| Page(s) : 1 ... 348 349 350 351 352 353 354 355 356 357 [358] 359 360 361 362 363 364 365 366 367 368 ... | Result(s) : 8837 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.6 | 2006-08-26 | CVE-2006-4374 | cve | IrfanView 3.98 (with plugins) allows user-assisted attackers to cause a denial of service (application crash) via a crafted ANI image file, possibly due to a buffer overflow. |
| 2.6 | 2006-08-26 | CVE-2006-4369 | cve | Absolute path traversal vulnerability in includes/functions_portal.php in IntegraMOD Portal 2.x and earlier, when magic_quotes_gpc is disabled, allows remote attackers to read a... |
| 3.5 | 2006-08-26 | CVE-2006-4360 | cve | Cross-site scripting (XSS) vulnerability in E-commerce 4.7 for Drupal before file.module 1.37.2.4 (20060812) allows remote authenticated users with the "create products" permiss... |
| 2.6 | 2006-08-26 | CVE-2006-4355 | cve | Cross-site scripting (XSS) vulnerability in Drupal Easylinks Module (easylinks.module) 4.7 before 1.5.2.1 2006/08/19 12:02:27 allows remote attackers to inject arbitrary web scr... |
| 2.6 | 2006-08-22 | CVE-2006-4303 | cve | Race condition in (1) libnsl and (2) TLI/XTI API routines in Sun Solaris 10 allows remote attackers to cause a denial of service ("tight loop" and CPU consumption for listener a... |
| 3.6 | 2006-08-21 | CVE-2006-4266 | cve | Symantec Norton Personal Firewall 2006 9.1.0.33, and possibly earlier, does not properly protect Norton registry keys, which allows local users to provide Trojan horse libraries... |
| 2.6 | 2006-08-21 | CVE-2006-4259 | cve | Cross-site scripting (XSS) vulnerability in index.php in Fotopholder 1.8 allows remote attackers to inject arbitrary web script or HTML via the path parameter. NOTE: this might... |
| 3.6 | 2006-08-18 | CVE-2006-4233 | cve | Globus Toolkit 3.2.x, 4.0.x, and 4.1.0 before 20060815 allow local users to obtain sensitive information (proxy certificates) and overwrite arbitrary files via a symlink attack ... |
| 1.2 | 2006-08-18 | CVE-2006-4232 | cve | Race condition in the grid-proxy-init tool in Globus Toolkit 3.2.x, 4.0.x, and 4.1.0 before 20060815 allows local users to steal credential data by replacing the proxy credentia... |
| 2.6 | 2006-08-18 | CVE-2006-4231 | cve | IrfanView 3.98 (with plugins) allows remote attackers to cause a denial of service (application crash) via a crafted CUR image file. |
| 3.6 | 2006-08-18 | CVE-2006-4226 | cve | MySQL before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12, when run on case-sensitive filesystems, allows remote authenticated users to create or access a database when the ... |
| 2.6 | 2006-08-17 | CVE-2006-4210 | cve | nu_mail.inc.php in Andreas Kansok phPay 2.02 and 2.02.1, when register_globals is enabled, allows remote attackers to use the server as an open mail relay via modified mail_text... |
| 2.6 | 2006-08-17 | CVE-2006-4021 | cve | The cryptographic module in ScatterChat 1.0.x allows attackers to identify patterns in large numbers of messages by identifying collisions using a birthday attack on the custom ... |
| 2.1 | 2006-08-16 | CVE-2006-4190 | cve | Directory traversal vulnerability in autohtml.php in the AutoHTML module for PHP-Nuke allows local users to include arbitrary files via a .. (dot dot) in the name parameter for ... |
| 2.1 | 2006-08-16 | CVE-2006-4187 | cve | Unspecified vulnerability in HP-UX B.11.00, B.11.11 and B.11.23, when running in trusted mode, allows local users to cause a denial of service via unspecified vectors. |
| 2.1 | 2006-08-16 | CVE-2006-4186 | cve | The iManager in eMBoxClient.jar in Novell eDirectory 8.7.3.8 writes passwords in plaintext to a log file, which allows local users to obtain passwords by reading the file. |
| 2.6 | 2006-08-15 | CVE-2006-4144 | cve | Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbit... |
| 3.6 | 2006-08-11 | CVE-2006-4092 | cve | Simpliciti Locked Browser does not properly limit a user's actions to ones within the intended Internet Explorer environment, which allows local users to perform unauthoriz... |
| 2.1 | 2006-08-11 | CVE-2006-3813 | cve | A regression error in the Perl package for Red Hat Enterprise Linux 4 omits the patch for CVE-2005-0155, which allows local users to overwrite arbitrary files with debugging inf... |
| 2.6 | 2006-08-10 | CVE-2006-4080 | cve | DeluxeBB 1.08, and possibly earlier, uses cookies that include the MD5 hash of a password, which allows remote attackers to gain privileges by sniffing or cross-site scripting (... |
| Page(s) : 1 ... 348 349 350 351 352 353 354 355 356 357 [358] 359 360 361 362 363 364 365 366 367 368 ... | Result(s) : 8837 |
