268261
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
IOKit in Apple Mac OS X before 10.6.2 allows local users to modify the firmware of a (1) USB or (2) Bluetooth keyboard via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2834
|
2009-11-17 14:00 |
2009-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268262
|
- |
|
mahara
|
mahara
|
Cross-site scripting (XSS) vulnerability in the resume blocktype in Mahara before 1.0.13, and 1.1.x before 1.1.7, allows remote attackers to inject arbitrary web script or HTML via unspecified vector…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3299
|
2009-11-16 14:00 |
2009-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268263
|
- |
|
sun
|
opensolaris
|
Memory leak in Solaris TCP sockets in Sun OpenSolaris snv_106 through snv_126 allows local users to cause a denial of service (kernel memory consumption) via unspecified vectors involving tcp_sendmsg…
|
CWE-399
Resource Management Errors
|
CVE-2009-3937
|
2009-11-16 14:00 |
2009-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268264
|
- |
|
christos_zoulas
|
file
|
Heap-based buffer overflow in the cdf_read_sat function in src/cdf.c in Christos Zoulas file 5.00 allows user-assisted remote attackers to execute arbitrary code via a crafted compound document file,…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1515
|
2009-11-13 16:12 |
2009-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268265
|
- |
|
google
|
chrome
|
The Gears plugin in Google Chrome before 3.0.195.32 allows user-assisted remote attackers to cause a denial of service (memory corruption and plugin crash) or possibly execute arbitrary code via unsp…
|
NVD-CWE-Other
|
CVE-2009-3932
|
2009-11-13 14:00 |
2009-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268266
|
- |
|
jean-jacques_sarton
|
mtink
|
Buffer overflow in MTink in the printer-filters-utils package allows local users to execute arbitrary code via a long HOME environment variable.
|
NVD-CWE-Other
|
CVE-2005-4604
|
2009-11-12 14:51 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268267
|
- |
|
openoffice
|
openoffice
|
OpenOffice.org 2.0 and earlier, when hyperlinks has been disabled, does not prevent the user from clicking the WWW-browser button in the Hyperlink dialog, which makes it easier for attackers to trick…
|
NVD-CWE-Other
|
CVE-2005-4636
|
2009-11-12 14:51 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268268
|
- |
|
rim ibm
|
blackberry_desktop_software lotus_notes_intellisync
|
Buffer overflow in the IBM Lotus Notes Intellisync ActiveX control in lnresobject.dll in BlackBerry Desktop Manager in Research In Motion (RIM) BlackBerry Desktop Software before 5.0.1 allows remote …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0306
|
2009-11-12 14:00 |
2009-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268269
|
- |
|
ezra_barnett_gildesgame
|
smartqueue_og
|
The Smartqueue_og module 5.x before 5.x-1.3 and 6.x before 6.x-1.0-rc3, a module for Drupal, does not verify group-node privileges in certain circumstances involving subqueue creation, which allows r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3921
|
2009-11-10 14:00 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268270
|
- |
|
tftgallery
|
tftgallery
|
Directory traversal vulnerability in index.php in TFTgallery 0.13 allows remote attackers to read arbitrary files via a ..%2F (encoded dot dot slash) in the album parameter.
|
CWE-22
Path Traversal
|
CVE-2009-3912
|
2009-11-10 02:30 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|