|
261891
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
MobileMe in Apple Mac OS X 10.5 before 10.5.8 does not properly delete credentials upon signout from the preference pane, which makes it easier for attackers to hijack a MobileMe session via unspecif…
|
CWE-255
Credentials Management
|
CVE-2009-2192
|
2017-08-17 10:30 |
2009-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261892
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in the kernel in Apple Mac OS X 10.5 before 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via a crafted AppleTalk response packe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2193
|
2017-08-17 10:30 |
2009-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261893
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Apple Mac OS X 10.5 before 10.5.8 does not properly share file descriptors over local sockets, which allows local users to cause a denial of service (system crash) by placing file descriptors in mess…
|
NVD-CWE-Other
|
CVE-2009-2194
|
2017-08-17 10:30 |
2009-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261894
|
- |
|
apple
|
garageband
|
Apple GarageBand before 5.1 reconfigures Safari to accept all cookies regardless of domain name, which makes it easier for remote web servers to track users.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2198
|
2017-08-17 10:30 |
2009-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261895
|
- |
|
apple
|
xsan
|
The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to ob…
|
CWE-310
Cryptographic Issues
|
CVE-2009-2201
|
2017-08-17 10:30 |
2009-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261896
|
- |
|
apple
|
iphone_os
|
The MobileMail component in Apple iPhone OS 3.0 and 3.0.1, and iPhone OS 3.0 for iPod touch, lists deleted e-mail messages in Spotlight search results, which might allow local users to obtain sensiti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2207
|
2017-08-17 10:30 |
2009-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261897
|
- |
|
freebsd
|
freebsd
|
FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFO_IN6 IOCTL, which allows local users to modify or disable IPv6 network interfaces, as demonstrated by modifying the MTU.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2208
|
2017-08-17 10:30 |
2009-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261898
|
- |
|
citrix
|
secure_gateway
|
The Secure Gateway service in Citrix Secure Gateway 3.1 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an unspecified request.
|
CWE-399
Resource Management Errors
|
CVE-2009-2214
|
2017-08-17 10:30 |
2009-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261899
|
- |
|
jbmc-software
|
directadmin
|
Cross-site scripting (XSS) vulnerability in CMD_REDIRECT in DirectAdmin 1.33.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the URI in a view=advanced request.
|
CWE-79
Cross-site Scripting
|
CVE-2009-2216
|
2017-08-17 10:30 |
2009-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261900
|
- |
|
phantom-inker
|
nbbc
|
Cross-site scripting (XSS) vulnerability in NBBC before 1.4.2 allows remote attackers to inject arbitrary web script or HTML via an invalid URL in a BBCode img tag.
|
CWE-79
Cross-site Scripting
|
CVE-2009-2217
|
2017-08-17 10:30 |
2009-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
