|
263321
|
- |
|
sun
|
java_wireless_toolkit_for_cldc
|
Multiple buffer overflows in Sun Java Wireless Toolkit (WTK) for CLDC 2.5.2 and earlier allow downloaded programs to execute arbitrary code via unknown vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5662
|
2017-08-8 10:33 |
2008-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263322
|
- |
|
sun
|
java_wireless_toolkit_for_cldc
|
Per http://sunsolve.sun.com/search/document.do?assetkey=1-26-247566-1
These issues are addressed in the following releases:
* Sun Java Wireless Toolkit for CLDC 2.5.2_01 or later
Sun Jav…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-5662
|
2017-08-8 10:33 |
2008-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263323
|
- |
|
phparanoid
|
phparanoid
|
Multiple cross-site request forgery (CSRF) vulnerabilities in PHParanoid before 0.4 allow remote attackers to hijack the authentication of arbitrary users for requests that use (1) admin.php or (2) p…
|
CWE-352
Origin Validation Error
|
CVE-2008-5672
|
2017-08-8 10:33 |
2008-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263324
|
- |
|
phparanoid
|
phparanoid
|
PHParanoid before 0.4 does not properly restrict access to the members area by unauthenticated users, which has unknown impact and remote attack vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5673
|
2017-08-8 10:33 |
2008-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263325
|
- |
|
breach
|
modsecurity
|
Multiple unspecified vulnerabilities in the ModSecurity (aka mod_security) module 2.5.0 through 2.5.5 for the Apache HTTP Server, when SecCacheTransformations is enabled, allow remote attackers to ca…
|
NVD-CWE-noinfo
|
CVE-2008-5676
|
2017-08-8 10:33 |
2008-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263326
|
- |
|
mediawiki
|
mediawiki
|
MediaWiki 1.11, and other versions before 1.13.3, does not properly protect against the download of backups of deleted images, which might allow remote attackers to obtain sensitive information via r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-5687
|
2017-08-8 10:33 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263327
|
- |
|
novell
|
netware
|
Novell NetWare 6.5 before Support Pack 8, when an OES2 Linux server is installed into the NDS tree, does not require a password for the ApacheAdmin console, which allows remote attackers to reconfigu…
|
CWE-255
Credentials Management
|
CVE-2008-5696
|
2017-08-8 10:33 |
2008-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263328
|
- |
|
avaya
|
communication_manager
|
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1 before 3.1.4 SP2, 4.0 before 4.0.3 SP1, and 5.0 before 5.0 SP3 allow remote authenticated …
|
NVD-CWE-noinfo
CWE-20
Improper Input Validation
|
CVE-2008-5709
|
2017-08-8 10:33 |
2008-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263329
|
- |
|
avaya
|
communication_manager
|
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1.x, 4.0.3, and 5.x allow remote attackers to read (1) configuration files, (2) log files, (…
|
CWE-16
Configuration
|
CVE-2008-5710
|
2017-08-8 10:33 |
2008-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263330
|
- |
|
qemu
|
qemu
|
Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended.
|
CWE-189
Numeric Errors
|
CVE-2008-5714
|
2017-08-8 10:33 |
2008-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
