CVE List

Id CVE No. Status Description Phase Votes Comments Actions
38642  CVE-2009-1207  Candidate  Race condition in the dircmp script in Sun Solaris 8 through 10, and OpenSolaris snv_01 through snv_111, allows local users to overwrite arbitrary files, probably involving a symlink attack on temporary files.  Assigned (20090331)  None (candidate not yet proposed)    View
104178  CVE-2017-7358  Candidate  In LightDM through 1.22.0, a directory traversal issue in debian/guest-account.sh allows local attackers to own arbitrary directory path locations and escalate privileges to root when the guest user logs out.  Assigned (20170330)  None (candidate not yet proposed)    View
38898  CVE-2009-1463  Candidate  Static code injection vulnerability in razorCMS before 0.4 allows remote attackers to inject arbitrary PHP code into any page by saving content as a .php file.  Assigned (20090428)  None (candidate not yet proposed)    View
104434  CVE-2017-7614  Candidate  elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an "int main() {return 0;}" program.  Assigned (20170409)  None (candidate not yet proposed)    View
39154  CVE-2009-1719  Candidate  The Aqua Look and Feel for Java implementation in Java 1.5 on Mac OS X 10.5 allows remote attackers to execute arbitrary code via a call to the undocumented apple.laf.CColourUIResource constructor with a crafted value in the first argument, which is dereferenced as a pointer.  Assigned (20090520)  None (candidate not yet proposed)    View

Page 19888 of 20943, showing 5 records out of 104715 total, starting on record 99436, ending on 99440

Actions