|
311921
|
9.8 |
CRITICAL
Network
|
microfocus
|
netware
|
In Novell NetWare before 6.5 SP8, a stack buffer overflow in processing of CALLIT RPC calls in the NFS Portmapper daemon in PKERNEL.NLM allowed remote unauthenticated attackers to execute code, becau…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-5153
|
2024-11-21 10:11 |
2018-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311922
|
4.1 |
MEDIUM
Local
|
absolute
|
computrace_agent
|
Absolute Computrace Agent, as distributed on certain Dell Inspiron systems through 2009, has a race condition with the Dell Client Configuration Utility (DCCU), which allows privileged local users to…
|
CWE-362
Race Condition
|
CVE-2009-5152
|
2024-11-21 10:11 |
2018-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311923
|
6.7 |
MEDIUM
Local
|
absolute
|
computrace_agent
|
The stub component of Absolute Computrace Agent V70.785 executes code from a disk's inter-partition space without requiring a digital signature for that code, which allows attackers to execute code o…
|
CWE-284
Improper Access Control
|
CVE-2009-5151
|
2024-11-21 10:11 |
2018-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311924
|
6.7 |
MEDIUM
Local
|
absolute
|
computrace_agent
|
Absolute Computrace Agent V80.845 and V80.866 does not have a digital signature for the configuration block, which allows attackers to set up communication with a web site other than the intended sea…
|
CWE-284
Improper Access Control
|
CVE-2009-5150
|
2024-11-21 10:11 |
2018-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311925
|
6.5 |
MEDIUM
Adjacent
|
symantec
|
altiris_deployment_solution
|
DBManager in Symantec Altiris Deployment Solution 6.9.x before DS 6.9 SP4 allows remote attackers to cause a denial of service via a crafted request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0109
|
2024-11-21 10:11 |
2018-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311926
|
7.5 |
HIGH
Network
|
mod_gnutls_project
|
mod_gnutls
|
mod-gnutls does not validate client certificates when "GnuTLSClientVerify require" is set in a directory context, which allows remote attackers to spoof clients via a crafted certificate.
|
CWE-254
7PK - Security Features
|
CVE-2009-5144
|
2024-11-21 10:11 |
2018-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311927
|
6.1 |
MEDIUM
Network
|
zope
|
zope
|
Cross-site scripting (XSS) vulnerability in ZMI pages that use the manage_tabs_message in Zope 2.11.4, 2.11.2, 2.10.9, 2.10.7, 2.10.6, 2.10.5, 2.10.4, 2.10.2, 2.10.1, 2.12.
|
CWE-79
Cross-site Scripting
|
CVE-2009-5145
|
2024-11-21 10:11 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311928
|
7.3 |
HIGH
Network
|
ruby-lang
|
ruby
|
DL::dlopen in Ruby 1.8, 1.9.0, 1.9.2, 1.9.3, 2.0.0 before patchlevel 648, and 2.1 before 2.1.8 opens libraries with tainted names.
|
CWE-20
Improper Input Validation
|
CVE-2009-5147
|
2024-11-21 10:11 |
2017-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311929
|
- |
|
arris
|
na_model_862_gw_mono_firmware
|
Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have predictable technician passwords, which makes it easier for remote attackers to obtain access vi…
|
CWE-255
Credentials Management
|
CVE-2009-5149
|
2024-11-21 10:11 |
2015-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311930
|
- |
|
gehealthcare
|
discovery_530c_firmware
|
GE Healthcare Discovery 530C has a password of #bigguy1 for the (1) acqservice user and (2) wsservice user of the Xeleris System, which has unspecified impact and attack vectors. NOTE: it is not cle…
|
CWE-255
Credentials Management
|
CVE-2009-5143
|
2024-11-21 10:11 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
