| Page(s) : 1 ... 338 339 340 341 342 343 344 345 346 347 [348] 349 350 351 352 353 354 355 356 357 358 ... | Result(s) : 8837 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2007-05-11 | CVE-2007-2617 | cve | srsexec in Sun Remote Services (SRS) Net Connect Software Proxy Core package in Sun Solaris 10 does not enforce file permissions when opening files, which allows local users to ... |
| 2.6 | 2007-05-09 | CVE-2007-1858 | cve | The default SSL cipher configuration in Apache Tomcat 4.1.28 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.17 uses certain insecure ciphers, including the anonymou... |
| 2.6 | 2007-05-09 | CVE-2007-1358 | cve | Cross-site scripting (XSS) vulnerability in certain applications using Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.34 allows remote attackers to inject arbitrary web... |
| 1.9 | 2007-05-09 | CVE-2007-2580 | cve | Unspecified vulnerability in Apple Safari allows local users to obtain sensitive information (saved keychain passwords) via the document.loginform.password.value JavaScript para... |
| 2.6 | 2007-05-08 | CVE-2007-2509 | cve | CRLF injection vulnerability in the ftp_putcmd function in PHP before 4.4.7, and 5.x before 5.2.2 allows remote attackers to inject arbitrary FTP commands via CRLF sequences in ... |
| 2.1 | 2007-05-02 | CVE-2007-1366 | cve | QEMU 0.8.2 allows local users to crash a virtual machine via the divisor operand to the aam instruction, as demonstrated by "aam 0x0," which triggers a divide-by-zero error. |
| 2.1 | 2007-05-02 | CVE-2007-1322 | cve | QEMU 0.8.2 allows local users to halt a virtual machine by executing the icebp instruction. |
| 2.1 | 2007-04-24 | CVE-2007-1353 | cve | The setsockopt function in the L2CAP and HCI Bluetooth support in the Linux kernel before 2.4.34.3 allows context-dependent attackers to read kernel memory and obtain sensitive ... |
| 2.1 | 2007-04-17 | CVE-2007-1856 | cve | Vixie Cron before 4.1-r10 on Gentoo Linux is installed with insecure permissions, which allows local users to cause a denial of service (cron failure) by creating hard links, wh... |
| 2.9 | 2007-04-16 | CVE-2007-2037 | cve | Cisco Wireless LAN Controller (WLC) before 3.2.116.21, and 4.0.x before 4.0.155.0, allows remote attackers on a local network to cause a denial of service (device crash) via mal... |
| 2.6 | 2007-04-16 | CVE-2007-1558 | cve | The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions. NO... |
| 3.7 | 2007-04-13 | CVE-2007-1742 | cve | suexec in Apache HTTP Server (httpd) 2.2.3 uses a partial comparison for verifying whether the current directory is within the document root, which might allow local users to pe... |
| 3.5 | 2007-04-10 | CVE-2007-1947 | cve | Cross-zone scripting vulnerability in the DOM templates (domplates) used by the console.log function in the Firebug extension before 1.04 for Mozilla Firefox allows remote attac... |
| 3.8 | 2007-04-05 | CVE-2007-1352 | cve | Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fon... |
| 3.5 | 2007-04-02 | CVE-2007-1828 | cve | Multiple cross-site scripting (XSS) vulnerabilities in web-app.org WebAPP before 0.9.9.6 allow remote authenticated users to inject arbitrary web script or HTML via (1) the QUER... |
| 2.6 | 2007-03-29 | CVE-2007-1773 | cve | Multiple directory traversal vulnerabilities in aBitWhizzy allow remote attackers to list arbitrary directories via a .. (dot dot) in the d parameter to (1) whizzery/whizzypic.p... |
| 3.5 | 2007-03-28 | CVE-2007-1732 | cve | Cross-site scripting (XSS) vulnerability in an mt import in wp-admin/admin.php in WordPress 2.1.2 allows remote authenticated administrators to inject arbitrary web script or HT... |
| 3.4 | 2007-03-27 | CVE-2007-1716 | cve | pam_console does not properly restore ownership for certain console devices when there are multiple users logged into the console and one user logs out, which might allow local ... |
| 2.1 | 2007-03-21 | CVE-2007-1589 | cve | TrueCrypt before 4.3, when set-euid mode is used on Linux, allows local users to cause a denial of service (filesystem unavailability) by dismounting a volume mounted by a diffe... |
| 3.6 | 2007-03-20 | CVE-2007-1537 | cve | \Device\NdisTapi (NDISTAPI.sys) in Microsoft Windows XP SP2 and 2003 SP1 uses weak permissions, which allows local users to write to the device and cause a denial of service, as... |
| Page(s) : 1 ... 338 339 340 341 342 343 344 345 346 347 [348] 349 350 351 352 353 354 355 356 357 358 ... | Result(s) : 8837 |
