| Max CVSS | 10.0 | Min CVSS | 1.2 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-3276 | 7.1 |
Integer overflow in the dccp_setsockopt_change function in net/dccp/proto.c in the Datagram Congestion Control Protocol (DCCP) subsystem in the Linux kernel 2.6.17-rc1 through 2.6.26.2 allows remote attackers to cause a denial of service (panic) via
|
13-02-2023 - 02:19 | 18-08-2008 - 17:41 | |
| CVE-2005-2096 | 7.5 |
zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted
|
22-06-2022 - 16:40 | 06-07-2005 - 04:00 | |
| CVE-2006-0591 | 1.2 |
The crypt_gensalt functions for BSDI-style extended DES-based and FreeBSD-sytle MD5-based password hashes in crypt_blowfish 0.4.7 and earlier do not evenly and randomly distribute salts, which makes it easier for attackers to guess passwords from a s
|
19-10-2018 - 15:45 | 08-02-2006 - 01:02 | |
| CVE-2006-3801 | 7.5 |
Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 does not properly clear a JavaScript reference to a frame or window, which leaves a pointer to a deleted object that allows remote attackers to execute arbitrary native code.
|
17-10-2018 - 21:30 | 27-07-2006 - 20:04 | |
| CVE-2007-6117 | 5.0 |
Unspecified vulnerability in the HTTP dissector for Wireshark (formerly Ethereal) 0.10.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted chunked messages.
|
15-10-2018 - 21:50 | 23-11-2007 - 20:46 | |
| CVE-2004-1270 | 2.1 |
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to
|
03-10-2018 - 21:29 | 10-01-2005 - 05:00 | |
| CVE-2007-1388 | 4.4 |
The do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux kernel before 2.6.20, and possibly other versions, allows local users to cause a denial of service (oops) by calling setsockopt with the IPV6_RTHDR option name and possibly a zero o
|
11-10-2017 - 01:31 | 10-03-2007 - 19:19 | |
| CVE-2005-2702 | 7.5 |
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters.
|
11-10-2017 - 01:30 | 23-09-2005 - 19:03 | |
| CVE-2004-1073 | 2.1 |
The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality.
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
| CVE-2008-0657 | 10.0 |
Multiple unspecified vulnerabilities in the Java Runtime Environment in Sun JDK and JRE 6 Update 1 and earlier, and 5.0 Update 13 and earlier, allow context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as dem
|
29-09-2017 - 01:30 | 07-02-2008 - 21:00 |