|
263611
|
- |
|
perl
|
perl
|
The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2827
|
2017-08-8 10:31 |
2008-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263612
|
- |
|
tmsnc
|
tmsnc
|
Stack-based buffer overflow in tmsnc allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an MSN packet with a UBX command containing a large UBX paylo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2828
|
2017-08-8 10:31 |
2008-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263613
|
- |
|
apple
|
mac_os_x
|
Open Scripting Architecture in Apple Mac OS X 10.4.11 and 10.5.4, and some other 10.4 and 10.5 versions, does not properly restrict the loading of scripting addition plugins, which allows local users…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2830
|
2017-08-8 10:31 |
2008-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263614
|
- |
|
mailmarshal
|
e10000_appliance
smtp
|
Multiple cross-site scripting (XSS) vulnerabilities in the delegated spam management feature in the Spam Quarantine Management (SQM) component in MailMarshal SMTP 6.0.3.8 through 6.3.0.0 allow user-a…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2831
|
2017-08-8 10:31 |
2008-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263615
|
- |
|
mindtouch
|
dekiwiki
|
Cross-site scripting (XSS) vulnerability in the search functionality in MindTouch DekiWiki before 8.05.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2008-2848
|
2017-08-8 10:31 |
2008-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263616
|
- |
|
drupal
|
trailscout_module
|
Cross-site scripting (XSS) vulnerability in the TrailScout module 5.x before 5.x-1.4 for Drupal allows remote authenticated users, with create post permissions, to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2849
|
2017-08-8 10:31 |
2008-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263617
|
- |
|
drupal
|
trailscout_module
|
SQL injection vulnerability in the TrailScout module 5.x before 5.x-1.4 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified cookies, related to improper use of the Dr…
|
CWE-89
SQL Injection
|
CVE-2008-2850
|
2017-08-8 10:31 |
2008-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263618
|
- |
|
offsystem
|
offsystem
|
Multiple buffer overflows in OFF System before 0.19.14 allow remote attackers to have an unknown impact via unspecified vectors related to "parsing of http headers."
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-2851
|
2017-08-8 10:31 |
2008-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263619
|
- |
|
nathan_neulinger
|
cgiwrap
|
Cross-site scripting (XSS) vulnerability in CGIWrap before 4.1, when an Internet Explorer based browser is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors…
|
CWE-79
Cross-site Scripting
|
CVE-2008-2852
|
2017-08-8 10:31 |
2008-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263620
|
- |
|
netwin
|
surgemail
|
Unspecified vulnerability in the IMAP service in NetWin SurgeMail before 3.9g2 allows remote attackers to cause a denial of service (daemon crash) via unknown vectors related to an "imap command."
|
NVD-CWE-noinfo
|
CVE-2008-2859
|
2017-08-8 10:31 |
2008-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
