Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-09-30 | CVE-2009-3484 | Buffer Errors vulnerability in Coreftp Core FTP 2.1 Stack-based buffer overflow in Core FTP 2.1 build 1612 allows user-assisted remote attackers to execute arbitrary code via a long hostname in an FTP server entry in a site backup file. | 9.3 |
| 2009-09-30 | CVE-2009-3483 | Buffer Errors vulnerability in Globalscape Cuteftp 8.3.3/8.3.3.0054 Heap-based buffer overflow in the Create New Site feature in GlobalSCAPE CuteFTP Professional, Home, and Lite 8.3.3 and 8.3.3.0054 allows user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a site list containing an entry with a long label. | 9.3 |
| 2009-09-29 | CVE-2009-3476 | Buffer Errors vulnerability in Internet2 Opensaml, Shibboleth-Sp and Xmltooling Buffer overflow in OpenSAML before 1.1.3 as used in Internet2 Shibboleth Service Provider software 1.3.x before 1.3.4, and XMLTooling before 1.2.2 as used in Internet2 Shibboleth Service Provider software 2.x before 2.2.1, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed encoded URL. | 9.3 |
| 2009-09-29 | CVE-2009-3473 | Remote Security vulnerability in IBM DB2 9.1 IBM DB2 9.1 before FP8 does not require the SETSESSIONUSER privilege for the SET SESSION AUTHORIZATION statement, which has unspecified impact and remote attack vectors. | 10.0 |
| 2009-09-25 | CVE-2009-3429 | Buffer Errors vulnerability in Pirateradio Destiny Media Player 1.61 Stack-based buffer overflow in Pirate Radio Destiny Media Player 1.61 allows remote attackers to execute arbitrary code via a long string in a .pls playlist file. | 9.3 |
| 2009-09-25 | CVE-2009-3428 | Buffer Errors vulnerability in Otbcode Easy Music Player 1.0.0.2 Stack-based buffer overflow in Easy Music Player 1.0.0.2 allows remote attackers to execute arbitrary code via a crafted .wav file. | 9.3 |
| 2009-09-25 | CVE-2009-3421 | Improper Authentication vulnerability in Zenas Pao-Bacheca Guestbook 2.1 login.php in Zenas PaoBacheca Guestbook 2.1, when register_globals is enabled, allows remote attackers to bypass authentication and gain administrative access by setting the login_ok parameter to 1. | 9.8 |
| 2009-09-24 | CVE-2009-2817 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Itunes Buffer overflow in Apple iTunes before 9.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted .pls file. | 9.3 |
| 2009-09-24 | CVE-2009-3364 | Buffer Errors vulnerability in Ftpshell 4.1 Stack-based buffer overflow in FTPShell Client 4.1 RC2 allows remote FTP servers to execute arbitrary code via a long response to a PASV command. | 9.3 |
| 2009-09-24 | CVE-2009-3354 | Multiple Unspecified vulnerability in Drupal REST API Module Multiple unspecified vulnerabilities in the Rest API module for Drupal have unknown impact and attack vectors. | 10.0 |