| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-4020 | 4.6 |
scanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execute arbitrary code via a sscanf PHP function call that performs argument swapping, which increments an index past the end of an array and triggers a bu
|
14-02-2024 - 01:17 | 08-08-2006 - 20:04 | |
| CVE-2005-3245 | 5.0 |
Unspecified vulnerability in the ONC RPC dissector in Ethereal 0.10.3 to 0.10.12, when the "Dissect unknown RPC program numbers" option is enabled, allows remote attackers to cause a denial of service (memory consumption).
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
| CVE-2009-0787 | 4.9 |
The ecryptfs_write_metadata_to_contents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, which triggers an out-of-bounds read and allows lo
|
13-02-2023 - 02:19 | 25-03-2009 - 01:30 | |
| CVE-2007-3472 | 4.3 |
Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to have unspecified attack vectors and impact. An integer overflow exists in the "gdImageCreateTrueColor()" fun
|
16-10-2018 - 16:49 | 28-06-2007 - 18:30 | |
| CVE-2007-3735 | 9.3 |
Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory corruption.
|
15-10-2018 - 21:30 | 18-07-2007 - 17:30 | |
| CVE-2005-1985 | 7.5 |
The Client Service for NetWare (CSNW) on Microsoft Windows 2000 SP4, XP SP1 and Sp2, and Server 2003 SP1 and earlier, allows remote attackers to execute arbitrary code due to an "unchecked buffer" when processing certain crafted network messages.
|
12-10-2018 - 21:36 | 13-10-2005 - 10:02 | |
| CVE-2009-1094 | 10.0 |
Unspecified vulnerability in the LDAP implementation in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.1_24 and earlier; and 1.4.2_19 and earlier allows remote LDAP
|
10-10-2018 - 19:33 | 25-03-2009 - 23:30 | |
| CVE-2006-2788 | 7.5 |
Double free vulnerability in the getRawDER function for nsIX509Cert in Firefox allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via certain Javascript code.
|
03-10-2018 - 21:42 | 02-06-2006 - 21:06 | |
| CVE-2008-4933 | 7.8 |
Buffer overflow in the hfsplus_find_cat function in fs/hfsplus/catalog.c in the Linux kernel before 2.6.28-rc1 allows attackers to cause a denial of service (memory corruption or system crash) via an hfsplus filesystem image with an invalid catalog n
|
29-09-2017 - 01:32 | 05-11-2008 - 15:00 | |
| CVE-2008-5015 | 5.1 |
Mozilla Firefox 3.x before 3.0.4 assigns chrome privileges to a file: URI when it is accessed in the same tab from a chrome or privileged about: page, which makes it easier for user-assisted attackers to execute arbitrary JavaScript with chrome privi
|
29-09-2017 - 01:32 | 13-11-2008 - 11:30 | |
| CVE-2007-6243 | 9.3 |
Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for remote attackers to conduct cross-domain and cross-s
|
29-09-2017 - 01:29 | 20-12-2007 - 01:46 |