270601
|
- |
|
allaire
|
coldfusion_server
|
The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not restrict access to the server properly.
|
NVD-CWE-Other
|
CVE-1999-0477
|
2008-09-6 05:17 |
1999-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270602
|
- |
|
netscape
|
enterprise_server fasttrack_server
|
Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request.
|
NVD-CWE-Other
|
CVE-1999-0744
|
2008-09-6 05:17 |
2000-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270603
|
- |
|
oracle
|
database_server
|
Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP.
|
NVD-CWE-Other
|
CVE-1999-0784
|
2008-09-6 05:17 |
2001-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270604
|
- |
|
freebsd
|
freebsd
|
TCP RST denial of service in FreeBSD.
|
NVD-CWE-Other
|
CVE-1999-0053
|
2008-09-6 05:16 |
1998-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270605
|
- |
|
ssh
|
ssh
|
A race condition in the authentication agent mechanism of sshd 1.2.17 allows an attacker to steal another user's credentials.
|
NVD-CWE-Other
|
CVE-1999-0248
|
2008-09-6 05:16 |
1999-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270606
|
- |
|
freebsd
|
freebsd
|
Buffer overflow in FreeBSD lpd through long DNS hostnames.
|
NVD-CWE-Other
|
CVE-1999-0299
|
2008-09-6 05:16 |
1997-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270607
|
- |
|
d-ic
|
shop_v50 shop_v52
|
Cross-site scripting (XSS) vulnerability in DIC shop_v50 3.0 and earlier and shop_v52 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3935
|
2008-09-6 00:08 |
2008-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270608
|
- |
|
opendb
|
opendb
|
Multiple cross-site scripting (XSS) vulnerabilities in Open Media Collectors Database (OpenDb) 1.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) user_id parameter in an …
|
CWE-79
Cross-site Scripting
|
CVE-2008-3937
|
2008-09-6 00:08 |
2008-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270609
|
- |
|
opendb
|
opendb
|
Cross-site request forgery (CSRF) vulnerability in user_admin.php in Open Media Collectors Database (OpenDb) 1.0.6 allows remote attackers to change arbitrary passwords via an update_password action.
|
CWE-352
Origin Validation Error
|
CVE-2008-3938
|
2008-09-6 00:08 |
2008-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270610
|
- |
|
avtech
|
pager_enterprise
|
Directory traversal vulnerability in the web interface in AVTECH PageR Enterprise before 5.0.7 allows remote attackers to read arbitrary files via directory traversal sequences in the URI.
|
CWE-22
Path Traversal
|
CVE-2008-3939
|
2008-09-6 00:08 |
2008-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|