|Max CVSS||9.3||Min CVSS||2.1||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
The mysqld_multi script in MySQL allows local users to overwrite arbitrary files via a symlink attack.
|17-12-2019 - 17:14||01-06-2004 - 04:00|
The print_fatal_signal function in kernel/signal.c in the Linux kernel before 188.8.131.52 on the i386 platform, when print-fatal-signals is enabled, allows local users to discover the contents of arbitrary memory locations by jumping to an address and t
|16-11-2018 - 15:53||26-01-2010 - 18:30|
The DBI library (libdbi-perl) for Perl allows local users to overwrite arbitrary files via a symlink attack on a temporary PID file.
|19-10-2018 - 15:31||02-05-2005 - 04:00|
Multiple cross-site scripting (XSS) vulnerabilities in Mailman before 2.1.9rc1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|18-10-2018 - 16:48||06-09-2006 - 00:04|
Unspecified vulnerability in Microsoft Outlook Express 6 and earlier allows remote attackers to execute arbitrary code via a crafted contact record in a Windows Address Book (WAB) file. If a end user is logged on with administrative user rights, an a
|18-10-2018 - 16:39||13-12-2006 - 01:28|
|16-10-2018 - 16:37||07-03-2007 - 00:19|
Buffer overflow in the intT1_EnvGetCompletePath function in lib/t1lib/t1env.c in t1lib 5.1.1 allows context-dependent attackers to execute arbitrary code via a long FileName parameter. NOTE: this issue was originally reported to be in the imagepsloa
|15-10-2018 - 21:32||27-07-2007 - 22:30|
Stack-based buffer overflow in the SmilTimeValue::parseWallClockValue function in smlprstime.cpp in RealNetworks RealPlayer 10, 10.1, and possibly 10.5, RealOne Player, RealPlayer Enterprise, and Helix Player 10.5-GOLD and 10.0.5 through 10.0.8, allo
|11-10-2017 - 01:32||26-06-2007 - 22:30|
Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (crash) via unknown vectors in (1) the IrDA dissector and (2) the SMB dissector when SMB transaction payload reassembly is enabled.
|11-10-2017 - 01:30||27-10-2005 - 10:02|
The ext3 code in Linux 2.4.x before 2.4.26 does not properly initialize journal descriptor blocks, which causes an information leak in which in-memory data is written to the device for the ext3 file system, which allows privileged users to obtain por
|11-10-2017 - 01:29||01-06-2004 - 04:00|
A certain Red Hat patch for acpid 1.0.4 effectively triggers a call to the open function with insufficient arguments, which might allow local users to leverage weak permissions on /var/log/acpid, and obtain sensitive information by reading this file,
|19-09-2017 - 01:29||08-12-2009 - 19:30|