| Page(s) : 1 ... 351 352 353 354 355 356 357 358 359 360 [361] 362 363 364 365 366 367 368 369 370 371 ... | Result(s) : 9856 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2009-04-27 | CVE-2008-6756 | cve | ZoneMinder 1.23.3 on Gentoo Linux uses 0644 permissions for /etc/zm.conf, which allows local users to obtain the database username and password by reading this file. |
| 2.6 | 2009-04-23 | RHSA-2009:0446 | RedHat | mod_jk security update |
| 2.1 | 2009-04-17 | CVE-2009-1186 | cve | Buffer overflow in the util_path_encode function in udev/lib/libudev-util.c in udev before 1.4.1 allows local users to cause a denial of service (service outage) via vectors tha... |
| 2.1 | 2009-04-15 | CVE-2009-0988 | cve | Unspecified vulnerability in the Password Policy component in Oracle Database 11.1.0.6 allows remote authenticated users to affect confidentiality via unknown vectors. |
| 1.9 | 2009-04-14 | CVE-2008-6722 | cve | Novell Access Manager 3 SP4 does not properly expire X.509 certificate sessions, which allows physically proximate attackers to obtain a logged-in session by using a victim'... |
| 2.1 | 2009-04-14 | CVE-2009-1292 | cve | UCM-CQ in IBM Rational ClearCase 7.0.0.x before 7.0.0.5, 7.0.1.x before 7.0.1.4, and 7.1.x before 7.1.0.1 on Linux and AIX places a username and password on the command line, wh... |
| 2.6 | 2009-04-12 | MDVSA-2009:091 | Mandriva | A vulnerability has been found and corrected in mod_perl v1.x and v2.x: Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in mod_per... |
| 2.1 | 2009-04-10 | GLSA-200904-12 | Gentoo | Wicd: Information disclosure |
| 2.6 | 2009-04-09 | CVE-2008-5519 | cve | The JK Connector (aka mod_jk) 1.2.0 through 1.2.26 in Apache Tomcat allows remote attackers to obtain sensitive information via an arbitrary request from an HTTP client, in oppo... |
| 2.1 | 2009-04-09 | CVE-2009-1276 | cve | XScreenSaver in Sun Solaris 10 and OpenSolaris before snv_109, and Solaris 8 and 9 with GNOME 2.0 or 2.0.2, allows physically proximate attackers to obtain sensitive information... |
| 2.6 | 2009-04-09 | CVE-2009-1279 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5 through 1.5.9 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to the (1)... |
| 2.6 | 2009-04-07 | CVE-2009-0796 | cve | Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in mod_perl1 and mod_perl2 for the Apache HTTP Server, when /perl-status is accessibl... |
| 2.1 | 2009-04-07 | SUN-255308 | Sun | Sun Alert 255308 A Security Vulnerability May Allow Popup Windows to Appear Through the Solaris XScreenSaver Program |
| 2.1 | 2009-04-06 | CVE-2009-0518 | cve | VI Client in VMware VirtualCenter before 2.5 Update 4, VMware ESXi 3.5 before Update 4, and VMware ESX 3.5 before Update 4 retains the VirtualCenter Server password in process m... |
| 1.9 | 2009-04-01 | CVE-2009-1215 | cve | Race condition in GNU screen 4.0.3 allows local users to create or overwrite arbitrary files via a symlink attack on the /tmp/screen-exchange temporary file. |
| 2.1 | 2009-03-31 | CVE-2009-1173 | cve | IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.3 uses weak permissions (777) for files associated with unspecified "interim fixes," which allows attackers to modify fil... |
| 1.9 | 2009-03-31 | CVE-2008-6561 | cve | Citrix Presentation Server Client for Windows before 10.200 does not clear "credential information" from process memory in unspecified circumstances, which might allow local use... |
| 3.5 | 2009-03-31 | CVE-2003-1570 | cve | The server in IBM Tivoli Storage Manager (TSM) 5.1.x, 5.2.x before 5.2.1.2, and 6.x before 6.1 does not require credentials to observe the server console in some circumstances, ... |
| 2.6 | 2009-03-27 | CVE-2009-0591 | cve | The CMS_verify function in OpenSSL 0.9.8h through 0.9.8j, when CMS is enabled, does not properly handle errors associated with malformed signed attributes, which allows remote a... |
| 3.5 | 2009-03-11 | CVE-2009-0093 | cve | Windows DNS Server in Microsoft Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008, when dynamic updates are enabled, does not restrict registration of the "wpad" hostna... |
| Page(s) : 1 ... 351 352 353 354 355 356 357 358 359 360 [361] 362 363 364 365 366 367 368 369 370 371 ... | Result(s) : 9856 |
