|
261961
|
- |
|
gentoo
|
linux
|
The docert function in ssl-cert.eclass, when used by src_compile or src_install on Gentoo Linux, stores the SSL key in a binpkg, which allows local users to extract the key from the binpkg, and cause…
|
CWE-310
Cryptographic Issues
|
CVE-2008-1383
|
2017-08-8 10:30 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261962
|
- |
|
checkpoint
|
check_point_vpn-1_pro
vpn-1
vpn-1_firewall-1
vpn-1_power_utm
vpn-1_power_utm_with_ngx
|
Check Point VPN-1 Power/UTM, with NGX R60 through R65 and NG AI R55 software, allows remote authenticated users to cause a denial of service (site-to-site VPN tunnel outage), and possibly intercept n…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1397
|
2017-08-8 10:30 |
2008-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261963
|
- |
|
clansphere
|
clansphere
|
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Clansphere 2008 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of thi…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1399
|
2017-08-8 10:30 |
2008-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261964
|
- |
|
f-secure
|
f-secure_anti-virus
f-secure_anti-virus_client_security
f-secure_anti-virus_for_linux
f-secure_anti-virus_for_workstations
f-secure_anti-virus_linux_client_security
f-secure_client_sec…
|
Unspecified vulnerability in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, allows remote attackers to execute arbitra…
|
NVD-CWE-noinfo
CWE-20
Improper Input Validation
|
CVE-2008-1412
|
2017-08-8 10:30 |
2008-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261965
|
- |
|
axyl
|
axyl
|
The prerm script in axyl 2.1.7 allows local users to overwrite arbitrary files via a symlink attack on the axyl.conf temporary file.
|
CWE-59
Link Following
|
CVE-2008-1417
|
2017-08-8 10:30 |
2008-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261966
|
- |
|
drupal
|
ubercart_module
|
Multiple cross-site scripting (XSS) vulnerabilities in the Ubercart 5.x before 5.x-1.0-beta7 module for Drupal allow remote attackers to inject arbitrary web script or HTML via a text attribute value…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1428
|
2017-08-8 10:30 |
2008-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261967
|
- |
|
silc
|
silc-server
|
Secure Internet Live Conferencing (SILC) Server before 1.1.1 allows remote attackers to cause a denial of service (daemon crash) via a NEW_CLIENT packet without a nickname.
|
NVD-CWE-noinfo
|
CVE-2008-1429
|
2017-08-8 10:30 |
2008-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261968
|
- |
|
imperva
|
securesphere
securesphere_mx_management_server
|
Cross-site scripting (XSS) vulnerability in the management GUI in Imperva SecureSphere MX Management Server 5.0 allows remote attackers to inject arbitrary web script or HTML via an invalid or prohib…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1463
|
2017-08-8 10:30 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261969
|
- |
|
w-agora
|
w-agora
|
Multiple PHP remote file inclusion vulnerabilities in W-Agora 4.0 allow remote attackers to execute arbitrary PHP code via a URL in the bn_dir_default parameter to (1) add_user.php, (2) create_forum.…
|
CWE-94
Code Injection
|
CVE-2008-1466
|
2017-08-8 10:30 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261970
|
- |
|
namazu
|
namazu
|
Cross-site scripting (XSS) vulnerability in namazu.cgi in Namazu before 2.0.18 allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded input, related to failure to set the ch…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1468
|
2017-08-8 10:30 |
2008-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
