| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-1470 | 5.0 |
Multiple unknown vulnerabilities in the (1) TZSP, (2) MGCP, (3) ISUP, (4) SMB, or (5) Bittorrent dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (segmentation fault) via unknown vectors.
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
| CVE-2005-0044 | 7.5 |
The OLE component in Windows 98, 2000, XP, and Server 2003, and Exchange Server 5.0 through 2003, does not properly validate the lengths of messages for certain OLE data, which allows remote attackers to execute arbitrary code, aka the "Input Validat
|
30-04-2019 - 14:27 | 02-05-2005 - 04:00 | |
| CVE-2010-1799 | 9.3 |
Stack-based buffer overflow in the error-logging functionality in Apple QuickTime before 7.6.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.
|
30-10-2018 - 16:25 | 16-08-2010 - 18:39 | |
| CVE-2006-0296 | 5.0 |
The XULDocument.persist function in Mozilla, Firefox before 1.5.0.1, and SeaMonkey before 1.0 does not validate the attribute name, which allows remote attackers to execute arbitrary Javascript by injecting RDF data into the user's localstore.rdf fil
|
19-10-2018 - 15:43 | 02-02-2006 - 20:06 | |
| CVE-2006-1742 | 5.0 |
The JavaScript engine in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 does not properly handle temporary variables that are not garbage collected, which might allow remot
|
18-10-2018 - 16:36 | 14-04-2006 - 10:02 | |
| CVE-2006-4333 | 5.4 |
The SSCOP dissector in Wireshark (formerly Ethereal) before 0.99.3 allows remote attackers to cause a denial of service (resource consumption) via malformed packets that cause the Q.2391 dissector to use excessive memory.
|
17-10-2018 - 21:34 | 24-08-2006 - 20:04 | |
| CVE-2007-3473 | 4.3 |
The gdImageCreateXbm function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors involving a gdImageCreate failure.
|
16-10-2018 - 16:49 | 28-06-2007 - 18:30 | |
| CVE-2010-2876 | 9.3 |
Adobe Shockwave Player before 11.5.8.612 does not properly validate values associated with buffer-size calculation for a 0xFFFFFFF8 record in a (1) .dir or (2) .dcr Director movie, which allows remote attackers to cause a denial of service (heap memo
|
10-10-2018 - 20:00 | 26-08-2010 - 21:00 | |
| CVE-2008-5078 | 6.8 |
Multiple buffer overflows in the (1) recognize_eps_file function (src/psgen.c) and (2) tilde_subst function (src/util.c) in GNU enscript 1.6.1, and possibly earlier, might allow remote attackers to execute arbitrary code via an epsf escape sequence w
|
29-09-2017 - 01:32 | 19-12-2008 - 17:30 | |
| CVE-2010-1791 | 9.3 |
Integer signedness error in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vecto
|
19-09-2017 - 01:30 | 30-07-2010 - 20:30 |