| Page(s) : 1 ... 342 343 344 345 346 347 348 349 350 351 [352] 353 354 355 356 357 358 359 360 361 362 ... | Result(s) : 8837 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2006-12-27 | CVE-2006-6775 | cve | acFTP 1.5 allows remote authenticated users to cause a denial of service via a crafted argument to the (1) REST or (2) PBSZ command. |
| 2.1 | 2006-12-26 | CVE-2006-6744 | cve | phpProfiles before 2.1.1 does not have an index.php or other index file in the (1) image_data, (2) graphics/comm, or (3) users read/write directories, which might allow remote a... |
| 1.9 | 2006-12-22 | CVE-2006-6698 | cve | The GConf daemon (gconfd) in GConf 2.14.0 creates temporary files under directories with names based on the username, even when GCONF_GLOBAL_LOCKS is not set, which allows local... |
| 2.6 | 2006-12-20 | CVE-2006-6677 | cve | ESET NOD32 Antivirus before 1.1743 allows remote attackers to cause a denial of service (crash) via a crafted .CHM file that triggers a divide-by-zero error. |
| 2.1 | 2006-12-20 | CVE-2006-6674 | cve | Ozeki HTTP-SMS Gateway 1.0, and possibly earlier, stores usernames and passwords in plaintext in the HKLM\Software\Ozeki\SMSServer\CurrentVersion\Plugins\httpsmsgate registry ke... |
| 2.1 | 2006-12-19 | CVE-2006-6657 | cve | The if_clone_list function in NetBSD-current before 20061027, NetBSD 3.0 and 3.0.1 before 20061027, and NetBSD 2.x before 20061119 allows local users to read potentially sensiti... |
| 2.1 | 2006-12-19 | CVE-2006-6656 | cve | Unspecified vulnerability in ptrace in NetBSD-current before 20061027, NetBSD 3.0 and 3.0.1 before 20061027, and NetBSD 2.x before 20061119 allows local users to read kernel mem... |
| 1.7 | 2006-12-19 | CVE-2006-6655 | cve | The procfs implementation in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service... |
| 1.7 | 2006-12-19 | CVE-2006-6653 | cve | The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (sock... |
| 2.4 | 2006-12-19 | CVE-2006-6477 | cve | FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and configured to use only HTTP, allows local users to modify requests and responses between a... |
| 2.4 | 2006-12-19 | CVE-2006-6476 | cve | FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and when the agent is bound to 0.0.0.0 (all interfaces), opens sockets in non-exclusive mode, ... |
| 2.6 | 2006-12-19 | CVE-2006-5681 | cve | QuickTime for Java on Mac OS X 10.4 through 10.4.8, when used with Quartz Composer, allows remote attackers to obtain sensitive information (screen images) via a Java applet tha... |
| 1.9 | 2006-12-17 | CVE-2006-6614 | cve | The save_log_local function in Fully Automatic Installation (FAI) 2.10.1, and possibly 3.1.2, when verbose mode is enabled, stores the root password hash in /var/log/fai/current... |
| 2.7 | 2006-12-17 | CVE-2006-6607 | cve | The Java Key Store (JKS) for WebSphere Application Server (WAS) for IBM Tivoli Identity Manager (ITIM) 4.6 places the JKS password in a -Djavax.net.ssl.trustStorePassword comman... |
| 3.5 | 2006-12-14 | CVE-2006-6548 | cve | Multiple cross-site scripting (XSS) vulnerabilities in cPanel WebHost Manager (WHM) 3.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the domain ... |
| 3.5 | 2006-12-13 | CVE-2006-6514 | cve | Winamp Web Interface (Wawi) 7.5.13 and earlier uses an insufficient comparison to determine whether a directory is located below the application's root directory, which all... |
| 3.5 | 2006-12-13 | CVE-2006-6513 | cve | The CControl::Download function (/dl URI) in Winamp Web Interface (Wawi) 7.5.13 and earlier allows remote authenticated users to download arbitrary file types under the root via... |
| 3.5 | 2006-12-13 | CVE-2006-6512 | cve | Directory traversal vulnerability in the Browse function (/browse URI) in Winamp Web Interface (Wawi) 7.5.13 and earlier allows remote authenticated users to list arbitrary dire... |
| 1.7 | 2006-12-13 | CVE-2006-6510 | cve | An unspecified ActiveX control in SiteKiosk before 6.5.150 is installed "safe for scripting", which allows local users to bypass security protections and read arbitrary files vi... |
| 1.7 | 2006-12-13 | CVE-2006-6107 | cve | Unspecified vulnerability in the match_rule_equal function in bus/signals.c in D-Bus before 1.0.2 allows local applications to remove match rules for other applications and caus... |
| Page(s) : 1 ... 342 343 344 345 346 347 348 349 350 351 [352] 353 354 355 356 357 358 359 360 361 362 ... | Result(s) : 8837 |
