|
268041
|
- |
|
zabbix
|
zabbix
|
SQL injection vulnerability in the get_history_lastid function in the nodewatcher component in Zabbix Server before 1.6.8 allows remote attackers to execute arbitrary SQL commands via a crafted reque…
|
CWE-89
SQL Injection
|
CVE-2009-4499
|
2010-02-2 14:00 |
2010-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268042
|
- |
|
mozilla
|
seamonkey
thunderbird
|
Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APP_TYPE_MAIL or APP_TYPE_EDITOR, which makes it easier for remote a…
|
CWE-200
Information Exposure
|
CVE-2009-4629
|
2010-02-2 14:00 |
2010-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268043
|
- |
|
cisco
|
unified_meetingplace
|
Multiple unspecified vulnerabilities in the web server in Cisco Unified MeetingPlace 7 before 7.0(2.3) hotfix 5F, 6 before 6.0.639.3, and possibly 5 allow remote attackers to create (1) user or (2) a…
|
NVD-CWE-noinfo
|
CVE-2010-0140
|
2010-01-31 14:00 |
2010-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268044
|
- |
|
cisco
|
unified_meetingplace
|
Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml
Affected Products
Vulnerable Products
Cisco Unified MeetingPlace versions 5, 6, and 7 are each affec…
|
NVD-CWE-noinfo
|
CVE-2010-0140
|
2010-01-31 14:00 |
2010-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268045
|
- |
|
cisco
|
unified_meetingplace
|
MeetingTime in Cisco Unified MeetingPlace 6 before MR5, and possibly 5, allows remote authenticated users to gain privileges via a modified authentication sequence, aka Bug ID CSCsv66530.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0142
|
2010-01-31 14:00 |
2010-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268046
|
- |
|
cisco
|
unified_meetingplace
|
Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml
Affected Products
Vulnerable Products
Cisco Unified MeetingPlace versions 5, 6, and 7 are each affec…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0142
|
2010-01-31 14:00 |
2010-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268047
|
- |
|
sun
|
java_system_application_server
|
The default configuration of Sun Java System Application Server 7 and 7 2004Q2 enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credential…
|
CWE-16
Configuration
|
CVE-2010-0386
|
2010-01-31 14:00 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268048
|
- |
|
sun
|
java_system_application_server
|
Per: http://sunsolve.sun.com/search/document.do?assetkey=1-66-200942-1
Contributing Factors
This issue can occur in the following releases:
* Sun Java System Application Server Standar…
|
CWE-16
Configuration
|
CVE-2010-0386
|
2010-01-31 14:00 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268049
|
- |
|
sun
|
java_system_web_server
|
The admin server in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP request that lacks a method to…
|
NVD-CWE-Other
|
CVE-2010-0389
|
2010-01-31 14:00 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268050
|
- |
|
sun
|
java_system_web_server
|
Per: http://cwe.mitre.org/data/slices/2000.html
CWE-476 NULL Pointer Dereference
|
NVD-CWE-Other
|
CVE-2010-0389
|
2010-01-31 14:00 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
