|
264441
|
- |
|
oracle
|
database_server
warehouse_builder
|
Unspecified vulnerability in the Oracle Warehouse Builder component in Oracle Database Server 10.2.0.5 (OWB) and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and a…
|
NVD-CWE-noinfo
|
CVE-2011-0792
|
2011-05-12 13:00 |
2011-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264442
|
- |
|
ibm
|
db2
|
IBM DB2 UDB 9.1 before Fixpak 4 does not properly manage storage of a list containing authentication information, which might allow attackers to cause a denial of service (instance crash) or trigger …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5652
|
2011-05-12 13:00 |
2007-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264443
|
- |
|
skype
|
skype_for_android
|
Skype for Android stores sensitive user data without encryption in sqlite3 databases that have weak permissions, which allows local applications to read user IDs, contacts, phone numbers, date of bir…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1717
|
2011-05-12 04:25 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264444
|
- |
|
fedoraproject
|
389_directory_server
|
Multiple memory leaks in the normalization functionality in 389 Directory Server before 1.2.7.5 allow remote attackers to cause a denial of service (memory consumption) via "badly behaved application…
|
CWE-399
Resource Management Errors
|
CVE-2010-4746
|
2011-05-11 13:00 |
2011-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264445
|
- |
|
zeus
|
zeus_web_server
|
Zeus Web Server before 4.3r5 does not use random transaction IDs for DNS requests, which makes it easier for remote attackers to spoof DNS responses.
|
CWE-310
Cryptographic Issues
|
CVE-2010-0362
|
2011-05-6 13:00 |
2010-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264446
|
- |
|
scottmac
|
libmbfl
|
The mb_strcut function in Libmbfl 1.1.0, as used in PHP 5.3.x through 5.3.3, allows context-dependent attackers to obtain potentially sensitive information via a large value of the third parameter (a…
|
CWE-20
Improper Input Validation
|
CVE-2010-4156
|
2011-05-4 11:52 |
2010-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264447
|
- |
|
php
|
php
|
Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows context-dependent attackers to obtain sensitive information (memory contents) and possibly execute arbi…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2010-2950
|
2011-05-4 11:49 |
2010-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264448
|
- |
|
arco_van_geest
|
goof_fotoboek
|
Directory traversal vulnerability in the Photo Book (goof_fotoboek) extension 1.7.14 and earlier for TYPO3 has unknown impact and remote attack vectors.
|
CWE-22
Path Traversal
|
CVE-2010-0350
|
2011-05-2 13:00 |
2010-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264449
|
- |
|
typo3
|
kiddog_mysqldumper
|
Unspecified vulnerability in the kiddog_mysqldumper (kiddog_mysqldumper) extension 0.0.3 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2010-0336
|
2011-04-29 13:00 |
2010-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264450
|
- |
|
typo3
|
dl3_tt_news_alerts
|
SQL injection vulnerability in the tt_news Mail alert (dl3_tt_news_alerts) extension 0.2.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-0337
|
2011-04-29 13:00 |
2010-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
