|
257541
|
- |
|
adobe
|
air
flash_player
flex
|
Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via un…
|
NVD-CWE-noinfo
|
CVE-2009-1865
|
2017-09-29 10:34 |
2009-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257542
|
- |
|
adobe
|
air
flash_player
flex
|
Stack-based buffer overflow in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibl…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1866
|
2017-09-29 10:34 |
2009-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257543
|
- |
|
adobe
|
air
flash_player
flex
|
Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to trick a user into (1) selecting a link or (2) completing a dialog, related to a "clickj…
|
CWE-59
Link Following
|
CVE-2009-1867
|
2017-09-29 10:34 |
2009-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257544
|
- |
|
adobe
|
air
flash_player
flex
|
Heap-based buffer overflow in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-1868
|
2017-09-29 10:34 |
2009-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257545
|
- |
|
adobe
|
air
flash_player
flex
|
Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to obtain sensitive information via vectors involving saving an SWF file to a hard drive, …
|
CWE-200
Information Exposure
|
CVE-2009-1870
|
2017-09-29 10:34 |
2009-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257546
|
- |
|
linux
|
linux_kernel
|
The z90crypt_unlocked_ioctl function in the z90crypt driver in the Linux kernel 2.6.9 does not perform a capability check for the Z90QUIESCE operation, which allows local users to leverage euid 0 pri…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-1883
|
2017-09-29 10:34 |
2009-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257547
|
- |
|
pidgin
|
pidgin
|
The OSCAR protocol implementation in Pidgin before 2.5.8 misinterprets the ICQWebMessage message type as the ICQSMS message type, which allows remote attackers to cause a denial of service (applicati…
|
CWE-399
Resource Management Errors
|
CVE-2009-1889
|
2017-09-29 10:34 |
2009-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257548
|
- |
|
ruby-lang
|
ruby
|
The BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 allows context-dependent attackers to cause a denial of service (application crash) via a string argument that represents a larg…
|
CWE-189
Numeric Errors
|
CVE-2009-1904
|
2017-09-29 10:34 |
2009-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257549
|
- |
|
webspell
|
webspell
|
Directory traversal vulnerability in src/func/language.php in webSPELL 4.2.0e and earlier allows remote attackers to include and execute arbitrary local .php files via a .. (dot dot) in a language co…
|
CWE-22
Path Traversal
|
CVE-2009-1912
|
2017-09-29 10:34 |
2009-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257550
|
- |
|
luxbum
|
luxbum
|
SQL injection vulnerability in manager.php in LuxBum 0.5.5, when magic_quotes_gpc is disabled and dotclear authentication is used, allows remote attackers to execute arbitrary SQL commands via the us…
|
CWE-89
SQL Injection
|
CVE-2009-1913
|
2017-09-29 10:34 |
2009-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
