|
313751
|
5.5 |
MEDIUM
Local
|
oracle
|
forms_builder
|
Oracle Formsbuilder 9.0.4 stores database usernames and passwords in a temporary file, which is not deleted after it is used, which allows local users to obtain sensitive information.
|
CWE-459
Incomplete Cleanup
|
CVE-2005-2293
|
2024-02-9 05:13 |
2005-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313752
|
7.5 |
HIGH
Network
|
jetico
|
bcwipe
|
BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information th…
|
CWE-459
Incomplete Cleanup
|
CVE-2002-2066
|
2024-02-9 05:13 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313753
|
5.5 |
MEDIUM
Local
|
pgp
|
freeware
corporate_desktop
personal_security
|
An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System (EFS), creates a cleartext temporary files that cannot be wiped or deleted due to str…
|
CWE-459
Incomplete Cleanup
|
CVE-2002-0788
|
2024-02-9 05:13 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313754
|
5.5 |
MEDIUM
Local
|
icq
|
icq
|
ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information.
|
CWE-459
Incomplete Cleanup
|
CVE-2000-0552
|
2024-02-9 05:12 |
2000-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313755
|
9.8 |
CRITICAL
Network
|
risearch
|
risearch
risearch_pro
|
RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, o…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2004-2061
|
2024-02-9 04:56 |
2004-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313756
|
9.8 |
CRITICAL
Network
|
siemens
|
db4web
|
DB4Web server, when configured to use verbose debug messages, allows remote attackers to use DB4Web as a proxy and attempt TCP connections to other systems (port scan) via a request for a URL that sp…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2002-1484
|
2024-02-9 04:56 |
2003-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313757
|
7.5 |
HIGH
Network
|
adobe
|
acrobat_reader
acrobat
|
The Adobe Reader control in Adobe Reader and Acrobat 7.0 and 7.0.1 allows remote attackers to determine the existence of files via Javascript containing XML script, aka the "XML External Entity vulne…
|
CWE-611
XXE
|
CVE-2005-1306
|
2024-02-9 04:55 |
2005-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313758
|
5.5 |
MEDIUM
Local
|
dump_project
|
dump
|
dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention) by using flock() to lock the /etc/dumpdates file.
|
CWE-667
Improper Locking
|
CVE-2002-1914
|
2024-02-9 04:24 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313759
|
5.5 |
MEDIUM
Local
|
openbsd
netbsd
freebsd
|
openbsd
netbsd
freebsd
|
tip on multiple BSD-based operating systems allows local users to cause a denial of service (execution prevention) by using flock() to lock the /var/log/acculog file.
|
CWE-667
Improper Locking
|
CVE-2002-1915
|
2024-02-9 04:24 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313760
|
7.8 |
HIGH
Local
|
microsoft
|
windows_2000
|
Windows 2000 allows local users to prevent the application of new group policy settings by opening Group Policy files with exclusive-read access.
|
CWE-667
Improper Locking
|
CVE-2002-0051
|
2024-02-9 04:24 |
2002-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
