|
261011
|
- |
|
pdfjam
|
pdfjam
|
pdfjam creates the (1) pdf90, (2) pdfjoin, and (3) pdfnup files with a predictable name, which allows local users to overwrite arbitrary files via a symlink attack.
|
CWE-59
Link Following
|
CVE-2008-5743
|
2017-08-8 10:33 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261012
|
- |
|
asterisk
|
zaptel
|
Array index error in the dahdi/tor2.c driver in Zaptel (aka DAHDI) 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl…
|
CWE-189
Numeric Errors
|
CVE-2008-5744
|
2017-08-8 10:33 |
2008-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261013
|
- |
|
sun
|
snmp_management_agent
|
Sun SNMP Management Agent (SUNWmasf) 1.4u2 through 1.5.4 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on temporary files.
|
CWE-59
Link Following
|
CVE-2008-5746
|
2017-08-8 10:33 |
2008-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261014
|
- |
|
sun
|
snmp_management_agent
|
http://sunsolve.sun.com/search/document.do?assetkey=1-26-248646-1
This issue can occur in the following releases:
SPARC Platform
* Sun SNMP Management Agent "SUNWmasf" 1.4u2 thru 1.5.4 (…
|
CWE-59
Link Following
|
CVE-2008-5746
|
2017-08-8 10:33 |
2008-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261015
|
- |
|
sun
|
snmp_management_agent
|
http://sunsolve.sun.com/search/document.do?assetkey=1-26-248646-1
This issue is addressed in the following release:
SPARC Platform
* Sun SNMP Management Agent ("SUNWmasf") 1.5.5 or later…
|
CWE-59
Link Following
|
CVE-2008-5746
|
2017-08-8 10:33 |
2008-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261016
|
- |
|
phparanoid
|
phparanoid
|
Cross-site request forgery (CSRF) vulnerability in PHParanoid before 0.5 allows remote attackers to perform unspecified actions as authenticated users via unknown vectors related to private messages.
|
CWE-352
Origin Validation Error
|
CVE-2008-5758
|
2017-08-8 10:33 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261017
|
- |
|
flatnux
|
flatnux
|
Cross-site scripting (XSS) vulnerability in FlatnuX CMS (aka Flatnuke3) 2008-12-11 allows remote attackers to inject arbitrary web script or HTML via the name parameter in an updaterecord action to i…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5759
|
2017-08-8 10:33 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261018
|
- |
|
kerio
|
kerio_mailserver
|
Cross-site scripting (XSS) vulnerability in error413.php in Kerio MailServer before 6.6.2 allows remote attackers to inject arbitrary web script or HTML via the sent parameter. NOTE: some of these d…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5760
|
2017-08-8 10:33 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261019
|
- |
|
kerio
|
kerio_mailserver
|
Multiple cross-site scripting (XSS) vulnerabilities in Kerio MailServer before 6.6.2 allow remote attackers to inject arbitrary web script or HTML via the (1) folder parameter to mailCompose.php or t…
|
CWE-79
Cross-site Scripting
|
CVE-2008-5769
|
2017-08-8 10:33 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261020
|
- |
|
infrae
|
silva
silva_find
|
Cross-site scripting (XSS) vulnerability in the Silva Find extension 1.1.5 and earlier in Silva 1.x before 1.6.3.2, Silva 2.0 before 2.0.12.2, and Silva 2.1 before 2.1.0.2 allows remote attackers to …
|
CWE-79
Cross-site Scripting
|
CVE-2008-5786
|
2017-08-8 10:33 |
2008-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
