|
267851
|
- |
|
inso
|
dwhttpd
|
AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service (resource exhaustion) via an HTTP POST request with a large content-length.
|
NVD-CWE-Other
|
CVE-1999-1416
|
2008-09-11 04:01 |
1998-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267852
|
- |
|
inso
|
answerbook2
|
Format string vulnerability in AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via encoded % characters in an H…
|
NVD-CWE-Other
|
CVE-1999-1417
|
2008-09-11 04:01 |
1998-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267853
|
- |
|
computer_software_manufaktur
|
alibaba
|
genkey utility in Alibaba 2.0 generates RSA key pairs with an exponent of 1, which results in transactions that are sent in cleartext.
|
NVD-CWE-Other
|
CVE-1999-1444
|
2008-09-11 04:01 |
1999-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267854
|
- |
|
sco
|
openserver
unixware
|
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges.
|
NVD-CWE-Other
|
CVE-1999-1450
|
2008-09-11 04:01 |
1999-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267855
|
- |
|
thttpd
|
thttpd_http_server
|
Buffer overflow in thttpd HTTP server before 2.04-31 allows remote attackers to execute arbitrary commands via a long date string, which is not properly handled by the tdate_parse function.
|
NVD-CWE-Other
|
CVE-1999-1457
|
2008-09-11 04:01 |
1999-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267856
|
- |
|
next
sgi
cray
sun
|
next
irix
unicos
sunos
|
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
|
NVD-CWE-Other
|
CVE-1999-1468
|
2008-09-11 04:01 |
1991-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267857
|
- |
|
sun
|
java
|
Sun Java 1.6.0_03 and earlier versions, and possibly later versions, does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Tro…
|
CWE-94
Code Injection
|
CVE-2008-3440
|
2008-09-10 13:00 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267858
|
- |
|
ignite_realtime
|
openfire
|
The admin console in Ignite Realtime Openfire 3.3.0 and earlier (formerly Wildfire) does not properly specify a filter mapping in web.xml, which allows remote attackers to gain privileges and execute…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-2975
|
2008-09-10 13:00 |
2007-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267859
|
- |
|
ignite_realtime
|
openfire
|
The vendor has addressed this issue through the release of the following product updates:
Ignite Realtime openfire-3.3.1-1.i386.rpm
http://www.igniterealtime.org/downloads/download-landing.jsp?fi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-2975
|
2008-09-10 13:00 |
2007-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267860
|
- |
|
oracle
|
oracle8i
oracle9i
|
Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible.
|
CWE-94
Code Injection
|
CVE-2004-0637
|
2008-09-10 13:00 |
2004-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
