Lucene search
K

6 matches found

Exploit DB
Exploit DB
added 2009/11/12 12:0 a.m.47 views

Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service

Bugtraq ID: 36097 Class: Input Validation Error Published: Jan 17 2009 12:00AM Updated: Nov 12 2009 08:06PM Credit: Peter Valchev Vulnerable: SuSE openSUSE 11.0 SuSE openSUSE 10.3 SuSE Linux 9 SuSE Linux 11 SuSE Linux 10.0 RedHat Fedora 11 RedHat Fedora 10 RedHat Enterprise Linux WS 4 RedHat...

7.4AI score
Exploits0
NVD
NVD
added 2009/10/23 6:30 p.m.17 views

CVE-2009-1297

iscsidiscovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise SLE 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name...

4.4CVSS6.2AI score0.00337EPSS
Exploits1References3
NVD
NVD
added 2008/07/07 11:41 p.m.15 views

CVE-2008-2667

SQL injection vulnerability in the Courier Authentication Library aka courier-authlib before 0.60.6 on SUSE openSUSE 10.3 and 11.0, and other platforms, when MySQL and a non-Latin character set are used, allows remote attackers to execute arbitrary SQL commands via the username and unspecified...

5.1CVSS8.1AI score0.01529EPSS
Exploits0References9
NVD
NVD
added 2008/07/07 11:41 p.m.17 views

CVE-2008-3067

sudo in SUSE openSUSE 10.3 does not clear the stdin buffer when password entry times out, which might allow local users to obtain a password by reading stdin from the parent process after a sudo child process exits...

2.1CVSS6.5AI score0.00301EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2008/07/07 11:41 p.m.21 views

CVE-2008-3067

sudo in SUSE openSUSE 10.3 does not clear the stdin buffer when password entry times out, which might allow local users to obtain a password by reading stdin from the parent process after a sudo child process exits...

2.1CVSS6AI score0.00301EPSS
Exploits0References1
Cvelist
Cvelist
added 2008/07/07 11:0 p.m.29 views

CVE-2008-2667

SQL injection vulnerability in the Courier Authentication Library aka courier-authlib before 0.60.6 on SUSE openSUSE 10.3 and 11.0, and other platforms, when MySQL and a non-Latin character set are used, allows remote attackers to execute arbitrary SQL commands via the username and unspecified...

8AI score0.01529EPSS
Exploits0References9
Rows per page
Query Builder