|
264801
|
- |
|
opendarwin
|
darwin_kernel
|
The fpathconf syscall function in bsd/kern/kern_descrip.c in the Darwin kernel (XNU) 8.8.1 in Apple Mac OS X allows local users to cause a denial of service (kernel panic) and possibly execute arbitr…
|
NVD-CWE-Other
|
CVE-2006-5836
|
2017-07-20 10:34 |
2006-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264802
|
- |
|
unicore
|
unicore_client
|
The keystore file in Unicore Client before 5.6 build 5, when running on Unix systems, has insecure default permissions, which allows local users to obtain sensitive information.
|
NVD-CWE-Other
|
CVE-2006-5842
|
2017-07-20 10:34 |
2006-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264803
|
- |
|
unicore
|
unicore_client
|
This vulnerability is addressed in the following product build:
Unicore, Unicore Client, 5.6 build 5
|
NVD-CWE-Other
|
CVE-2006-5842
|
2017-07-20 10:34 |
2006-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264804
|
- |
|
freewebshop
|
freewebshop
|
Directory traversal vulnerability in index.php in FreeWebshop 2.2.2 and earlier allows remote attackers to read and include arbitrary files via a .. (dot dot) in the page parameter, a different vecto…
|
CWE-22
Path Traversal
|
CVE-2006-5846
|
2017-07-20 10:34 |
2006-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264805
|
6.1 |
MEDIUM
Network
|
freewebshop
|
freewebshop
|
Cross-site scripting (XSS) vulnerability in index.php in FreeWebshop 2.2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the cat parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2006-5847
|
2017-07-20 10:34 |
2006-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264806
|
- |
|
immediacy
|
immediacy_.net_cms
|
Cross-site scripting (XSS) vulnerability in logon.aspx in Immediacy CMS (Immediacy .NET CMS) 5.2 allows remote attackers to inject arbitrary web script or HTML via the lang parameter, which is return…
|
NVD-CWE-Other
|
CVE-2006-5853
|
2017-07-20 10:34 |
2006-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264807
|
- |
|
adobe
|
coldfusion
jrun
|
Cross-site scripting (XSS) vulnerability in the administrator console for Adobe JRun 4.0, as used in ColdFusion, allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2006-5860
|
2017-07-20 10:34 |
2007-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264808
|
- |
|
citrix
|
metaframe
metaframe_presentation_server
|
The Independent Management Architecture (IMA) service (ImaSrv.exe) in Citrix MetaFrame XP 1.0 and 2.0, and Presentation Server 3.0 and 4.0, allows remote attackers to cause a denial of service (servi…
|
NVD-CWE-Other
|
CVE-2006-5861
|
2017-07-20 10:34 |
2006-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264809
|
- |
|
network_administration_visualized
|
network_administration_visualized
|
Directory traversal vulnerability in the session mechanism of the web interface for Network Administration Visualized (NAV) before 3.1.1 allows attackers with filesystem write access to have an unkno…
|
NVD-CWE-Other
|
CVE-2006-5862
|
2017-07-20 10:34 |
2006-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264810
|
- |
|
l2tpns
debian
|
l2tpns
debian_linux
|
Buffer overflow in the cluster_process_heartbeat function in cluster.c in layer 2 tunneling protocol network server (l2tpns) before 2.1.21 allows remote attackers to cause a denial of service via a l…
|
NVD-CWE-Other
|
CVE-2006-5873
|
2017-07-20 10:34 |
2006-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
