|
270141
|
- |
|
vmware
|
workstation
|
Unquoted Windows search path vulnerability in VMWare Workstation 5.0.0 build-13124 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder.
|
NVD-CWE-Other
|
CVE-2005-2939
|
2008-09-6 05:53 |
2005-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270142
|
- |
|
microsoft
|
antispyware
|
Unquoted Windows search path vulnerability in Microsoft Antispyware 1.0.509 (Beta 1) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, involving the prog…
|
NVD-CWE-Other
|
CVE-2005-2940
|
2008-09-6 05:53 |
2005-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270143
|
- |
|
brent_ely
|
gnome_workstation_command_center
|
The perform_file_save function in GNOME Workstation Command Center (gwcc) 0.9.6 and earlier allows local users to create and overwrite arbitrary files via a symlink attack on the gwcc_out.txt tempora…
|
NVD-CWE-Other
|
CVE-2005-2944
|
2008-09-6 05:53 |
2005-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270144
|
- |
|
ntlmaps
|
ntlmaps
|
The post-installation script for ntlmaps before 0.9.9 sets world-readable permissions for the configuration file, which allows local users to obtain the username and password.
|
NVD-CWE-Other
|
CVE-2005-2962
|
2008-09-6 05:53 |
2005-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270145
|
- |
|
symantec_veritas
|
storage_exec
storagecentral
|
Multiple heap-based and stack-based buffer overflows in certain DCOM server components in VERITAS Storage Exec Storage Exec 5.3 before Hotfix 9 and StorageCentral 5.2 before Hot Fix 2 allow remote at…
|
NVD-CWE-Other
|
CVE-2005-2996
|
2008-09-6 05:53 |
2005-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270146
|
- |
|
bugada_andrea
|
php_advanced_transfer_manager
|
Multiple directory traversal vulnerabilities in PHP Advanced Transfer Manager 1.30 allow remote attackers to read arbitrary files via ".." sequences in (1) the currentdir parameter to txt.php, or the…
|
NVD-CWE-Other
|
CVE-2005-2997
|
2008-09-6 05:53 |
2005-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270147
|
- |
|
bugada_andrea
|
php_advanced_transfer_manager
|
PHP Advanced Transfer Manager 1.30 has a default password for the administrator user, which allows remote attackers to upload and execute arbitrary PHP files.
|
NVD-CWE-Other
|
CVE-2005-2998
|
2008-09-6 05:53 |
2005-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270148
|
- |
|
bugada_andrea
|
php_advanced_transfer_manager
|
PHP Advanced Transfer Manager 1.30 allows remote attackers to obtain sensitive PHP configuration information via a direct request to test.php.
|
NVD-CWE-Other
|
CVE-2005-2999
|
2008-09-6 05:53 |
2005-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270149
|
- |
|
bugada_andrea
|
php_advanced_transfer_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in viewers/txt.php in PHP Advanced Transfer Manager 1.30 allow remote attackers to inject arbitrary web script or HTML via the (1) font, (2) normal…
|
NVD-CWE-Other
|
CVE-2005-3000
|
2008-09-6 05:53 |
2005-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270150
|
- |
|
-
|
-
|
SQL injection vulnerability in index.php in NooTopList 1.0.0 release 17 allows remote attackers to execute arbitrary SQL commands via the (1) o or (2) sort parameters.
|
NVD-CWE-Other
|
CVE-2005-3003
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
