270801
|
- |
|
sun
|
java_system_access_manager_policy_agent
|
The Sun Java System (SJS) Access Manager Policy Agent module 2.2 for SJS Web Proxy Server 4.0 allows remote attackers to cause a denial of service (daemon crash) via a GET request.
|
NVD-CWE-noinfo
|
CVE-2009-2597
|
2009-07-27 23:30 |
2009-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270802
|
- |
|
rim
|
blackberry_8800
|
The Research In Motion (RIM) BlackBerry 8800 allows remote attackers to cause a denial of service (memory consumption and browser crash) via a large integer value for the length property of a Select …
|
CWE-399
Resource Management Errors
|
CVE-2009-2575
|
2009-07-23 13:00 |
2009-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270803
|
- |
|
mysql_quick_admin
|
mysql_quick_admin
|
Directory traversal vulnerability in EKINdesigns MySQL Quick Admin 1.5.5 allows remote attackers to read and execute arbitrary files via a .. (dot dot) in the lang parameter to actions.php. NOTE: th…
|
CWE-22
Path Traversal
|
CVE-2008-4454
|
2009-07-23 13:00 |
2008-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270804
|
- |
|
goahead
|
goahead_webserver
|
The security handler in GoAhead WebServer before 2.1.1 allows remote attackers to bypass authentication and obtain access to protected web content via "an extra slash in a URL," a different vulnerabi…
|
CWE-287
Improper Authentication
|
CVE-2002-2427
|
2009-07-23 13:00 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270805
|
- |
|
goahead
|
goahead_webserver
|
webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP POST request that contains a Content-Length heade…
|
CWE-20
Improper Input Validation
|
CVE-2002-2428
|
2009-07-23 13:00 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270806
|
- |
|
sun
|
opensolaris
|
Unspecified vulnerability in the proc filesystem in Sun OpenSolaris snv_49 through snv_109 allows local users to cause a denial of service (deadlock and panic) via unknown vectors, related to the ldt…
|
NVD-CWE-noinfo
|
CVE-2009-2387
|
2009-07-23 04:11 |
2009-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270807
|
- |
|
sun
|
opensolaris solaris
|
Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditc…
|
NVD-CWE-noinfo
|
CVE-2009-2430
|
2009-07-23 04:11 |
2009-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270808
|
- |
|
verlihub-project
|
verlihub_control_panel
|
Multiple cross-site scripting (XSS) vulnerabilities in Verlihub Control Panel (VHCP) 1.7e allow remote attackers to inject arbitrary web script or HTML via (1) the nick parameter in a login action to…
|
CWE-79
Cross-site Scripting
|
CVE-2009-2569
|
2009-07-23 02:30 |
2009-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270809
|
- |
|
3ds ibm
|
enovia_smarteam catia
|
The Web Editor in Dassault Systemes ENOVIA SmarTeam V5 before Release 18 Service Pack 8, and possibly CATIA and other products, allows remote authenticated users to read the profile card of an object…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0809
|
2009-07-22 13:00 |
2009-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270810
|
- |
|
3ds ibm
|
enovia_smarteam catia
|
Per http://www-01.ibm.com/support/docview.wss?uid=swg1HD80332
"Scenario:
1. Create a document class and give permissions to joe only.
2. When someone else but joe logs onto Web editor, and does …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0809
|
2009-07-22 13:00 |
2009-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|