268271
|
- |
|
arubanetworks
|
arubaos aruba_mobility_controller
|
ArubaOS 3.3.1.x, 3.3.2.x, RN 3.1.x, 3.4.x, and 3.3.2.x-FIPS on the Aruba Mobility Controller allows remote attackers to cause a denial of service (Access Point crash) via a malformed 802.11 Associati…
|
NVD-CWE-noinfo
|
CVE-2009-3836
|
2009-11-9 14:00 |
2009-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268272
|
- |
|
ecouriersoftware
|
e-courirer_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in e-Courier CMS allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to home/index.asp and other unspecified v…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3901
|
2009-11-7 00:30 |
2009-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268273
|
- |
|
novell
|
edirectory
|
The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a d…
|
CWE-287
Improper Authentication
|
CVE-2009-3862
|
2009-11-5 14:00 |
2009-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268274
|
- |
|
novell
|
edirectory
|
Per: http://www.novell.com/support/viewContent.do?externalId=7004721
"Resolution
This vulnerability is resolved in eDirectory 8.8.5 ftf1 and eDirectory 8.7.3.10 ftf2.
To resolve this problem…
|
CWE-287
Improper Authentication
|
CVE-2009-3862
|
2009-11-5 14:00 |
2009-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268275
|
- |
|
mahara
|
mahara
|
Mahara before 1.0.13, and 1.1.x before 1.1.7, allows remote authenticated institution administrators to reset a site administrator password via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3298
|
2009-11-4 14:00 |
2009-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268276
|
- |
|
tftgallery
|
tftgallery
|
Cross-site scripting (XSS) vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2009-3833
|
2009-11-3 00:30 |
2009-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268277
|
- |
|
systemtap
|
systemtap
|
SystemTap 1.0, when the --unprivileged option is used, does not properly restrict certain data sizes, which allows local users to (1) cause a denial of service or gain privileges via a print operatio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2911
|
2009-10-31 15:22 |
2009-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268278
|
- |
|
craig_barratt
|
backuppc
|
CgiUserConfigEdit in BackupPC 3.1.0, when SSH keys and Rsync are in use in a multi-user environment, does not restrict users from the ClientNameAlias function, which allows remote authenticated users…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3369
|
2009-10-31 15:22 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268279
|
- |
|
dec
|
dec_openvms
|
Vulnerability in Monitor utility (SYS$SHARE:SPISHR.EXE) in VMS 5.0 through 5.4-2 allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-1999-1395
|
2009-10-31 13:02 |
1992-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268280
|
- |
|
mutt
|
mutt
|
mutt_ssl.c in mutt 1.5.19 and 1.5.20, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows ma…
|
CWE-310
Cryptographic Issues
|
CVE-2009-3765
|
2009-10-29 13:00 |
2009-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|