266521
|
- |
|
ibm
|
db2
|
Per: http://cwe.mitre.org/data/definitions/476.html
'CWE-476: NULL Pointer Dereference'
|
NVD-CWE-Other
|
CVE-2009-4332
|
2010-06-29 13:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266522
|
- |
|
ibm
|
db2
|
The Relational Data Services component in IBM DB2 9.5 before FP5 allows attackers to obtain the password argument from the SET ENCRYPTION PASSWORD statement via vectors involving the GET SNAPSHOT FOR…
|
CWE-200
Information Exposure
|
CVE-2009-4333
|
2010-06-29 13:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266523
|
- |
|
ibm
|
db2
|
The Self Tuning Memory Manager (STMM) component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 uses 0666 permissions for the STMM log file, which allows local users to cause a denial o…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-4334
|
2010-06-29 13:00 |
2009-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266524
|
- |
|
alienvault
|
open_source_security_information_management
|
Unrestricted file upload vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, all…
|
NVD-CWE-Other
|
CVE-2009-4373
|
2010-06-29 13:00 |
2009-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266525
|
- |
|
anything-digital
|
com_jcalpro
|
PHP remote file inclusion vulnerability in cal_popup.php in the Anything Digital Development JCal Pro (aka com_jcalpro or JCP) component 1.5.3.6 for Joomla! allows remote attackers to execute arbitra…
|
CWE-94
Code Injection
|
CVE-2009-4431
|
2010-06-29 13:00 |
2009-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266526
|
- |
|
ibm
|
db2
|
The Query Compiler, Rewrite, and Optimizer component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not enforce privilege requirements for access to a (1) sequence or (2) global-v…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-4438
|
2010-06-29 13:00 |
2009-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266527
|
- |
|
ibm
|
db2
|
Unspecified vulnerability in the Query Compiler, Rewrite, and Optimizer component in IBM DB2 9.5 before FP5 allows remote authenticated users to cause a denial of service (instance crash) by compilin…
|
NVD-CWE-noinfo
|
CVE-2009-4439
|
2010-06-29 13:00 |
2009-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266528
|
- |
|
headstart_solutions
|
deskpro
|
install/loader_help.php in Headstart Solutions DeskPRO allows remote attackers to obtain configuration information via a q=phpinfo QUERY_STRING, which calls the phpinfo function.
|
CWE-200
Information Exposure
|
CVE-2006-6998
|
2010-06-29 13:00 |
2007-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266529
|
- |
|
mozilla
|
bugzilla
|
Install/Filesystem.pm in Bugzilla 3.5.1 through 3.6 and 3.7, when use_suexec is enabled, uses world-readable permissions for the localconfig files, which allows local users to read sensitive configur…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0180
|
2010-06-29 02:30 |
2010-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266530
|
- |
|
mozilla
|
bugzilla
|
Search.pm in Bugzilla 2.17.1 through 3.2.6, 3.3.1 through 3.4.6, 3.5.1 through 3.6, and 3.7 allows remote attackers to obtain potentially sensitive time-tracking information via a crafted search URL,…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1204
|
2010-06-29 02:30 |
2010-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|