| Page(s) : 1 ... 330 331 332 333 334 335 336 337 338 339 [340] 341 342 343 344 345 346 347 348 349 350 ... | Result(s) : 8834 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2007-12-20 | CVE-2007-6505 | cve | Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root... |
| 3.3 | 2007-12-19 | CVE-2007-6441 | cve | The WiMAX dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (crash) via unknown vectors related to "unaligned access on some... |
| 3.6 | 2007-12-19 | CVE-2007-5851 | cve | iChat in Apple Mac OS X 10.4.11 allows network-adjacent remote attackers to automatically initiate a video connection to another user via unknown vectors. |
| 2.1 | 2007-12-18 | CVE-2007-6434 | cve | Linux kernel 2.6.23 allows local users to create low pages in virtual userspace memory and bypass mmap_min_addr protection via a crafted executable file that calls the do_brk fu... |
| 2.1 | 2007-12-17 | CVE-2007-6418 | cve | The libdspam7-drv-mysql cron job in Debian GNU/Linux includes the MySQL dspam database password in a command line argument, which might allow local users to read the password by... |
| 2.1 | 2007-12-17 | CVE-2007-6389 | cve | The notify feature in GNOME screensaver (gnome-screensaver) 2.20.0 might allow local users to read the clipboard contents and X selection data for a locked session by using ctrl-V. |
| 2.1 | 2007-12-14 | CVE-2007-6385 | cve | The proxy server in Kerio WinRoute Firewall before 6.4.1 does not properly enforce authentication for HTTPS pages, which has unknown impact and attack vectors. NOTE: it is not ... |
| 2.1 | 2007-12-14 | CVE-2007-6363 | cve | IBM Tivoli Netcool Security Manager 1.3.0 before Interim Fix 1, when using Active Directory (AD) LDAP authentication, allows remote attackers to obtain login access via unspecif... |
| 2.1 | 2007-12-14 | CVE-2007-6249 | cve | etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on the umask to set permissions for the merge file, often resulting in permissions weaker than those of the original... |
| 3.5 | 2007-12-10 | CVE-2007-6303 | cve | MySQL 5.0.x before 5.0.51a, 5.1.x before 5.1.23, and 6.0.x before 6.0.4 does not update the DEFINER value of a view when the view is altered, which allows remote authenticated u... |
| 2.1 | 2007-12-07 | CVE-2007-6267 | cve | Citrix EdgeSight 4.2 and 4.5 for Presentation Server, EdgeSight 4.2 and 4.5 for Endpoints, and EdgeSight for NetScaler 1.0 and 1.1 do not properly store database credentials in ... |
| 2.1 | 2007-12-03 | CVE-2007-6210 | cve | zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges. |
| 3.6 | 2007-12-03 | CVE-2007-6208 | cve | sylprint.pl in claws mail tools (claws-mail-tools) allows local users to overwrite arbitrary files via a symlink attack on the sylprint.[USER].[PID] temporary file. |
| 2.1 | 2007-12-03 | CVE-2007-6207 | cve | Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for mov_to_rr, which allows a VTi domain to read memory of other domains. |
| 2.1 | 2007-12-03 | CVE-2007-6206 | cve | The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists bef... |
| 3.5 | 2007-11-29 | CVE-2007-6190 | cve | The HTTP daemon in the Cisco Unified IP Phone, when the Extension Mobility feature is enabled, allows remote authenticated users of other phones associated with the same CUCM se... |
| 2.1 | 2007-11-29 | CVE-2007-6150 | cve | The "internal state tracking" code for the random and urandom devices in FreeBSD 5.5, 6.1 through 6.3, and 7.0 beta 4 allows local users to obtain portions of previously-accesse... |
| 2.1 | 2007-11-26 | CVE-2007-6131 | cve | buttonpressed.sh in scanbuttond 0.2.3 allows local users to overwrite arbitrary files via a symlink attack on the (1) scan.pnm and (2) scan.jpg temporary files. |
| 2.6 | 2007-11-23 | CVE-2007-6100 | cve | Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie auth_type, allows rem... |
| 2.1 | 2007-11-20 | CVE-2007-6039 | cve | PHP 5.2.5 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a long string in (1) the domain parameter to the dgettext function,... |
| Page(s) : 1 ... 330 331 332 333 334 335 336 337 338 339 [340] 341 342 343 344 345 346 347 348 349 350 ... | Result(s) : 8834 |
