|
261231
|
- |
|
debian
|
citadel_server
|
migrate_aliases.sh in Citadel Server 7.37 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
|
CWE-59
Link Following
|
CVE-2008-3930
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261232
|
- |
|
r_foundation
|
r
|
javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files.
|
CWE-59
Link Following
|
CVE-2008-3931
|
2017-08-8 10:32 |
2008-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261233
|
- |
|
hp
|
openvms
|
Format string vulnerability in the finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to gain privileges via format string specifiers in a (1) .plan or (2) .project file.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2008-3940
|
2017-08-8 10:32 |
2008-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261234
|
- |
|
ozsari
|
full_php_emlak_script
|
SQL injection vulnerability in landsee.php in Full PHP Emlak Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2008-3942
|
2017-08-8 10:32 |
2008-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261235
|
- |
|
hp
|
openvms
|
The finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to read arbitrary files via a link corresponding to a (1) .plan or (2) .project file.
|
CWE-59
NVD-CWE-noinfo
Link Following
|
CVE-2008-3946
|
2017-08-8 10:32 |
2008-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261236
|
- |
|
hp
|
openvms
|
DCL (aka the CLI) in OpenVMS Alpha 8.3 allows local users to gain privileges via a long command line.
|
NVD-CWE-noinfo
CWE-20
Improper Input Validation
|
CVE-2008-3947
|
2017-08-8 10:32 |
2008-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261237
|
- |
|
suse
|
suse_linux
|
emacs/lisp/progmodes/python.el in Emacs 22.1 and 22.2 imports Python script from the current working directory during editing of a Python file, which allows local users to execute arbitrary code via …
|
NVD-CWE-noinfo
CWE-94
Code Injection
|
CVE-2008-3949
|
2017-08-8 10:32 |
2008-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261238
|
- |
|
microsoft
|
organization_chart
|
orgchart.exe in Microsoft Organization Chart 2.00 allows user-assisted attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .opx file.
|
CWE-94
Code Injection
|
CVE-2008-3956
|
2017-08-8 10:32 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261239
|
- |
|
microsoft
|
windows_image_acquisition_logger
|
The Microsoft Windows Image Acquisition Logger ActiveX control allows remote attackers to force the download of arbitrary files onto a client system via a URL in the first argument to the Open method…
|
CWE-20
Improper Input Validation
|
CVE-2008-3957
|
2017-08-8 10:32 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261240
|
- |
|
ibm
|
db2
|
IBM DB2 UDB 8 before Fixpak 17 allows remote attackers to cause a denial of service (instance crash) via a crafted CONNECT/ATTACH data stream that simulates a V7 client connect/attach request. NOTE:…
|
NVD-CWE-noinfo
|
CVE-2008-3958
|
2017-08-8 10:32 |
2008-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
