| Max CVSS | 10.0 | Min CVSS | 1.2 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2001-1494 | 2.1 |
script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root execute the script command.
|
26-01-2024 - 17:16 | 31-12-2001 - 05:00 | |
| CVE-2006-4226 | 3.6 |
MySQL before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12, when run on case-sensitive filesystems, allows remote authenticated users to create or access a database when the database name differs only in case from a database for which they have pe
|
17-12-2019 - 20:16 | 18-08-2006 - 20:04 | |
| CVE-2005-1261 | 7.5 |
Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL.
|
19-10-2018 - 15:31 | 11-05-2005 - 04:00 | |
| CVE-2004-0124 | 2.6 |
The DCOM RPC interface for Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause network communications via an "alter context" call that contains additional data, aka the "Object Identity Vulnerability."
|
12-10-2018 - 21:34 | 01-06-2004 - 04:00 | |
| CVE-2009-0201 | 9.3 |
Heap-based buffer overflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via unspecified records in a crafted Word document, related to "table parsing."
|
11-10-2018 - 21:00 | 02-09-2009 - 17:30 | |
| CVE-2004-0541 | 10.0 |
Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote attackers to execute arbitrary code via a long password ("pass" variable).
|
03-05-2018 - 01:29 | 06-08-2004 - 04:00 | |
| CVE-2007-0235 | 3.7 |
Stack-based buffer overflow in the glibtop_get_proc_map_s function in libgtop before 2.14.6 (libgtop2) allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a process with a long filename that is mapped in it
|
11-10-2017 - 01:31 | 16-01-2007 - 18:28 | |
| CVE-2004-0814 | 1.2 |
Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is being accessed by another thread, or (2) remote a
|
11-10-2017 - 01:29 | 23-12-2004 - 05:00 | |
| CVE-2008-1655 | 4.3 |
Unspecified vulnerability in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, makes it easier for remote attackers to conduct DNS rebinding attacks via unknown vectors.
|
29-09-2017 - 01:30 | 09-04-2008 - 21:05 | |
| CVE-2008-0598 | 4.9 |
Unspecified vulnerability in the 32-bit and 64-bit emulation in the Linux kernel 2.6.9, 2.6.18, and probably other versions allows local users to read uninitialized memory via unknown vectors involving a crafted binary.
|
29-09-2017 - 01:30 | 30-06-2008 - 22:41 | |
| CVE-2010-0826 | 1.9 |
The Free Software Foundation (FSF) Berkeley DB NSS module (aka libnss-db) 2.2.3pre1 reads the DB_CONFIG file in the current working directory, which allows local users to obtain sensitive information via a symlink attack involving a setgid or setuid
|
19-09-2017 - 01:30 | 05-04-2010 - 15:30 |