| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2004-0507 | 10.0 |
Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
|
14-02-2024 - 01:17 | 18-08-2004 - 04:00 | |
| CVE-2008-1238 | 5.0 |
Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when generating the HTTP Referer header, does not list the entire URL when it contains Basic Authentication credentials without a username, which makes it easier for remote attackers to bypa
|
13-02-2023 - 02:18 | 27-03-2008 - 10:44 | |
| CVE-2007-0780 | 6.8 |
browser.js in Mozilla Firefox 1.5.x before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 uses the requesting URI to identify child windows, which allows remote attackers to conduct cross-site scripting (XSS) attacks by opening a blocked
|
09-10-2019 - 22:52 | 26-02-2007 - 20:28 | |
| CVE-2006-5174 | 2.1 |
The copy_from_user function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running on s390, does not properly clear a kernel buffer, which allows local user space programs to read portions of kernel memory by "appending to a file fro
|
30-10-2018 - 16:26 | 10-10-2006 - 04:06 | |
| CVE-2007-6119 | 7.8 |
The DCP ETSI dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (long loop and resource consumption) via unknown vectors.
|
15-10-2018 - 21:50 | 23-11-2007 - 20:46 | |
| CVE-2005-2264 | 7.5 |
Firefox before 1.0.5 allows remote attackers to steal sensitive information by opening a malicious link in the Firefox sidebar using the _search target, then injecting script into other pages via a data: URL.
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
| CVE-2004-0234 | 10.0 |
Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
| CVE-2009-0398 | 9.3 |
Array index error in the gst_qtp_trak_handler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins (aka gstreamer-plugins) 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file.
|
29-09-2017 - 01:33 | 03-02-2009 - 11:30 | |
| CVE-2008-4226 | 10.0 |
Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a large XML document.
|
29-09-2017 - 01:32 | 25-11-2008 - 23:30 | |
| CVE-2007-3513 | 4.9 |
The lcd_write function in drivers/usb/misc/usblcd.c in the Linux kernel before 2.6.22-rc7 does not limit the amount of memory used by a caller, which allows local users to cause a denial of service (memory consumption).
|
29-09-2017 - 01:29 | 03-07-2007 - 10:30 | |
| CVE-2009-2695 | 7.2 |
The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory addresses, which allows local users to gain privileges by exploiting NULL pointer dereference vulnerabilities, related to (1) the
|
19-09-2017 - 01:29 | 28-08-2009 - 15:30 |