|
266551
|
- |
|
crm_ctt
|
interleave
|
The CheckCustomerAccess function in functions.php in CRM-CTT Interleave before 4.2.0 (formerly CRM-CTT) does not properly verify user privileges, which allows remote authenticated users with the LIMI…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6222
|
2017-07-29 10:34 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266552
|
- |
|
sun
|
solaris
|
Unspecified vulnerability in Sun Solaris 10, when 64bit mode is used on the x86 platform, allows local users in a Linux (lx) branded zone to cause a denial of service (panic) via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2007-6225
|
2017-07-29 10:34 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266553
|
- |
|
yahoo
|
toolbar
|
Stack-based buffer overflow in the Helper class in the yt.ythelper.2 ActiveX control in Yahoo! Toolbar 1.4.1 allows remote attackers to cause a denial of service (browser crash) via a long argument t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6228
|
2017-07-29 10:34 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266554
|
- |
|
vavoom
|
vavoom
|
Format string vulnerability in the Say command in sv_main.cpp in Vavoom 1.24 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a chat message, related to a…
|
NVD-CWE-Other
|
CVE-2007-4533
|
2017-07-29 10:33 |
2007-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266555
|
- |
|
thomson
|
st_2030_sip_phone
|
The Thomson ST 2030 SIP phone with software 1.52.1 allows remote attackers to cause a denial of service (device hang) via an INVITE message with a Via header that contains a '/' (slash) instead of th…
|
NVD-CWE-noinfo
|
CVE-2007-4553
|
2017-07-29 10:33 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266556
|
- |
|
ipswitch
|
ws_ftp
|
Cross-site scripting (XSS) vulnerability in Ipswitch WS_FTP allows remote attackers to inject arbitrary web script or HTML via arguments to a valid command, which is not properly handled when it is d…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4555
|
2017-07-29 10:33 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266557
|
- |
|
hitachi
|
cosminexus_dabroker
dabroker
|
Unspecified vulnerability in Hitachi DABroker before 03-02-/D and Cosminexus DABroker before 02-04-/C and 03-05-/E allows remote attackers to cause a denial of service (connection prevention) by send…
|
NVD-CWE-Other
|
CVE-2007-4562
|
2017-07-29 10:33 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266558
|
- |
|
hitachi
|
cosminexus_application_server_enterprise
cosminexus_application_server_standard
electronic_form_workflow_-_standard_set
electronic_form_workflow_-professional_library_set
ucosminexus_appl…
|
Cosminexus Manager in Cosminexus Application Server 06-50 and later might assign the wrong user's group permissions to logical J2EE server processes, which allows local users to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4563
|
2017-07-29 10:33 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266559
|
- |
|
hitachi
|
cosminexus_application_server_enterprise
cosminexus_application_server_standard
electronic_form_workflow_-_standard_set
electronic_form_workflow_-professional_library_set
ucosminexus_appl…
|
Cosminexus Manager in Cosminexus Application Server 07-00 and later might assign the wrong user's group permissions to logical user server processes, which allows local users to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4564
|
2017-07-29 10:33 |
2007-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266560
|
- |
|
the_seasar_foundation
|
escafeweb
|
Cross-site scripting (XSS) vulnerability in Easy Software Cafeteria escafeWeb (aka Tuigwaa) 1.0 through 1.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, p…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4587
|
2017-07-29 10:33 |
2007-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
