CVE-2009-5049

WebApp JSP Snoop page XSS in jetty though 6.1.21.

Publication date: Thu, 07 Nov 2019 01:15:00 +0000

Cyber News related to CVE-2009-5049

CVE-2009-3403 - Unspecified vulnerability in the JRockit component in BEA Product Suite R27.6.4: JRE/JDK, 1.4.2, 5, and, and 6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this issue subsumes ...
11 years ago

CVE-2010-0079 - Multiple vulnerabilities in the JRockit component in BEA Product Suite R27.6.5 using JRE/JDK 1.4.2, 5, and 6 allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: this CVE identifier overlaps ...
11 years ago

CVE-2009-5049 - WebApp JSP Snoop page XSS in jetty though 6.1.21. ...
4 years ago

CVE-2009-3239 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-2139, CVE-2009-2140. Reason: This candidate is a duplicate of CVE-2009-2139 and CVE-2009-2140. Notes: All CVE users should reference CVE-2009-2139 and CVE-2009-2140 instead of ...
54 years ago Tenable.com

CVE-2009-4212 - Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5) 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service (daemon crash) or possibly ...
4 years ago

CVE-2007-5049 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-3387. Reason: This candidate is a duplicate of CVE-2007-3387. Notes: All CVE users should reference CVE-2007-3387 instead of this candidate. All references and descriptions in ...
54 years ago Tenable.com

CVE-2017-5049 - An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer. ...
2 years ago

CVE-2012-5049 - APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service (infinite loop) via a malformed packet. ...
11 years ago

CVE-2006-5049 - Unspecified vulnerability in Classifieds (com_classifieds) component 1.3 and earlier for Joomla! has unspecified impact and attack vectors. ...
7 years ago

CVE-2015-5049 - SQL injection vulnerability in the API in IBM OpenPages GRC Platform 7.0 before 7.0.0.4 IF3 and 7.1 before 7.1.0.1 IF6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. ...
7 years ago

CVE-2016-5049 - Directory traversal vulnerability in chat/openattach.aspx in ReadyDesk 9.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the SESID parameter in conjunction with a filename in the FNAME parameter. ...
7 years ago

CVE-2008-5049 - Buffer overflow in AKEProtect.sys 3.3.3.0 in ISecSoft Anti-Keylogger Elite 3.3.0 and earlier, and possibly other versions including 3.3.3, allows local users to gain privileges via long inputs to the (1) 0x002224A4, (2) 0x002224C0, and (3) 0x002224CC ...
6 years ago

CVE-2010-5049 - SQL injection vulnerability in events.php in Zabbix 1.8.1 and earlier allows remote attackers to execute arbitrary SQL commands via the nav_time parameter. ...
5 years ago

CVE-2013-5049 - Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." ...
5 years ago

CVE-2018-5049 - Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. ...
4 years ago

CVE-2019-5049 - An exploitable memory corruption vulnerability exists in AMD ATIDXX64.DLL driver, versions 25.20.15031.5004 and 25.20.15031.9002. A specially crafted pixel shader can cause an out-of-bounds memory write. An attacker can provide a specially crafted ...
4 years ago

CVE-2011-5049 - MySQL 5.5.8, when running on Windows, allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted packet to TCP port 3306. ...
4 years ago

CVE-2023-5049 - The Giveaways and Contests by RafflePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'rafflepress' and 'rafflepress_gutenberg' shortcode in versions up to, and including, 1.12.0 due to insufficient input ...
8 months ago

CVE-2024-5049 - A vulnerability, which was classified as critical, has been found in Codezips E-Commerce Site 1.0. Affected by this issue is some unknown functionality of the file admin/editproduct.php. The manipulation of the argument profilepic leads to ...
1 month ago Tenable.com

CVE-2009-4778 - Multiple unspecified vulnerabilities in the PDF distiller in the Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software 4.1.3 through 4.1.7 and 5.0.0, and BlackBerry Professional Software 4.1.4, allow ...
14 years ago

CVE-2009-0795 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-0796, CVE-2009-1265. Reason: this candidate was intended for one issue, but a typo caused it to be associated with a different issue. Notes: All CVE users should consult ...
54 years ago Tenable.com

CVE-2009-0888 - Heap-based buffer overflow in the JBIG2 filter in Adobe Reader 7 and Acrobat 7 before 7.1.3, Adobe Reader 8 and Acrobat 8 before 8.1.6, and Adobe Reader 9 and Acrobat 9 before 9.1.2 might allow remote attackers to execute arbitrary code via ...
14 years ago

CVE-2009-0889 - Heap-based buffer overflow in the JBIG2 filter in Adobe Reader 7 and Acrobat 7 before 7.1.3, Adobe Reader 8 and Acrobat 8 before 8.1.6, and Adobe Reader 9 and Acrobat 9 before 9.1.2 might allow remote attackers to execute arbitrary code via ...
14 years ago

CVE-2009-0511 - Heap-based buffer overflow in the JBIG2 filter in Adobe Reader 7 and Acrobat 7 before 7.1.3, Adobe Reader 8 and Acrobat 8 before 8.1.6, and Adobe Reader 9 and Acrobat 9 before 9.1.2 might allow remote attackers to execute arbitrary code via ...
14 years ago

CVE-2009-0510 - Heap-based buffer overflow in the JBIG2 filter in Adobe Reader 7 and Acrobat 7 before 7.1.3, Adobe Reader 8 and Acrobat 8 before 8.1.6, and Adobe Reader 9 and Acrobat 9 before 9.1.2 might allow remote attackers to execute arbitrary code via ...
14 years ago

Latest Cyber News

Water Sigbin Hackers Exploit Oracle WebLogic Vulnerabilities - 34 minutes ago
Indonesian government didn't backup ransomwared data The Register - 54 minutes ago
Product showcase: Protect digital identities with Swissbit's iShield Key Pro - 54 minutes ago
Portainer: Open-source Docker and Kubernetes management - 54 minutes ago
Why every company needs a DDoS response plan - 54 minutes ago
Microsoft tells more customers their emails have been stolen The Register - 2 hours ago
Preparing for Q-Day as NIST nears approval of PQC standards - 2 hours ago
Infosec products of the month: June 2024 - 2 hours ago
CVE-2024-38525 - 5 hours ago
CVE-2024-6418 - 6 hours ago
CVE-2024-6417 - 6 hours ago
CVE-2023-48733 - 6 hours ago
Cybersecurity Today: Cyber Security Today, Week in Review for week ending Friday, June 28, 2024 - 7 hours ago
CVE-2024-6416 - 7 hours ago
Generative AI is new attack vector endangering enterprises, says CrowdStrike CTO - 8 hours ago
Google Chrome to let Isolated Web App access sensitive USB devices - 8 hours ago
CVE-2024-34703 - 8 hours ago
CVE-2024-28794 - 10 hours ago
CVE-2023-50964 - 10 hours ago
The dangers of voice fraud: We can't detect what we can't see - 10 hours ago

Cyber Trends (last 7 days)

Okta - 7 months ago
23andMe - 6 months ago
Kimsuky - 7 months ago
LogoFAIL - 6 months ago
Gh0st rat - 7 months ago

Trending Cyber News (last 7 days)

Water Sigbin Hackers Exploit Oracle WebLogic Vulnerabilities - 34 minutes ago
Why every company needs a DDoS response plan - 54 minutes ago
Portainer: Open-source Docker and Kubernetes management - 54 minutes ago
Product showcase: Protect digital identities with Swissbit's iShield Key Pro - 54 minutes ago
Indonesian government didn't backup ransomwared data The Register - 54 minutes ago
Microsoft tells more customers their emails have been stolen The Register - 2 hours ago
Preparing for Q-Day as NIST nears approval of PQC standards - 2 hours ago
Infosec products of the month: June 2024 - 2 hours ago
CVE-2024-6416 - 7 hours ago
CVE-2024-6418 - 6 hours ago
CVE-2024-6417 - 6 hours ago
CVE-2024-34703 - 8 hours ago
Cybersecurity Today: Cyber Security Today, Week in Review for week ending Friday, June 28, 2024 - 7 hours ago
Generative AI is new attack vector endangering enterprises, says CrowdStrike CTO - 8 hours ago
CVE-2024-28797 - 11 hours ago
CVE-2023-50952 - 11 hours ago
CVE-2024-31898 - 11 hours ago
CVE-2023-50953 - 11 hours ago
CVE-2024-28794 - 10 hours ago
CVE-2023-50964 - 10 hours ago