| Max CVSS | 7.5 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-3313 | 5.0 |
The IRC protocol dissector in Ethereal 0.10.13 allows remote attackers to cause a denial of service (infinite loop).
|
14-02-2024 - 01:17 | 01-11-2005 - 12:47 | |
| CVE-2006-0455 | 4.6 |
gpgv in GnuPG before 1.4.2.1, when using unattended signature verification, returns a 0 exit code in certain cases even when the detached signature file does not carry a signature, which could cause programs that use gpgv to assume that the signature
|
13-02-2023 - 02:16 | 15-02-2006 - 22:06 | |
| CVE-2006-0300 | 5.1 |
Buffer overflow in tar 1.14 through 1.15.90 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute code via unspecified vectors involving PAX extended headers.
|
19-10-2018 - 15:44 | 24-02-2006 - 00:02 | |
| CVE-2005-1918 | 2.6 |
The original patch for a GNU tar directory traversal vulnerability (CVE-2002-0399) in Red Hat Enterprise Linux 3 and 2.1 uses an "incorrect optimization" that allows user-assisted attackers to overwrite arbitrary files via a crafted tar file, probabl
|
19-10-2018 - 15:32 | 31-12-2005 - 05:00 | |
| CVE-2002-0399 | 5.0 |
Directory traversal vulnerability in GNU tar 1.13.19 through 1.13.25, and possibly later versions, allows attackers to overwrite arbitrary files during archive extraction via a (1) "/.." or (2) "./.." string, which removes the leading slash but leave
|
19-10-2018 - 15:29 | 10-10-2002 - 04:00 | |
| CVE-2006-0855 | 5.1 |
Stack-based buffer overflow in the fullpath function in misc.c for zoo 2.10 and earlier, as used in products such as Barracuda Spam Firewall, allows user-assisted attackers to execute arbitrary code via a crafted ZOO file that causes the combine func
|
18-10-2018 - 16:29 | 23-02-2006 - 21:02 | |
| CVE-2006-0188 | 4.3 |
webmail.php in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to inject arbitrary web pages into the right frame via a URL in the right_frame parameter. NOTE: this has been called a cross-site scripting (XSS) issue, but it is different than wha
|
11-10-2017 - 01:30 | 24-02-2006 - 00:02 | |
| CVE-2006-0195 | 4.3 |
Interpretation conflict in the MagicHTML filter in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to conduct cross-site scripting (XSS) attacks via style sheet specifiers with invalid (1) "/*" and "*/" comments, or (2) a newline in a "url" speci
|
11-10-2017 - 01:30 | 24-02-2006 - 00:02 | |
| CVE-2005-2337 | 7.5 |
Ruby 1.6.x up to 1.6.8, 1.8.x up to 1.8.2, and 1.9.0 development up to 2005-09-01 allows attackers to bypass safe level and taint flag protections and execute disallowed code when Ruby processes a program through standard input (stdin).
|
11-10-2017 - 01:30 | 07-10-2005 - 23:02 | |
| CVE-2006-0377 | 5.0 |
CRLF injection vulnerability in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to inject arbitrary IMAP commands via newline characters in the mailbox parameter of the sqimap_mailbox_select command, aka "IMAP injection."
|
11-10-2017 - 01:30 | 24-02-2006 - 00:02 | |
| CVE-2006-0709 | 7.5 |
Buffer overflow in Metamail 2.7-50 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via e-mail messages with a long boundary attribute, a different vulnerability than CVE-2004-0105.
|
20-07-2017 - 01:30 | 15-02-2006 - 11:06 | |
| CVE-2006-0804 | 7.5 |
Off-by-one error in TIN 1.8.0 and earlier might allow attackers to execute arbitrary code via unknown vectors that trigger a buffer overflow.
|
20-07-2017 - 01:30 | 21-02-2006 - 01:02 |