|
260591
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The screen saver in Dock in Apple Mac OS X 10.5 before 10.5.8 does not prevent four-finger Multi-Touch gestures, which allows physically proximate attackers to bypass locking and "manage applications…
|
NVD-CWE-Other
|
CVE-2009-0151
|
2017-08-8 10:33 |
2009-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260592
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Integer underflow in CoreGraphics in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to execute arbitrary code o…
|
CWE-189
Numeric Errors
|
CVE-2009-0155
|
2017-08-8 10:33 |
2009-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260593
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Launch Services in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 allows remote attackers to cause a denial of service (persistent Finder crash) via a crafted Mach-O executable that triggers an out-of…
|
CWE-20
Improper Input Validation
|
CVE-2009-0156
|
2017-08-8 10:33 |
2009-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260594
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Heap-based buffer overflow in CFNetwork in Apple Mac OS X 10.5 before 10.5.7 allows remote web servers to execute arbitrary code or cause a denial of service (application crash) via long HTTP headers.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0157
|
2017-08-8 10:33 |
2009-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260595
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The OpenSSL::OCSP module for Ruby in Apple Mac OS X 10.5 before 10.5.7 misinterprets an unspecified invalid response as a successful OCSP certificate validation, which might allow remote attackers to…
|
CWE-20
Improper Input Validation
|
CVE-2009-0161
|
2017-08-8 10:33 |
2009-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260596
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in Safari before 3.2.3, and 4 Public Beta, on Apple Mac OS X 10.5 before 10.5.7 and Windows allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2009-0162
|
2017-08-8 10:33 |
2009-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260597
|
- |
|
sun
|
java_system_access_manager
|
Sun Java System Access Manager 7.1 allows remote authenticated sub-realm administrators to gain privileges, as demonstrated by creating the amadmin account in the sub-realm, and then logging in as am…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0169
|
2017-08-8 10:33 |
2009-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260598
|
- |
|
ibm
|
db2_universal_database
|
Unspecified vulnerability in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote attackers to cause a denial of service (infinite loop) via a crafted CONNECT data stream.
|
CWE-20
Improper Input Validation
|
CVE-2009-0172
|
2017-08-8 10:33 |
2009-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260599
|
- |
|
ibm
|
db2_universal_database
|
Unspecified vulnerability in the server in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote authenticated users to cause a denial of service (trap) via a crafted data stream.
|
CWE-20
Improper Input Validation
|
CVE-2009-0173
|
2017-08-8 10:33 |
2009-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260600
|
- |
|
ibm
|
hardware_management_console
|
Unspecified vulnerability in IBM Hardware Management Console (HMC) 7 release 3.2.0 SP1 has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2009-0178
|
2017-08-8 10:33 |
2009-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
