|
257281
|
- |
|
rich_white
|
school_data_nav
|
PHP remote file inclusion vulnerability in app_and_readme/navigator/index.php in School Data Navigator allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: th…
|
CWE-94
Code Injection
|
CVE-2009-2641
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257282
|
- |
|
desiscripts
|
desi_short_url_script
|
index.php in Desi Short URL Script 1.0 allows remote attackers to bypass authentication by setting the logged cookie to 1 and the uid cookie to an integer value, as demonstrated by a value of 13.
|
CWE-287
Improper Authentication
|
CVE-2009-2642
|
2017-09-19 10:29 |
2009-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257283
|
- |
|
sun
|
opensolaris
solaris
|
Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic…
|
CWE-362
Race Condition
|
CVE-2009-2644
|
2017-09-19 10:29 |
2009-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257284
|
- |
|
sorcerersoftware
|
multimedia_jukebox
|
Heap-based buffer overflow in Sorcerer Software MultiMedia Jukebox 4.0 Build 020124 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2650
|
2017-09-19 10:29 |
2009-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257285
|
- |
|
microsoft
|
internet_explorer
|
mshtml.dll in Microsoft Internet Explorer 7 and 8 on Windows XP SP3 allows remote attackers to cause a denial of service (application crash) by calling the JavaScript findText method with a crafted U…
|
CWE-20
Improper Input Validation
|
CVE-2009-2655
|
2017-09-19 10:29 |
2009-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257286
|
- |
|
mozilla
|
firefox
|
The js_watch_set function in js/src/jsdbgapi.cpp in the JavaScript engine in Mozilla Firefox before 3.0.12 allows remote attackers to cause a denial of service (assertion failure and application exit…
|
CWE-399
Resource Management Errors
|
CVE-2009-2664
|
2017-09-19 10:29 |
2009-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257287
|
- |
|
hp
|
hp-ux
|
Unspecified vulnerability in bootpd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2009-2679
|
2017-09-19 10:29 |
2009-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257288
|
- |
|
hp
|
hp-ux
|
Unspecified vulnerability in Role-Based Access Control (RBAC) in HP HP-UX B.11.23 and B.11.31 allows local users to bypass intended access restrictions via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2682
|
2017-09-19 10:29 |
2009-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257289
|
- |
|
sun
|
java_se
openjdk
|
JDK13Services.getProviders in Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, grants full privileges to instances of unspecified object types, which allows context-dependent att…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2689
|
2017-09-19 10:29 |
2009-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257290
|
- |
|
sun
|
java_se
openjdk
|
The encoder in Sun Java SE 6 before Update 15, and OpenJDK, grants read access to private variables with unspecified names, which allows context-dependent attackers to obtain sensitive information vi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2690
|
2017-09-19 10:29 |
2009-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
