Design/Logic Flaw

Unspecified vulnerability in the Horde API in Horde 3.1 before 3.1.6 and 3.2 before 3.2 before 3.2-RC2; Turba H3 2.1 before 2.1.6 and 2.2 before 2.2-RC2; Kronolith H3 2.1 before 2.1.7 and H3 2.2 before 2.2-RC2; Nag H3 2.1 before 2.1.4 and 2.2 before 2.2-RC2; Mnemo H3 2.1 before 2.1.2 and 2.2 befo...

CVE-2009-3042

SQL injection vulnerability in machine.php in Open Computer and Software OCS Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040...

CVE-2009-3042

SQL injection vulnerability in machine.php in Open Computer and Software OCS Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040...

x10 MP3 Automatic Search Engine 1.6.5 - includesvideo_ad.php?pic_id Cross-Site Scripting

x10 MP3 Automatic Search Engine 1.6.5 - includesvideoad.php?picid Cross-Site Scripting source: https://www.securityfocus.com/bid/43336/info x10 Media Automatic MP3 Search Engine is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An...

[PT-2009-05] CA Internet Security Suite Denial of Service Vulnerability

---------------------------------------------------------------------- PT-2009-05 Positive Technologies Security Advisory CA Internet Security Suite Denial of Service Vulnerability ---------------------------------------------------------------------- --- Affected Software CA Internet Security...

Mandrake Security Advisory MDVSA-2009:167 (php)

The remote host is missing an update to php announced via advisory MDVSA-2009:167. OpenVAS Vulnerability Test $Id: mdksa2009167.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:167 php Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

JDK reposition of untrusted applet security icon in X11

The Abstract Window Toolkit AWT implementation in Sun Java SE 6 before Update 15 on X11 does not impose the intended constraint on distance from the window border to the Security Warning Icon, which makes it easier for context-dependent attackers to trick a user into interacting unsafely with an...

Fedora Core 11 FEDORA-2009-7498 (mumbles)

The remote host is missing an update to mumbles announced via advisory FEDORA-2009-7498. OpenVAS Vulnerability Test $Id: fcore20097498.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-7498 mumbles Authors: Thomas Reinke Copyright: Copyright c 2009...

Gentoo Security Advisory GLSA 200907-08 (rt2400 rt2500 rt2570 rt61 ralink-rt61)

The remote host is missing updates announced in advisory GLSA 200907-08. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

CVE-2009-2585

SQL injection vulnerability in index.php in Mlffat 2.2 allows remote attackers to execute arbitrary SQL commands via a member cookie in an account editprofile action, a different vector than CVE-2009-1731...

Sql injection

SQL injection vulnerability in index.php in Mlffat 2.2 allows remote attackers to execute arbitrary SQL commands via a member cookie in an account editprofile action, a different vector than CVE-2009-1731...

DragDropCart - '/assets/js/ddcart.php?sid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43478/info DragDropCart is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

Tor 'relay.c' DNS Spoofing Vulnerability - July09 (Linux)

This host is installed with Tor and is prone to DNS Spoofing vulnerability. OpenVAS Vulnerability Test $Id: gbtordnsspoofingvulnjul09lin.nasl 4892 2016-12-30 15:39:07Z teissa $ Tor 'relay.c' DNS Spoofing Vulnerability - July09 Linux Authors: Sharath S Copyright: Copyright c 2009 Greenbone Network...

CVE-2009-1978

Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.2.0.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the July 2009 Oracle CPU. Oracle has not commented ...

[Full-disclosure] Lotus Sametime User Enumeration Vulnerability - Security Advisory - SOS-09-004

Lotus Sametime User Enumeration Vulnerability - Security Advisory - SOS-09-004 Release Date. 9-Jul-2009 Vendor Notification Date. 2-Jun-2009 Product. IBM Lotus Instant Messaging and Web Conferencing Sametime Platform. Windows verified, possibly others Affected versions. IBM Lotus Instant Messagin...

CVE-2009-2377

Buffer overflow in the Avax Vector ActiveX control in avPreview.ocx in AVAX-software Avax Vector ActiveX 1.3 allows remote attackers to cause a denial of service application crash via a long PrinterName property...

Buffer overflow

Buffer overflow in the Avax Vector ActiveX control in avPreview.ocx in AVAX-software Avax Vector ActiveX 1.3 allows remote attackers to cause a denial of service application crash via a long PrinterName property...

CVE-2009-2377

The CVE-2009-2377 entry concerns the AVAX-software Avax Vector ActiveX 1.3 with the ActiveX control avPreview.ocx. A buffer overflow can be triggered in the PrinterName property, allowing remote attackers to cause a denial of service (application crash). Affected component: Avax Vector ActiveX 1....

CVE-2009-2377

Buffer overflow in the Avax Vector ActiveX control in avPreview.ocx in AVAX-software Avax Vector ActiveX 1.3 allows remote attackers to cause a denial of service application crash via a long PrinterName property...

Avax Vector ActiveX 1.3 (avPreview.ocx) Denial of Service Exploit

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Sec-r1z.com =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Vulnerabilities : Avax Vector ActiveX 1.3 avPreview.ocx Denial of Service Exploit Bug Hunter: SatanHackers...