| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-3356 | 2.1 |
The mq_open system call in Linux kernel 2.6.9, in certain situations, can decrement a counter twice ("double decrement") as a result of multiple calls to the mntput function when the dentry_open function call fails, which allows local users to cause
|
13-02-2023 - 02:15 | 31-12-2005 - 05:00 | |
| CVE-2009-1182 | 7.5 |
Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.
|
06-03-2019 - 16:30 | 23-04-2009 - 17:30 | |
| CVE-2005-1280 | 5.0 |
The rsvp_print function in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted RSVP packet of length 4.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
| CVE-2002-2185 | 4.9 |
The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the
|
19-10-2018 - 15:29 | 31-12-2002 - 05:00 | |
| CVE-2007-5162 | 4.3 |
The connect method in lib/net/http.rb in the (1) Net::HTTP and (2) Net::HTTPS libraries in Ruby 1.8.5 and 1.8.6 does not verify that the commonName (CN) field in a server certificate matches the domain name in an HTTPS request, which makes it easier
|
15-10-2018 - 21:41 | 01-10-2007 - 05:17 | |
| CVE-2008-3110 | 4.3 |
Unspecified vulnerability in scripting language support in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows remote attackers to obtain sensitive information by using an applet to read information from another applet.
|
11-10-2018 - 20:46 | 09-07-2008 - 23:41 | |
| CVE-2008-1199 | 4.4 |
Dovecot before 1.0.11, when configured to use mail_extra_groups to allow Dovecot to create dotlocks in /var/mail, might allow local users to read sensitive mail files for other users, or modify files or directories that are writable by group, via a s
|
11-10-2018 - 20:30 | 06-03-2008 - 21:44 | |
| CVE-2005-2267 | 7.5 |
Firefox before 1.0.5 allows remote attackers to steal information and possibly execute arbitrary code by using standalone applications such as Flash and QuickTime to open a javascript: URL, which is run in the context of the previous page, and may le
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
| CVE-2004-0109 | 4.6 |
Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry.
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
| CVE-2004-0107 | 4.6 |
The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.
|
11-10-2017 - 01:29 | 15-04-2004 - 04:00 | |
| CVE-2009-3077 | 9.3 |
Mozilla Firefox before 3.0.14, and 3.5.x before 3.5.3, does not properly manage pointers for the columns (aka TreeColumns) of a XUL tree element, which allows remote attackers to execute arbitrary code via a crafted HTML document, related to a "dangl
|
19-09-2017 - 01:29 | 10-09-2009 - 21:30 |