| Page(s) : 1 ... 324 325 326 327 328 329 330 331 332 333 [334] 335 336 337 338 339 340 341 342 343 344 ... | Result(s) : 9850 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2011-03-22 | CVE-2011-0178 | cve | The FSFindFolder API in CarbonCore in Apple Mac OS X before 10.6.7 provides a world-readable directory in response to a call with the kTemporaryFolderType flag, which allows loc... |
| 2.1 | 2011-03-22 | CVE-2011-0180 | cve | Integer overflow in HFS in Apple Mac OS X before 10.6.7 allows local users to read arbitrary (1) HFS, (2) HFS+, or (3) HFS+J files via a crafted F_READBOOTSTRAP ioctl call. |
| 2.1 | 2011-03-22 | RHSA-2011:0376 | RedHat | dbus security update |
| 3.5 | 2011-03-18 | CVE-2009-5055 | cve | Open Ticket Request System (OTRS) before 2.4.4 grants ticket access on the basis of single-digit substrings of the CustomerID value, which allows remote authenticated users to b... |
| 2.1 | 2011-03-18 | CVE-2009-5056 | cve | Open Ticket Request System (OTRS) before 2.4.0-beta2 does not properly enforce the move_into permission setting for a queue, which allows remote authenticated users to bypass in... |
| 1.9 | 2011-03-18 | CVE-2010-4758 | cve | installer.pl in Open Ticket Request System (OTRS) before 3.0.3 has an Inbound Mail Password field that uses the text type, instead of the password type, for its INPUT element, w... |
| 3.5 | 2011-03-18 | CVE-2010-4760 | cve | Open Ticket Request System (OTRS) before 3.0.0-beta6 adds email-notification-ext articles to tickets during processing of event-based notifications, which allows remote authenti... |
| 3.5 | 2011-03-18 | CVE-2010-4762 | cve | Cross-site scripting (XSS) vulnerability in the rich-text-editor component in Open Ticket Request System (OTRS) before 3.0.0-beta2 allows remote authenticated users to inject ar... |
| 3.5 | 2011-03-16 | CVE-2011-0442 | cve | The service utility in EMC Avamar 5.x before 5.0.4 uses cleartext to transmit event details in (1) service requests and (2) e-mail messages, which might allow remote attackers t... |
| 3.5 | 2011-03-14 | CVE-2011-0700 | cve | Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.0.5 allow remote authenticated users to inject arbitrary web script or HTML via vectors related to (1) ... |
| 2.6 | 2011-03-11 | CVE-2011-0169 | cve | WebKit in Apple Safari before 5.0.4, when the Web Inspector is used, does not properly handle the window.console._inspectorCommandLineAPI property, which allows user-assisted re... |
| 3.3 | 2011-03-08 | CVE-2011-0345 | cve | Directory traversal vulnerability in the NMS server in Alcatel-Lucent OmniVista 4760 R5.1.06.03 and earlier allows remote attackers to read arbitrary files via directory travers... |
| 2.1 | 2011-03-08 | CVE-2011-1307 | cve | The installer in IBM WebSphere Application Server (WAS) before 7.0.0.15 uses 777 permissions for a temporary log directory, which allows local users to have unintended access to... |
| 1.9 | 2011-03-08 | CVE-2011-1310 | cve | The Administrative Scripting Tools component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.35 and 7.x before 7.0.0.15, when tracing is enabled, places wsadmin c... |
| 2.1 | 2011-03-07 | CVE-2011-0279 | cve | HP Multifunction Peripheral (MFP) Digital Sending Software (DSS) 4.91.00 does not properly configure authentication settings of managed devices within device templates, which al... |
| 1.9 | 2011-03-04 | CVE-2011-1073 | cve | crontab.c in crontab in FreeBSD and Apple Mac OS X allows local users to (1) determine the existence of arbitrary files via a symlink attack on a /tmp/crontab.XXXXXXXXXX tempora... |
| 1.9 | 2011-03-04 | CVE-2011-1074 | cve | crontab.c in crontab in FreeBSD allows local users to determine the existence of arbitrary directories via a command-line argument composed of a directory name concatenated with... |
| 3.3 | 2011-03-02 | CVE-2011-1072 | cve | The installer in PEAR before 1.9.2 allows local users to overwrite arbitrary files via a symlink attack on the package.xml file, related to the (1) download_dir, (2) cache_dir, ... |
| 3.3 | 2011-03-02 | CVE-2011-1144 | cve | The installer in PEAR 1.9.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the package.xml file, related to the (1) download_dir, (2) cache_... |
| 2.1 | 2011-03-02 | HPSBPI02640 SSR... | HP | HP MFP Digital Sending Software Running on Windows, Authentication Bypass |
| Page(s) : 1 ... 324 325 326 327 328 329 330 331 332 333 [334] 335 336 337 338 339 340 341 342 343 344 ... | Result(s) : 9850 |
