|
270971
|
- |
|
dsm
|
light_web_file_browser
|
Directory traversal vulnerability in explorer.php in DSM Light Web File Browser 2.0 allows remote attackers to read arbitrary files via .. (dot dot) in the wdir parameter.
|
NVD-CWE-Other
|
CVE-2004-2287
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270972
|
- |
|
jelsoft
|
vbulletin
|
Cross-site scripting (XSS) vulnerability in index.php in Jelsoft vBulletin allows remote attackers to spoof parts of a website via the loc parameter.
|
NVD-CWE-Other
|
CVE-2004-2288
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270973
|
- |
|
francisco_burzi
|
php-nuke
|
Canonicalize-before-filter error in the send_review function in the Reviews module for PHP-Nuke 6.0 to 7.3 allows remote attackers to inject arbitrary web script or HTML via hex-encoded XSS sequences…
|
NVD-CWE-Other
|
CVE-2004-2294
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270974
|
- |
|
novell
|
internet_messaging_system
netmail
|
Novell Internet Messaging System (NIMS) 2.6 and 3.0, and NetMail 3.1 and 3.5, is installed with a default NMAP authentication credential, which allows remote attackers to read and write mail store da…
|
NVD-CWE-Other
|
CVE-2004-2298
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270975
|
- |
|
mbedthis_software
|
mbedthis_appweb_http_server
|
Information leak in Mbedthis AppWeb HTTP server 1.0 through 1.1.2 allows remote attackers to obtain sensitive information via a user message that is generated when Mbedthis denies access.
|
NVD-CWE-Other
|
CVE-2004-2317
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270976
|
- |
|
openbsd
|
openbsd
|
OpenBSD 3.3 and 3.4 does not properly parse Accept and Deny rules without netmasks on big-endian 64-bit platforms such as SPARC64, which may allow remote attackers to bypass access restrictions.
|
NVD-CWE-Other
|
CVE-2004-2338
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270977
|
- |
|
symantec
|
enterprise_firewall
gateway_security
|
The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additiona…
|
NVD-CWE-Other
|
CVE-2004-1754
|
2008-09-6 05:42 |
2004-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270978
|
- |
|
skype_technologies
|
skype
|
A "range check error" in Skype for Windows before 0.98.0.28 allows local and remote attackers to cause a denial of service (application crash) via long command line arguments or a long callto:// URL,…
|
CWE-20
Improper Input Validation
|
CVE-2004-1777
|
2008-09-6 05:42 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270979
|
- |
|
info_touch
|
surfnet
|
Info Touch Surfnet kiosk allows local users to deposit extra time into Internet kiosk accounts via repeated authentication attempts.
|
NVD-CWE-Other
|
CVE-2004-1780
|
2008-09-6 05:42 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270980
|
- |
|
info_touch
|
surfnet
|
Info Touch Surfnet kiosk allows local users to crash Surfnet and access the underlying operating system via the CMD_CREDITCARD_CHARGE command.
|
NVD-CWE-Other
|
CVE-2004-1781
|
2008-09-6 05:42 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
