| Page(s) : 1 ... 367 368 369 370 371 372 373 374 375 376 [377] 378 379 380 381 382 383 384 385 386 387 ... | Result(s) : 9857 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.7 | 2007-12-14 | VU#312692 | VU-CERT | Shadow Utils useradd utility sets incorrect file permissions |
| 2.1 | 2007-12-14 | CVE-2007-6249 | cve | etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on the umask to set permissions for the merge file, often resulting in permissions weaker than those of the original... |
| 2.1 | 2007-12-14 | CVE-2007-6363 | cve | IBM Tivoli Netcool Security Manager 1.3.0 before Interim Fix 1, when using Active Directory (AD) LDAP authentication, allows remote attackers to obtain login access via unspecif... |
| 2.1 | 2007-12-14 | CVE-2007-6385 | cve | The proxy server in Kerio WinRoute Firewall before 6.4.1 does not properly enforce authentication for HTTPS pages, which has unknown impact and attack vectors. NOTE: it is not ... |
| 2.1 | 2007-12-13 | GLSA-200712-11 | Gentoo | Portage: Information disclosure |
| 3.5 | 2007-12-10 | CVE-2007-6303 | cve | MySQL 5.0.x before 5.0.51a, 5.1.x before 5.1.23, and 6.0.x before 6.0.4 does not update the DEFINER value of a view when the view is altered, which allows remote authenticated u... |
| 2.1 | 2007-12-07 | CVE-2007-6267 | cve | Citrix EdgeSight 4.2 and 4.5 for Presentation Server, EdgeSight 4.2 and 4.5 for Endpoints, and EdgeSight for NetScaler 1.0 and 1.1 do not properly store database credentials in ... |
| 3.3 | 2007-12-05 | GLSA-200712-01 | Gentoo | Hugin: Insecure temporary file creation |
| 2.1 | 2007-12-05 | DSA-1420 | Debian | New zabbix packages fix privilege escalation |
| 2.1 | 2007-12-03 | CVE-2007-6206 | cve | The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists bef... |
| 2.1 | 2007-12-03 | CVE-2007-6207 | cve | Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for mov_to_rr, which allows a VTi domain to read memory of other domains. |
| 3.6 | 2007-12-03 | CVE-2007-6208 | cve | sylprint.pl in claws mail tools (claws-mail-tools) allows local users to overwrite arbitrary files via a symlink attack on the sylprint.[USER].[PID] temporary file. |
| 2.1 | 2007-12-03 | CVE-2007-6210 | cve | zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges. |
| 2.1 | 2007-12-03 | MDKSA-2007:234 | Mandriva | Updated vixie-cron packages fix DoS vulnerability |
| 2.1 | 2007-11-29 | CVE-2007-6150 | cve | The "internal state tracking" code for the random and urandom devices in FreeBSD 5.5, 6.1 through 6.3, and 7.0 beta 4 allows local users to obtain portions of previously-accesse... |
| 3.5 | 2007-11-29 | CVE-2007-6190 | cve | The HTTP daemon in the Cisco Unified IP Phone, when the Extension Mobility feature is enabled, allows remote authenticated users of other phones associated with the same CUCM se... |
| 2.1 | 2007-11-26 | CVE-2007-6131 | cve | buttonpressed.sh in scanbuttond 0.2.3 allows local users to overwrite arbitrary files via a symlink attack on the (1) scan.pnm and (2) scan.jpg temporary files. |
| 2.6 | 2007-11-23 | CVE-2007-6100 | cve | Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie auth_type, allows rem... |
| 2.1 | 2007-11-20 | CVE-2007-6039 | cve | PHP 5.2.5 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a long string in (1) the domain parameter to the dgettext function,... |
| 2.1 | 2007-11-15 | RHSA-2007:0701 | RedHat | xterm security update |
| Page(s) : 1 ... 367 368 369 370 371 372 373 374 375 376 [377] 378 379 380 381 382 383 384 385 386 387 ... | Result(s) : 9857 |
