268951
|
- |
|
goahead
|
goahead_webserver
|
webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request that contains a negative integer in the Content-Length header.
|
CWE-20
Improper Input Validation
|
CVE-2002-2429
|
2009-02-7 04:30 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268952
|
- |
|
goahead
|
goahead_webserver
|
GoAhead WebServer before 2.1.1 allows remote attackers to cause a denial of service (CPU consumption) by performing a socket disconnect to terminate a request before it has been fully processed by th…
|
CWE-399
Resource Management Errors
|
CVE-2002-2430
|
2009-02-7 04:30 |
2009-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268953
|
- |
|
arrl
|
tqsllib
|
The tqsl_verifyDataBlock function in openssl_cert.cpp in American Radio Relay League (ARRL) tqsllib 2.0 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allow…
|
CWE-287
Improper Authentication
|
CVE-2009-0124
|
2009-02-6 16:05 |
2009-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268954
|
- |
|
punbb
|
punbb
|
Cross-site scripting (XSS) vulnerability in login.php in PunBB 1.3 and 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the password field.
|
CWE-79
Cross-site Scripting
|
CVE-2008-5433
|
2009-02-6 16:03 |
2008-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268955
|
- |
|
freeradius
|
freeradius
|
freeradius-dialupadmin in freeradius 2.0.4 allows local users to overwrite arbitrary files via a symlink attack on temporary files in (1) backup_radacct, (2) clean_radacct, (3) monthly_tot_stats, (4)…
|
CWE-59
Link Following
|
CVE-2008-4474
|
2009-02-6 16:00 |
2008-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268956
|
- |
|
sun
|
opensolaris
|
The UFS implementation in the kernel in Sun OpenSolaris snv_29 through snv_90 allows local users to cause a denial of service (panic) via the single posix_fallocate test in the SUSv3 POSIX test suite…
|
NVD-CWE-noinfo
|
CVE-2009-0131
|
2009-02-5 15:53 |
2009-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268957
|
- |
|
research_in_motion_limited
|
blackberry_enterprise_server blackberry_professional_software blackberry_unite
|
The PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.…
|
CWE-399
Resource Management Errors
|
CVE-2009-0219
|
2009-02-5 15:53 |
2009-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268958
|
- |
|
gnome
|
nautilus-python
|
Untrusted search path vulnerability in the Python language bindings for Nautilus (nautilus-python) allows local users to execute arbitrary code via a Trojan horse Python file in the current working d…
|
NVD-CWE-Other
|
CVE-2009-0317
|
2009-02-5 15:53 |
2009-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268959
|
- |
|
asp-dev
|
xm_events_diary
|
SQL injection vulnerability in diary_viewC.asp in ASP-DEv XM Events Diary allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: the provenance of this information is…
|
CWE-89
SQL Injection
|
CVE-2008-5924
|
2009-02-5 15:52 |
2009-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
268960
|
- |
|
torrenttrader
|
torrenttrader
|
TorrentTrader 1.07 and earlier sets insecure permissions for files in the root directory, which allows attackers to execute arbitrary PHP code by modifying (1) disclaimer.txt, (2) sponsors.txt, and (…
|
NVD-CWE-Other
|
CVE-2007-4536
|
2009-02-5 15:29 |
2007-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|