|
274311
|
- |
|
ibm
|
hardware_management_console
|
Multiple unspecified vulnerabilities in IBM Hardware Management Console (HMC) 7 R3.2.0 allow attackers to gain privileges via "some HMC commands."
|
CWE-264
CWE-119
Permissions, Privileges, and Access Controls
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-6305
|
2011-03-8 12:02 |
2007-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274312
|
- |
|
mysql
|
mysql_community_server
|
MySQL Server 5.1.x before 5.1.23 and 6.0.x before 6.0.4 does not check the rights of the entity executing BINLOG, which allows remote authorized users to execute arbitrary BINLOG statements.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6313
|
2011-03-8 12:02 |
2008-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274313
|
- |
|
clam_anti-virus
|
clamav
|
Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV before 0.92 has unknown impact and remote attack vectors.
|
NVD-CWE-noinfo
|
CVE-2007-6337
|
2011-03-8 12:02 |
2008-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274314
|
- |
|
hp
|
openview_network_node_manager
|
Cross-site scripting (XSS) vulnerability in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2007-6343
|
2011-03-8 12:02 |
2007-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274315
|
- |
|
aertherwide
|
exiftags
|
exiftags before 1.01 allows attackers to cause a denial of service (infinite loop) via recursive IFD references in the EXIF data in a JPEG image.
|
CWE-399
Resource Management Errors
|
CVE-2007-6356
|
2011-03-8 12:02 |
2007-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274316
|
- |
|
nokia
|
n95
|
Nokia N95 cell phone with RM-159 12.0.013 firmware allows remote attackers to cause a denial of service (device inoperability) via a SIP INVITE message accompanied by an immediately subsequent SIP CA…
|
CWE-20
Improper Input Validation
|
CVE-2007-6371
|
2011-03-8 12:02 |
2007-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274317
|
- |
|
chandler_project
|
chandler_server
|
The DAV component in Chandler Server (Cosmo) before 0.10.1 does not check resource creation permissions, which allows remote authenticated users to create arbitrary resources in another user's home c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6383
|
2011-03-8 12:02 |
2007-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274318
|
- |
|
jboss
|
seam
|
The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before 2.0.0.CR3 allows remote attackers to inject and execute arbitrary EJBQL commands via the order paramet…
|
CWE-20
Improper Input Validation
|
CVE-2007-6433
|
2011-03-8 12:02 |
2007-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274319
|
- |
|
linux
|
linux_kernel
|
Linux kernel 2.6.23 allows local users to create low pages in virtual userspace memory and bypass mmap_min_addr protection via a crafted executable file that calls the do_brk function.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-6434
|
2011-03-8 12:02 |
2007-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274320
|
- |
|
ganglia
|
ganglia
|
Multiple cross-site scripting (XSS) vulnerabilities in ganglia-web in Ganglia before 3.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) c and (2) h parameters to (a) web/…
|
CWE-79
Cross-site Scripting
|
CVE-2007-6465
|
2011-03-8 12:02 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
