|
260501
|
- |
|
sun
|
opensolaris
solaris
|
The NFS server in Sun Solaris 10, and OpenSolaris before snv_111, does not properly implement the AUTH_NONE (aka sec=none) security mode in combination with other security modes, which allows remote …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-0872
|
2017-08-17 10:30 |
2009-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260502
|
- |
|
sun
|
xvm_virtualbox
|
Sun xVM VirtualBox 2.0.0, 2.0.2, 2.0.4, 2.0.6r39760, 2.1.0, 2.1.2, and 2.1.4r42893 on Linux allows local users to gain privileges via a hardlink attack, which preserves setuid/setgid bits on Linux, r…
|
CWE-59
Link Following
|
CVE-2009-0876
|
2017-08-17 10:30 |
2009-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260503
|
- |
|
sun
|
xvm_virtualbox
|
Per: http://sunsolve.sun.com/search/document.do?assetkey=1-66-254568-1
"5. Resolution
This issue is addressed in the following releases:
Linux
* Sun xVM VirtualBox 2.0.6r43001
* …
|
CWE-59
Link Following
|
CVE-2009-0876
|
2017-08-17 10:30 |
2009-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260504
|
- |
|
wesnoth
|
wesnoth
|
The read_game_map function in src/terrain_translation.cpp in Wesnoth before r32987 allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a map with a large (1)…
|
CWE-399
Resource Management Errors
|
CVE-2009-0878
|
2017-08-17 10:30 |
2009-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260505
|
- |
|
ibm
|
websphere_application_server
|
The Web Services Security component in IBM WebSphere Application Server 7.0 before Fix Pack 1 (7.0.0.1), 6.1 before Fix Pack 23 (6.1.0.23),and 6.0.2 before Fix Pack 33 (6.0.2.33) does not properly en…
|
CWE-287
Improper Authentication
|
CVE-2009-0891
|
2017-08-17 10:30 |
2009-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260506
|
- |
|
ibm
|
websphere_application_server
|
The administrative console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.23 and 7.0 before 7.0.0.3 allows attackers to hijack user sessions in "specific scenarios" related to a forced lo…
|
CWE-287
Improper Authentication
|
CVE-2009-0892
|
2017-08-17 10:30 |
2009-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260507
|
- |
|
novell
|
edirectory
|
Integer overflow in Novell eDirectory 8.7.3.x before 8.7.3.10 ftf2 and 8.8.x before 8.8.5.2 allows remote attackers to execute arbitrary code via an NDS Verb 0x1 request containing a large integer va…
|
CWE-189
Numeric Errors
|
CVE-2009-0895
|
2017-08-17 10:30 |
2009-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260508
|
- |
|
ibm
|
websphere_mq
|
Buffer overflow in the queue manager in IBM WebSphere MQ 6.x before 6.0.2.7 and 7.x before 7.0.1.0 allows remote attackers to execute arbitrary code via a crafted request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0896
|
2017-08-17 10:30 |
2009-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260509
|
- |
|
ibm
|
websphere_partner_gateway
|
IBM WebSphere Partner Gateway (WPG) 6.1.0 before 6.1.0.1 and 6.1.1 before 6.1.1.1 allows remote authenticated users to obtain sensitive information via vectors related to the "schema DB2 instance id"…
|
NVD-CWE-Other
|
CVE-2009-0897
|
2017-08-17 10:30 |
2009-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260510
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.3, and the Feature Pack for Web Services for WAS 6.1 before 6.1.0.25, when a WS-Security policy is established at the operation level, does not…
|
NVD-CWE-Other
|
CVE-2009-0903
|
2017-08-17 10:30 |
2009-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
