|
269781
|
- |
|
sun
|
solaris
|
In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system parameters.
|
NVD-CWE-Other
|
CVE-1999-0186
|
2008-09-9 21:33 |
1998-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269782
|
- |
|
microsoft
|
internet_information_server
|
IIS newdsn.exe CGI script allows remote users to overwrite files.
|
NVD-CWE-Other
|
CVE-1999-0191
|
2008-09-9 21:33 |
1997-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269783
|
- |
|
webgais_development_team
|
webgais
|
websendmail in Webgais 1.0 allows a remote user to access arbitrary files and execute arbitrary code via the receiver parameter ($VAR_receiver variable).
|
NVD-CWE-Other
|
CVE-1999-0196
|
2008-09-9 21:33 |
1997-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269784
|
- |
|
google
|
google_apps
|
The SAML Single Sign-On (SSO) Service for Google Apps allows remote service providers to impersonate users at arbitrary service providers via vectors related to authentication responses that lack a r…
|
NVD-CWE-noinfo
CWE-287
Improper Authentication
|
CVE-2008-3891
|
2008-09-6 06:44 |
2008-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269785
|
- |
|
suspend2
|
software_suspend_2
|
Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local u…
|
CWE-200
Information Exposure
|
CVE-2008-3901
|
2008-09-6 06:44 |
2008-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269786
|
- |
|
speedbit
|
download_accelerator_plus
|
SpeedBit Download Accelerator Plus (DAP) before 8.6.3.9 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse upd…
|
CWE-94
Code Injection
|
CVE-2008-3433
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269787
|
- |
|
linkedin
|
browser_toolbar
|
LinkedIn Browser Toolbar 3.0.3.1100 and earlier does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as …
|
CWE-94
Code Injection
|
CVE-2008-3435
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269788
|
- |
|
notepad\+\+
|
notepad\+\+
|
The GUP generic update process in Notepad++ before 4.8.1 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse up…
|
CWE-94
Code Injection
|
CVE-2008-3436
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269789
|
- |
|
openoffice
|
openoffice.org
|
OpenOffice.org (OOo) before 2.1.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated b…
|
CWE-94
Code Injection
|
CVE-2008-3437
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269790
|
- |
|
speedbit
|
speedbit_video_accelerator
|
SpeedBit Video Acceleration before 2.2.1.8 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demon…
|
CWE-94
Code Injection
|
CVE-2008-3439
|
2008-09-6 06:43 |
2008-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
