| Max CVSS | 9.3 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-4405 | 6.8 |
Multiple integer underflows in the icmLut_allocate function in International Color Consortium (ICC) Format library (icclib), as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service (crash) a
|
13-02-2023 - 04:34 | 18-09-2012 - 17:55 | |
| CVE-2017-3325 | 5.8 |
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: EAI). The supported version that is affected is 16.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise S
|
03-10-2019 - 00:03 | 27-01-2017 - 22:59 | |
| CVE-2018-8488 | 3.5 |
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects
|
27-11-2018 - 15:10 | 10-10-2018 - 13:29 | |
| CVE-2012-1856 | 9.3 |
The TabStrip ActiveX control in the Common Controls in MSCOMCTL.OCX in Microsoft Office 2003 SP3, Office 2003 Web Components SP3, Office 2007 SP2 and SP3, Office 2010 SP1, SQL Server 2000 SP4, SQL Server 2005 SP4, SQL Server 2008 SP2, SP3, R2, R2 SP1
|
07-11-2018 - 11:29 | 15-08-2012 - 01:55 | |
| CVE-2007-4515 | 9.3 |
Buffer overflow in a certain ActiveX control in YVerInfo.dll before 2007.8.27.1 in the Yahoo! services suite for Yahoo! Messenger before 8.1.0.419 allows remote attackers to execute arbitrary code via unspecified vectors involving arguments to the (1
|
29-07-2017 - 01:32 | 31-08-2007 - 22:17 | |
| CVE-2015-3660 | 4.3 |
Cross-site scripting (XSS) vulnerability in the PDF functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL in embedded PDF content.
|
28-12-2016 - 02:59 | 03-07-2015 - 01:59 | |
| CVE-2012-3433 | 4.9 |
Xen 4.0 and 4.1 allows local HVM guest OS kernels to cause a denial of service (domain 0 VCPU hang and kernel panic) by modifying the physical address space in a way that triggers excessive shared page search time during the p2m teardown.
|
11-10-2013 - 03:44 | 24-11-2012 - 20:55 | |
| CVE-2010-4842 | 7.5 |
SQL injection vulnerability in admin/login.php in MHP DownloadScript (aka MH Products Download Center) 2.2 allows remote attackers to execute arbitrary SQL commands via the Name parameter. NOTE: some of these details are obtained from third party in
|
21-05-2012 - 04:00 | 27-09-2011 - 10:55 | |
| CVE-2005-3691 | 5.0 |
Directory traversal vulnerability in the IMAP service (meimaps.exe) of MailEnable Professional 1.6 and earlier and Enterprise 1.1 and earlier allows remote attackers to create or rename arbitrary mail directories via the mailbox name argument of the
|
08-03-2011 - 02:26 | 19-11-2005 - 01:03 | |
| CVE-2002-1441 | 7.5 |
Multiple buffer overflows in Tomahawk SteelArrow before 4.5 allow remote attackers to execute arbitrary code via (1) the Steelarrow Service (Steelarrow.exe) using a long UserIdent Cookie header, (2) DLLHOST.EXE (Steelarrow.dll) via a request for a lo
|
05-09-2008 - 20:30 | 11-04-2003 - 04:00 |