| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-3468 | 7.8 |
Linux kernel 2.6.x, when using both NFS and EXT3, allows remote attackers to cause a denial of service (file system panic) via a crafted UDP packet with a V2 lookup procedure that specifies a bad file handle (inode number), which triggers an error an
|
30-10-2018 - 16:26 | 21-07-2006 - 14:03 | |
| CVE-2009-1835 | 4.3 |
Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 associate local documents with external domain names located after the file:// substring in a URL, which allows user-assisted remote attackers to read arbitrary cookies via a crafted HTML docu
|
30-10-2018 - 16:25 | 12-06-2009 - 21:30 | |
| CVE-2007-4769 | 6.8 |
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend crash) via an out-of-boun
|
15-10-2018 - 21:37 | 09-01-2008 - 21:46 | |
| CVE-2004-0541 | 10.0 |
Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote attackers to execute arbitrary code via a long password ("pass" variable).
|
03-05-2018 - 01:29 | 06-08-2004 - 04:00 | |
| CVE-2004-1316 | 5.0 |
Heap-based buffer overflow in MSG_UnEscapeSearchUrl in nsNNTPProtocol.cpp for Mozilla 1.7.3 and earlier allows remote attackers to cause a denial of service (application crash) via an NNTP URL (news:) with a trailing '\' (backslash) character, which
|
03-05-2018 - 01:29 | 29-12-2004 - 05:00 | |
| CVE-2003-0935 | 6.4 |
Net-SNMP before 5.0.9 allows a user or community to access data in MIB objects, even if that data is not allowed to be viewed.
|
11-10-2017 - 01:29 | 01-12-2003 - 05:00 | |
| CVE-2004-0557 | 10.0 |
Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.
|
11-10-2017 - 01:29 | 06-08-2004 - 04:00 | |
| CVE-2004-0806 | 7.2 |
cdrecord in the cdrtools package before 2.01, when installed setuid root, does not properly drop privileges before executing a program specified in the RSH environment variable, which allows local users to gain privileges.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
| CVE-2008-1803 | 9.3 |
Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not spec
|
29-09-2017 - 01:30 | 12-05-2008 - 22:20 | |
| CVE-2010-1168 | 7.5 |
The Safe (aka Safe.pm) module before 2.25 for Perl allows context-dependent attackers to bypass intended (1) Safe::reval and (2) Safe::rdo access restrictions, and inject and execute arbitrary code, via vectors involving implicitly called methods and
|
19-09-2017 - 01:30 | 21-06-2010 - 16:30 | |
| CVE-2009-2664 | 5.0 |
The js_watch_set function in js/src/jsdbgapi.cpp in the JavaScript engine in Mozilla Firefox before 3.0.12 allows remote attackers to cause a denial of service (assertion failure and application exit) or possibly execute arbitrary code via a crafted
|
19-09-2017 - 01:29 | 04-08-2009 - 16:30 |