|
263691
|
- |
|
menalto
|
gallery
|
Menalto Gallery before 2.2.5 does not enforce permissions for non-album items that have been protected by a password, which might allow remote attackers to bypass intended access restrictions.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2724
|
2017-08-8 10:31 |
2008-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263692
|
- |
|
cisco
|
unified_communications_manager
|
The Real-Time Information Server (RIS) Data Collector service in Cisco Unified Communications Manager (CUCM) 5.x before 5.1(3) and 6.x before 6.1(1) allows remote attackers to bypass authentication, …
|
CWE-287
Improper Authentication
|
CVE-2008-2730
|
2017-08-8 10:31 |
2008-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263693
|
- |
|
cisco
|
adaptive_security_appliance_5500
pix
|
Multiple unspecified vulnerabilities in the SIP inspection functionality in Cisco PIX and Adaptive Security Appliance (ASA) 5500 devices 7.0 before 7.0(7)16, 7.1 before 7.1(2)71, 7.2 before 7.2(4)7, …
|
NVD-CWE-noinfo
|
CVE-2008-2732
|
2017-08-8 10:31 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263694
|
- |
|
cisco
|
adaptive_security_appliance_5500
pix
|
Cisco PIX and Adaptive Security Appliance (ASA) 5500 devices 7.2 before 7.2(4)2, 8.0 before 8.0(3)14, and 8.1 before 8.1(1)4, when configured as a client VPN endpoint, do not properly process IPSec c…
|
NVD-CWE-noinfo
|
CVE-2008-2733
|
2017-08-8 10:31 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263695
|
- |
|
cisco
|
adaptive_security_appliance_5500
|
Memory leak in the crypto functionality in Cisco Adaptive Security Appliance (ASA) 5500 devices 7.2 before 7.2(4)2, 8.0 before 8.0(3)14, and 8.1 before 8.1(1)4, when configured as a clientless SSL VP…
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-2734
|
2017-08-8 10:31 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263696
|
- |
|
cisco
|
adaptive_security_appliance_5500
|
The HTTP server in Cisco Adaptive Security Appliance (ASA) 5500 devices 8.0 before 8.0(3)15 and 8.1 before 8.1(1)5, when configured as a clientless SSL VPN endpoint, does not properly process URIs, w…
|
NVD-CWE-noinfo
CWE-20
Improper Input Validation
|
CVE-2008-2735
|
2017-08-8 10:31 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263697
|
- |
|
cisco
|
adaptive_security_appliance_5500
|
Unspecified vulnerability in Cisco Adaptive Security Appliance (ASA) 5500 devices 8.0(3)15, 8.0(3)16, 8.1(1)4, and 8.1(1)5, when configured as a clientless SSL VPN endpoint, allows remote attackers t…
|
NVD-CWE-noinfo
CWE-200
Information Exposure
|
CVE-2008-2736
|
2017-08-8 10:31 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263698
|
- |
|
xerox
|
xerox_4110
xerox_4590
xerox_4595
|
Cross-site scripting (XSS) vulnerability in the embedded web server in Xerox 4110, 4590, and 4595 Copier/Printers allows remote attackers to inject arbitrary web script or HTML via unknown attack vec…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2743
|
2017-08-8 10:31 |
2008-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263699
|
- |
|
sun
|
java_system_calendar_server
one_calendar_server
|
Unspecified vulnerability in cshttpd in Sun Java System Calendar Server 6 and 6.3, and Sun ONE Calendar Server 6.0, when access logging (aka service.http.commandlog.all) is enabled, allows remote att…
|
NVD-CWE-noinfo
|
CVE-2008-2749
|
2017-08-8 10:31 |
2008-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263700
|
- |
|
microsoft
|
word
|
Microsoft Word 2000 9.0.2812 and 2003 11.8106.8172 does not properly handle unordered lists, which allows user-assisted remote attackers to cause a denial of service (memory corruption and applicatio…
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-2752
|
2017-08-8 10:31 |
2008-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
