Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2014-4049 | 5.1 |
Heap-based buffer overflow in the php_parserr function in ext/standard/dns.c in PHP 5.6.0beta4 and earlier allows remote servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DNS TXT record, related to the dns
|
29-08-2022 - 20:05 | 18-06-2014 - 19:55 | |
CVE-2017-0510 | 9.3 |
An elevation of privilege vulnerability in the kernel FIQ debugger could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent devi
|
03-10-2019 - 00:03 | 08-03-2017 - 01:59 | |
CVE-2014-4043 | 7.5 |
The posix_spawn_file_actions_addopen function in glibc before 2.20 does not copy its path argument in accordance with the POSIX specification, which allows context-dependent attackers to trigger use-after-free vulnerabilities.
|
13-06-2019 - 21:29 | 06-10-2014 - 23:55 | |
CVE-2014-4165 | 4.3 |
Cross-site scripting (XSS) vulnerability in ntop allows remote attackers to inject arbitrary web script or HTML via the title parameter in a list action to plugins/rrdPlugin.
|
30-10-2018 - 16:27 | 16-06-2014 - 18:55 | |
CVE-2006-0981 | 4.0 |
Directory traversal vulnerability in e-merge WinAce 2.6 and earlier allows remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a (1) zip or (2) tar archive. This vulnerability affects e-merge, WinAce versions 2.6
|
18-10-2018 - 16:30 | 03-03-2006 - 11:02 | |
CVE-2007-6321 | 4.3 |
Cross-site scripting (XSS) vulnerability in RoundCube webmail 0.1rc2, 2007-12-09, and earlier versions, when using Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via style sheets containing expression commands.
|
15-10-2018 - 21:52 | 12-12-2007 - 01:46 | |
CVE-2009-3826 | 5.0 |
Multiple buffer overflows in squidGuard 1.4 allow remote attackers to bypass intended URL blocking via a long URL, related to (1) the relationship between a certain buffer size in squidGuard and a certain buffer size in Squid and (2) a redirect URL t
|
10-10-2018 - 19:47 | 28-10-2009 - 14:30 | |
CVE-2009-3700 | 5.0 |
Buffer overflow in sgLog.c in squidGuard 1.3 and 1.4 allows remote attackers to cause a denial of service (application hang or loss of blocking functionality) via a long URL with many / (slash) characters, related to "emergency mode."
|
10-10-2018 - 19:47 | 28-10-2009 - 14:30 | |
CVE-2003-1375 | 7.2 |
Buffer overflow in wall for HP-UX 10.20 through 11.11 may allow local users to execute arbitrary code by calling wall with a large file as an argument.
|
11-10-2017 - 01:29 | 31-12-2003 - 05:00 | |
CVE-2015-5579 | 10.0 |
Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allow attackers to exec
|
17-02-2017 - 02:59 | 22-09-2015 - 10:59 | |
CVE-2015-5567 | 10.0 |
Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allow attackers to exec
|
17-02-2017 - 02:59 | 22-09-2015 - 10:59 | |
CVE-2014-3294 | 4.0 |
Cisco WebEx Meeting Server does not properly restrict the content of URLs, which allows remote authenticated users to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the browser history, aka Bug
|
08-09-2016 - 12:03 | 10-06-2014 - 11:19 | |
CVE-2014-3287 | 4.0 |
SQL injection vulnerability in BulkViewFileContentsAction.java in the Java interface in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to execute arbitrary SQL commands via crafted filename parameters in a URL, ak
|
07-09-2016 - 19:03 | 10-06-2014 - 11:19 | |
CVE-2014-2176 | 7.1 |
Cisco IOS XR 4.1.2 through 5.1.1 on ASR 9000 devices, when a Trident-based line card is used, allows remote attackers to cause a denial of service (NP chip and line card reload) via malformed IPv6 packets, aka Bug ID CSCun71928.
|
07-09-2016 - 18:13 | 14-06-2014 - 11:18 | |
CVE-2014-0341 | 3.5 |
Multiple cross-site scripting (XSS) vulnerabilities in PivotX before 2.3.9 allow remote authenticated users to inject arbitrary web script or HTML via the title field to (1) templates_internal/pages.tpl, (2) templates_internal/home.tpl, or (3) templa
|
24-07-2015 - 18:35 | 15-04-2014 - 10:55 | |
CVE-2014-4044 | 5.0 |
OpenAFS 1.6.8 does not properly clear the fields in the host structure, which allows remote attackers to cause a denial of service (uninitialized memory access and crash) via unspecified vectors related to TMAY requests.
|
21-06-2014 - 04:41 | 17-06-2014 - 14:55 |