Max CVSS 10.0 Min CVSS 3.6 Total Count15
IDCVSSSummaryLast (major) updatePublished
CVE-2007-5225 4.9
Integer signedness error in FIFO filesystems (named pipes) on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory locations via a negative maximum length value to the I_PEEK ioctl.
11-10-2011 - 00:00 04-10-2007 - 20:17
CVE-2008-1411 5.0
The PXE Server (pxesrv.exe) in Acronis Snap Deploy 2.0.0.1076 and earlier allows remote attackers to cause a denial of service (crash) via an incomplete TFTP request, which triggers a NULL pointer dereference.
07-03-2011 - 22:07 20-03-2008 - 06:44
CVE-2008-1410 4.3
Directory traversal vulnerability in the PXE Server (pxesrv.exe) in Acronis Snap Deploy 2.0.0.1076 and earlier allows remote attackers to read arbitrary files via directory traversal sequences to the TFTP service.
07-03-2011 - 22:07 20-03-2008 - 06:44
CVE-2008-1322 7.8
The File Check Utility (fcheck.exe) in ASG-Sentry Network Manager 7.0.0 and earlier allows remote attackers to cause a denial of service (CPU consumption) or overwrite arbitrary files via a query string that specifies the -b option, probably due to a
07-03-2011 - 22:06 13-03-2008 - 10:44
CVE-2008-1321 5.0
The FxIAList service in ASG-Sentry Network Manager 7.0.0 and earlier does require authentication, which allows remote attackers to cause a denial of service (service termination) via the exit command to TCP port 6162, or have other impacts via other
07-03-2011 - 22:06 13-03-2008 - 10:44
CVE-2008-1320 10.0
Multiple buffer overflows in ASG-Sentry Network Manager 7.0.0 and earlier allow remote attackers to execute arbitrary code or cause a denial of service (crash) via (1) a long request to FxIAList on TCP port 6162, or (2) an SNMP request with a long co
07-03-2011 - 22:06 13-03-2008 - 10:44
CVE-2008-1307 10.0
Heap-based buffer overflow in the KUpdateObj2 Class ActiveX control in UpdateOcx2.dll in Beijing KingSoft Antivirus Online Update Module 2007.12.29.29 allows remote attackers to execute arbitrary code via a long argument to the SetUninstallName metho
07-03-2011 - 22:06 12-03-2008 - 13:44
CVE-2008-1278 5.0
The RemotelyAnywhere.exe service in the Remotely Anywhere Server and Workstation 8.0.668 and earlier allows remote attackers to cause a denial of service (crash) via an invalid Accept-Charset header, which triggers a NULL pointer dereference. NOTE:
07-03-2011 - 22:06 10-03-2008 - 19:44
CVE-2008-1371 3.6
Absolute path traversal vulnerability in install/index.php in Drake CMS 0.4.11 RC8 allows remote attackers to read and execute arbitrary files via a full pathname in the d_root parameter. NOTE: the provenance of this information is unknown; the deta
05-09-2008 - 17:37 18-03-2008 - 13:44
CVE-2008-1298 7.5
SQL injection vulnerability in Hadith module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the cat parameter in a viewcat action to modules.php.
05-09-2008 - 17:37 12-03-2008 - 13:44
CVE-2008-1297 7.5
SQL injection vulnerability in index.php in the eWriting (com_ewriting) 1.2.1 module for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the cat parameter in a selectcat action.
05-09-2008 - 17:37 12-03-2008 - 13:44
CVE-2008-1296 4.3
Multiple cross-site scripting (XSS) vulnerabilities in EncapsGallery 1.11.2 allow remote attackers to inject arbitrary web script or HTML via the file parameter to (1) watermark.php and (2) catalog_watermark.php in core/. NOTE: the provenance of thi
05-09-2008 - 17:37 12-03-2008 - 13:44
CVE-2008-1295 6.8
SQL injection vulnerability in archives.php in Gregory Kokanosky (aka Greg's Place) phpMyNewsletter 0.8 beta 5 and earlier allows remote attackers to execute arbitrary SQL commands via the msg_id parameter.
05-09-2008 - 17:37 12-03-2008 - 13:44
CVE-2008-1326 4.3
Cross-site scripting (XSS) vulnerability in search.php in Gallarific allows remote attackers to inject arbitrary web script or HTML via the query parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from th
05-09-2008 - 00:00 13-03-2008 - 10:44
CVE-2008-1327 7.5
Gallarific does not require authentication for (1) users.php and (2) index.php, which allows remote attackers to add and edit tasks via a direct request. NOTE: the provenance of this information is unknown; the details are obtained solely from third
05-09-2008 - 00:00 13-03-2008 - 10:44
Back to Top Mark selected
Back to Top