| Page(s) : 1 ... 328 329 330 331 332 333 334 335 336 337 [338] 339 340 341 342 343 344 345 346 347 348 ... | Result(s) : 8834 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 1.9 | 2008-03-18 | CVE-2008-1383 | cve | The docert function in ssl-cert.eclass, when used by src_compile or src_install on Gentoo Linux, stores the SSL key in a binpkg, which allows local users to extract the key from... |
| 1.7 | 2008-03-18 | CVE-2008-0996 | cve | The Printing component in Apple Mac OS X 10.5.2 might save authentication credentials to disk when starting a job on an authenticated print queue, which might allow local users ... |
| 2.6 | 2008-03-18 | CVE-2008-0995 | cve | The Printing component in Apple Mac OS X 10.5.2 uses 40-bit RC4 when printing to an encrypted PDF file, which makes it easier for attackers to decrypt the file via brute force m... |
| 2.6 | 2008-03-18 | CVE-2008-0994 | cve | Preview in Apple Mac OS X 10.5.2 uses 40-bit RC4 when saving a PDF file with encryption, which makes it easier for attackers to decrypt the file via brute force methods. |
| 2.1 | 2008-03-18 | CVE-2008-0993 | cve | Podcast Capture in Podcast Producer for Apple Mac OS X 10.5.2 invokes a subtask with passwords in command line arguments, which allows local users to read the passwords via proc... |
| 1.9 | 2008-03-18 | CVE-2008-0049 | cve | AppKit in Apple Mac OS X 10.4.11 inadvertently makes an NSApplication mach port available for inter-process communication instead of inter-thread communication, which allows loc... |
| 3.6 | 2008-03-18 | CVE-2008-1371 | cve | Absolute path traversal vulnerability in install/index.php in Drake CMS 0.4.11 RC8 allows remote attackers to read and execute arbitrary files via a full pathname in the d_root ... |
| 3.5 | 2008-03-18 | CVE-2008-1330 | cve | Unspecified vulnerability in the Windows client API in Novell GroupWise 7 before SP3 and 6.5 before SP6 Update 3 allows remote authenticated users to access the non-shared store... |
| 3.3 | 2008-03-08 | CVE-2007-6705 | cve | The WebSphere MQ XA 5.3 before FP13 and 6.0.x before 6.0.2.1 client for Windows, when running in an MTS or a COM+ environment, grants the PROCESS_DUP_HANDLE privilege to the Eve... |
| 2.6 | 2008-03-05 | CVE-2008-1176 | cve | Cross-site scripting (XSS) vulnerability in function/sideblock.php in Affiliate Market (affmarket) 0.1 BETA allows remote attackers to inject arbitrary web script or HTML via th... |
| 3.7 | 2008-03-05 | CVE-2008-0883 | cve | acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files related to SSL certificate handling. |
| 2.6 | 2008-03-05 | CVE-2007-6704 | cve | Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 through 5.5.2 and 6.0 through 6.0.1, when pre-logon sequences are enabled, allow remote att... |
| 3.5 | 2008-03-03 | CVE-2008-1131 | cve | Cross-site scripting (XSS) vulnerability in Drupal 6.0 allows remote authenticated users to inject arbitrary web script or HTML via titles in content edit forms. |
| 3.5 | 2008-02-25 | CVE-2008-0945 | cve | Format string vulnerability in the logging function in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated... |
| 3.6 | 2008-02-19 | CVE-2008-0822 | cve | Directory traversal vulnerability in index.php in Scribe 0.2 allows remote attackers to read arbitrary local files via a .. (dot dot) in the page parameter. |
| 3.6 | 2008-02-19 | CVE-2008-0819 | cve | Directory traversal vulnerability in index.php in PlutoStatus Locator 1.0 pre alpha allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in th... |
| 3.6 | 2008-02-18 | CVE-2008-0806 | cve | wyrd 1.4.3b allows local users to overwrite arbitrary files via a symlink attack on the wyrd-tmp.[USERID] temporary file. |
| 2.1 | 2008-02-12 | CVE-2008-0740 | cve | IBM WebSphere Application Server (WAS) before 6.0.2 Fix Pack 25 (6.0.2.25) and 6.1 before Fix Pack 15 (6.1.0.15) writes unspecified cleartext information to http_plugin.log, whi... |
| 2.1 | 2008-02-12 | CVE-2008-0732 | cve | The init script for Apache Geronimo on SUSE Linux follows symlinks when performing a chown operation, which might allow local users to obtain access to unspecified files or dire... |
| 1.9 | 2008-02-12 | CVE-2008-0038 | cve | Launch Services in Apple Mac OS X 10.5 through 10.5.1 allows an uninstalled application to be launched if it is in a Time Machine backup, which might allow local users to bypass... |
| Page(s) : 1 ... 328 329 330 331 332 333 334 335 336 337 [338] 339 340 341 342 343 344 345 346 347 348 ... | Result(s) : 8834 |
