Max CVSS | 10.0 | Min CVSS | 4.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2005-0739 | 5.0 |
The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly han
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2009-1181 | 4.3 |
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a NULL pointer dereference.
|
13-02-2023 - 02:19 | 23-04-2009 - 17:30 | |
CVE-2007-0046 | 7.5 |
Double free vulnerability in the Adobe Acrobat Reader Plugin before 8.0.0, as used in Mozilla Firefox 1.5.0.7, allows remote attackers to execute arbitrary code by causing an error via a javascript: URI call to document.write in the (1) FDF, (2) XML,
|
16-10-2018 - 16:30 | 03-01-2007 - 21:28 | |
CVE-2007-6451 | 4.3 |
Unspecified vulnerability in the CIP dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger allocation of large amounts of memory.
|
15-10-2018 - 21:54 | 19-12-2007 - 22:46 | |
CVE-2004-0197 | 7.5 |
Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query.
|
12-10-2018 - 21:34 | 01-06-2004 - 04:00 | |
CVE-2008-3656 | 7.8 |
Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.split_header_value function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows con
|
11-10-2018 - 20:48 | 13-08-2008 - 01:41 | |
CVE-2009-2654 | 5.8 |
Mozilla Firefox before 3.0.13, and 3.5.x before 3.5.2, allows remote attackers to spoof the address bar, and possibly conduct phishing attacks, via a crafted web page that calls window.open with an invalid character in the URL, makes document.write c
|
03-10-2018 - 22:00 | 03-08-2009 - 14:30 | |
CVE-2006-7108 | 4.1 |
login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_m
|
11-10-2017 - 01:31 | 04-03-2007 - 22:19 | |
CVE-2005-0753 | 7.5 |
Buffer overflow in CVS before 1.11.20 allows remote attackers to execute arbitrary code.
|
11-10-2017 - 01:30 | 18-04-2005 - 04:00 | |
CVE-2009-1341 | 5.0 |
Memory leak in the dequote_bytea function in quote.c in the DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.0.0 for Perl allows context-dependent attackers to cause a denial of service (memory consumption) by fetching data with BYTEA columns.
|
29-09-2017 - 01:34 | 30-04-2009 - 20:30 | |
CVE-2009-0775 | 10.0 |
Double free vulnerability in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to execute arbitrary code via "cloned XUL DOM elements which were linked as a parent and child," which are not
|
29-09-2017 - 01:34 | 05-03-2009 - 02:30 |