site scripting (XSS) vulnerabilities in AlmondSoft Almond Classifieds Wap and Pro, and possibly Almond Affiliate Network Classifieds, allow remote attackers to inject arbitrary web scr…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3225
|
2009-09-17 13:00 |
2009-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267825
|
- |
|
almondsoft
|
affiliate_network_classifieds almond_classifieds
|
SQL injection vulnerability in index.php in AlmondSoft Almond Classifieds Ads Enterprise and Almond Affiliate Network Classifieds allows remote attackers to execute arbitrary SQL commands via the rep…
|
CWE-89
SQL Injection
|
CVE-2009-3226
|
2009-09-17 13:00 |
2009-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267826
|
- |
|
almondsoft
|
affiliate_network_classifieds almond_classifieds
|
Cross-site scripting (XSS) vulnerability in index.php in AlmondSoft Almond Classifieds Ads Enterprise and Almond Affiliate Network Classifieds allows remote attackers to inject arbitrary web script o…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3227
|
2009-09-17 13:00 |
2009-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267827
|
- |
|
lantronix
|
mss485-t
|
Lantronix MSS485-T allows remote attackers to cause a denial of service (unstable performance and service loss) via certain vulnerability scans, as demonstrated using (1) Nessus and (2) nmap.
|
CWE-399
Resource Management Errors
|
CVE-2008-7201
|
2009-09-17 13:00 |
2009-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267828
|
- |
|
mozilla
|
firefox
|
Integer overflow in Apple CoreGraphics, as used in Safari before 4.0.3, Mozilla Firefox before 3.0.12, and Mac OS X 10.4.11 and 10.5.8, allows remote attackers to cause a denial of service (applicati…
|
CWE-189
Numeric Errors
|
CVE-2009-2468
|
2009-09-16 14:32 |
2009-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267829
|
- |
|
php
|
php
|
The php_zip_make_relative_path function in php_zip.c in PHP 5.2.x before 5.2.9 allows context-dependent attackers to cause a denial of service (crash) via a ZIP file that contains filenames with rela…
|
CWE-20
Improper Input Validation
|
CVE-2009-1272
|
2009-09-16 14:30 |
2009-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267830
|
- |
|
clamav
|
clamav
|
The CLI_ISCONTAINED macro in libclamav/others.h in ClamAV before 0.95.1 allows remote attackers to cause a denial of service (application crash) via a malformed file with UPack encoding.
|
CWE-20
Improper Input Validation
|
CVE-2009-1371
|
2009-09-16 14:30 |
2009-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|