|
310661
|
- |
|
ibm
|
lotus_notes_traveler
|
traveler.exe in IBM Lotus Notes Traveler before 8.0.1.3 CF1 allows remote authenticated users to cause a denial of service (daemon crash) via a malformed invitation document in a sync operation.
|
NVD-CWE-Other
|
CVE-2009-5036
|
2024-11-21 10:11 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310662
|
- |
|
ibm
|
lotus_notes_traveler
|
The Nokia client in IBM Lotus Notes Traveler before 8.5.0.2 does not properly handle multiple outgoing e-mail messages between sync operations, which might allow remote attackers to read communicatio…
|
CWE-200
Information Exposure
|
CVE-2009-5035
|
2024-11-21 10:11 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310663
|
- |
|
ibm
|
lotus_notes_traveler
|
IBM Lotus Notes Traveler before 8.5.0.2 allows remote authenticated users to cause a denial of service (memory consumption and daemon crash) by syncing a large volume of data, related to the launch o…
|
CWE-399
Resource Management Errors
|
CVE-2009-5034
|
2024-11-21 10:11 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310664
|
- |
|
ibm
|
lotus_notes_traveler
|
IBM Lotus Notes Traveler before 8.5.0.2 does not properly handle a "* *" argument sequence for a certain tell command, which allows remote authenticated users to obtain access to other users' data vi…
|
CWE-200
Information Exposure
|
CVE-2009-5033
|
2024-11-21 10:11 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310665
|
- |
|
ibm
|
lotus_notes_traveler
|
The encrypted e-mail feature in IBM Lotus Notes Traveler before 8.5.0.2 sends unencrypted messages when the feature is used without uploading a Notes ID file, which makes it easier for remote attacke…
|
CWE-310
Cryptographic Issues
|
CVE-2009-5032
|
2024-11-21 10:11 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310666
|
- |
|
realnetworks
|
realplayer
realplayer_sp
|
RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, and Mac RealPlayer 11.0 through 12.0.0.1444 do not properly parse spectral data in AAC files, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0125
|
2024-11-21 10:11 |
2010-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310667
|
- |
|
realnetworks
|
realplayer
realplayer_sp
|
The cook codec in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, Mac RealPlayer 11.0 through 12.0.0.1444, and Linux RealPlayer 11.0.2.1744 does not properly perform initi…
|
NVD-CWE-Other
|
CVE-2010-0121
|
2024-11-21 10:11 |
2010-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310668
|
- |
|
michael_dehaan
|
cobbler
|
Cobbler before 1.6.1 does not properly determine whether an installation has the default password, which makes it easier for attackers to obtain access by using this password.
|
CWE-255
Credentials Management
|
CVE-2009-5021
|
2024-11-21 10:11 |
2010-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310669
|
- |
|
awstats
|
awstats
|
Open redirect vulnerability in awredir.pl in AWStats before 6.95 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2009-5020
|
2024-11-21 10:11 |
2010-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310670
|
- |
|
webwiz
|
web_wiz_newspad
|
Web Wiz NewsPad stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/NewsPad.mdb.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-5019
|
2024-11-21 10:11 |
2010-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
