|
267371
|
- |
|
rim
ibm
|
blackberry_desktop_software
lotus_notes_intellisync
|
Buffer overflow in the IBM Lotus Notes Intellisync ActiveX control in lnresobject.dll in BlackBerry Desktop Manager in Research In Motion (RIM) BlackBerry Desktop Software before 5.0.1 allows remote …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0306
|
2009-11-12 14:00 |
2009-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267372
|
- |
|
ezra_barnett_gildesgame
|
smartqueue_og
|
The Smartqueue_og module 5.x before 5.x-1.3 and 6.x before 6.x-1.0-rc3, a module for Drupal, does not verify group-node privileges in certain circumstances involving subqueue creation, which allows r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3921
|
2009-11-10 14:00 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267373
|
- |
|
tftgallery
|
tftgallery
|
Directory traversal vulnerability in index.php in TFTgallery 0.13 allows remote attackers to read arbitrary files via a ..%2F (encoded dot dot slash) in the album parameter.
|
CWE-22
Path Traversal
|
CVE-2009-3912
|
2009-11-10 02:30 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267374
|
- |
|
arubanetworks
|
arubaos
aruba_mobility_controller
|
ArubaOS 3.3.1.x, 3.3.2.x, RN 3.1.x, 3.4.x, and 3.3.2.x-FIPS on the Aruba Mobility Controller allows remote attackers to cause a denial of service (Access Point crash) via a malformed 802.11 Associati…
|
NVD-CWE-noinfo
|
CVE-2009-3836
|
2009-11-9 14:00 |
2009-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267375
|
- |
|
ecouriersoftware
|
e-courirer_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in e-Courier CMS allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to home/index.asp and other unspecified v…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3901
|
2009-11-7 00:30 |
2009-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267376
|
- |
|
novell
|
edirectory
|
The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a d…
|
CWE-287
Improper Authentication
|
CVE-2009-3862
|
2009-11-5 14:00 |
2009-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267377
|
- |
|
novell
|
edirectory
|
Per: http://www.novell.com/support/viewContent.do?externalId=7004721
"Resolution
This vulnerability is resolved in eDirectory 8.8.5 ftf1 and eDirectory 8.7.3.10 ftf2.
To resolve this problem…
|
CWE-287
Improper Authentication
|
CVE-2009-3862
|
2009-11-5 14:00 |
2009-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267378
|
- |
|
mahara
|
mahara
|
Mahara before 1.0.13, and 1.1.x before 1.1.7, allows remote authenticated institution administrators to reset a site administrator password via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3298
|
2009-11-4 14:00 |
2009-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267379
|
- |
|
tftgallery
|
tftgallery
|
Cross-site scripting (XSS) vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3833
|
2009-11-3 00:30 |
2009-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267380
|
- |
|
systemtap
|
systemtap
|
SystemTap 1.0, when the --unprivileged option is used, does not properly restrict certain data sizes, which allows local users to (1) cause a denial of service or gain privileges via a print operatio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2911
|
2009-10-31 15:22 |
2009-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
