|
269641
|
- |
|
symantec
|
im_manager
|
Cross-site scripting (XSS) vulnerability in the console in Symantec IM Manager 8.3 and 8.4 before 8.4.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3036
|
2013-02-7 13:21 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269642
|
- |
|
ibm
symantec
autonomy
|
lotus_notes
brightmail_appliance
data_loss_prevention_detection_servers
data_loss_prevention_endpoint_agents
mail_security
mail_security_appliance
keyview
|
Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Syman…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-3037
|
2013-02-7 13:21 |
2009-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269643
|
- |
|
symantec
|
altiris_deployment_solution
|
The Aclient GUI in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 installs a client executable with insecure permissions (Everyone:Full Control), which allows local users to gain…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3108
|
2013-02-7 13:21 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269644
|
- |
|
symantec
|
altiris_deployment_solution
|
Unspecified vulnerability in the AClient agent in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430, when key-based authentication is being used between a deployment server and a cl…
|
NVD-CWE-noinfo
|
CVE-2009-3109
|
2013-02-7 13:21 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269645
|
- |
|
symantec
|
altiris_deployment_solution
|
Race condition in the file transfer functionality in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 allows remote attackers to read sensitive files and prevent client updates by …
|
CWE-362
Race Condition
|
CVE-2009-3110
|
2013-02-7 13:21 |
2009-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269646
|
- |
|
ibm
|
filenet_content_manager
|
IBM FileNet Content Manager 4.0, 4.0.1, and 4.5, as used in IBM WebSphere Application Server (WAS) and Oracle BEA WebLogic Application Server, when the CE Web Services listener has a certain WSEAF co…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-1953
|
2013-01-29 14:00 |
2009-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269647
|
- |
|
oracle
|
mojarra
|
Oracle Mojarra 1.2_14 and 2.0.2, as used in IBM WebSphere Application Server, Caucho Resin, and other applications, does not properly handle an unencrypted view state, which allows remote attackers t…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2087
|
2013-01-28 14:00 |
2010-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269648
|
- |
|
fr.simon_rundell
|
pd_resources
|
SQL injection vulnerability in the Diocese of Portsmouth Resources Database (pd_resources) extension 0.1.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecif…
|
CWE-89
SQL Injection
|
CVE-2009-4396
|
2013-01-4 14:00 |
2009-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269649
|
- |
|
vocera
|
wireless_handset
|
Vocera Communications wireless handsets, when using Protected Extensible Authentication Protocol (PEAP), do not validate server certificates, which allows remote wireless access points to steal hashe…
|
CWE-20
Improper Input Validation
|
CVE-2008-1114
|
2013-01-3 14:00 |
2008-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269650
|
- |
|
oracle
|
secure_backup
|
Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.1.0.1 allows remote attackers to affect confidentiality via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2008-3981
|
2013-01-3 14:00 |
2009-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
