Max CVSS | 10.0 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2014-3940 | 4.0 |
The Linux kernel through 3.14.5 does not properly consider the presence of hugetlb entries, which allows local users to cause a denial of service (memory corruption or system crash) by accessing certain memory locations, as demonstrated by triggering
|
22-04-2019 - 17:48 | 05-06-2014 - 17:55 | |
CVE-2006-0882 | 5.0 |
Directory traversal vulnerability in include.php in Noah's Classifieds 1.3 allows remote attackers to include arbitrary local files via the otherTemplate parameter to index.php.
|
18-10-2018 - 16:29 | 24-02-2006 - 11:02 | |
CVE-2003-0004 | 7.2 |
Buffer overflow in the Windows Redirector function in Microsoft Windows XP allows local users to execute arbitrary code via a long parameter.
|
12-10-2018 - 21:32 | 19-02-2003 - 05:00 | |
CVE-2013-6876 | 7.2 |
The (1) pty_init_terminal and (2) pipe_init_terminal functions in main.c in s3dvt 0.2.2 and earlier allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: this vulnerability was fixed with com
|
09-10-2018 - 19:35 | 06-04-2018 - 17:29 | |
CVE-2013-6825 | 7.2 |
(1) movescu.cc and (2) storescp.cc in dcmnet/apps/, (3) dcmnet/libsrc/scp.cc, (4) dcmwlm/libsrc/wlmactmg.cc, (5) dcmprscp.cc and (6) dcmpsrcv.cc in dcmpstat/apps/, (7) dcmpstat/tests/msgserv.cc, and (8) dcmqrdb/apps/dcmqrscp.cc in DCMTK 3.6.1 and ear
|
09-10-2018 - 19:34 | 10-06-2014 - 14:55 | |
CVE-2014-3966 | 2.6 |
Cross-site scripting (XSS) vulnerability in Special:PasswordReset in MediaWiki before 1.19.16, 1.21.x before 1.21.10, and 1.22.x before 1.22.7, when wgRawHtml is enabled, allows remote attackers to inject arbitrary web script or HTML via an invalid u
|
29-12-2017 - 02:29 | 06-06-2014 - 14:55 | |
CVE-2007-6391 | 7.5 |
SQL injection vulnerability in patch/comments.php in SH-News 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-09-2017 - 01:29 | 17-12-2007 - 18:46 | |
CVE-2014-3915 | 10.0 |
The userRequest servlet in the Admin Center for Tivoli Storage Manager in Rocket Servergraph allows remote attackers to execute arbitrary commands via a (1) auth, (2) auth_session, (3) auth_simple, (4) add, (5) add_flat, (6) remove, (7) set_pwd, (8)
|
12-06-2014 - 16:58 | 11-06-2014 - 14:55 | |
CVE-2009-2911 | 1.9 |
SystemTap 1.0, when the --unprivileged option is used, does not properly restrict certain data sizes, which allows local users to (1) cause a denial of service or gain privileges via a print operation with a large number of arguments that trigger a k
|
31-10-2009 - 06:22 | 22-10-2009 - 16:30 |