CVE List
Id | CVE No. | Status | Description | Phase | Votes | Comments | Actions |
---|---|---|---|---|---|---|---|
38642 | CVE-2009-1207 | Candidate | Race condition in the dircmp script in Sun Solaris 8 through 10, and OpenSolaris snv_01 through snv_111, allows local users to overwrite arbitrary files, probably involving a symlink attack on temporary files. | Assigned (20090331) | None (candidate not yet proposed) | View | |
104178 | CVE-2017-7358 | Candidate | In LightDM through 1.22.0, a directory traversal issue in debian/guest-account.sh allows local attackers to own arbitrary directory path locations and escalate privileges to root when the guest user logs out. | Assigned (20170330) | None (candidate not yet proposed) | View | |
38898 | CVE-2009-1463 | Candidate | Static code injection vulnerability in razorCMS before 0.4 allows remote attackers to inject arbitrary PHP code into any page by saving content as a .php file. | Assigned (20090428) | None (candidate not yet proposed) | View | |
104434 | CVE-2017-7614 | Candidate | elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an "int main() {return 0;}" program. | Assigned (20170409) | None (candidate not yet proposed) | View | |
39154 | CVE-2009-1719 | Candidate | The Aqua Look and Feel for Java implementation in Java 1.5 on Mac OS X 10.5 allows remote attackers to execute arbitrary code via a call to the undocumented apple.laf.CColourUIResource constructor with a crafted value in the first argument, which is dereferenced as a pointer. | Assigned (20090520) | None (candidate not yet proposed) | View |
Page 19888 of 20943, showing 5 records out of 104715 total, starting on record 99436, ending on 99440