|
265621
|
- |
|
netbsd
|
netbsd
|
NetBSD 1.6 up to 3.0, when a user has "set record" in .mailrc with the default umask set, creates the record file with 0644 permissions, which allows local users to read the record file.
|
NVD-CWE-Other
|
CVE-2006-1587
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265622
|
- |
|
netbsd
|
netbsd
|
The bridge ioctl (if_bridge code) in NetBSD 1.6 through 3.0 does not clear sensitive memory before copying ioctl results to the requesting process, which allows local users to obtain portions of kern…
|
NVD-CWE-Other
|
CVE-2006-1588
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265623
|
- |
|
netbsd
|
netbsd
|
The elf_load_file function in NetBSD 2.0 through 3.0 allows local users to cause a denial of service (kernel crash) via an ELF interpreter that does not have a PT_LOAD section in its header, which tr…
|
NVD-CWE-Other
|
CVE-2006-1589
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265624
|
- |
|
netbsd
|
netbsd
|
The NetBSD 2.x versions are only affected if the kernel is compiled with the USE_TOPDOWN_VM option (not default in generic kernels).
|
NVD-CWE-Other
|
CVE-2006-1589
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265625
|
- |
|
kevin_johnson
roman_danyliw
|
basic_analysis_and_security_engine
analysis_console_for_intrusion_databases_\(acid\)
|
Analysis Console for Intrusion Databases - The vendor has discontinued this product and therefore has no patch or upgrade that mitigates this problem.
Basic Analysis and Security Engine - Upgrade …
|
NVD-CWE-Other
|
CVE-2006-1590
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265626
|
- |
|
kevin_johnson
roman_danyliw
|
basic_analysis_and_security_engine
analysis_console_for_intrusion_databases_\(acid\)
|
Cross-site scripting (XSS) vulnerability in the PrintFreshPage function in (1) Basic Analysis and Security Engine (BASE) 1.2.4 and (2) Analysis Console for Intrusion Databases (ACID) 0.9.6b23 allows …
|
NVD-CWE-Other
|
CVE-2006-1590
|
2017-07-20 10:30 |
2006-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265627
|
- |
|
sun
|
cluster
|
Unspecified vulnerability in SunPlex Manager in Sun Cluster 3.1 4/04 allows local users with solaris.cluster.gui authorization to view arbitrary files via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2006-1601
|
2017-07-20 10:30 |
2006-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265628
|
- |
|
phpbb_group
|
phpbb
|
Cross-site scripting (XSS) vulnerability in profile.php in phpBB 2.0.19 allows remote attackers to inject arbitrary web script or HTML via the cur_password parameter. NOTE: the provenance of this in…
|
NVD-CWE-Other
|
CVE-2006-1603
|
2017-07-20 10:30 |
2006-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265629
|
- |
|
exponent
|
exponent_cms
|
Unspecified vulnerability in the banner module in Exponent CMS before 0.96.5 RC 1 allows "php injection" via unknown attack vectors.
|
NVD-CWE-Other
|
CVE-2006-1607
|
2017-07-20 10:30 |
2006-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265630
|
- |
|
hitachi
|
xfit_s
xfit_s_jca
xfit_s_zengin
xfit_s_zgin
|
Unspecified vulnerability in Hitachi XFIT/S, XFIT/S/JCA, XFIT/S/ZGN, and XFIT/S ZENGIN TCP/IP Procedure allows remote attackers to cause a denial of service (server process and transfer control proce…
|
NVD-CWE-Other
|
CVE-2006-1609
|
2017-07-20 10:30 |
2006-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
