|
263891
|
- |
|
blender
|
blender
|
Stack-based buffer overflow in the imb_loadhdr function in Blender 2.45 allows user-assisted remote attackers to execute arbitrary code via a .blend file that contains a crafted Radiance RGBE image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-1102
|
2017-08-8 10:29 |
2008-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263892
|
- |
|
blender
|
blender
|
Multiple unspecified vulnerabilities in Blender have unknown impact and attack vectors, related to "temporary file issues."
|
CWE-59
Link Following
|
CVE-2008-1103
|
2017-08-8 10:29 |
2008-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263893
|
- |
|
cosmicperl
darwin
navision
|
directory_pro
darwin
financials_server
|
A certain pseudo-random number generator (PRNG) algorithm that uses XOR and 3-bit random hops (aka "Algorithm X3"), as used in OpenBSD 2.8 through 4.2, allows remote attackers to guess sensitive valu…
|
NVD-CWE-Other
|
CVE-2008-1146
|
2017-08-8 10:29 |
2008-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263894
|
- |
|
cosmicperl
darwin
navision
|
directory_pro
darwin
financials_server
|
A certain pseudo-random number generator (PRNG) algorithm that uses ADD with 0 random hops (aka "Algorithm A0"), as used in OpenBSD 3.5 through 4.2 and NetBSD 1.6.2 through 4.0, allows remote attacke…
|
NVD-CWE-Other
|
CVE-2008-1148
|
2017-08-8 10:29 |
2008-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263895
|
- |
|
phpmyadmin
|
phpmyadmin
|
phpMyAdmin before 2.11.5 accesses $_REQUEST to obtain some parameters instead of $_GET and $_POST, which allows attackers in the same domain to override certain variables and conduct SQL injection an…
|
CWE-89
CWE-352
SQL Injection
Origin Validation Error
|
CVE-2008-1149
|
2017-08-8 10:29 |
2008-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263896
|
- |
|
cisco
|
emergency_responder
mobility_manager
unified_communications_manager
unified_presence
|
The Disaster Recovery Framework (DRF) master server in Cisco Unified Communications products, including Unified Communications Manager (CUCM) 5.x and 6.x, Unified Presence 1.x and 6.x, Emergency Resp…
|
CWE-287
Improper Authentication
|
CVE-2008-1154
|
2017-08-8 10:29 |
2008-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263897
|
- |
|
cisco
|
network_admission_control
|
Cisco Network Admission Control (NAC) Appliance 3.5.x, 3.6.x before 3.6.4.4, 4.0.x before 4.0.6, and 4.1.x before 4.1.2 allows remote attackers to obtain the shared secret for the Clean Access Server…
|
CWE-200
Information Exposure
|
CVE-2008-1155
|
2017-08-8 10:29 |
2008-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263898
|
- |
|
cisco
|
ciscoworks_internetwork_performance_monitor
|
Cisco CiscoWorks Internetwork Performance Monitor (IPM) 2.6 creates a process that executes a command shell and listens on a randomly chosen TCP port, which allows remote attackers to execute arbitra…
|
CWE-20
Improper Input Validation
|
CVE-2008-1157
|
2017-08-8 10:29 |
2008-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263899
|
- |
|
cisco
|
unified_presence
unified_presence_server
|
The Presence Engine (PE) service in Cisco Unified Presence before 6.0(1) allows remote attackers to cause a denial of service (core dump and service interruption) via malformed packets, aka Bug ID CS…
|
CWE-20
Improper Input Validation
|
CVE-2008-1158
|
2017-08-8 10:29 |
2008-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263900
|
- |
|
flyspray
|
flyspray
|
Multiple cross-site scripting (XSS) vulnerabilities in Flyspray 0.9.9 through 0.9.9.4 allow remote attackers to inject arbitrary web script or HTML via (1) a forced SQL error message or (2) old_value…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1165
|
2017-08-8 10:29 |
2008-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
