|
314531
|
- |
|
guillaumegardey
|
biborb
|
SQL injection vulnerability in BibORB 1.3.2, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the (1) Username or (2) Password.
|
CWE-89
SQL Injection
|
CVE-2005-0252
|
2024-02-3 01:54 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314532
|
6.5 |
MEDIUM
Network
|
mit
fedoraproject
opensuse
suse
canonical
|
kerberos_5
fedora
opensuse
linux_enterprise
ubuntu_linux
|
Use-after-free vulnerability in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote authenticated users to cause a denial of service (daemon crash) vi…
|
CWE-416
Use After Free
|
CVE-2010-0629
|
2024-02-3 01:52 |
2010-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314533
|
- |
|
guillaumegardey
|
biborb
|
Directory traversal vulnerability in index.php for BibORB 1.3.2, and possibly earlier versions, allows remote attackers to delete arbitrary files via a Delete action and .. (dot dot) sequences in the…
|
CWE-22
Path Traversal
|
CVE-2005-0253
|
2024-02-3 01:50 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314534
|
- |
|
guillaumegardey
|
biborb
|
BibORB 1.3.2, and possibly earlier versions, does not properly enforce a restriction for uploading only PDF and PS files, which allows remote attackers to upload arbitrary files that are presented to…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2005-0254
|
2024-02-3 01:44 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314535
|
- |
|
guillaumegardey
|
biborb
|
Cross-site scripting (XSS) vulnerability in bibindex.php for BibORB 1.3.2, and possibly earlier versions, allows remote attackers to inject arbitrary HTML and web script via the search parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2005-0251
|
2024-02-3 01:42 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314536
|
7.0 |
HIGH
Local
|
linux
opensuse
suse
debian
|
linux_kernel
opensuse
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_high_availability_extension
debian_linux
|
Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service (memory corruption and system…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2010-1437
|
2024-02-3 01:38 |
2010-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314537
|
- |
|
postgresql
trustix
mandrakesoft
redhat
|
postgresql
secure_linux
mandrake_linux_corporate_server
enterprise_linux_desktop
enterprise_linux
mandrake_linux
|
The make_oidjoins_check script in PostgreSQL 7.4.5 and earlier allows local users to overwrite files via a symlink attack on temporary files.
|
NVD-CWE-Other
|
CVE-2004-0977
|
2024-02-3 01:33 |
2005-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314538
|
9.8 |
CRITICAL
Network
|
mit
openpkg
debian
|
kerberos_5
openpkg
debian_linux
|
Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 (krb5) 1.2.8 and earlier may allow remote attackers to execute arbitrary code.
|
CWE-415
Double Free
|
CVE-2004-0772
|
2024-02-3 00:27 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314539
|
- |
|
mit
debian
redhat
|
kerberos_5
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
|
Double free vulnerabilities in the error handling code for ASN.1 decoders in the (1) Key Distribution Center (KDC) library and (2) client library for MIT Kerberos 5 (krb5) 1.3.4 and earlier may allow…
|
CWE-415
Double Free
|
CVE-2004-0642
|
2024-02-3 00:27 |
2004-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314540
|
9.8 |
CRITICAL
Network
|
mit
apple
debian
|
kerberos_5
mac_os_x_server
mac_os_x
debian_linux
|
Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.
|
CWE-415
Double Free
|
CVE-2005-1689
|
2024-02-3 00:24 |
2005-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
