CVE-2008-3691

Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-3692, CVE-2008-3693, CVE-2008-3694, CVE-2008-3695, and CVE-2008-3696.

Publication date: Wed, 03 Sep 2008 19:12:00 +0000

Cyber News related to CVE-2008-3691

CVE-2008-3892 - Buffer overflow in a certain ActiveX control in the COM API in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build ...
5 years ago

CVE-2008-3696 - Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build ...
5 years ago

CVE-2008-3695 - Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build ...
5 years ago

CVE-2008-3693 - Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build ...
5 years ago

CVE-2008-3692 - Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build ...
5 years ago

CVE-2008-3694 - Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build ...
5 years ago

CVE-2008-3691 - Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build ...
5 years ago

CVE-2007-3691 - Multiple SQL injection vulnerabilities in changePW.php in AV Tutorial Script (avtutorial) 1.0, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) userid parameters, a different issue ...
6 years ago

CVE-2007-3588 - SQL injection vulnerability in reply.php in VBZooM 1.12 allows remote attackers to execute arbitrary SQL commands via the UserID parameter to sub-join.php. NOTE: this may be the same as CVE-2006-3691.4. ...
5 years ago

CVE-2005-3691 - Directory traversal vulnerability in the IMAP service (meimaps.exe) of MailEnable Professional 1.6 and earlier and Enterprise 1.1 and earlier allows remote attackers to create or rename arbitrary mail directories via the mailbox name argument of the ...
13 years ago

CVE-2012-3691 - WebKit in Apple Safari before 6.0 does not properly handle Cascading Style Sheets (CSS) property values, which allows remote attackers to bypass the Same Origin Policy via a crafted web site. ...
6 months ago

CVE-2011-3691 - Untrusted search path vulnerability in Foxit Reader before 5.0.2.0718 allows local users to gain privileges via a Trojan horse dwmapi.dll, dwrite.dll, or msdrm.dll in the current working directory. Per: http://cwe.mitre.org/data/definitions/426.html ...
7 years ago

CVE-2009-3691 - Multiple integer overflows in setnet32.exe 3.50.0.13752 in IBM Informix Client SDK 3.0 and 3.50 and Informix Connect Runtime 3.x allow remote attackers to execute arbitrary code via a .nfx file with a crafted (1) HostSize, and possibly (2) ProtoSize ...
6 years ago

CVE-2015-3691 - The Monitor Control Command Set kernel extension in the Display Drivers subsystem in Apple OS X before 10.10.4 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages control of a function pointer. ...
6 years ago

CVE-2006-3691 - Multiple SQL injection vulnerabilities in VBZooM 1.11 and earlier allow remote attackers to execute arbitrary SQL commands via the UserID parameter to (1) ignore-pm.php, (2) sendmail.php, (3) reply.php or (4) sub-join.php. ...
5 years ago

CVE-2018-3691 - Some implementations in Intel Integrated Performance Primitives Cryptography Library before version 2018 U3.1 do not properly ensure constant execution time. ...
4 years ago

CVE-2013-3691 - AirLive POE-2600HD allows remote attackers to cause a denial of service (device reset) via a long URL. ...
4 years ago

CVE-2010-3691 - PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary files via a symlink attack on an unspecified file. ...
4 years ago

CVE-2016-3691 - Routes in Kallithea before 0.3.2 allows remote attackers to bypass the CSRF protection by using the GET HTTP request method. ...
4 years ago

CVE-2020-3691 - Possible out of bound memory access in audio due to integer underflow while processing modified contents in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon ...
3 years ago

CVE-2022-3691 - The DeepL Pro API translation plugin WordPress plugin before 1.7.5 discloses sensitive information (including the DeepL API key) in files that are publicly accessible to an external, unauthenticated visitor. ...
1 year ago

CVE-2019-3691 - A Symbolic Link (Symlink) Following vulnerability in the packaging of munge in SUSE Linux Enterprise Server 15; openSUSE Factory allowed local attackers to escalate privileges from user munge to root. This issue affects: SUSE Linux Enterprise Server ...
1 year ago

CVE-2014-3691 - Smart Proxy (aka Smart-Proxy and foreman-proxy) in Foreman before 1.5.4 and 1.6.x before 1.6.2 does not validate SSL certificates, which allows remote attackers to bypass intended authentication and execute arbitrary API requests via a request ...
1 year ago

CVE-2023-3691 - A vulnerability, which was classified as problematic, was found in layui up to v2.8.0-rc.16. This affects an unknown part of the component HTML Attribute Handler. The manipulation of the argument title leads to cross site scripting. It is possible to ...
11 months ago

CVE-2024-3691 - A vulnerability, which was classified as critical, has been found in PHPGurukul Small CRM 3.0. Affected by this issue is some unknown functionality of the component Registration Page. The manipulation leads to sql injection. The attack may be ...
2 months ago Tenable.com

Latest Cyber News

30 Best Cyber Security Search Engines - 6 minutes ago
How to protect data at rest and in transit - 27 minutes ago
Sony Enters Crypto Exchange Arena with Acquisition of Amber - 27 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 48 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 48 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 48 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 48 minutes ago
Police allege 'evil twin' in-flight Wi-Fi used to steal info The Register - 48 minutes ago
Water Sigbin Hackers Exploit Oracle WebLogic Vulnerabilities - 1 hour ago
Indonesian government didn't backup ransomwared data The Register - 1 hour ago
Product showcase: Protect digital identities with Swissbit's iShield Key Pro - 1 hour ago
Portainer: Open-source Docker and Kubernetes management - 1 hour ago
Why every company needs a DDoS response plan - 1 hour ago
Microsoft tells more customers their emails have been stolen The Register - 2 hours ago
Preparing for Q-Day as NIST nears approval of PQC standards - 3 hours ago
Infosec products of the month: June 2024 - 3 hours ago
CVE-2024-38525 - 6 hours ago
CVE-2024-6419 - 6 hours ago
CVE-2024-6418 - 7 hours ago
CVE-2024-6417 - 7 hours ago

Cyber Trends (last 7 days)

Okta - 7 months ago
23andMe - 6 months ago
Kimsuky - 7 months ago
LogoFAIL - 6 months ago
Gh0st rat - 7 months ago

Trending Cyber News (last 7 days)

Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 48 minutes ago
30 Best Cyber Security Search Engines - 6 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 48 minutes ago
Sony Enters Crypto Exchange Arena with Acquisition of Amber - 27 minutes ago
How to protect data at rest and in transit - 27 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 48 minutes ago
Police allege 'evil twin' in-flight Wi-Fi used to steal info The Register - 48 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 48 minutes ago
CVE-2024-6419 - 6 hours ago
Water Sigbin Hackers Exploit Oracle WebLogic Vulnerabilities - 1 hour ago
Why every company needs a DDoS response plan - 1 hour ago
Portainer: Open-source Docker and Kubernetes management - 1 hour ago
Product showcase: Protect digital identities with Swissbit's iShield Key Pro - 1 hour ago
Indonesian government didn't backup ransomwared data The Register - 1 hour ago
Microsoft tells more customers their emails have been stolen The Register - 2 hours ago
Preparing for Q-Day as NIST nears approval of PQC standards - 3 hours ago
Infosec products of the month: June 2024 - 3 hours ago
CVE-2024-6416 - 8 hours ago
CVE-2024-6418 - 7 hours ago
CVE-2024-6417 - 7 hours ago