Cross-site scripting (XSS) vulnerability in the Language skin object in DotNetNuke before 4.8.4 allows remote attackers to inject arbitrary web script or HTML via "newly generated paths." Date published : 2009-04-21 http://www.securityfocus.com/bid/29686 http://www.dotnetnuke.com/News/SecurityPolicy/SecurityBulletinno20/tabid/1167/Default.aspx
apt-get in apt before 0.7.21 does not check for the correct error code from gpgv, which causes apt to treat a repository as valid even when it has been signed with a key that...
Stack-based buffer overflow in Elecard AVC HD Player allows remote attackers to execute arbitrary code via a long MP3 filename in a playlist (.xpl) file. Date published : 2009-04-21 http://www.securityfocus.com/bid/34560 https://www.exploit-db.com/exploits/8452
Stack-based buffer overflow in muxatmd in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via a long filename. Date published : 2009-04-21 http://www.ibm.com/support/docview.wss?uid=isg1IZ48495 http://www.ibm.com/support/docview.wss?uid=isg1IZ48496
Directory traversal vulnerability in Mongoose 2.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI. Date published : 2009-04-21 http://www.securityfocus.com/bid/34510 http://www.securityfocus.com/archive/1/502648/100/0/threaded
Buffer overflow in the http_parse_hex function in libz/misc.c in Zervit Webserver 0.02 allows remote attackers to cause a denial of service (daemon crash) via a long URI, related to http.c. Date published : 2009-04-21...
Stack-based buffer overflow in Dawningsoft PowerCHM 5.7 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an HTML file with a link to a long URL,...
Heap-based buffer overflow in Apollo 37zz allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long URI in a playlist (.m3u) file. Date published :...
Unspecified vulnerability in xtagent.exe in Novell NetIdentity Client before 1.2.4 allows remote attackers to execute arbitrary code by establishing an IPC$ connection to the XTIERRPCPIPE named pipe, and sending RPC messages that trigger a...
Cross-site scripting (XSS) vulnerability in C2Net Stronghold 2.3 allows remote attackers to inject arbitrary web script or HTML via the URI. Date published : 2009-04-21 http://www.securityfocus.com/bid/34606 http://www.securityfocus.com/archive/1/502799/100/0/threaded
Unspecified vulnerability in Wireshark before 1.0.7 has unknown impact and attack vectors. Date published : 2009-04-21 http://www.securityfocus.com/archive/1/502745/100/0/threaded http://wiki.rpath.com/Advisories:rPSA-2009-0062
Unspecified vulnerability in HP StorageWorks Storage Mirroring 5 before 5.1.1.1090.15 allows remote attackers to execute arbitrary code via unknown vectors. Date published : 2009-04-21 http://marc.info/?l=bugtraq&m=124025929213175&w=2 http://marc.info/?l=bugtraq&m=124025929213175&w=2
Unspecified vulnerability in HP StorageWorks Storage Mirroring 5 before 5.1.1.1090.15 allows remote attackers to cause a denial of service via unknown vectors. Date published : 2009-04-21 http://marc.info/?l=bugtraq&m=124025929213175&w=2 http://marc.info/?l=bugtraq&m=124025929213175&w=2
Unspecified vulnerability in HP StorageWorks Storage Mirroring 5 before 5.1.1.1090.15 allows remote attackers to cause a denial of service or obtain "access" via unknown vectors. Date published : 2009-04-21 http://marc.info/?l=bugtraq&m=124025929213175&w=2 http://marc.info/?l=bugtraq&m=124025929213175&w=2