|
264701
|
- |
|
motorola
|
netoctopus
|
The NantSys device 5.0.0.115 in Motorola netOctopus 5.1.2 build 1011 has weak permissions for the \\.\NantSys device interface (nantsys.sys), which allows local users to gain privileges or cause a de…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5761
|
2017-07-29 10:33 |
2008-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264702
|
- |
|
novell
|
netware_client
|
NICM.SYS driver 3.0.0.4, as used in Novell NetWare Client 4.91 SP4, allows local users to execute arbitrary code by opening the \\.\nicm device and providing crafted kernel addresses via IOCTLs with …
|
CWE-20
Improper Input Validation
|
CVE-2007-5762
|
2017-07-29 10:33 |
2008-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264703
|
- |
|
gnu
|
emacs
|
The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attac…
|
NVD-CWE-Other
|
CVE-2007-5795
|
2017-07-29 10:33 |
2007-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264704
|
- |
|
ibm
|
websphere_application_server
|
Multiple cross-site scripting (XSS) vulnerabilities in uddigui/navigateTree.do in the UDDI user console in IBM WebSphere Application Server (WAS) before 6.1.0 Fix Pack 13 (6.1.0.13) allow remote atta…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5798
|
2017-07-29 10:33 |
2007-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264705
|
- |
|
ibm
|
websphere_application_server
|
Multiple cross-site request forgery (CSRF) vulnerabilities in uddigui/navigateTree.do in the UDDI user console in IBM WebSphere Application Server (WAS) before 6.1.0 Fix Pack 13 (6.1.0.13) allow remo…
|
CWE-352
Origin Validation Error
|
CVE-2007-5799
|
2017-07-29 10:33 |
2007-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264706
|
- |
|
nagios
|
nagios
|
Multiple cross-site scripting (XSS) vulnerabilities in CGI programs in Nagios before 2.12 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issu…
|
CWE-79
Cross-site Scripting
|
CVE-2007-5803
|
2017-07-29 10:33 |
2008-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264707
|
- |
|
ibm
|
aix
|
cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create or overwrite an arbitrary file, and enable w…
|
NVD-CWE-Other
|
CVE-2007-5804
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264708
|
- |
|
ibm
|
aix
|
cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create an arbitrary file, and enable world writabil…
|
CWE-59
Link Following
|
CVE-2007-5805
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264709
|
- |
|
hitachi
|
groupmax_collaboration_portal
groupmax_collaboration_web_client
ucosminexus_collaboration_portal
|
Unspecified vulnerability in the Groupmax Collaboration - Schedule component in Hitachi Groupmax Collaboration Portal 07-30 through 07-30-/F and 07-32 through 07-32-/C, uCosminexus Collaboration Port…
|
NVD-CWE-noinfo
|
CVE-2007-5808
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264710
|
- |
|
ibm
|
tivoli_continuous_data_protection_for_files
|
IBM Tivoli Continuous Data Protection for Files (CDP) 3.1.0 uses weak permissions (unrestricted write) for the Central Admin Global download directory, which allows local users to place arbitrary fil…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-5819
|
2017-07-29 10:33 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
