| Page(s) : 1 ... 309 310 311 312 313 314 315 316 317 318 [319] 320 321 322 323 324 325 326 327 328 329 ... | Result(s) : 8829 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.3 | 2010-02-25 | CVE-2010-0424 | cve | The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron (vixie-cron) allows local users to change the modification times of arbitrary files, and consequ... |
| 2.1 | 2010-02-24 | CVE-2010-0119 | cve | Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the command line, which allows local users to obtain sensitive information by listing the... |
| 3.3 | 2010-02-24 | CVE-2010-0118 | cve | Bournal before 1.4.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified temporary files associated with a --hack_the_gibson update check. |
| 2.6 | 2010-02-24 | CVE-2010-0640 | cve | Cross-site scripting (XSS) vulnerability in CA eHealth Performance Manager 6.0.x through 6.2.x, when malicious HTML detection is disabled, allows remote attackers to inject arbi... |
| 3.5 | 2010-02-23 | CVE-2010-0697 | cve | Cross-site scripting (XSS) vulnerability in the iTweak Upload module 6.x-1.x before 6.x-1.2 and 6.x-2.x before 6.x-2.3 for Drupal allows remote authenticated users, with create ... |
| 1.9 | 2010-02-19 | CVE-2010-0106 | cve | The on-demand scanning in Symantec AntiVirus 10.0.x and 10.1.x before MR9, AntiVirus 10.2.x, and Client Security 3.0.x and 3.1.x before MR9, when Tamper protection is disabled, ... |
| 2.6 | 2010-02-18 | CVE-2010-0650 | cve | WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, allows remote attackers to bypass intended restrictions on popup windows via crafted use of a mouse click ev... |
| 2.1 | 2010-02-15 | CVE-2010-0622 | cve | The wake_futex_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance (PI) futex, whic... |
| 3.5 | 2010-02-11 | CVE-2010-0606 | cve | Cross-site scripting (XSS) vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users to inject arbitrary web script or HTML via the f param... |
| 1.9 | 2010-02-08 | CVE-2003-1588 | cve | Sun Cluster 2.2, when HA-Oracle or HA-Sybase DBMS services are used, stores database credentials in cleartext in a cluster configuration file, which allows local users to obtain... |
| 1.5 | 2010-02-05 | CVE-2009-2752 | cve | IBM WebSphere Commerce 7.0 does not properly encrypt data in a database, which makes it easier for local users to obtain sensitive information by defeating cryptographic protect... |
| 2.6 | 2010-02-05 | CVE-2003-1582 | cve | Microsoft Internet Information Services (IIS) 6.0, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an... |
| 2.6 | 2010-02-05 | CVE-2003-1581 | cve | The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an HTTP request in con... |
| 2.6 | 2010-02-05 | CVE-2003-1577 | cve | Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text i... |
| 2.1 | 2010-02-04 | CVE-2010-0547 | cve | client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which... |
| 3.5 | 2010-01-28 | CVE-2010-0460 | cve | Multiple cross-site scripting (XSS) vulnerabilities in staff/index.php in Kayako SupportSuite 3.60.04 and earlier allow remote authenticated users to inject arbitrary web script... |
| 1.9 | 2010-01-27 | CVE-2009-3556 | cve | A certain Red Hat configuration step for the qla2xxx driver in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5, when N_Port ID Virtualization (NPIV) hardware is use... |
| 2.1 | 2010-01-25 | CVE-2010-0384 | cve | Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent logging of the client IP address upon detection of erroneous client behavior, which mi... |
| 3.5 | 2010-01-21 | CVE-2010-0370 | cve | Cross-site scripting (XSS) vulnerability in the Node Blocks module 5.x-1.1 and earlier, and 6.x-1.3 and earlier, a module for Drupal, allows remote authenticated users, with per... |
| 2.6 | 2010-01-20 | CVE-2010-0363 | cve | Cross-site scripting (XSS) vulnerability in Zeus Web Server before 4.3r5, when SSL is enabled for the admin server, allows remote attackers to inject arbitrary web script or HTM... |
| Page(s) : 1 ... 309 310 311 312 313 314 315 316 317 318 [319] 320 321 322 323 324 325 326 327 328 329 ... | Result(s) : 8829 |
