|
261711
|
- |
|
ec-cube
|
ec-cube
|
SQL injection vulnerability in LOCKON CO.,LTD. EC-CUBE 2.3.0 and earlier, 1.4.7 and earlier, and 1.5.0-beta2 and earlier; and Community Edition 1.3.5 and earlier allows remote attackers to execute ar…
|
CWE-89
SQL Injection
|
CVE-2008-4991
|
2017-08-8 10:33 |
2008-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261712
|
- |
|
sun
|
blade_t6300_server
blade_t6320_server
fire_enterprise_server_t1000
fire_enterprise_server_t2000
netra_cp3060_server
netra_t2000_server
netra_t5220_server
sparc_enterprise_server_…
|
The SPARC hypervisor in Sun System Firmware 6.6.3 through 6.6.5 and 7.1.3 through 7.1.3.e on UltraSPARC T1, T2, and T2+ processors allows logical domain users to access memory in other logical domain…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-4992
|
2017-08-8 10:33 |
2008-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261713
|
- |
|
ti_kan
|
xmcd
|
The (1) ncsarmt and (2) ncsawrap scripts in xmcd 2.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.*pid temporary file.
|
CWE-59
Link Following
|
CVE-2008-4994
|
2017-08-8 10:33 |
2008-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261714
|
- |
|
jose_m.vidal
|
bk2site
|
redirect.pl in bk2site 1.1.9 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/redirect.log temporary file. NOTE: this vulnerability is only limited to debug mode, whic…
|
CWE-59
Link Following
|
CVE-2008-4995
|
2017-08-8 10:33 |
2008-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261715
|
- |
|
university_of_washington
|
imap_toolkit
|
smtp.c in the c-client library in University of Washington IMAP Toolkit 2007b allows remote SMTP servers to cause a denial of service (NULL pointer dereference and application crash) by responding to…
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-5006
|
2017-08-8 10:33 |
2008-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261716
|
- |
|
lazarus
|
lazarus
|
create_lazarus_export_tgz.sh in lazarus 0.9.24 allows local users to overwrite or delete arbitrary files via a symlink attack on a (1) /tmp/lazarus.tgz temporary file or a (2) /tmp/lazarus temporary …
|
CWE-59
Link Following
|
CVE-2008-5007
|
2017-08-8 10:33 |
2008-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261717
|
- |
|
mega-nerd
|
secret_rabbit_code
|
Buffer overflow in src/src_sinc.c in Secret Rabbit Code (aka SRC or libsamplerate) before 0.1.4, when "extreme low conversion ratios" are used, allows user-assisted attackers to have an unknown impac…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5008
|
2017-08-8 10:33 |
2008-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261718
|
- |
|
ibm
|
lotus
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Quickr 8.1 before 8.1.0.2 services for Lotus Domino allow remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5011
|
2017-08-8 10:33 |
2008-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261719
|
- |
|
microsoft
|
sharepoint_server
|
Microsoft SharePoint uses URLs with the same hostname and port number for a web site's primary files and individual users' uploaded files (aka attachments), which allows remote authenticated users to…
|
NVD-CWE-noinfo
CWE-79
Cross-site Scripting
|
CVE-2008-5026
|
2017-08-8 10:33 |
2008-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261720
|
- |
|
libcaudio
|
libcaudio
|
Heap-based buffer overflow in the cddb_read_disc_data function in cddb.c in libcdaudio 0.99.12p2 allows remote CDDB servers to execute arbitrary code via long CDDB data.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5030
|
2017-08-8 10:33 |
2008-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
