Show filters
664 Total Results
Displaying 431-440 of 664
Sort by:
Attacker Value
Unknown

CVE-2008-3493

Disclosure Date: August 06, 2008 (last updated October 04, 2023)
vncviewer.exe in RealVNC Windows Client 4.1.2.0 allows remote VNC servers to cause a denial of service (application crash) via a crafted frame buffer update packet.
0
0
Attacker Value
Unknown

CVE-2008-3445

Disclosure Date: August 04, 2008 (last updated October 04, 2023)
SQL injection vulnerability in index.php in phpMyRealty (PMR) 2.0.0 allows remote attackers to execute arbitrary SQL commands via the location parameter.
0
0
Attacker Value
Unknown

CVE-2008-3064

Disclosure Date: July 28, 2008 (last updated October 04, 2023)
Unspecified vulnerability in RealNetworks RealPlayer Enterprise, RealPlayer 10, and RealPlayer 10.5 before build 6.0.12.1675 has unknown impact and attack vectors, probably related to accessing local files, aka a "Local resource reference vulnerability."
0
0
Attacker Value
Unknown

CVE-2008-3066

Disclosure Date: July 28, 2008 (last updated October 04, 2023)
Stack-based buffer overflow in a certain ActiveX control in rjbdll.dll in RealNetworks RealPlayer Enterprise, RealPlayer 10, and RealPlayer 10.5 before build 6.0.12.1675 allows remote attackers to execute arbitrary code by importing a file into a media library and then deleting this file.
0
0
Attacker Value
Unknown

CVE-2007-5400

Disclosure Date: July 28, 2008 (last updated October 04, 2023)
Heap-based buffer overflow in the Shockwave Flash (SWF) frame handling in RealNetworks RealPlayer 10.5 Build 6.0.12.1483 might allow remote attackers to execute arbitrary code via a crafted SWF file.
0
0
Attacker Value
Unknown

CVE-2008-2881

Disclosure Date: June 26, 2008 (last updated October 04, 2023)
Relative Real Estate Systems 3.0 and earlier stores passwords in cleartext in a MySQL database, which allows context-dependent attackers to obtain sensitive information.
0
0
Attacker Value
Unknown

CVE-2008-2680

Disclosure Date: June 12, 2008 (last updated October 04, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in _db/compact.asp in Realm CMS 2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) CmpctedDB and (2) Boyut parameters.
0
0
Attacker Value
Unknown

CVE-2008-2681

Disclosure Date: June 12, 2008 (last updated October 04, 2023)
Realm CMS 2.3 and earlier allows remote attackers to obtain sensitive information via a direct request to _db/compact.asp, which reveals the database path in an error message.
0
0
Attacker Value
Unknown

CVE-2008-2679

Disclosure Date: June 12, 2008 (last updated October 04, 2023)
SQL injection vulnerability in the KeyWordsList function in _includes/inc_routines.asp in Realm CMS 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the kwrd parameter in a kwl action to the default URI.
0
0
Attacker Value
Unknown

CVE-2008-2682

Disclosure Date: June 12, 2008 (last updated October 04, 2023)
_RealmAdmin/login.asp in Realm CMS 2.3 and earlier allows remote attackers to bypass authentication and access admin pages via certain modified cookies, probably including (1) cUserRole, (2) cUserName, and (3) cUserID.
0
0
View More Topics  < Previous  Next >