|
266461
|
- |
|
apple
|
safari
|
CoreGraphics in Apple Safari before 4.0 on Windows does not properly use arithmetic during automatic hinting of TrueType fonts, which allows remote attackers to execute arbitrary code or cause a deni…
|
CWE-189
Numeric Errors
|
CVE-2009-1705
|
2009-06-13 14:33 |
2009-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266462
|
- |
|
gnu
|
gnutls
|
lib/gnutls_pk.c in libgnutls in GnuTLS 2.5.0 through 2.6.5 generates RSA keys stored in DSA structures, instead of the intended DSA keys, which might allow remote attackers to spoof signatures on cer…
|
CWE-310
Cryptographic Issues
|
CVE-2009-1416
|
2009-06-10 14:29 |
2009-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266463
|
- |
|
mortbay_jetty
|
jetty
|
Cross-site scripting (XSS) vulnerability in Dump Servlet in Mortbay Jetty before 6.1.6rc1 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters and cookies.
|
CWE-79
Cross-site Scripting
|
CVE-2007-5613
|
2009-06-10 14:09 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266464
|
- |
|
mortbay_jetty
|
jetty
|
Mortbay Jetty before 6.1.6rc1 does not properly handle "certain quote sequences" in HTML cookie parameters, which allows remote attackers to hijack browser sessions via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2007-5614
|
2009-06-10 14:09 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266465
|
- |
|
mortbay_jetty
|
jetty
|
CRLF injection vulnerability in Mortbay Jetty before 6.1.6rc0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
|
CWE-94
Code Injection
|
CVE-2007-5615
|
2009-06-10 14:09 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266466
|
- |
|
cgi_rescue
|
cgi_rescue_minibbs22
|
Unspecified vulnerability in CGI RESCUE MiniBBS22 before 1.01 allows remote attackers to send email to arbitrary recipients via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2009-1589
|
2009-06-10 13:00 |
2009-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266467
|
- |
|
ibm
|
db2
|
The DRDA Services component in IBM DB2 9.1 before FP7 and 9.5 before FP4 allows remote attackers to cause a denial of service (memory corruption and application crash) via an IPv6 address in the corr…
|
NVD-CWE-Other
|
CVE-2009-1906
|
2009-06-10 13:00 |
2009-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266468
|
- |
|
baofeng
|
storm
|
Unspecified vulnerability in Config.dll in Baofeng products 3.09.04.17 and earlier allows remote attackers to execute arbitrary code by calling the SetAttributeValue method, as exploited in the wild …
|
NVD-CWE-noinfo
|
CVE-2009-1807
|
2009-06-9 14:34 |
2009-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266469
|
- |
|
mt312
|
img-bbs
|
Cross-site scripting (XSS) vulnerability in MT312 IMG-BBS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to model.php with a timestamp before 20090521.
|
CWE-79
Cross-site Scripting
|
CVE-2009-1881
|
2009-06-9 14:34 |
2009-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266470
|
- |
|
cisco
|
ciscoworks_common_services
ciscoworks_health_and_utilization_monitor
ciscoworks_lan_management_solution
ciscoworks_qos_policy_manager
ciscoworks_voice_manager
security_manager
telep…
|
Directory traversal vulnerability in the TFTP service in Cisco CiscoWorks Common Services (CWCS) 3.0.x through 3.2.x on Windows, as used in Cisco Unified Service Monitor, Security Manager, TelePresen…
|
CWE-22
Path Traversal
|
CVE-2009-1161
|
2009-06-9 14:33 |
2009-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
