264911
|
- |
|
ibm
|
db2_universal_database
|
IBM DB2 UDB 9.1 before Fixpak 4 uses incorrect permissions on ACLs for DB2NODES.CFG, which has unknown impact and attack vectors. NOTE: the vendor description of this issue is too vague to be certai…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6048
|
2011-03-8 12:01 |
2007-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264912
|
- |
|
ibm
|
db2_universal_database
|
Unspecified vulnerability in the SSL LOAD GSKIT action in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors, involving a call to dlopen when the effective uid is root.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6049
|
2011-03-8 12:01 |
2007-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264913
|
- |
|
ibm
|
db2_universal_database
|
Unspecified vulnerability in DB2LICD in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors, related to creation of an "insecure directory."
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6050
|
2011-03-8 12:01 |
2007-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264914
|
- |
|
ibm
|
db2_universal_database
|
IBM DB2 UDB 9.1 before Fixpak 4 does not properly perform vector aggregation, which might allow attackers to cause a denial of service (divide-by-zero error and DBMS crash), related to an "overflow."…
|
NVD-CWE-Other
|
CVE-2007-6052
|
2011-03-8 12:01 |
2007-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264915
|
- |
|
ibm
|
db2_universal_database
|
IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large numbers of file descriptors, which might allow attackers to have an unknown impact involving "memory corruption." NOTE: the vendo…
|
CWE-399
Resource Management Errors
|
CVE-2007-6053
|
2011-03-8 12:01 |
2007-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264916
|
- |
|
feed2js
|
feed2js
|
Cross-site scripting (XSS) vulnerability in Feed to JavaScript (Feed2JS) 1.91 allows remote attackers to inject arbitrary web script or HTML via a URL in a feed.
|
CWE-79
Cross-site Scripting
|
CVE-2007-6102
|
2011-03-8 12:01 |
2007-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264917
|
- |
|
irc_services
|
irc_services
|
Unspecified vulnerability in IRC Services 5.1.8 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2007-6123
|
2011-03-8 12:01 |
2007-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264918
|
- |
|
gnu
|
gnump3d
|
gnump3d 2.9final does not apply password protection to its plugins, which might allow remote attackers to bypass intended access restrictions.
|
CWE-287
Improper Authentication
|
CVE-2007-6130
|
2011-03-8 12:01 |
2007-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264919
|
- |
|
redhat
|
fedora_core
|
buttonpressed.sh in scanbuttond 0.2.3 allows local users to overwrite arbitrary files via a symlink attack on the (1) scan.pnm and (2) scan.jpg temporary files.
|
CWE-16
Configuration
|
CVE-2007-6131
|
2011-03-8 12:01 |
2007-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
264920
|
- |
|
xunlei
|
web_thunder
|
Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer ActiveX control in DapPlayer_Now.dll, allows remote attackers to execute arbitrary code via a long…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5064
|
2011-03-8 12:00 |
2007-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|