|
257451
|
- |
|
sun
|
jre
openjdk
|
The Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, does not properly restrict the objects that may be sent to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3880
|
2017-09-19 10:29 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257452
|
- |
|
sun
|
jre
openjdk
|
Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, does not prevent the existence of children of a resurrected ClassLoader, which allows remote attackers to gain privileges via uns…
|
CWE-200
Information Exposure
|
CVE-2009-3881
|
2017-09-19 10:29 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257453
|
- |
|
sun
|
jre
openjdk
|
The TimeZone.getTimeZone method in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, allows remote attackers to determine the existence of local files via vectors related to handl…
|
NVD-CWE-Other
|
CVE-2009-3884
|
2017-09-19 10:29 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257454
|
- |
|
sun
|
jre
|
Sun Java SE 5.0 before Update 22 and 6 before Update 17 on Windows allows remote attackers to cause a denial of service via a BMP file containing a link to a UNC share pathname for an International C…
|
NVD-CWE-noinfo
|
CVE-2009-3885
|
2017-09-19 10:29 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257455
|
- |
|
sun
|
jre
|
The Java Web Start implementation in Sun Java SE 6 before Update 17 does not properly handle the interaction between a signed JAR file and a JNLP (1) application or (2) applet, which has unspecified …
|
NVD-CWE-noinfo
|
CVE-2009-3886
|
2017-09-19 10:29 |
2009-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257456
|
- |
|
dag.wieers
|
dstat
|
Multiple untrusted search path vulnerabilities in dstat before 0.7.0 allow local users to gain privileges via a Trojan horse Python module in (1) the current working directory or (2) a certain subdir…
|
NVD-CWE-Other
|
CVE-2009-3894
|
2017-09-19 10:29 |
2009-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257457
|
- |
|
sun
|
opensolaris
solaris
|
Memory leak in the Sockets Direct Protocol (SDP) driver in Sun Solaris 10, and OpenSolaris snv_57 through snv_94, allows remote attackers to cause a denial of service (memory consumption) via unspeci…
|
CWE-399
Resource Management Errors
|
CVE-2009-3899
|
2017-09-19 10:29 |
2009-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257458
|
- |
|
tandberg
|
tandberg_mxp_endpoints
|
Buffer overflow in the FTP service on the Tandberg MXP F7.0 allows remote attackers to cause a denial of service (process crash or device reboot) or possibly execute arbitrary code via a long USER co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-3947
|
2017-09-19 10:29 |
2009-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257459
|
- |
|
cowonamerica
|
cowon_media_center-jetaudio
|
JetAudio 7.5.3 COWON Media Center allows remote attackers to cause a denial of service (memory consumption and application crash) via a long string at the end of a .wav file.
|
CWE-399
Resource Management Errors
|
CVE-2009-3948
|
2017-09-19 10:29 |
2009-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257460
|
- |
|
vivaprograms
|
infinity_script
|
cp/profile.php in VivaPrograms Infinity 2.0.5 and earlier does not require administrative authentication for the donewauthor action, which allows remote attackers to create administrative accounts vi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-3949
|
2017-09-19 10:29 |
2009-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
