| Page(s) : 1 ... 324 325 326 327 328 329 330 331 332 333 [334] 335 336 337 338 339 340 341 342 343 344 ... | Result(s) : 8834 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2008-09-03 | CVE-2008-3898 | cve | Secu Star DriveCrypt Plus Pack 3.9 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local u... |
| 2.1 | 2008-09-03 | CVE-2008-3897 | cve | DiskCryptor 0.2.6 on Windows stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users t... |
| 2.1 | 2008-09-03 | CVE-2008-3896 | cve | Grub Legacy 0.97 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users t... |
| 2.1 | 2008-09-03 | CVE-2008-3895 | cve | LILO 22.6.1 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer before and after use, which allows local users to obt... |
| 2.1 | 2008-09-03 | CVE-2008-3894 | cve | IBM Lenovo firmware 7CETB5WW 2.05 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obta... |
| 1.9 | 2008-09-03 | CVE-2008-3893 | cve | Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer during boot, which allows loc... |
| 2.1 | 2008-09-03 | CVE-2008-2101 | cve | The VMware Consolidated Backup (VCB) command-line utilities in VMware ESX 3.0.1 through 3.0.3 and ESX 3.5 place a password on the command line, which allows local users to obtai... |
| 1.9 | 2008-09-02 | CVE-2008-3876 | cve | Apple iPhone 2.0.2, in some configurations, allows physically proximate attackers to bypass intended access restrictions, and obtain sensitive information or make arbitrary use ... |
| 3.5 | 2008-08-29 | CVE-2008-3874 | cve | Cross-site scripting (XSS) vulnerability in account.php in Lussumo Vanilla 1.1.5-rc1, 1.1.4, and earlier allows remote authenticated users to inject arbitrary web script or HTML... |
| 2.1 | 2008-08-27 | CVE-2008-3789 | cve | Samba 3.2.0 uses weak permissions (0666) for the (1) group_mapping.tdb and (2) group_mapping.ldb files, which allows local users to modify the membership of Unix groups. |
| 3.5 | 2008-08-27 | CVE-2008-3741 | cve | The private filesystem in Drupal 5.x before 5.10 and 6.x before 6.4 trusts the MIME type sent by a web browser, which allows remote authenticated users to conduct cross-site scr... |
| 3.5 | 2008-08-26 | CVE-2008-3782 | cve | Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php in ACG-PTP 1.0.6 allow remote authenticated administrators to inject arbitrary web script or HTML via the ... |
| 2.1 | 2008-08-25 | CVE-2008-3777 | cve | The SIP Enablement Services (SES) Server in Avaya SIP Enablement Services 5.0, and Communication Manager (CM) 5.0 on the S8300C with SES enabled, writes account names and passwo... |
| 2.6 | 2008-08-19 | CVE-2008-3715 | cve | Cross-site scripting (XSS) vulnerability in inc-core-admin-editor-previouscolorsjs.php in the FlexCMS 2.5 and earlier, when register_globals is enabled, allows remote attackers ... |
| 2.6 | 2008-08-19 | CVE-2008-3712 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.2 and 4.6.5, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via... |
| 1.9 | 2008-08-18 | CVE-2008-2937 | cve | Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a mailbox file even when this file is not owned by the recipient, which allows local users to read e-mail messag... |
| 2.6 | 2008-08-18 | CVE-2008-3270 | cve | yum-rhn-plugin in Red Hat Enterprise Linux (RHEL) 5 does not verify the SSL certificate for a file download from a Red Hat Network (RHN) server, which makes it easier for remote... |
| 3.3 | 2008-08-14 | CVE-2008-3699 | cve | The MagnatuneBrowser::listDownloadComplete function in magnatunebrowser/magnatunebrowser.cpp in Amarok before 1.4.10 allows local users to overwrite arbitrary files via a symlin... |
| 2.6 | 2008-08-10 | CVE-2008-3574 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Pluck 4.5.2, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) l... |
| 2.1 | 2008-08-08 | CVE-2008-3272 | cve | The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device numbe... |
| Page(s) : 1 ... 324 325 326 327 328 329 330 331 332 333 [334] 335 336 337 338 339 340 341 342 343 344 ... | Result(s) : 8834 |
