8292 matches found
CVE-2008-4007
Unspecified vulnerability in the PeopleSoft Enterprise Components component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9.18 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...
OpenJDK temporary files have guessable file names (6721753)
Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier creates temporary files with predictable file names, which allows attackers to write malicious JAR files via unknow...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.cgi in Barracuda Spam Firewall BSF before 3.5.12.007, Message Archiver before 1.2.1.002, Web Filter before 3.3.0.052, IM Firewall before 3.1.01.017, and Load Balancer before 2.3.024 allow remote attackers to inject arbitrary web script or...
Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
This host is missing a critical security update according to Microsoft Bulletin MS08-076. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS08-076: Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
The remote host is running Windows Media Player/Components. There is a vulnerability in the remote version of this software that may allow an attacker to execute arbitrary code on the remote host thru flaws in ISATAP and SPN. C Tenable Network Security, Inc. include"compat.inc"; if description...
Microsoft Security Bulletin MS08-076 – Important Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
Microsoft Security Bulletin MS08-076 – Important Vulnerabilities in Windows Media Components Could Allow Remote Code Execution 959807 Published: December 9, 2008 Version: 1.0 General Information Executive Summary This security update resolves two privately reported vulnerabilities in the followin...
Vulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)
This host is missing a critical security update according to Microsoft Bulletin MS08-076. OpenVAS Vulnerability Test $Id: secpodms08-076.nasl 5863 2017-04-05 07:38:11Z antu123 $ Vulnerabilities in Windows Media Components Could Allow Remote Code Execution 959807 Authors: Chandan S Updated By:...
Microsoft Windows Media Components 'Service Principle Name' Remote Code Execution Vulnerability
Description Microsoft Windows Media Components is prone to a remote code-execution vulnerability in the SPN Service Principle Name implementation. A successful exploit of this vulnerability may allow a remote attacker to execute code in the context of the logged-in user. Technologies Affected HP...
Sql injection
Multiple SQL injection vulnerabilities in IBM Lotus Connections 2.x before 2.0.1 allow remote attackers to execute arbitrary SQL commands via the sortField parameter to unspecified components. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2008-4630
Multiple unspecified vulnerabilities in Midgard Components MidCOM Framework before 8.09.1 have unknown impact and attack vectors...
Design/Logic Flaw
Multiple unspecified vulnerabilities in Midgard Components MidCOM Framework before 8.09.1 have unknown impact and attack vectors...
CVE-2008-4630
Multiple unspecified vulnerabilities in Midgard Components MidCOM Framework before 8.09.1 have unknown impact and attack vectors...
CVE-2008-4630
Technical details for CVE-2008-4630 are not publicly available in the provided documents. Monitor for updates from official advisories; current entries provide only generic vulnerabilities in MidCOM Framework before 8.09.1.
CVE-2008-4630
Multiple unspecified vulnerabilities in Midgard Components MidCOM Framework before 8.09.1 have unknown impact and attack vectors...
CVE-2008-4360
moduserdir in lighttpd before 1.4.20, when a case-insensitive operating system or filesystem is used, performs case-sensitive comparisons on filename components in configuration options, which might allow remote attackers to bypass intended access restrictions, as demonstrated by a request for a...
Gentoo Security Advisory GLSA 200702-10 (ufo2000)
The remote host is missing updates announced in advisory GLSA 200702-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
HP OpenView Select Identity Connectors本地信息泄漏漏洞
BUGTRAQ ID: 31024 CVE ID: CVE-2008-3539 CNCVE ID:CNCVE-20083539 HP OpenView Select Identity Connectors是一款身份管理解决方案包含的组件。 Windows平台下的HP OpenView Select Identity Connectors存在未明安全问题,本地攻击者可以利用漏洞获得敏感信息。 目前没有详细漏洞细节提供。 HP HPSI TOPSecret Connector 2.22.1 HP HPSI SunOne Connector 1.14 HP HPSI RACF Connecto...
VMWare multiple applications security vulnerabilities
Multiple ActiveX vulnerabilities, privilege escalation, ISAPI filters DoS, third party components updates...
[20080904] - Core - Redirect Spam
Several components utilize a passed in URL to redirect to after processing. These URLs are not validated prior to the redirect. A crafted URL can cause the system to redirect to a spam or phishing site...
Microsoft Internet Explorer 7/8 Beta 1 - Frame Location Cross Domain Security Bypass
source: https://www.securityfocus.com/bid/29986/info Microsoft Internet Explorer is prone to a cross-domain scripting security-bypass vulnerability because the application fails to properly enforce the same-origin policy. An attacker can exploit this issue to change the location of a frame from a...