|
260551
|
- |
|
emc
|
networker_module_for_microsoft_applications
|
The client in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375 allows remote attackers to execute arbitrary code by sending a crafted messag…
|
CWE-94
Code Injection
|
CVE-2012-2290
|
2013-04-19 12:21 |
2012-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260552
|
- |
|
w1.fi
|
hostapd
|
hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 permissions for /etc/hostapd/hostapd.conf, which might allow local users to obtain sensitive information such as credentials.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2389
|
2013-04-19 12:21 |
2012-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260553
|
- |
|
matthias_klose
|
fastjar
|
Absolute path traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a full pathname for a file within a .…
|
CWE-22
Path Traversal
|
CVE-2010-2322
|
2013-04-19 12:03 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260554
|
- |
|
matthias_klose
|
fastjar
|
Directory traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in a non-initial pathname …
|
CWE-22
Path Traversal
|
CVE-2010-0831
|
2013-04-19 11:59 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260555
|
- |
|
bibtex
|
bibtex
|
Buffer overflow in BibTeX 0.99 allows context-dependent attackers to cause a denial of service (memory corruption and crash) via a long .bib bibliography file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1284
|
2013-04-19 11:49 |
2009-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260556
|
- |
|
matthias_klose
|
bash-doc
|
bash-doc 3.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/cb#####.? temporary file, related to the (1) aliasconv.sh, (2) aliasconv.bash, and (3) cshtobash scripts.
|
CWE-59
Link Following
|
CVE-2008-5374
|
2013-04-19 11:42 |
2008-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260557
|
- |
|
chatelao
|
php_address_book
|
Multiple SQL injection vulnerabilities in PHP Address Book 8.2.5 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) edit.php or (2) import.php. NOTE: the view…
|
CWE-89
SQL Injection
|
CVE-2013-1748
|
2013-04-19 01:19 |
2013-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260558
|
- |
|
chatelao
|
php_address_book
|
Cross-site scripting (XSS) vulnerability in edit.php in PHP Address Book 8.2.5 allows user-assisted remote attackers to inject arbitrary web script or HTML via the Address field.
|
CWE-79
Cross-site Scripting
|
CVE-2013-1749
|
2013-04-18 20:33 |
2013-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260559
|
- |
|
schneider-electric
|
micom_s1_studio
|
The installer routine in Schneider Electric MiCOM S1 Studio uses world-writable permissions for executable files, which allows local users to modify the service or the configuration files, and conseq…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0687
|
2013-04-18 13:00 |
2013-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260560
|
- |
|
bestwebsharing
|
groovy_media_player
|
Buffer overflow in Groovy Media Player 3.2.0 allows remote attackers to execute arbitrary code via a long string in a .m3u file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2760
|
2013-04-18 13:00 |
2013-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
