|
269211
|
- |
|
thttpd
|
thttpd_http_server
|
Buffer overflow in thttpd HTTP server before 2.04-31 allows remote attackers to execute arbitrary commands via a long date string, which is not properly handled by the tdate_parse function.
|
NVD-CWE-Other
|
CVE-1999-1457
|
2008-09-11 04:01 |
1999-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269212
|
- |
|
next
sgi
cray
sun
|
next
irix
unicos
sunos
|
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
|
NVD-CWE-Other
|
CVE-1999-1468
|
2008-09-11 04:01 |
1991-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269213
|
- |
|
sun
|
java
|
Sun Java 1.6.0_03 and earlier versions, and possibly later versions, does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Tro…
|
CWE-94
Code Injection
|
CVE-2008-3440
|
2008-09-10 13:00 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269214
|
- |
|
ignite_realtime
|
openfire
|
The admin console in Ignite Realtime Openfire 3.3.0 and earlier (formerly Wildfire) does not properly specify a filter mapping in web.xml, which allows remote attackers to gain privileges and execute…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-2975
|
2008-09-10 13:00 |
2007-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269215
|
- |
|
ignite_realtime
|
openfire
|
The vendor has addressed this issue through the release of the following product updates:
Ignite Realtime openfire-3.3.1-1.i386.rpm
http://www.igniterealtime.org/downloads/download-landing.jsp?fi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-2975
|
2008-09-10 13:00 |
2007-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269216
|
- |
|
oracle
|
oracle8i
oracle9i
|
Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible.
|
CWE-94
Code Injection
|
CVE-2004-0637
|
2008-09-10 13:00 |
2004-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269217
|
- |
|
realnetworks
|
realserver
|
RealMedia server allows remote attackers to cause a denial of service via a long ramgen request.
|
NVD-CWE-Other
|
CVE-2000-0001
|
2008-09-10 13:00 |
1999-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269218
|
- |
|
cisco
|
ios
|
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
|
CWE-20
Improper Input Validation
|
CVE-2000-0380
|
2008-09-10 13:00 |
2000-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269219
|
- |
|
postgresql
|
postgresql
|
Buffer overflows in (1) circle_poly, (2) path_encode and (3) path_add (also incorrectly identified as path_addr) for PostgreSQL 7.2.3 and earlier allow attackers to cause a denial of service and poss…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-1401
|
2008-09-10 13:00 |
2003-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269220
|
- |
|
freebsd
|
freebsd
|
FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument.
|
NVD-CWE-Other
|
CVE-1999-0821
|
2008-09-9 21:36 |
1999-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
