|
256831
|
- |
|
ezcms
|
eztechhelp_ezcms
|
admin/filemanager/ (aka the File Manager) in EZTechhelp EZCMS 1.2 and earlier does not require authentication, which allows remote attackers to create, modify, read, and delete files.
|
CWE-287
Improper Authentication
|
CVE-2008-2920
|
2017-09-29 10:31 |
2008-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256832
|
- |
|
eztechhelp_company
|
ezcms
|
SQL injection vulnerability in index.php in EZTechhelp EZCMS 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter.
|
CWE-89
SQL Injection
|
CVE-2008-2921
|
2017-09-29 10:31 |
2008-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256833
|
- |
|
t0pp8uzz
|
dana_irc_client
|
Stack-based buffer overflow in artegic Dana IRC client 1.3 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long IRC messa…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2922
|
2017-09-29 10:31 |
2008-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256834
|
- |
|
redhat
|
directory_server
|
Multiple buffer overflows in the adminutil library in CGI applications in Red Hat Directory Server 7.1 before SP7 allow remote attackers to cause a denial of service (daemon crash) or possibly execut…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2928
|
2017-09-29 10:31 |
2008-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256835
|
- |
|
fedora
redhat
|
directory_server
|
Multiple cross-site scripting (XSS) vulnerabilities in the adminutil library in the Directory Server Administration Express and Directory Server Gateway (DSGW) web interface in Red Hat Directory Serv…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2929
|
2017-09-29 10:31 |
2008-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256836
|
- |
|
fedora
redhat
|
directory_server
|
Red Hat Directory Server 7.1 before SP7, Red Hat Directory Server 8, and Fedora Directory Server 1.1.1 allow remote attackers to cause a denial of service (CPU consumption and search outage) via craf…
|
CWE-399
Resource Management Errors
|
CVE-2008-2930
|
2017-09-29 10:31 |
2008-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256837
|
- |
|
hp
|
linux_imaging_and_printing_project
|
The alert-mailing implementation in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setaler…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2940
|
2017-09-29 10:31 |
2008-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256838
|
- |
|
hp
|
linux_imaging_and_printing_project
|
http://securitytracker.com/alerts/2008/Aug/1020684.html
"A local user can send specially crafted packets to cause the alert mailing function to execute arbitrary commands on the target system with…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2940
|
2017-09-29 10:31 |
2008-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256839
|
- |
|
hp
|
linux_imaging_and_printing_project
|
The hpssd message parser in hpssd.py in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to cause a denial of service (process stop) via a crafted packet, as demonstrated by sending "ms…
|
CWE-20
Improper Input Validation
|
CVE-2008-2941
|
2017-09-29 10:31 |
2008-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256840
|
- |
|
pidgin
|
pidgin
|
The UPnP functionality in Pidgin 2.0.0, and possibly other versions, allows remote attackers to trigger the download of arbitrary files and cause a denial of service (memory or disk consumption) via …
|
CWE-20
Improper Input Validation
|
CVE-2008-2957
|
2017-09-29 10:31 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
