|
264981
|
- |
|
ibm
|
aix
|
Unspecified vulnerability in xlock in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands and overwrite arbitrary files via unspecified vectors, possibly involving a buffer overf…
|
NVD-CWE-Other
|
CVE-2006-5009
|
2017-07-20 10:33 |
2006-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264982
|
- |
|
ibm
|
aix
|
Untrusted search path vulnerability in acctctl in IBM AIX 5.3.0 allows local users to execute arbitrary commands by modifying the path to point to a malicious mkdir program.
|
NVD-CWE-Other
|
CVE-2006-5010
|
2017-07-20 10:33 |
2006-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264983
|
- |
|
ibm
|
aix
|
Untrusted search path vulnerability in snappd in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands via a Trojan horse program, involving the "system subroutine".
|
NVD-CWE-Other
|
CVE-2006-5011
|
2017-07-20 10:33 |
2006-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264984
|
- |
|
cakefoundation
|
cakephp
|
Directory traversal vulnerability in app/webroot/js/vendors.php in Cake Software Foundation CakePHP before 1.1.8.3544 allows remote attackers to read arbitrary files via a .. (dot dot) in the file pa…
|
CWE-22
Path Traversal
|
CVE-2006-5031
|
2017-07-20 10:33 |
2006-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264985
|
- |
|
paul_smith_computer_services
|
vcap
|
Unspecified vulnerability in StoresAndCalendarsList.cgi in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows remote attackers to cause a denial of service via the session parameter, pos…
|
NVD-CWE-Other
|
CVE-2006-5033
|
2017-07-20 10:33 |
2006-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264986
|
- |
|
paul_smith_computer_services
|
vcap
|
Directory traversal vulnerability in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.
|
NVD-CWE-Other
|
CVE-2006-5034
|
2017-07-20 10:33 |
2006-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264987
|
- |
|
fiwin
|
ss28s_wifi_voip_sip_skype_phone
|
The FiWin SS28S WiFi VoIP SIP/Skype Phone, firmware version 01_02_07, has a hard-coded username and password, which allows remote attackers to gain administrative access via telnet.
|
NVD-CWE-Other
|
CVE-2006-5038
|
2017-07-20 10:33 |
2006-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264988
|
- |
|
activision
|
call_of_duty
call_of_duty_2
call_of_duty_united_offensive
|
Buffer overflow in (1) Call of Duty 1.5b and earlier, (2) Call of Duty United Offensive 1.51b and earlier, and (3) Call of Duty 2 1.3 and earlier allows remote attackers to execute arbitrary code via…
|
NVD-CWE-Other
|
CVE-2006-5058
|
2017-07-20 10:33 |
2006-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264989
|
- |
|
stefan_ritt
|
elog_web_logbook
|
Cross-site scripting (XSS) vulnerability in Elog 2.6.1 allows remote attackers to inject arbitrary web script or HTML by editing log entries in HTML mode.
|
NVD-CWE-Other
|
CVE-2006-5063
|
2017-07-20 10:33 |
2006-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264990
|
- |
|
eyeos_project
|
eyeos
|
Multiple cross-site scripting (XSS) vulnerabilities in eyeOS before 0.9.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving (1) eyeNav and (2) system/bai…
|
NVD-CWE-Other
|
CVE-2006-5071
|
2017-07-20 10:33 |
2006-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
