| Max CVSS | 7.5 | Min CVSS | 7.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-3438 | 7.5 |
Apple Mac OS X does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.
|
15-02-2024 - 20:13 | 01-08-2008 - 14:41 | |
| CVE-2008-3441 | 7.5 |
Nullsoft Winamp before 5.24 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.
|
01-11-2018 - 15:10 | 01-08-2008 - 14:41 | |
| CVE-2008-3434 | 7.5 |
Apple iTunes before 10.5.1 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.
|
29-09-2017 - 01:31 | 01-08-2008 - 14:41 | |
| CVE-2008-3440 | 7.5 |
Sun Java 1.6.0_03 and earlier versions, and possibly later versions, does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and
|
10-09-2008 - 04:00 | 01-08-2008 - 14:41 | |
| CVE-2008-3433 | 7.5 |
SpeedBit Download Accelerator Plus (DAP) before 8.6.3.9 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poi
|
05-09-2008 - 21:43 | 01-08-2008 - 14:41 | |
| CVE-2008-3442 | 7.5 |
WinZip before 11.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.
|
05-09-2008 - 21:43 | 01-08-2008 - 14:41 | |
| CVE-2008-3436 | 7.5 |
The GUP generic update process in Notepad++ before 4.8.1 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache po
|
05-09-2008 - 21:43 | 01-08-2008 - 14:41 | |
| CVE-2008-3435 | 7.5 |
LinkedIn Browser Toolbar 3.0.3.1100 and earlier does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.
|
05-09-2008 - 21:43 | 01-08-2008 - 14:41 | |
| CVE-2008-3439 | 7.5 |
SpeedBit Video Acceleration before 2.2.1.8 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.
|
05-09-2008 - 21:43 | 01-08-2008 - 14:41 | |
| CVE-2008-3437 | 7.5 |
OpenOffice.org (OOo) before 2.1.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.
|
05-09-2008 - 21:43 | 01-08-2008 - 14:41 |