|
262181
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Apple Mac OS X 10.5 before 10.5.8 does not properly share file descriptors over local sockets, which allows local users to cause a denial of service (system crash) by placing file descriptors in mess…
|
NVD-CWE-Other
|
CVE-2009-2194
|
2017-08-17 10:30 |
2009-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262182
|
- |
|
apple
|
garageband
|
Apple GarageBand before 5.1 reconfigures Safari to accept all cookies regardless of domain name, which makes it easier for remote web servers to track users.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2198
|
2017-08-17 10:30 |
2009-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262183
|
- |
|
apple
|
xsan
|
The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to ob…
|
CWE-310
Cryptographic Issues
|
CVE-2009-2201
|
2017-08-17 10:30 |
2009-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262184
|
- |
|
apple
|
iphone_os
|
The MobileMail component in Apple iPhone OS 3.0 and 3.0.1, and iPhone OS 3.0 for iPod touch, lists deleted e-mail messages in Spotlight search results, which might allow local users to obtain sensiti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2207
|
2017-08-17 10:30 |
2009-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262185
|
- |
|
freebsd
|
freebsd
|
FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFO_IN6 IOCTL, which allows local users to modify or disable IPv6 network interfaces, as demonstrated by modifying the MTU.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2208
|
2017-08-17 10:30 |
2009-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262186
|
- |
|
citrix
|
secure_gateway
|
The Secure Gateway service in Citrix Secure Gateway 3.1 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an unspecified request.
|
CWE-399
Resource Management Errors
|
CVE-2009-2214
|
2017-08-17 10:30 |
2009-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262187
|
- |
|
jbmc-software
|
directadmin
|
Cross-site scripting (XSS) vulnerability in CMD_REDIRECT in DirectAdmin 1.33.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the URI in a view=advanced request.
|
CWE-79
Cross-site Scripting
|
CVE-2009-2216
|
2017-08-17 10:30 |
2009-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262188
|
- |
|
phantom-inker
|
nbbc
|
Cross-site scripting (XSS) vulnerability in NBBC before 1.4.2 allows remote attackers to inject arbitrary web script or HTML via an invalid URL in a BBCode img tag.
|
CWE-79
Cross-site Scripting
|
CVE-2009-2217
|
2017-08-17 10:30 |
2009-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262189
|
- |
|
surething
|
surething_cd\/dvd_labeler
|
Stack-based buffer overflow in SureThing CD/DVD Labeler 5.1.616 trial version allows user-assisted remote attackers to execute arbitrary code via a crafted (1) m3u or (2) pls playlist file. NOTE: th…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2225
|
2017-08-17 10:30 |
2009-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262190
|
- |
|
softbizscripts
|
banner_ad_management_script
|
SQL injection vulnerability in image.php in Softbiz Banner Ad Management Script allows remote attackers to execute arbitrary SQL commands via the size_id parameter. NOTE: the provenance of this info…
|
CWE-89
SQL Injection
|
CVE-2009-2232
|
2017-08-17 10:30 |
2009-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
