271151
|
- |
|
redhat
|
jboss_enterprise_application_platform
|
The request handler in JBossWS in JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP06 and 4.3 before 4.3.0.CP04 does not properly validate the resource path during a …
|
CWE-20
Improper Input Validation
|
CVE-2009-0027
|
2009-03-21 14:53 |
2009-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271152
|
- |
|
pdfjam
|
pdfjam
|
Multiple untrusted search path vulnerabilities in pdfjam allow local users to gain privileges via a Trojan horse program in (1) the current working directory or (2) /var/tmp, related to the (a) pdf90…
|
NVD-CWE-Other
|
CVE-2008-5843
|
2009-03-20 14:52 |
2009-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271153
|
- |
|
mplayer
|
mplayer
|
MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated…
|
CWE-399
Resource Management Errors
|
CVE-2008-4610
|
2009-03-20 14:49 |
2008-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271154
|
- |
|
gnome
|
epiphany
|
Untrusted search path vulnerability in the Python interface in Epiphany 2.22.3, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current…
|
NVD-CWE-Other
|
CVE-2008-5985
|
2009-03-19 14:48 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271155
|
- |
|
debian
|
horde horde_groupware
|
Cross-site scripting (XSS) vulnerability in the tag cloud search script (horde/services/portal/cloud_search.php) in Horde before 3.2.4 and 3.3.3, and Horde Groupware before 1.1.5, allows remote attac…
|
CWE-79
Cross-site Scripting
|
CVE-2009-0931
|
2009-03-19 01:23 |
2009-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271156
|
- |
|
miranda-im
|
miranda_im
|
Stack-based buffer overflow in Miranda IM 0.6.8 allows remote attackers to execute arbitrary code via a crafted Yahoo! Messenger packet. NOTE: this might overlap CVE-2007-5590.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5542
|
2009-03-18 19:30 |
2009-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271157
|
- |
|
miranda-im
|
miranda_im
|
Stack-based buffer overflow in Miranda IM 0.6.8 and 0.7.0 allows remote attackers to execute arbitrary code via a crafted Yahoo! Messenger packet. NOTE: this might overlap CVE-2007-5590.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5543
|
2009-03-18 19:30 |
2009-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271158
|
- |
|
futomis_cgi_cafe
|
fulltext_search_cgi
|
Unspecified vulnerability in futomi's CGI Cafe Fulltext search CGI 1.1.2 allows remote attackers to gain administrative privileges via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0469
|
2009-03-13 14:47 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271159
|
- |
|
agavi
|
agavi
|
Cross-site scripting (XSS) vulnerability in the AgaviWebRouting::gen(null) method in Agavi 0.11 before 0.11.6 and 1.0 before 1.0.0 beta 8 allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2009-0417
|
2009-03-13 14:46 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271160
|
- |
|
graphicsmagick
|
graphicsmagick
|
Multiple unspecified vulnerabilities in GraphicsMagick before 1.1.14, and 1.2.x before 1.2.3, allow remote attackers to cause a denial of service (crash) via unspecified vectors in (1) XCF and (2) CI…
|
NVD-CWE-noinfo
|
CVE-2008-6072
|
2009-03-13 14:45 |
2009-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|