| Page(s) : 1 ... 362 363 364 365 366 367 368 369 370 371 [372] 373 374 375 376 377 378 379 380 381 382 ... | Result(s) : 8832 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.6 | 2006-04-07 | CVE-2006-1665 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Arab Portal 2.0.1 stable allow remote attackers to inject arbitrary web script or HTML via the (1) adminJump and (2) forum... |
| 2.6 | 2006-04-06 | CVE-2006-1642 | cve | Cross-site scripting (XSS) vulnerability in Interact 2.1.1 allows remote attackers to inject arbitrary web script or HTML via (1) the search_terms parameter to (a) search.php, a... |
| 2.6 | 2006-04-06 | CVE-2006-1640 | cve | Cross-site scripting (XSS) vulnerability in news.php in CzarNews 1.14 allows remote attackers to inject arbitrary web script or HTML via the email parameter. |
| 1.7 | 2006-04-04 | CVE-2006-1601 | cve | Unspecified vulnerability in SunPlex Manager in Sun Cluster 3.1 4/04 allows local users with solaris.cluster.gui authorization to view arbitrary files via unspecified vectors. |
| 2.1 | 2006-04-03 | CVE-2006-1588 | cve | The bridge ioctl (if_bridge code) in NetBSD 1.6 through 3.0 does not clear sensitive memory before copying ioctl results to the requesting process, which allows local users to o... |
| 2.1 | 2006-04-03 | CVE-2006-1587 | cve | NetBSD 1.6 up to 3.0, when a user has "set record" in .mailrc with the default umask set, creates the record file with 0644 permissions, which allows local users to read the rec... |
| 2.6 | 2006-03-31 | CVE-2006-1554 | cve | Cross-site scripting (XSS) vulnerability in VSNS Lemon 3.2.0 allows remote attackers to inject arbitrary web script or HTML via the name parameter while adding a comment. |
| 3.7 | 2006-03-30 | CVE-2006-1542 | cve | Stack-based buffer overflow in Python 2.4.2 and earlier, running on Linux 2.6.12.5 under gcc 4.0.3 with libc 2.3.5, allows local users to cause a "stack overflow," and possibly ... |
| 1.2 | 2006-03-30 | CVE-2006-1059 | cve | The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the... |
| 2.6 | 2006-03-28 | CVE-2006-1476 | cve | Windows Firewall in Microsoft Windows XP SP2 produces incorrect application block alerts when the application filename is ".exe" (with no characters before the "."), which might... |
| 2.1 | 2006-03-28 | CVE-2006-1475 | cve | Windows Firewall in Microsoft Windows XP SP2 does not produce application alerts when an application is executed using the NTFS Alternate Data Streams (ADS) filename:stream synt... |
| 2.6 | 2006-03-28 | CVE-2006-1418 | cve | Cross-site scripting (XSS) vulnerability in default.asp in Caloris Planitia E-School Management System 1.0 and earlier allows remote attackers to inject arbitrary web script or ... |
| 1.2 | 2006-03-26 | CVE-2006-1066 | cve | Linux kernel 2.6.16-rc2 and earlier, when running on x86_64 systems with preemption enabled, allows local users to cause a denial of service (oops) via multiple ptrace tasks tha... |
| 2.1 | 2006-03-23 | CVE-2006-1376 | cve | The installation of Debian GNU/Linux 3.1r1 from the network install CD creates /var/log/debian-installer/cdebconf with world writable permissions, which allows local users to ca... |
| 1.2 | 2006-03-23 | CVE-2006-0050 | cve | snmptrapfmt in Debian 3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary log file. |
| 2.1 | 2006-03-21 | CVE-2006-1343 | cve | net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c in 2.6, does not clear sockaddr_in.sin_zero befor... |
| 2.1 | 2006-03-21 | CVE-2006-1342 | cve | net/ipv4/af_inet.c in Linux kernel 2.4 does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the (1) getsockname, (2) getpeername, and (3) accept functions... |
| 3.7 | 2006-03-20 | CVE-2006-1335 | cve | gnome screensaver before 2.14, when running on an X server with AllowDeactivateGrabs and AllowClosedownGrabs enabled, allows attackers with physical access to cause the screensa... |
| 2.1 | 2006-03-19 | CVE-2006-1286 | cve | Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, might allow local users t... |
| 3.2 | 2006-03-19 | CVE-2006-1285 | cve | SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory section... |
| Page(s) : 1 ... 362 363 364 365 366 367 368 369 370 371 [372] 373 374 375 376 377 378 379 380 381 382 ... | Result(s) : 8832 |
