| Page(s) : 1 ... 321 322 323 324 325 326 327 328 329 330 [331] 332 333 334 335 336 337 338 339 340 341 ... | Result(s) : 8833 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2008-12-01 | CVE-2008-5298 | cve | chm2pdf 0.9 uses temporary files in directories with fixed names, which allows local users to cause a denial of service (chm2pdf failure) of other users by creating those direct... |
| 2.6 | 2008-11-25 | CVE-2008-5228 | cve | Cross-site scripting (XSS) vulnerability in IBM Workplace Content Management (WCM) 6.0G and 6.1 before CF8, when a Page Navigation Component shows menu entries, allows remote at... |
| 2.6 | 2008-11-25 | CVE-2008-4233 | cve | Safari in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 does not isolate the call-approval dialog from the process of launching new applications, ... |
| 1.9 | 2008-11-25 | CVE-2008-4230 | cve | The Passcode Lock feature in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 displays SMS messages when the emergency-call screen is visible, which ... |
| 3.7 | 2008-11-25 | CVE-2008-4229 | cve | Race condition in the Passcode Lock feature in Apple iPhone OS 2.0 through 2.1 and iPhone OS for iPod touch 2.0 through 2.1 allows physically proximate attackers to remove the l... |
| 3.6 | 2008-11-25 | CVE-2008-4228 | cve | The Passcode Lock feature in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 allows physically proximate attackers to leverage the emergency-call ab... |
| 2.6 | 2008-11-24 | CVE-2008-5211 | cve | Cross-site scripting (XSS) vulnerability in search.php in Sphider 1.3.4, when the search suggestion feature is enabled, allows remote attackers to inject arbitrary web script or... |
| 2.6 | 2008-11-19 | CVE-2008-5161 | cve | Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectS... |
| 1.9 | 2008-11-17 | CVE-2008-5107 | cve | The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI logging is enabled, stores database credentials in MSI log files, which allows local... |
| 1.9 | 2008-11-17 | CVE-2008-3644 | cve | Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information ... |
| 3.5 | 2008-11-12 | CVE-2008-5043 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the web-based interface in IBM Metrica Service Assurance Framework allow remote authenticated users to inject arbitrary we... |
| 3.5 | 2008-11-10 | CVE-2008-5026 | cve | Microsoft SharePoint uses URLs with the same hostname and port number for a web site's primary files and individual users' uploaded files (aka attachments), which allo... |
| 2.6 | 2008-11-05 | CVE-2008-4937 | cve | senddoc in OpenOffice.org (OOo) 2.4.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/log.obr.##### temporary file. |
| 2.6 | 2008-11-03 | CVE-2008-4893 | cve | Cross-site scripting (XSS) vulnerability in templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php in Tribiq CMS 5.0.10a, when register_globals is enabled, allows remote... |
| 3.3 | 2008-11-03 | CVE-2008-4908 | cve | maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file. |
| 2.1 | 2008-10-31 | CVE-2008-4870 | cve | dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_passwor... |
| 2.1 | 2008-10-31 | CVE-2008-4807 | cve | IBM Lotus Connections 2.x before 2.0.1 stores the password for the administrative user in the trace.log file, which allows local users to obtain sensitive information by reading... |
| 2.6 | 2008-10-28 | CVE-2008-4775 | cve | Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin 3.0.0, and possibly other versions including 2.11.9.2 and 3.0.1, when register_globals is enabled, allows r... |
| 2.1 | 2008-10-27 | CVE-2008-4747 | cve | Unspecified vulnerability in the search feature in Sun Java System LDAP JDK before 4.20 allows context-dependent attackers to obtain sensitive information via unknown attack vec... |
| 2.1 | 2008-10-21 | CVE-2008-4646 | cve | The Websense Reporter Module in Websense Enterprise 6.3.2 stores the SQL database system administrator password in plaintext in CreateDbInstall.log, which allows local users to ... |
| Page(s) : 1 ... 321 322 323 324 325 326 327 328 329 330 [331] 332 333 334 335 336 337 338 339 340 341 ... | Result(s) : 8833 |
