|
264391
|
- |
|
sun
|
sparc_enterprise_server
|
The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0171
|
2011-06-13 13:00 |
2009-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264392
|
- |
|
isc
|
dhcpd
|
The supersede_lease function in memory.c in ISC DHCP (dhcpd) server 2.0pl5 allows remote attackers to cause a denial of service (application crash) via a DHCPDISCOVER packet with a 32 byte client-ide…
|
CWE-399
Resource Management Errors
|
CVE-2006-3122
|
2011-06-13 13:00 |
2006-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264393
|
- |
|
asbru_software
|
asbru_web_content_management
asbru_website_manager
|
The spell checking component of (1) Asbru Web Content Management before 6.1.22, (2) Asbru Web Content Editor before 6.0.22, and (3) Asbru Website Manager before 6.0.22 allows remote attackers to exec…
|
CWE-94
Code Injection
|
CVE-2006-5258
|
2011-06-13 13:00 |
2006-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264394
|
- |
|
apple
freebsd
|
mac_os_x
freebsd
|
The ufs_lookup function in the Mac OS X 10.4.8 and FreeBSD 6.1 kernels allows local users to cause a denial of service (kernel panic) and possibly corrupt other filesystems by mounting a crafted UNIX…
|
CWE-399
Resource Management Errors
|
CVE-2007-0267
|
2011-06-10 13:00 |
2007-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264395
|
- |
|
apache
|
struts
|
Multiple cross-site scripting (XSS) vulnerabilities in component handlers in the javatemplates (aka Java Templates) plugin in Apache Struts 2.x before 2.2.3 allow remote attackers to inject arbitrary…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2087
|
2011-06-2 13:00 |
2011-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264396
|
- |
|
nlnetlabs
|
unbound
|
Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2010-0969
|
2011-06-2 13:00 |
2010-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264397
|
- |
|
trustwave
|
webdefend
|
The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote cons…
|
CWE-255
Credentials Management
|
CVE-2011-0756
|
2011-05-31 13:00 |
2011-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264398
|
- |
|
liferay
|
portal
|
Cross-site scripting (XSS) vulnerability in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA allows remote authenticated users to inject arbitrary web script or HTML via a blog title.
|
CWE-79
Cross-site Scripting
|
CVE-2011-1504
|
2011-05-31 13:00 |
2011-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264399
|
- |
|
doctrine-project
|
doctrine1.2.0
doctrine1.2.1
doctrine1.2.2
doctrine1.2.3
doctrine
|
Multiple SQL injection vulnerabilities in the Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery function in Doctrine 1.x before 1.2.4 and 2.x before 2.0.3 allow remote attackers to execute a…
|
CWE-89
SQL Injection
|
CVE-2011-1522
|
2011-05-31 13:00 |
2011-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264400
|
- |
|
indusoft
|
web_studio
|
Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 6.1 and 7.x before 7.0+Patch 1 allows remote attackers to execute arbitrary code via an invalid request.
|
CWE-22
Path Traversal
|
CVE-2011-1900
|
2011-05-31 13:00 |
2011-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
