Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-3847 | 6.9 |
elf/dl-load.c in ld.so in the GNU C Library (aka glibc or libc6) through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LD_AUDIT environment variable, which allows local users to gain privileges via a crafted d
|
13-02-2023 - 04:26 | 07-01-2011 - 19:00 | |
CVE-2018-10619 | 4.6 |
An unquoted search path or element in RSLinx Classic Versions 3.90.01 and prior and FactoryTalk Linx Gateway Versions 3.90.00 and prior may allow an authorized, but non-privileged local user to execute arbitrary code and allow a threat actor to escal
|
09-10-2019 - 23:32 | 07-06-2018 - 20:29 | |
CVE-2007-3184 | 7.2 |
Cisco Trust Agent (CTA) before 2.1.104.0, when running on MacOS X, allows attackers with physical access to bypass authentication and modify System Preferences, including passwords, by invoking the Apple Menu when the Access Control Server (ACS) prod
|
19-10-2018 - 19:03 | 12-06-2007 - 21:30 | |
CVE-2005-2369 | 7.5 |
Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to cause a denial of service or execute arbitrary code.
|
11-10-2017 - 01:30 | 26-07-2005 - 04:00 | |
CVE-2005-2448 | 5.0 |
Multiple "endianness errors" in libgadu in ekg before 1.6rc2 allow remote attackers to cause a denial of service (invalid behavior in applications) on big-endian systems.
|
11-10-2017 - 01:30 | 03-08-2005 - 04:00 | |
CVE-2013-7217 | 10.0 |
Unspecified vulnerability in Zimbra Collaboration Server 7.2.5 and earlier, and 8.0.x through 8.0.5, has "critical" impact and unspecified vectors, a different vulnerability than CVE-2013-7091.
|
29-08-2017 - 01:34 | 26-12-2013 - 18:55 | |
CVE-2010-4144 | 7.5 |
SQL injection vulnerability in radyo.asp in Kisisel Radyo Script allows remote attackers to execute arbitrary SQL commands via the Id parameter.
|
17-08-2017 - 01:33 | 02-11-2010 - 02:26 | |
CVE-2015-3448 | 2.1 |
REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log.
|
06-12-2016 - 03:01 | 29-04-2015 - 20:59 | |
CVE-2016-2953 | 4.3 |
IBM Connections 4.0 through CR4, 4.5 through CR5, and 5.0 before CR4 does not require SSL, which allows remote attackers to obtain sensitive cleartext information by sniffing the network.
|
30-11-2016 - 20:35 | 30-11-2016 - 11:59 | |
CVE-2002-0177 | 7.5 |
Buffer overflows in icecast 1.3.11 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request from an MP3 client.
|
18-10-2016 - 02:16 | 22-04-2002 - 04:00 | |
CVE-2010-4142 | 10.0 |
Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build 6.1.8.10 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) SCPC_INITIALIZE, (2) SCPC_INITIALIZE_RF, or (3) SCPC_
|
04-11-2010 - 04:00 | 02-11-2010 - 02:26 |