| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-8822 | 7.2 |
Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc through 4.16-rc6, could be exploited by malicio
|
28-03-2024 - 16:08 | 20-03-2018 - 17:29 | |
| CVE-2016-7039 | 7.8 |
The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for large crafted packets, as demonstrated b
|
17-01-2023 - 21:36 | 16-10-2016 - 21:59 | |
| CVE-2005-1409 | 7.5 |
PostgreSQL 7.3.x through 8.0.x gives public EXECUTE access to certain character conversion functions, which allows unprivileged users to call those functions with malicious values, with unknown impact, aka the "Character conversion vulnerability."
|
19-10-2018 - 15:31 | 03-05-2005 - 04:00 | |
| CVE-2009-2570 | 9.3 |
Stack-based buffer overflow in the Symantec.FaxViewerControl.1 ActiveX control in WinFax\DCCFAXVW.DLL in Symantec WinFax Pro 10.03 allows remote attackers to execute arbitrary code via a long argument to the AppendFax method.
|
12-10-2018 - 21:52 | 22-07-2009 - 17:30 | |
| CVE-2009-1500 | 6.8 |
SQL injection vulnerability in index.php in ProjectCMS 1.0 Beta allows remote attackers to execute arbitrary SQL commands via the sn parameter.
|
10-10-2018 - 19:37 | 01-05-2009 - 17:30 | |
| CVE-2012-2333 | 6.8 |
Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified
|
05-01-2018 - 02:29 | 14-05-2012 - 22:55 | |
| CVE-2001-0839 | 7.5 |
ibillpm.pl in iBill password management system generates weak passwords based on a client's MASTER_ACCOUNT, which allows remote attackers to modify account information in the .htpasswd file via brute force password guessing.
|
19-12-2017 - 02:29 | 06-12-2001 - 05:00 | |
| CVE-2007-2299 | 7.5 |
Multiple SQL injection vulnerabilities in Frogss CMS 0.7 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) dzial parameter to (a) katalog.php, or the (2) t parameter to (b) forum.php or (c) forum/viewtopic.php, differen
|
11-10-2017 - 01:32 | 26-04-2007 - 21:19 | |
| CVE-2009-1506 | 6.8 |
SQL injection vulnerability in classes/Xp.php in eLitius 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to banner-details.php.
|
29-09-2017 - 01:34 | 01-05-2009 - 17:30 | |
| CVE-2009-1632 | 5.0 |
Multiple memory leaks in Ipsec-tools before 0.7.2 allow remote attackers to cause a denial of service (memory consumption) via vectors involving (1) signature verification during user authentication with X.509 certificates, related to the eay_check_x
|
29-09-2017 - 01:34 | 14-05-2009 - 17:30 | |
| CVE-2009-1574 | 5.0 |
racoon/isakmp_frag.c in ipsec-tools before 0.7.2 allows remote attackers to cause a denial of service (crash) via crafted fragmented packets without a payload, which triggers a NULL pointer dereference.
|
29-09-2017 - 01:34 | 06-05-2009 - 17:30 | |
| CVE-2009-2454 | 4.3 |
Cross-site scripting (XSS) vulnerability in Citrix Web Interface 4.6, 5.0, and 5.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
14-07-2009 - 14:30 | 14-07-2009 - 14:30 |