| Max CVSS | 10.0 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-0767 | 2.6 |
Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system, due to how the scripting engine handles objects in memory, aka "Scripting Engine
|
24-08-2020 - 17:37 | 04-01-2018 - 14:29 | |
| CVE-2007-2639 | 10.0 |
Directory traversal vulnerability in TFTPdWin 0.4.2 allows remote attackers to read or modify arbitrary files outside the TFTP root via unspecified vectors.
|
16-10-2018 - 16:44 | 13-05-2007 - 23:19 | |
| CVE-2007-1689 | 10.0 |
Buffer overflow in the ISAlertDataCOM ActiveX control in ISLALERT.DLL for Norton Personal Firewall 2004 and Internet Security 2004 allows remote attackers to execute arbitrary code via long arguments to the (1) Get and (2) Set functions.
|
16-10-2018 - 16:40 | 16-05-2007 - 20:30 | |
| CVE-2007-4529 | 8.5 |
The WebAdmin interface in TeamSpeak Server 2.0.20.1 allows remote authenticated users with the ServerAdmin flag to assign Registered users certain privileges, resulting in a privilege set that extends beyond that ServerAdmin's own servers, as demonst
|
15-10-2018 - 21:35 | 25-08-2007 - 00:17 | |
| CVE-2007-4530 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in TeamSpeak Server 2.0.20.1 allow remote attackers to inject arbitrary web script or HTML via (1) the error_text parameter to error_box.html or (2) the ok_title parameter to ok_box.html.
|
15-10-2018 - 21:35 | 25-08-2007 - 00:17 | |
| CVE-2007-2647 | 6.5 |
Static code injection vulnerability in admin/admin_configuration.php in Monalbum 0.8.7 allows remote authenticated users to inject arbitrary PHP code into the conf/config.inc.php file via the (1) gadm_pass, (2) gadm_user, (3) gcfgHote, (4) gcfgPass,
|
19-10-2017 - 01:30 | 14-05-2007 - 21:19 | |
| CVE-2007-2642 | 7.8 |
Directory traversal vulnerability in galeria.php in R2K Gallery 1.7 allows remote attackers to read arbitrary files via a .. (dot dot) in the lang2 parameter.
|
11-10-2017 - 01:32 | 13-05-2007 - 23:19 | |
| CVE-2007-2644 | 9.4 |
A certain ActiveX control in Morovia Barcode ActiveX Professional 3.3.1304 allows remote attackers to overwrite arbitrary files by calling the Save method with an arbitrary filename.
|
11-10-2017 - 01:32 | 13-05-2007 - 23:19 | |
| CVE-2007-2640 | 7.8 |
LibTMCG before 1.1.1 does not perform a range check to avoid "trivial group generators," which allows attackers to obtain sensitive information about private cards.
|
29-07-2017 - 01:31 | 13-05-2007 - 23:19 | |
| CVE-2007-0796 | 7.5 |
Blue Coat Systems WinProxy 6.1a and 6.0 r1c, and possibly earlier, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long HTTP CONNECT request, which triggers heap corruption.
|
29-07-2017 - 01:30 | 06-02-2007 - 19:28 | |
| CVE-2014-8013 | 4.9 |
The TACACS+ command-authorization implementation in Cisco NX-OS allows local users to cause a denial of service (device reload) via a long CLI command, aka Bug ID CSCur54182.
|
04-11-2015 - 19:28 | 03-02-2015 - 22:59 | |
| CVE-2001-0425 | 7.5 |
AdLibrary.pm in AdCycle 0.78b allows remote attackers to gain privileges to AdCycle via a malformed Agent: header in the HTTP request, which is inserted into a resulting SQL query that is used to verify login information.
|
05-09-2008 - 20:24 | 27-06-2001 - 04:00 |