268571
|
- |
|
communityserver.org
|
community_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Community Server allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors. NOTE: this candidate does not contai…
|
CWE-79
Cross-site Scripting
|
CVE-2006-0535
|
2008-09-6 05:59 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268572
|
- |
|
cerulean_studios
|
trillian
|
Cerulean Trillian 3.1.0.120 allows remote attackers to cause a denial of service (client crash) via an AIM message containing the Mac encoded Rich Text Format (RTF) escape sequences (1) \'d1, (2) \'d…
|
NVD-CWE-Other
|
CVE-2006-0543
|
2008-09-6 05:59 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268573
|
- |
|
microsoft
|
ie
|
urlmon.dll in Microsoft Internet Explorer 7.0 beta 2 (aka 7.0.5296.0) allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a BGSOUND elemen…
|
NVD-CWE-Other
|
CVE-2006-0544
|
2008-09-6 05:59 |
2006-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268574
|
- |
|
suse
|
suse_linux
|
ld in SUSE Linux 9.1 through 10.0, and SLES 9, in certain circumstances when linking binaries, can leave an empty RPATH or RUNPATH, which allows local attackers to execute arbitrary code as other use…
|
NVD-CWE-Other
|
CVE-2006-0646
|
2008-09-6 05:59 |
2006-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268575
|
- |
|
pwsphp
|
pwsphp
|
SQL injection vulnerability in index.php in PwsPHP 1.2.3 allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly in message.php in the espace_membre module. NOTE: th…
|
NVD-CWE-Other
|
CVE-2006-0668
|
2008-09-6 05:59 |
2006-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268576
|
- |
|
gentoo
|
app-crypt_pinentry linux
|
The ebuild for pinentry before 0.7.2-r2 on Gentoo Linux sets setgid bits for pinentry programs, which allows local users to read or overwrite arbitrary files as gid 0.
|
NVD-CWE-Other
|
CVE-2006-0071
|
2008-09-6 05:58 |
2006-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268577
|
- |
|
sco
|
openserver
|
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-200…
|
NVD-CWE-Other
|
CVE-2006-0072
|
2008-09-6 05:58 |
2006-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268578
|
- |
|
discusware
|
discus_freeware discus_professional
|
Cross-site scripting (XSS) vulnerability in DiscusWare Discus Freeware 3.10.5 and Professional 3.10.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in a URL, …
|
NVD-CWE-Other
|
CVE-2006-0073
|
2008-09-6 05:58 |
2006-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268579
|
- |
|
openbsd
|
openbsd
|
The dupfdopen function in sys/kern/kern_descrip.c in OpenBSD 3.7 and 3.8 allows local users to re-open arbitrary files by using setuid programs to access file descriptors using /dev/fd/.
|
NVD-CWE-Other
|
CVE-2006-0098
|
2008-09-6 05:58 |
2006-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268580
|
- |
|
enhanced_simple_php_gallery
|
enhanced_simple_php_gallery
|
Enhanced Simple PHP Gallery 1.7 allows remote attackers to obtain the full path of the application via a direct request to sp_helper_functions.php, which leaks the pathname in an error message.
|
NVD-CWE-Other
|
CVE-2006-0113
|
2008-09-6 05:58 |
2006-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|