Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-10-07 | CVE-2008-4384 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products Multiple stack-based buffer overflows in MGI Software LPViewer ActiveX control (LPControl.dll), as acquired by Roxio and iseemedia, allow remote attackers to execute arbitrary code via the (1) url, (2) toolbar, and (3) enableZoomPastMax methods. | 9.3 |
2008-10-07 | CVE-2008-3543 | Remote Denial Of Service vulnerability in HP Oncplus B.11.3101/B.11.3102/B.11.3103 Unspecified vulnerability in NFS / ONCplus B.11.31_04 and earlier on HP-UX B.11.31 allows remote attackers to cause a denial of service via unknown attack vectors. | 7.8 |
2008-10-07 | CVE-2008-4470 | Buffer Errors vulnerability in Numark CUE 5.0 Stack-based buffer overflow in Numark CUE 5.0 rev2 allows user-assisted attackers to cause a denial of service (application crash) or execute arbitrary code via an M3U playlist file that contains a long absolute pathname. | 9.3 |
2008-10-07 | CVE-2008-4469 | SQL Injection vulnerability in Vastal I-Tech Freelance Zone SQL injection vulnerability in view_cresume.php in Vastal I-Tech Freelance Zone allows remote attackers to execute arbitrary SQL commands via the coder_id parameter. | 7.5 |
2008-10-07 | CVE-2008-4468 | SQL Injection vulnerability in Vastal I-Tech Share Zone SQL injection vulnerability in view_news.php in Vastal I-Tech Share Zone allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2008-10-07 | CVE-2008-4467 | SQL Injection vulnerability in Vastal I-Tech Toner Cart SQL injection vulnerability in show_series_ink.php in Vastal I-Tech Toner Cart allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2008-10-07 | CVE-2008-4466 | SQL Injection vulnerability in Vastal I-Tech Cosmetics Zone SQL injection vulnerability in view_products_cat.php in Vastal I-Tech Cosmetics Zone allows remote attackers to execute arbitrary SQL commands via the cat_id parameter. | 7.5 |
2008-10-07 | CVE-2008-4465 | SQL Injection vulnerability in Vastal I-Tech DVD Zone SQL injection vulnerability in view_mags.php in Vastal I-Tech DVD Zone allows remote attackers to execute arbitrary SQL commands via the cat_id parameter. | 7.5 |
2008-10-07 | CVE-2008-4464 | SQL Injection vulnerability in Vastal I-Tech MAG Zone SQL injection vulnerability in view_mags.php in Vastal I-Tech Mag Zone allows remote attackers to execute arbitrary SQL commands via the cat_id parameter. | 7.5 |
2008-10-07 | CVE-2008-4463 | SQL Injection vulnerability in Vastal I-Tech Jobs Zone SQL injection vulnerability in view_news.php in Vastal I-Tech Jobs Zone allows remote attackers to execute arbitrary SQL commands via the news_id parameter. | 7.5 |