|
261221
|
- |
|
lxde
|
gpicview
lightweight_x11_desktop_environment
|
src/main-win.c in GPicView 0.1.9 in Lightweight X11 Desktop Environment (LXDE) allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename.
|
CWE-20
Improper Input Validation
|
CVE-2008-3904
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261222
|
- |
|
newsbeuter
|
newsbeuter
|
The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL.
|
CWE-20
Improper Input Validation
|
CVE-2008-3907
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261223
|
- |
|
newsbeuter
|
newsbeuter
|
http://www.openwall.com/lists/oss-security/2008/09/01/4
"The previous version allowed to execute arbitrary code by a
crafted feed URL that is passed as a command line parameter
if the URL is o…
|
CWE-20
Improper Input Validation
|
CVE-2008-3907
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261224
|
- |
|
hsc
|
dns2tcp
|
dns2tcp before 0.4.1 does not properly handle negative values in a certain length field in the input argument to the (1) dns_simple_decode or (2) dns_decode function, which allows remote attackers to…
|
CWE-189
Numeric Errors
|
CVE-2008-3910
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261225
|
- |
|
ovidentia
|
ovidentia
|
SQL injection vulnerability in index.php in Ovidentia 6.6.5 allows remote attackers to execute arbitrary SQL commands via the field parameter in a search action. NOTE: the provenance of this informa…
|
CWE-89
SQL Injection
|
CVE-2008-3918
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261226
|
- |
|
justsystems
|
ichitaro
|
Unspecified vulnerability in multiple JustSystems Ichitaro products allows remote attackers to execute arbitrary code via a crafted JTD document, as exploited in the wild in August 2008.
|
NVD-CWE-noinfo
CWE-94
Code Injection
|
CVE-2008-3919
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261227
|
- |
|
bitlbee
|
bitlbee
|
Unspecified vulnerability in BitlBee before 1.2.2 allows remote attackers to "recreate" and "hijack" existing accounts via unspecified vectors.
|
NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3920
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261228
|
- |
|
tiger
|
tiger
|
genmsgidx in Tiger 3.2.2 allows local users to overwrite or delete arbitrary files via a symlink attack on temporary files.
|
CWE-59
Link Following
|
CVE-2008-3927
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261229
|
- |
|
debian
|
honeyd_common
|
test.sh in Honeyd 1.5c might allow local users to overwrite arbitrary files via a symlink attack on a temporary file.
|
CWE-59
Link Following
|
CVE-2008-3928
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261230
|
- |
|
ampache
|
ampache
|
gather-messages.sh in Ampache 3.4.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/filelist temporary file.
|
CWE-59
Link Following
|
CVE-2008-3929
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
