| Page(s) : 1 ... 344 345 346 347 348 349 350 351 352 353 [354] 355 356 357 358 359 360 361 362 363 364 ... | Result(s) : 8837 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2006-11-08 | CVE-2006-5806 | cve | SSL VPN Client in Cisco Secure Desktop before 3.1.1.45, when configured to spawn a web browser after a successful connection, stores sensitive browser session information in a d... |
| 2.6 | 2006-11-08 | CVE-2006-5800 | cve | Cross-site scripting (XSS) vulnerability in default.asp in xenis.creator CMS allows remote attackers to inject arbitrary web script or HTML via the nav parameter. NOTE: the pro... |
| 2.6 | 2006-11-07 | CVE-2006-5791 | cve | Multiple cross-site scripting (XSS) vulnerabilities in elogd.c in ELOG 2.6.2 and earlier allow remote attackers to inject arbitrary HTML or web script via (1) the filename for d... |
| 1.2 | 2006-11-06 | CVE-2006-5757 | cve | Race condition in the __find_get_block_slow function in the ISO9660 filesystem in Linux 2.6.18 and possibly other versions allows local users to cause a denial of service (infin... |
| 2.1 | 2006-11-06 | CVE-2006-5738 | cve | Multiple SQL injection vulnerabilities in PunBB before 1.2.14 allow remote authenticated administrators to execute arbitrary SQL commands via unspecified vectors. |
| 2.6 | 2006-11-06 | CVE-2006-4808 | cve | Heap-based buffer overflow in loader_tga.c in imlib2 before 1.2.1, and possibly other versions, allows user-assisted remote attackers to cause a denial of service (crash) and po... |
| 2.6 | 2006-11-06 | CVE-2006-4807 | cve | loader_tga.c in imlib2 before 1.2.1, and possibly other versions, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted TGA image that trigger... |
| 2.1 | 2006-11-03 | CVE-2006-5724 | cve | Heap-based buffer overflow the "Answering Service" function in ICQ 2003b Build 3916 allows local users to cause a denial of service (application crash) via a long string in the ... |
| 2.1 | 2006-11-02 | CVE-2006-5659 | cve | PAM_extern before 0.2 sends a password as a command line argument, which allows local users to obtain the password by listing the command line arguments, such as ps. NOTE: the ... |
| 2.1 | 2006-11-02 | CVE-2006-5397 | cve | The Xinput module (modules/im/ximcp/imLcIm.c) in X.Org libX11 1.0.2 and 1.0.3 opens a file for reading twice using the same file descriptor, which causes a file descriptor leak ... |
| 2.1 | 2006-10-31 | CVE-2006-5619 | cve | The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c) in Linux kernel 2.6 up to 2.6.18-stable allows local users to cause a denial of service (hang or oops) via unspeci... |
| 2.6 | 2006-10-30 | CVE-2006-5614 | cve | Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet Connection Sharing is enabled, allows remote attackers to cause a denial of service (svch... |
| 2.1 | 2006-10-27 | CVE-2006-5600 | cve | Axalto Protiva 1.1, possibly only non-commercial versions, stores passwords in plaintext in files with insecure permissions, which allows local users to gain privileges by readi... |
| 2.6 | 2006-10-25 | CVE-2006-5511 | cve | Direct static code injection vulnerability in delete.php in JaxUltraBB (JUBB) 2.0, when register_globals is enabled, allows remote attackers to inject arbitrary web script, HTML... |
| 2.1 | 2006-10-24 | CVE-2006-5483 | cve | p1003_1b.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by setting a scheduler policy, which should only be settable by root. |
| 2.1 | 2006-10-24 | CVE-2006-5482 | cve | ufs_vnops.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by calling the ftruncate function on a file type that is not VREG, VLNK or VDIR, which is... |
| 2.6 | 2006-10-24 | CVE-2006-5477 | cve | Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows form submissions to be redirected, which allows remote attackers to obtain arbitrary form information via a crafted URL. |
| 2.6 | 2006-10-24 | CVE-2006-4573 | cve | Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding.c) in screen before 4.0.3 allows user-assisted attackers ... |
| 2.6 | 2006-10-23 | CVE-2006-5455 | cve | Cross-site request forgery (CSRF) vulnerability in editversions.cgi in Bugzilla before 2.22.1 and 2.23.x before 2.23.3 allows user-assisted remote attackers to create, modify, o... |
| 3.5 | 2006-10-23 | CVE-2006-5453 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Bugzilla 2.18.x before 2.18.6, 2.20.x before 2.20.3, 2.22.x before 2.22.1, and 2.23.x before 2.23.3 allow remote authentic... |
| Page(s) : 1 ... 344 345 346 347 348 349 350 351 352 353 [354] 355 356 357 358 359 360 361 362 363 364 ... | Result(s) : 8837 |
