|
265321
|
- |
|
dansie
|
photo_album
|
Cross-site scripting (XSS) vulnerability in photo_album.pl in Dansie Photo Album 1.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of …
|
CWE-79
Cross-site Scripting
|
CVE-2008-0292
|
2017-08-8 10:29 |
2008-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265322
|
- |
|
freeseat
|
freeseat
|
Unspecified vulnerability in cron.php in FreeSeat before 1.1.5d, when format.php has certain modifications, allows remote attackers to bypass authentication and gain privileges via unspecified vector…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0293
|
2017-08-8 10:29 |
2008-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265323
|
- |
|
freeseat
|
freeseat
|
Unspecified vulnerability in the seat-locking implementation in FreeSeat before 1.1.5d allows attackers to book a seat more than once via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2008-0294
|
2017-08-8 10:29 |
2008-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265324
|
- |
|
python_software_foundation
|
paramiko
|
common.py in Paramiko 1.7.1 and earlier, when using threads or forked processes, does not properly use RandomPool, which allows one session to obtain sensitive information from another session by pre…
|
NVD-CWE-Other
|
CVE-2008-0299
|
2017-08-8 10:29 |
2008-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265325
|
- |
|
sap
|
maxdb
|
sdbstarter in SAP MaxDB 7.6.0.37, and possibly other versions, allows local users to execute arbitrary commands by using unspecified environment variables to modify configuration settings.
|
NVD-CWE-Other
|
CVE-2008-0306
|
2017-08-8 10:29 |
2008-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265326
|
- |
|
sap
|
maxdb
|
Integer signedness error in vserver in SAP MaxDB 7.6.0.37, and possibly other versions, allows remote attackers to execute arbitrary code via unknown vectors that trigger heap corruption.
|
CWE-189
Numeric Errors
|
CVE-2008-0307
|
2017-08-8 10:29 |
2008-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265327
|
- |
|
borland
|
caliberrm
|
Stack-based buffer overflow in the PGMWebHandler::parse_request function in the StarTeam Multicast Service component (STMulticastService) 6.4 in Borland CaliberRM 2006 allows remote attackers to exec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0311
|
2017-08-8 10:29 |
2008-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265328
|
- |
|
symantec
|
norton_360
norton_antivirus
norton_internet_security
norton_system_works
|
Stack-based buffer overflow in the AutoFix Support Tool ActiveX control 2.7.0.1 in SYMADATA.DLL in multiple Symantec Norton products, including Norton 360 1.0, AntiVirus 2006 through 2008, Internet S…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0312
|
2017-08-8 10:29 |
2008-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265329
|
- |
|
symantec
|
norton_360
norton_antivirus
norton_internet_security
system_works
|
The ActiveDataInfo.LaunchProcess method in the SymAData.ActiveDataInfo.1 ActiveX control 2.7.0.1 in SYMADATA.DLL in multiple Symantec Norton products including Norton 360 1.0, AntiVirus 2006 through …
|
NVD-CWE-Other
|
CVE-2008-0313
|
2017-08-8 10:29 |
2008-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265330
|
- |
|
clam_anti-virus
|
clamav
|
Heap-based buffer overflow in spin.c in libclamav in ClamAV 0.92.1 allows remote attackers to execute arbitrary code via a crafted PeSpin packed PE binary with a modified length value.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0314
|
2017-08-8 10:29 |
2008-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
