CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2011-5125
https://notcve.org/view.php?id=CVE-2011-5125
26 Aug 2012 — Cross-site scripting (XSS) vulnerability in Blue Coat Director before 5.5.2.3 allows remote attackers to inject arbitrary web script or HTML via vectors involving the HTTP TRACE method. Vulnerabilidad de ejecución de comandos en sitios cruzados (XSS) en Blue Coat Director anterior a v5.5.2.3 permite a atacantes remotos inyectar código web o HTML arbitrario a través de vectores que están relacionados con el método HTTP TRACE. • https://kb.bluecoat.com/index?page=content&id=SA62 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.3EPSS: 11%CPEs: 4EXPL: 0CVE-2010-0128
https://notcve.org/view.php?id=CVE-2010-0128
13 May 2010 — Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe Director before 11.5.7.609 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .dir file that triggers an invalid read operation. Error de presencia de signo entero en dirapi.dll en Adobe Shockwave Player en versiones anteriores a la 11.5.7.609 y Adobe Director en versiones anteriores a la 11.5.7.609 permite a atacantes remotos provocar una denega... • http://secunia.com/advisories/38751 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 22%CPEs: 16EXPL: 2CVE-2009-0879 – IBM Director 5.20.3su2 CIM Server - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2009-0879
12 Mar 2009 — The CIM server in IBM Director before 5.20.3 Service Update 2 on Windows allows remote attackers to cause a denial of service (daemon crash) via a long consumer name, as demonstrated by an M-POST request to a long /CIMListener/ URI. El servidor CIM en IBM Director anterior a v5.20.3 Service Update 2 sobre Windows permite a los atacantes remotos provocar una denegación de servicio (caída del demonio) a través de un nombre largo "consumer", como se ha demostrado en una petición M-POST a una URI larga /CIMList... • https://www.exploit-db.com/exploits/8190 • CWE-20: Improper Input Validation •
CVSS: 8.4EPSS: 63%CPEs: 16EXPL: 4CVE-2009-0880 – IBM System Director Agent 5.20 - CIM Server Privilege Escalation
https://notcve.org/view.php?id=CVE-2009-0880
12 Mar 2009 — Directory traversal vulnerability in the CIM server in IBM Director before 5.20.3 Service Update 2 on Windows allows remote attackers to load and execute arbitrary local DLL code via a .. (dot dot) in a /CIMListener/ URI in an M-POST request. Vulnerabilidad de salto de directorio en el servidor CIM en IBM Director anteriores v5.20.3 Service Update 2 en Windows que permite a los atacantes remotos cargar y ejecutar arbitrariamente código DLL local a través .. (punto punto) en un /CIMListener/ URI en una petic... • https://www.exploit-db.com/exploits/32845 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 2%CPEs: 5EXPL: 0CVE-2007-5612
https://notcve.org/view.php?id=CVE-2007-5612
21 Nov 2007 — CIM Server in IBM Director 5.20.1 and earlier allows remote attackers to cause a denial of service (CPU consumption, connection slot exhaustion, and daemon crash) via a large number of idle connections. CIM Server en IBM Director 5.20.1 y anteriores permite a atacantes remotos provocar una denegación de servicio (consumo de CPU, agotamientos de conexiones, y caída del demonio) mediante un número grande de conexiones sin utilizar. • http://secunia.com/advisories/27752 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 10%CPEs: 10EXPL: 2CVE-2003-1017 – Macromedia Flash Player 6.0.x - Flash Cookie Predictable File Location
https://notcve.org/view.php?id=CVE-2003-1017
17 Dec 2003 — Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names. El Reproductor de Macromedia Flash en versiones anteriores a 7,0,19,0 almacena un fichero de datos de Flash en una localización predecible, accesible a navegadores web como Internet Explorer y Opera, lo que permite a... • https://www.exploit-db.com/exploits/23298 •