257551
|
- |
|
apple
|
safari
|
Memory leak in WebKit.dll in WebKit, as used by Apple Safari 3.2 on Windows Vista SP1, allows remote attackers to cause a denial of service (memory consumption and browser crash) via a long ALINK att…
|
CWE-399
Resource Management Errors
|
CVE-2008-5821
|
2017-08-8 10:33 |
2009-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257552
|
- |
|
mozilla
|
libxul
|
Memory leak in Libxul, as used in Mozilla Firefox 3.0.5 and other products, allows remote attackers to cause a denial of service (memory consumption and browser hang) via a long CLASS attribute in an…
|
CWE-399
Resource Management Errors
|
CVE-2008-5822
|
2017-08-8 10:33 |
2009-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257553
|
- |
|
nokia
|
6131_nfc
|
The SmartPoster implementation on the Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware does not properly display the URI record when the Title record contains a certain combination…
|
CWE-59
Link Following
|
CVE-2008-5825
|
2017-08-8 10:33 |
2009-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257554
|
- |
|
nokia
|
6131_nfc
|
The Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware allows remote attackers to cause a denial of service (device crash) via (1) a large value in the payload length field in an NDE…
|
CWE-20
Improper Input Validation
|
CVE-2008-5826
|
2017-08-8 10:33 |
2009-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257555
|
- |
|
nokia
|
6131_nfc
|
The Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware automatically installs software upon completing the download of a JAR file, which makes it easier for remote attackers to execu…
|
CWE-16
Configuration
|
CVE-2008-5827
|
2017-08-8 10:33 |
2009-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257556
|
- |
|
foxmail
|
foxmail
|
Buffer overflow in Foxmail 6.5 allows remote attackers to execute arbitrary code via a long mailto URI in the HREF attribute of an A element.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5839
|
2017-08-8 10:33 |
2009-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257557
|
- |
|
sixapart
|
movable_type
|
Six Apart Movable Type (MT) before 4.23 allows remote authenticated users with create permission for posts to bypass intended access restrictions and publish posts via a "system-wide entry listing sc…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5846
|
2017-08-8 10:33 |
2009-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257558
|
- |
|
checkpoint
|
vpn-1
|
Check Point VPN-1 R55, R65, and other versions, when Port Address Translation (PAT) is used, allows remote attackers to discover intranet IP addresses via a packet with a small TTL, which triggers an…
|
CWE-200
Information Exposure
|
CVE-2008-5849
|
2017-08-8 10:33 |
2009-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257559
|
- |
|
knowledgetree_document_management
|
knowledgetree_document_management
|
The DropDocuments plugin in KnowledgeTree before 3.5.4a allows remote authenticated users to gain administrative privileges via a certain sequence of "browse documents" and dashboard requests.
|
NVD-CWE-Other
|
CVE-2008-5857
|
2017-08-8 10:33 |
2009-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257560
|
- |
|
knowledgetree_document_management
|
knowledgetree_document_management
|
Multiple cross-site scripting (XSS) vulnerabilities in KnowledgeTree before 3.5.4a allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-20…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5858
|
2017-08-8 10:33 |
2009-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|