Max CVSS | 10.0 | Min CVSS | 1.2 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-2842 | 7.5 |
PHP remote file inclusion vulnerability in functions/plugin.php in SquirrelMail 1.4.6 and earlier, if register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the plugins array p
|
07-08-2024 - 18:15 | 06-06-2006 - 20:06 | |
CVE-2004-2154 | 7.5 |
CUPS before 1.1.21rc1 treats a Location directive in cupsd.conf as case sensitive, which allows attackers to bypass intended ACLs via a printer name containing uppercase or lowercase letters that are different from what is specified in the directive.
|
01-08-2024 - 13:41 | 31-12-2004 - 05:00 | |
CVE-2006-5051 | 9.3 |
Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.
|
29-07-2024 - 01:15 | 27-09-2006 - 23:07 | |
CVE-2005-2801 | 5.0 |
xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the name_index fields when sharing xattr blocks, which could prevent default ACLs from being applied.
|
16-02-2024 - 16:53 | 06-09-2005 - 17:03 | |
CVE-2006-4574 | 5.0 |
Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger an assertion error related to unexpected length valu
|
15-02-2024 - 21:20 | 28-10-2006 - 00:07 | |
CVE-2004-0594 | 5.1 |
The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of
|
15-02-2024 - 21:17 | 27-07-2004 - 04:00 | |
CVE-2004-0184 | 5.0 |
Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversio
|
15-02-2024 - 21:09 | 04-05-2004 - 04:00 | |
CVE-2004-0112 | 5.0 |
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a
|
15-02-2024 - 20:54 | 23-11-2004 - 05:00 | |
CVE-2004-0183 | 5.0 |
TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Tes
|
15-02-2024 - 20:53 | 04-05-2004 - 04:00 | |
CVE-2006-5158 | 3.3 |
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a kernel oops (null dereference
|
15-02-2024 - 20:23 | 05-10-2006 - 04:04 | |
CVE-2006-2275 | 5.0 |
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock) via a large number of small messages to a receiver application that cannot process the messages quickly enough, which leads to "spillover of the receive
|
15-02-2024 - 20:22 | 09-05-2006 - 20:02 | |
CVE-2005-3106 | 1.2 |
Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as linuxthreads and vfork), might allow local users to cause a denial of service (deadlock) by triggering a core dump while waiting for a thread that has just per
|
15-02-2024 - 20:19 | 30-09-2005 - 10:05 | |
CVE-2006-4342 | 4.0 |
The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to cause a denial of service (deadlock) by running the shmat function on an shm at the same time that shmctl is removing that shm (IPC_RMID), which prevents a s
|
15-02-2024 - 20:17 | 17-10-2006 - 17:07 | |
CVE-2005-2498 | 7.5 |
Eval injection vulnerability in PHPXMLRPC 1.1.1 and earlier (PEAR XML-RPC for PHP), as used in multiple products including (1) Drupal, (2) phpAdsNew, (3) phpPgAds, and (4) phpgroupware, allows remote attackers to execute arbitrary PHP code via certai
|
14-02-2024 - 15:47 | 15-08-2005 - 04:00 | |
CVE-2005-1921 | 7.5 |
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) Mail
|
14-02-2024 - 15:41 | 05-07-2005 - 04:00 | |
CVE-2004-0778 | 5.0 |
CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.
|
14-02-2024 - 15:07 | 20-10-2004 - 04:00 | |
CVE-2006-4253 | 7.6 |
Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by red
|
14-02-2024 - 01:17 | 21-08-2006 - 20:04 | |
CVE-2005-4585 | 7.8 |
Unspecified vulnerability in the GTP dissector for Ethereal 0.9.1 to 0.10.13 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors.
|
14-02-2024 - 01:17 | 29-12-2005 - 11:03 | |
CVE-2006-4020 | 4.6 |
scanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execute arbitrary code via a sscanf PHP function call that performs argument swapping, which increments an index past the end of an array and triggers a bu
|
14-02-2024 - 01:17 | 08-08-2006 - 20:04 | |
CVE-2006-1934 | 5.0 |
Multiple buffer overflows in Ethereal 0.10.x up to 0.10.14 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the (1) ALCAP dissector, (2) Network Instruments file code, or (3) NetXray/Windows Sniffer
|
14-02-2024 - 01:17 | 25-04-2006 - 12:50 | |
CVE-2006-1938 | 5.0 |
Multiple unspecified vulnerabilities in Ethereal 0.8.x up to 0.10.14 allow remote attackers to cause a denial of service (crash from null dereference) via the (1) Sniffer capture or (2) SMB PIPE dissector.
|
14-02-2024 - 01:17 | 25-04-2006 - 12:50 | |
CVE-2005-1465 | 5.0 |
Unknown vulnerability in the NCP dissector in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (long loop).
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2004-0633 | 5.0 |
The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow.
|
14-02-2024 - 01:17 | 06-12-2004 - 05:00 | |
CVE-2005-0705 | 5.0 |
The GPRS-LLC dissector in Ethereal 0.10.7 through 0.10.9, with the "ignore cipher bit" option enabled. allows remote attackers to cause a denial of service (application crash).
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2006-1933 | 5.0 |
Multiple unspecified vulnerabilities in Ethereal 0.10.x up to 0.10.14 allow remote attackers to cause a denial of service (large or infinite loops) viarafted packets to the (1) UMA and (2) BER dissectors.
|
14-02-2024 - 01:17 | 25-04-2006 - 12:50 | |
CVE-2003-0926 | 5.0 |
Ethereal 0.9.15 and earlier, and Tethereal, allows remote attackers to cause a denial of service (crash) via certain malformed (1) ISAKMP or (2) MEGACO packets.
|
14-02-2024 - 01:17 | 01-12-2003 - 05:00 | |
CVE-2005-3247 | 5.0 |
The SigComp UDVM in Ethereal 0.10.12 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
CVE-2005-3248 | 5.0 |
Unspecified vulnerability in the X11 dissector in Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (divide-by-zero) via unknown vectors.
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
CVE-2005-2361 | 5.0 |
Unknown vulnerability in the (1) AgentX dissector, (2) PER dissector, (3) DOCSIS dissector, (4) SCTP graphs, (5) HTTP dissector, (6) DCERPC, (7) DHCP, (8) RADIUS dissector, (9) Telnet dissector, (10) IS-IS LSP dissector, or (11) NCP dissector in Ethe
|
14-02-2024 - 01:17 | 10-08-2005 - 04:00 | |
CVE-2004-1139 | 5.0 |
Unknown vulnerability in the DICOM dissector in Ethereal 0.10.4 through 0.10.7 allows remote attackers to cause a denial of service (application crash).
|
14-02-2024 - 01:17 | 15-12-2004 - 05:00 | |
CVE-2005-1467 | 5.0 |
Unknown vulnerability in the NDPS dissector in Ethereal before 0.10.11 allows remote attackers to cause a denial of service (memory exhaustion) via unknown vectors.
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2005-1459 | 5.0 |
Multiple unknown vulnerabilities in the (1) WSP, (2) BER, (3) SMB, (4) NDPS, (5) IAX2, (6) RADIUS, (7) TCAP, (8) MRDISC, (9) 802.3 Slow, (10) SMBMailslot, or (11) SMB PIPE dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2005-3651 | 7.5 |
Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets.
|
14-02-2024 - 01:17 | 10-12-2005 - 11:03 | |
CVE-2006-1936 | 5.0 |
Buffer overflow in Ethereal 0.8.5 up to 0.10.14 allows remote attackers to execute arbitrary code via the telnet dissector.
|
14-02-2024 - 01:17 | 25-04-2006 - 12:50 | |
CVE-2005-1462 | 7.5 |
Double free vulnerability in the ICEP dissector in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2005-0084 | 7.5 |
Buffer overflow in the X11 dissector in Ethereal 0.8.10 through 0.10.8 allows remote attackers to execute arbitrary code via a crafted packet.
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2005-1458 | 5.0 |
Multiple unknown "other problems" in the KINK dissector in Ethereal before 0.10.11 have unknown impact and attack vectors.
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2005-0699 | 7.5 |
Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (packet-3g-a11.c) for Ethereal 0.10.9 and earlier allow remote attackers to execute arbitrary code via RADIUS authentication packets with large length val
|
14-02-2024 - 01:17 | 08-03-2005 - 05:00 | |
CVE-2006-1932 | 10.0 |
Off-by-one error in the OID printing routine in Ethereal 0.10.x up to 0.10.14 has unknown impact and remote attack vectors.
|
14-02-2024 - 01:17 | 25-04-2006 - 12:50 | |
CVE-2005-3246 | 5.0 |
Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (null dereference) via unknown vectors in the (1) SCSI, (2) sFlow, or (3) RTnet dissectors.
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
CVE-2005-2364 | 5.0 |
Unknown vulnerability in the (1) GIOP dissector, (2) WBXML, or (3) CAMEL dissector in Ethereal 0.8.20 through 0.10.11 allows remote attackers to cause a denial of service (application crash) via certain packets that cause a null pointer dereference.
|
14-02-2024 - 01:17 | 10-08-2005 - 04:00 | |
CVE-2004-1142 | 5.0 |
Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed SMB packet.
|
14-02-2024 - 01:17 | 15-12-2004 - 05:00 | |
CVE-2004-0505 | 5.0 |
The AIM dissector in Ethereal 0.10.3 allows remote attackers to cause a denial of service (assert error) via unknown attack vectors.
|
14-02-2024 - 01:17 | 18-08-2004 - 04:00 | |
CVE-2005-1466 | 5.0 |
Unknown vulnerability in the DICOM dissector in Ethereal before 0.10.11 allows remote attackers to cause a denial of service (large memory allocation) via unknown vectors.
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2003-1013 | 5.0 |
The Q.931 dissector in Ethereal before 0.10.0, and Tethereal, allows remote attackers to cause a denial of service (crash) via a malformed Q.931, which triggers a null dereference.
|
14-02-2024 - 01:17 | 05-01-2004 - 05:00 | |
CVE-2006-1935 | 5.0 |
Buffer overflow in Ethereal 0.9.15 up to 0.10.14 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the COPS dissector.
|
14-02-2024 - 01:17 | 25-04-2006 - 12:50 | |
CVE-2005-2362 | 5.0 |
Unknown vulnerability several dissectors in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a denial of service (application crash) by reassembling certain packets.
|
14-02-2024 - 01:17 | 10-08-2005 - 04:00 | |
CVE-2004-1761 | 5.0 |
Unknown vulnerability in Ethereal 0.8.13 to 0.10.2 allows attackers to cause a denial of service (segmentation fault) via a malformed color filter file.
|
14-02-2024 - 01:17 | 31-12-2004 - 05:00 | |
CVE-2005-3245 | 5.0 |
Unspecified vulnerability in the ONC RPC dissector in Ethereal 0.10.3 to 0.10.12, when the "Dissect unknown RPC program numbers" option is enabled, allows remote attackers to cause a denial of service (memory consumption).
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
CVE-2005-3313 | 5.0 |
The IRC protocol dissector in Ethereal 0.10.13 allows remote attackers to cause a denial of service (infinite loop).
|
14-02-2024 - 01:17 | 01-11-2005 - 12:47 | |
CVE-2005-3244 | 5.0 |
The BER dissector in Ethereal 0.10.3 to 0.10.12 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
CVE-2005-1461 | 7.5 |
Multiple buffer overflows in the (1) SIP, (2) CMIP, (3) CMP, (4) CMS, (5) CRMF, (6) ESS, (7) OCSP, (8) X.509, (9) ISIS, (10) DISTCC, (11) FCELS, (12) Q.931, (13) NCP, (14) TCAP, (15) ISUP, (16) MEGACO, (17) PKIX1Explitit, (18) PKIX_Qualified, (19) Pr
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2003-0925 | 7.5 |
Buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed GTP MSISDN string.
|
14-02-2024 - 01:17 | 01-12-2003 - 05:00 | |
CVE-2005-2360 | 5.0 |
Unknown vulnerability in the LDAP dissector in Ethereal 0.8.5 through 0.10.11 allows remote attackers to cause a denial of service (free static memory and application crash) via unknown attack vectors.
|
14-02-2024 - 01:17 | 10-08-2005 - 04:00 | |
CVE-2005-0009 | 5.0 |
Unknown vulnerability in the Gnutella dissector in Ethereal 0.10.6 through 0.10.8 allows remote attackers to cause a denial of service (application crash).
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2006-1940 | 5.0 |
Unspecified vulnerability in Ethereal 0.10.4 up to 0.10.14 allows remote attackers to cause a denial of service (abort) via the SNDCP dissector.
|
14-02-2024 - 01:17 | 25-04-2006 - 12:50 | |
CVE-2005-2367 | 7.5 |
Format string vulnerability in the proto_item_set_text function in Ethereal 0.9.4 through 0.10.11, as used in multiple dissectors, allows remote attackers to write to arbitrary memory locations and gain privileges via a crafted AFP packet.
|
14-02-2024 - 01:17 | 10-08-2005 - 04:00 | |
CVE-2006-1939 | 5.0 |
Multiple unspecified vulnerabilities in Ethereal 0.9.x up to 0.10.14 allow remote attackers to cause a denial of service (crash from null dereference) via (1) an invalid display filter, or the (2) GSM SMS, (3) ASN.1-based, (4) DCERPC NT, (5) PER, (6)
|
14-02-2024 - 01:17 | 25-04-2006 - 12:50 | |
CVE-2005-1456 | 5.0 |
Multiple unknown vulnerabilities in the (1) DHCP and (2) Telnet dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (abort).
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2005-3249 | 6.4 |
Unspecified vulnerability in the WSP dissector in Ethereal 0.10.1 to 0.10.12 allows remote attackers to cause a denial of service or corrupt memory via unknown vectors that cause Ethereal to free an invalid pointer.
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
CVE-2005-1464 | 5.0 |
Multiple unknown vulnerabilities in the (1) KINK, (2) L2TP, (3) MGCP, (4) EIGRP, (5) DLSw, (6) MEGACO, (7) LMP, and (8) RSVP dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (infinite loop).
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2005-3243 | 7.5 |
Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector.
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
CVE-2005-3241 | 5.0 |
Multiple vulnerabilities in Ethereal 0.10.12 and earlier allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors in the (1) ISAKMP, (2) FC-FCS, (3) RSVP, and (4) ISIS LSP dissector.
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
CVE-2005-0008 | 5.0 |
Unknown vulnerability in the DNP dissector in Ethereal 0.10.5 through 0.10.8 allows remote attackers to cause "memory corruption."
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2006-1937 | 5.0 |
Multiple unspecified vulnerabilities in Ethereal 0.10.x up to 0.10.14 allow remote attackers to cause a denial of service (crash from null dereference) via (1) multiple vectors in H.248, and the (2) X.509if, (3) SRVLOC, (4) H.245, (5) AIM, and (6) ge
|
14-02-2024 - 01:17 | 25-04-2006 - 12:50 | |
CVE-2005-1469 | 5.0 |
Unknown vulnerability in the GSM dissector in Ethereal before 0.10.11 allows remote attackers to cause the dissector to access an invalid pointer.
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2005-1457 | 5.0 |
Multiple unknown vulnerabilities in the (1) AIM, (2) LDAP, (3) FibreChannel, (4) GSM_MAP, (5) SRVLOC, and (6) NTLMSSP dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash).
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2004-1141 | 5.0 |
The HTTP dissector in Ethereal 0.10.1 through 0.10.7 allows remote attackers to cause a denial of service (application crash) via a certain packet that causes the dissector to access previously-freed memory.
|
14-02-2024 - 01:17 | 31-12-2004 - 05:00 | |
CVE-2003-0927 | 7.5 |
Heap-based buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SOCKS dissector.
|
14-02-2024 - 01:17 | 01-12-2003 - 05:00 | |
CVE-2004-0634 | 5.0 |
The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference.
|
14-02-2024 - 01:17 | 06-12-2004 - 05:00 | |
CVE-2004-0506 | 5.0 |
The SPNEGO dissector in Ethereal 0.9.8 to 0.10.3 allows remote attackers to cause a denial of service (crash) via unknown attack vectors that cause a null pointer dereference.
|
14-02-2024 - 01:17 | 18-08-2004 - 04:00 | |
CVE-2005-2365 | 5.0 |
Unknown vulnerability in the SMB dissector in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a buffer overflow or a denial of service (memory consumption) via unknown attack vectors.
|
14-02-2024 - 01:17 | 10-08-2005 - 04:00 | |
CVE-2005-0010 | 5.0 |
Unknown vulnerability in the MMSE dissector in Ethereal 0.10.4 through 0.10.8 allows remote attackers to cause a denial of service by triggering a free of statically allocated memory.
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2004-0365 | 5.0 |
The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a malformed RADIUS packet that triggers a null dereference.
|
14-02-2024 - 01:17 | 04-05-2004 - 04:00 | |
CVE-2004-0176 | 5.0 |
Multiple buffer overflows in Ethereal 0.8.13 to 0.10.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) NetFlow, (2) IGAP, (3) EIGRP, (4) PGM, (5) IrDA, (6) BGP, (7) ISUP, or (8) TCAP dissectors.
|
14-02-2024 - 01:17 | 04-05-2004 - 04:00 | |
CVE-2005-2363 | 5.0 |
Unknown vulnerability in the (1) SMPP dissector, (2) 802.3 dissector, (3) DHCP, (4) MEGACO dissector, or (5) H1 dissector in Ethereal 0.8.15 through 0.10.11 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vecto
|
14-02-2024 - 01:17 | 10-08-2005 - 04:00 | |
CVE-2004-0507 | 10.0 |
Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
|
14-02-2024 - 01:17 | 18-08-2004 - 04:00 | |
CVE-2005-0704 | 7.5 |
Buffer overflow in the Etheric dissector in Ethereal 0.10.7 through 0.10.9 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code.
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2004-1140 | 5.0 |
Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (application hang) and possibly fill available disk space via an invalid RTP timestamp.
|
14-02-2024 - 01:17 | 31-12-2004 - 05:00 | |
CVE-2005-0766 | 5.0 |
Unknown vulnerability in the sFlow dissector in Ethereal 0.9.14 through 0.10.9 allows remote attackers to cause a denial of service (application crash).
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2004-0504 | 5.0 |
Ethereal 0.10.3 allows remote attackers to cause a denial of service (crash) via certain SIP messages between Hotsip servers and clients.
|
14-02-2024 - 01:17 | 18-08-2004 - 04:00 | |
CVE-2005-3242 | 5.0 |
Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (crash) via unknown vectors in (1) the IrDA dissector and (2) the SMB dissector when SMB transaction payload reassembly is enabled.
|
14-02-2024 - 01:17 | 27-10-2005 - 10:02 | |
CVE-2005-0006 | 5.0 |
The COPS dissector in Ethereal 0.10.6 through 0.10.8 allows remote attackers to cause a denial of service (infinite loop).
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2005-2366 | 5.0 |
Unknown vulnerability in the BER dissector in Ethereal 0.10.11 allows remote attackers to cause a denial of service (abort or infinite loop) via unknown attack vectors.
|
14-02-2024 - 01:17 | 10-08-2005 - 04:00 | |
CVE-2004-0635 | 5.0 |
The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-bounds read.
|
14-02-2024 - 01:17 | 06-12-2004 - 05:00 | |
CVE-2005-0739 | 5.0 |
The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly han
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2004-0367 | 5.0 |
Ethereal 0.10.1 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a zero-length Presentation protocol selector.
|
14-02-2024 - 01:17 | 04-05-2004 - 04:00 | |
CVE-2005-0007 | 5.0 |
Unknown vulnerability in the DLSw dissector in Ethereal 0.10.6 through 0.10.8 allows remote attackers to cause a denial of service (application crash from assertion).
|
14-02-2024 - 01:17 | 02-05-2005 - 04:00 | |
CVE-2004-1335 | 2.1 |
Memory leak in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial of service (memory consumption) by repeatedly calling the ip_cmsg_send function.
|
14-02-2024 - 01:17 | 15-12-2004 - 05:00 | |
CVE-2005-1460 | 5.0 |
Multiple unknown dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (assert error) via an invalid protocol tree item length.
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2003-1012 | 5.0 |
The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.
|
14-02-2024 - 01:17 | 05-01-2004 - 05:00 | |
CVE-2005-1463 | 7.5 |
Multiple format string vulnerabilities in the (1) DHCP and (2) ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.
|
14-02-2024 - 01:17 | 05-05-2005 - 04:00 | |
CVE-2006-4997 | 7.1 |
The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (f
|
10-02-2024 - 02:45 | 10-10-2006 - 04:06 | |
CVE-2006-1058 | 2.1 |
BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.
|
09-02-2024 - 03:05 | 04-04-2006 - 10:04 | |
CVE-2005-2088 | 4.3 |
The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an HTTP proxy, allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfe
|
09-02-2024 - 02:40 | 05-07-2005 - 04:00 | |
CVE-2005-2456 | 2.1 |
Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6 allows local users to cause a denial of service (oops or deadlock) and possibly execute arbitrary code via a p->dir value that is larger than XFRM_POLICY_OU
|
09-02-2024 - 00:44 | 04-08-2005 - 04:00 | |
CVE-2005-0102 | 7.2 |
Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow.
|
08-02-2024 - 18:39 | 24-01-2005 - 05:00 | |
CVE-2005-0246 | 5.0 |
The intagg contrib module for PostgreSQL 8.0.0 and earlier allows attackers to cause a denial of service (crash) via crafted arrays.
|
05-02-2024 - 19:56 | 02-05-2005 - 04:00 | |
CVE-2004-0642 | 7.5 |
Double free vulnerabilities in the error handling code for ASN.1 decoders in the (1) Key Distribution Center (KDC) library and (2) client library for MIT Kerberos 5 (krb5) 1.3.4 and earlier may allow remote attackers to execute arbitrary code.
|
02-02-2024 - 15:27 | 28-09-2004 - 04:00 | |
CVE-2005-1689 | 7.5 |
Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.
|
02-02-2024 - 15:24 | 18-07-2005 - 04:00 | |
CVE-2005-0891 | 5.0 |
Double free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote attackers to cause a denial of service (crash) via a crafted BMP image.
|
02-02-2024 - 15:22 | 02-05-2005 - 04:00 | |
CVE-2005-3119 | 2.1 |
Memory leak in the request_key_auth_destroy function in request_key_auth in Linux kernel 2.6.10 up to 2.6.13 allows local users to cause a denial of service (memory consumption) via a large number of authorization token keys.
|
02-02-2024 - 15:13 | 12-10-2005 - 13:03 | |
CVE-2005-2103 | 7.5 |
Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an away message with a large number of AIM substitution strings, such as %
|
02-02-2024 - 15:02 | 16-08-2005 - 04:00 | |
CVE-2005-3120 | 7.5 |
Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters.
|
02-02-2024 - 14:00 | 17-10-2005 - 20:06 | |
CVE-2005-0490 | 5.1 |
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the intended buffer lengths when decoded, which is not
|
02-02-2024 - 03:05 | 02-05-2005 - 04:00 | |
CVE-2005-3623 | 5.0 |
nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR privilege before setting access controls (ACL) on files on exported NFS filesystems, which allows remote attackers to bypass ACLs for readonly mounted NFS filesystems.
|
02-02-2024 - 02:19 | 31-12-2005 - 05:00 | |
CVE-2005-3181 | 2.1 |
The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a m
|
26-01-2024 - 18:56 | 12-10-2005 - 13:04 | |
CVE-2004-0427 | 2.1 |
The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before 2.6.6, does not properly decrement the mm_count counter when an error occurs after the mm_struct for a child process has been activated, which triggers a memory leak that allows loca
|
26-01-2024 - 18:56 | 07-07-2004 - 04:00 | |
CVE-2001-1494 | 2.1 |
script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root execute the script command.
|
26-01-2024 - 17:16 | 31-12-2001 - 05:00 | |
CVE-2005-1111 | 3.7 |
Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete.
|
26-01-2024 - 17:07 | 02-05-2005 - 04:00 | |
CVE-2004-0689 | 4.6 |
KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files.
|
26-01-2024 - 17:06 | 28-09-2004 - 04:00 | |
CVE-2005-1920 | 5.0 |
The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x through 3.4.0 do not properly set the same permissions on the backup file as were set on the original file, which could allow local users and possibly remote attackers to obtain sensitive info
|
25-01-2024 - 21:11 | 26-07-2005 - 04:00 | |
CVE-2005-3274 | 1.2 |
Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service (null dereference) by causing a connection timer to expire while the connection tab
|
21-01-2024 - 01:26 | 21-10-2005 - 01:02 | |
CVE-2005-3352 | 4.3 |
Cross-site scripting (XSS) vulnerability in the mod_imap module of Apache httpd before 1.3.35-dev and Apache httpd 2.0.x before 2.0.56-dev allows remote attackers to inject arbitrary web script or HTML via the Referer when using image maps.
|
19-01-2024 - 15:12 | 13-12-2005 - 20:03 | |
CVE-2004-0079 | 5.0 |
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
|
28-12-2023 - 15:33 | 23-11-2004 - 05:00 | |
CVE-2005-0227 | 4.3 |
PostgreSQL (pgsql) 7.4.x, 7.2.x, and other versions allows local users to load arbitrary shared libraries and execute code via the LOAD extension.
|
18-10-2023 - 20:54 | 02-05-2005 - 04:00 | |
CVE-2004-0753 | 5.0 |
The BMP image processor for (1) gdk-pixbuf before 0.22 and (2) gtk2 before 2.2.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted BMP file.
|
11-08-2023 - 20:18 | 20-10-2004 - 04:00 | |
CVE-2004-0788 | 5.0 |
Integer overflow in the ICO image decoder for (1) gdk-pixbuf before 0.22 and (2) gtk2 before 2.2.4 allows remote attackers to cause a denial of service (application crash) via a crafted ICO file.
|
11-08-2023 - 20:18 | 20-10-2004 - 04:00 | |
CVE-2004-0783 | 7.5 |
Stack-based buffer overflow in xpm_extract_color (io-xpm.c) in the XPM image decoder for gtk+ 2.4.4 (gtk2) and earlier, and gdk-pixbuf before 0.22, may allow remote attackers to execute arbitrary code via a certain color string. NOTE: this identifie
|
11-08-2023 - 20:12 | 20-10-2004 - 04:00 | |
CVE-2005-2975 | 7.8 |
io-xpm.c in the gdk-pixbuf XPM image rendering library in GTK+ before 2.8.7 allows attackers to cause a denial of service (infinite loop) via a crafted XPM image with a large number of colors.
|
11-08-2023 - 20:12 | 18-11-2005 - 06:03 | |
CVE-2005-2976 | 7.5 |
Integer overflow in io-xpm.c in gdk-pixbuf 0.22.0 in GTK+ before 2.8.7 allows attackers to cause a denial of service (crash) or execute arbitrary code via an XPM file with large height, width, and colour values, a different vulnerability than CVE-200
|
03-08-2023 - 17:19 | 18-11-2005 - 06:03 | |
CVE-2005-0372 | 5.0 |
Directory traversal vulnerability in gftp before 2.0.18 for GTK+ allows remote malicious FTP servers to read arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.
|
03-08-2023 - 17:17 | 02-05-2005 - 04:00 | |
CVE-2008-1679 | 6.8 |
Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows. NOTE: this issue i
|
02-08-2023 - 18:52 | 22-04-2008 - 04:41 | |
CVE-2006-4980 | 7.5 |
Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts.
|
02-08-2023 - 18:04 | 10-10-2006 - 04:06 | |
CVE-2005-0089 | 7.5 |
The SimpleXMLRPCServer library module in Python 2.2, 2.3 before 2.3.5, and 2.4, when used by XML-RPC servers that use the register_instance method to register an object without a _dispatch method, allows remote attackers to read or modify globals of
|
02-08-2023 - 18:04 | 02-05-2005 - 04:00 | |
CVE-2009-1887 | 5.0 |
agent/snmp_agent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux (RHEL) 3 allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP GETBULK request that triggers a divide-by-zero error. NOTE: this vulnerability e
|
13-02-2023 - 02:20 | 26-06-2009 - 18:30 | |
CVE-2009-1308 | 4.3 |
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey allows remote attackers to inject arbitrary web script or HTML via vectors involving XBL JavaScript bindings and remote stylesheets, as exploited in
|
13-02-2023 - 02:20 | 22-04-2009 - 18:30 | |
CVE-2008-2365 | 4.7 |
Race condition in the ptrace and utrace support in the Linux kernel 2.6.9 through 2.6.25, as used in Red Hat Enterprise Linux (RHEL) 4, allows local users to cause a denial of service (oops) via a long series of PTRACE_ATTACH ptrace calls to another
|
13-02-2023 - 02:19 | 30-06-2008 - 21:41 | |
CVE-2008-3432 | 6.8 |
Heap-based buffer overflow in the mch_expand_wildcards function in os_unix.c in Vim 6.2 and 6.3 allows user-assisted attackers to execute arbitrary code via shell metacharacters in filenames, as demonstrated by the netrw.v3 test case.
|
13-02-2023 - 02:19 | 10-10-2008 - 10:30 | |
CVE-2008-3525 | 7.2 |
The sbni_ioctl function in drivers/net/wan/sbni.c in the wan subsystem in the Linux kernel 2.6.26.3 does not check for the CAP_NET_ADMIN capability before processing a (1) SIOCDEVRESINSTATS, (2) SIOCDEVSHWSTATE, (3) SIOCDEVENSLAVE, or (4) SIOCDEVEMAN
|
13-02-2023 - 02:19 | 03-09-2008 - 14:12 | |
CVE-2008-1926 | 7.5 |
Argument injection vulnerability in login (login-utils/login.c) in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the lo
|
13-02-2023 - 02:19 | 24-04-2008 - 05:05 | |
CVE-2008-2375 | 7.1 |
Memory leak in a certain Red Hat deployment of vsftpd before 2.0.5 on Red Hat Enterprise Linux (RHEL) 3 and 4, when PAM is used, allows remote attackers to cause a denial of service (memory consumption) via a large number of invalid authentication at
|
13-02-2023 - 02:19 | 09-07-2008 - 00:41 | |
CVE-2009-0771 | 10.0 |
The layout engine in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain vectors that trigger memory corruption a
|
13-02-2023 - 02:19 | 05-03-2009 - 02:30 | |
CVE-2009-0577 | 6.8 |
Integer overflow in the WriteProlog function in texttops in CUPS 1.1.17 on Red Hat Enterprise Linux (RHEL) 3 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow. NOTE: this issue
|
13-02-2023 - 02:19 | 20-02-2009 - 19:30 | |
CVE-2007-5500 | 4.9 |
The wait_task_stopped function in the Linux kernel before 2.6.23.8 checks a TASK_TRACED bit instead of an exit_state value, which allows local users to cause a denial of service (machine crash) via unspecified vectors. NOTE: some of these details are
|
13-02-2023 - 02:18 | 20-11-2007 - 02:46 | |
CVE-2007-4568 | 6.8 |
Integer overflow in the build_range function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values, which triggers
|
13-02-2023 - 02:18 | 05-10-2007 - 21:17 | |
CVE-2008-1374 | 6.8 |
Integer overflow in pdftops filter in CUPS in Red Hat Enterprise Linux 3 and 4, when running on 64-bit platforms, allows remote attackers to execute arbitrary code via a crafted PDF file. NOTE: this issue is due to an incomplete fix for CVE-2004-0888
|
13-02-2023 - 02:18 | 04-04-2008 - 00:44 | |
CVE-2008-0596 | 5.0 |
Memory leak in CUPS before 1.1.22, and possibly other versions, allows remote attackers to cause a denial of service (memory consumption and daemon crash) via a large number of requests to add and remove shared printers.
|
13-02-2023 - 02:18 | 26-02-2008 - 00:44 | |
CVE-2006-5753 | 7.2 |
Unspecified vulnerability in the listxattr system call in Linux kernel, when a "bad inode" is present, allows local users to cause a denial of service (data corruption) and possibly gain privileges via unknown vectors.
|
13-02-2023 - 02:16 | 30-01-2007 - 19:28 | |
CVE-2006-4340 | 4.0 |
Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5, when using an RSA key with exponent 3, does not properly handle extra data in a signature
|
13-02-2023 - 02:16 | 15-09-2006 - 18:07 | |
CVE-2006-2936 | 7.8 |
The ftdi_sio driver (usb/serial/ftdi_sio.c) in Linux kernel 2.6.x up to 2.6.17, and possibly later versions, allows local users to cause a denial of service (memory consumption) by writing more data to the serial port than the hardware can handle, wh
|
13-02-2023 - 02:16 | 10-07-2006 - 19:05 | |
CVE-2006-2444 | 7.8 |
The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause failures in snmp_trap_decode that trigger (1) frees o
|
13-02-2023 - 02:16 | 25-05-2006 - 10:02 | |
CVE-2006-3467 | 7.5 |
Integer overflow in FreeType before 2.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PCF file, as demonstrated by the Red Hat bad1.pcf test file, due to a partial fix of CVE-2006-1861.
|
13-02-2023 - 02:16 | 21-07-2006 - 14:03 | |
CVE-2006-2448 | 5.6 |
Linux kernel before 2.6.16.21 and 2.6.17, when running on PowerPC, does not perform certain required access_ok checks, which allows local users to read arbitrary kernel memory on 64-bit systems (signal_64.c) and cause a denial of service (crash) and
|
13-02-2023 - 02:16 | 23-06-2006 - 10:02 | |
CVE-2006-3741 | 4.9 |
The perfmonctl system call (sys_perfmonctl) in Linux kernel 2.4.x and 2.6 before 2.6.18, when running on Itanium systems, does not properly track the reference count for file descriptors, which allows local users to cause a denial of service (file de
|
13-02-2023 - 02:16 | 10-10-2006 - 04:05 | |
CVE-2006-2934 | 5.0 |
SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux kernel 2.6.17 before 2.6.17.3 and 2.6.16 before 2.6.16.23 allows remote attackers to cause a denial of service (crash) via a packet without any chunks, which causes a variable to conta
|
13-02-2023 - 02:16 | 30-06-2006 - 21:05 | |
CVE-2006-4813 | 2.1 |
The __block_prepare_write function in fs/buffer.c for Linux kernel 2.6.x before 2.6.13 does not properly clear buffers during certain error conditions, which allows local users to read portions of files that have been unlinked.
|
13-02-2023 - 02:16 | 12-10-2006 - 20:07 | |
CVE-2006-1522 | 4.9 |
The sys_add_key function in the keyring code in Linux kernel 2.6.16.1 and 2.6.17-rc1, and possibly earlier versions, allows local users to cause a denial of service (OOPS) via keyctl requests that add a key to a user key instead of a keyring key, whi
|
13-02-2023 - 02:16 | 10-04-2006 - 20:02 | |
CVE-2006-0039 | 4.7 |
Race condition in the do_add_counters function in netfilter for Linux kernel 2.6.16 allows local users with CAP_NET_ADMIN capabilities to read kernel memory by triggering the race condition in a way that produces a size value that is inconsistent wit
|
13-02-2023 - 02:16 | 19-05-2006 - 22:02 | |
CVE-2006-1490 | 5.0 |
PHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary data sent to a script that processes user input in the html_entity_decode function and sends the encoded results back to the client, aka a "binary safet
|
13-02-2023 - 02:16 | 29-03-2006 - 21:06 | |
CVE-2006-1861 | 7.5 |
Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3) cff/cffgload.c, and (4) the read_
|
13-02-2023 - 02:16 | 23-05-2006 - 10:06 | |
CVE-2006-1863 | 2.1 |
Directory traversal vulnerability in CIFS in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1864.
|
13-02-2023 - 02:16 | 25-04-2006 - 22:02 | |
CVE-2006-0456 | 2.1 |
The strnlen_user function in Linux kernel before 2.6.16 on IBM S/390 can return an incorrect value, which allows local users to cause a denial of service via unknown vectors.
|
13-02-2023 - 02:16 | 27-06-2006 - 23:05 | |
CVE-2006-0038 | 6.9 |
Integer overflow in the do_replace function in netfilter for Linux before 2.6.16-rc3, when using "virtualization solutions" such as OpenVZ, allows local users with CAP_NET_ADMIN rights to cause a buffer overflow in the copy_from_user function.
|
13-02-2023 - 02:16 | 22-03-2006 - 20:06 | |
CVE-2006-1528 | 4.9 |
Linux kernel before 2.6.13 allows local users to cause a denial of service (crash) via a dio transfer from the sg driver to memory mapped (mmap) IO space.
|
13-02-2023 - 02:16 | 18-05-2006 - 19:06 | |
CVE-2006-0455 | 4.6 |
gpgv in GnuPG before 1.4.2.1, when using unattended signature verification, returns a 0 exit code in certain cases even when the detached signature file does not carry a signature, which could cause programs that use gpgv to assume that the signature
|
13-02-2023 - 02:16 | 15-02-2006 - 22:06 | |
CVE-2005-4605 | 2.1 |
The procfs code (proc_misc.c) in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers to read sensitive kernel memory via unspecified vectors in which a signed value is added to an unsigned value.
|
13-02-2023 - 02:15 | 31-12-2005 - 05:00 | |
CVE-2005-4744 | 6.4 |
Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the ex
|
13-02-2023 - 02:15 | 31-12-2005 - 05:00 | |
CVE-2005-3356 | 2.1 |
The mq_open system call in Linux kernel 2.6.9, in certain situations, can decrement a counter twice ("double decrement") as a result of multiple calls to the mntput function when the dentry_open function call fails, which allows local users to cause
|
13-02-2023 - 02:15 | 31-12-2005 - 05:00 | |
CVE-2005-3053 | 2.1 |
The sys_set_mempolicy function in mempolicy.c in Linux kernel 2.6.x allows local users to cause a denial of service (kernel BUG()) via a negative first argument.
|
13-02-2023 - 02:15 | 26-09-2005 - 19:03 | |
CVE-2005-3357 | 5.4 |
mod_ssl in Apache 2.0 up to 2.0.55, when configured with an SSL vhost with access control and a custom error 400 error page, allows remote attackers to cause a denial of service (application crash) via a non-SSL request to an SSL port, which triggers
|
13-02-2023 - 02:15 | 31-12-2005 - 05:00 | |
CVE-2005-3358 | 4.9 |
Linux kernel before 2.6.15 allows local users to cause a denial of service (panic) via a set_mempolicy call with a 0 bitmask, which causes a panic when a page fault occurs.
|
13-02-2023 - 02:15 | 14-12-2005 - 19:03 | |
CVE-2005-3359 | 4.9 |
The atm module in Linux kernel 2.6 before 2.6.14 allows local users to cause a denial of service (panic) via certain socket calls that produce inconsistent reference counts for loadable protocol modules.
|
13-02-2023 - 02:15 | 31-12-2005 - 05:00 | |
CVE-2005-2700 | 10.0 |
ssl_engine_kernel.c in mod_ssl before 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote attackers to bypass inten
|
13-02-2023 - 01:16 | 06-09-2005 - 23:03 | |
CVE-2005-2553 | 2.1 |
The find_target function in ptrace32.c in the Linux kernel 2.4.x before 2.4.29 does not properly handle a NULL return value from another function, which allows local users to cause a denial of service (kernel crash/oops) by running a 32-bit ltrace pr
|
13-02-2023 - 01:16 | 12-08-2005 - 04:00 | |
CVE-2005-1761 | 2.1 |
Linux kernel 2.6 and 2.4 on the IA64 architecture allows local users to cause a denial of service (kernel crash) via ptrace and the restore_sigcontext function.
|
13-02-2023 - 01:16 | 05-08-2005 - 04:00 | |
CVE-2005-1266 | 5.0 |
Apache SpamAssassin 3.0.1, 3.0.2, and 3.0.3 allows remote attackers to cause a denial of service (CPU consumption and slowdown) via a message with a long Content-Type header without any boundaries.
|
13-02-2023 - 01:15 | 15-06-2005 - 04:00 | |
CVE-2005-0530 | 2.1 |
Signedness error in the copy_from_read_buf function in n_tty.c for Linux kernel 2.6.10 and 2.6.11rc1 allows local users to read kernel memory via a negative argument.
|
13-02-2023 - 01:15 | 02-05-2005 - 04:00 | |
CVE-2005-1268 | 5.0 |
Off-by-one error in the mod_ssl Certificate Revocation List (CRL) verification callback in Apache, when configured to use a CRL, allows remote attackers to cause a denial of service (child process crash) via a CRL that causes a buffer overflow of one
|
13-02-2023 - 01:15 | 05-08-2005 - 04:00 | |
CVE-2005-0839 | 7.2 |
Linux kernel 2.6 before 2.6.11 does not restrict access to the N_MOUSE line discipline for a TTY, which allows local users to gain privileges by injecting mouse or keyboard events into other user sessions.
|
13-02-2023 - 01:15 | 02-05-2005 - 04:00 | |
CVE-2005-0531 | 2.1 |
The atm_get_addr function in addr.c for Linux kernel 2.6.10 and 2.6.11 before 2.6.11-rc4 may allow local users to trigger a buffer overflow via negative arguments.
|
13-02-2023 - 01:15 | 02-05-2005 - 04:00 | |
CVE-2005-0937 | 1.2 |
Some futex functions in futex.c for Linux kernel 2.6.x perform get_user calls while holding the mmap_sem semaphore, which could allow local users to cause a deadlock condition in do_page_fault by triggering get_user faults while another thread is exe
|
13-02-2023 - 01:15 | 22-02-2005 - 05:00 | |
CVE-2005-0529 | 2.1 |
Linux kernel 2.6.10 and 2.6.11rc1-bk6 uses different size types for offset arguments to the proc_file_read and locks_read_proc functions, which leads to a heap-based buffer overflow when a signed comparison causes negative integers to be used in a po
|
13-02-2023 - 01:15 | 02-05-2005 - 04:00 | |
CVE-2004-0687 | 7.5 |
Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM image file.
|
20-01-2023 - 19:15 | 20-10-2004 - 04:00 | |
CVE-2005-0245 | 7.5 |
Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor function (gram.y), which leads to a heap-based buffer overflow, a different vulnerability than CVE
|
19-01-2023 - 20:13 | 01-02-2005 - 05:00 | |
CVE-2004-0488 | 7.5 |
Stack-based buffer overflow in the ssl_util_uuencode_binary function in ssl_util.c for Apache mod_ssl, when mod_ssl is configured to trust the issuing CA, may allow remote attackers to execute arbitrary code via a client certificate with a long subje
|
23-09-2022 - 15:23 | 07-07-2004 - 04:00 | |
CVE-2004-0748 | 5.0 |
mod_ssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (CPU consumption) by aborting an SSL connection in a way that causes an Apache child process to enter an infinite loop.
|
23-09-2022 - 15:22 | 20-10-2004 - 04:00 | |
CVE-2004-0751 | 5.0 |
The char_buffer_read function in the mod_ssl module for Apache 2.x, when using reverse proxying to an SSL server, allows remote attackers to cause a denial of service (segmentation fault).
|
23-09-2022 - 15:21 | 20-10-2004 - 04:00 | |
CVE-2004-0786 | 5.0 |
The IPv6 URI parsing routines in the apr-util library for Apache 2.0.50 and earlier allow remote attackers to cause a denial of service (child process crash) via a certain URI, as demonstrated using the Codenomicon HTTP Test Tool.
|
23-09-2022 - 15:17 | 20-10-2004 - 04:00 | |
CVE-2004-0809 | 5.0 |
The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.
|
23-09-2022 - 15:13 | 16-09-2004 - 04:00 | |
CVE-2006-3918 | 4.3 |
http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP request when it is reflected ba
|
21-09-2022 - 19:35 | 28-07-2006 - 00:04 | |
CVE-2004-0686 | 5.0 |
Buffer overflow in Samba 2.2.x to 2.2.9, and 3.0.0 to 3.0.4, when the "mangling method = hash" option is enabled in smb.conf, has unknown impact and attack vectors.
|
29-08-2022 - 20:04 | 27-07-2004 - 04:00 | |
CVE-2006-4482 | 9.3 |
Multiple heap-based buffer overflows in the (1) str_repeat and (2) wordwrap functions in ext/standard/string.c in PHP before 5.1.5, when used on a 64-bit system, have unspecified impact and attack vectors, a different vulnerability than CVE-2006-1990
|
19-07-2022 - 18:32 | 31-08-2006 - 21:04 | |
CVE-2005-0233 | 7.5 |
The International Domain Name (IDN) support in Firefox 1.0, Camino .8.5, and Mozilla before 1.7.6 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homog
|
28-02-2022 - 17:41 | 08-02-2005 - 05:00 | |
CVE-2006-5170 | 7.5 |
pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other distributions does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the
|
25-02-2022 - 19:20 | 10-10-2006 - 04:06 | |
CVE-2007-0010 | 2.1 |
The GdkPixbufLoader function in GIMP ToolKit (GTK+) in GTK 2 (gtk2) before 2.4.13 allows context-dependent attackers to cause a denial of service (crash) via a malformed image file.
|
07-02-2022 - 17:28 | 24-01-2007 - 19:28 | |
CVE-2004-0081 | 5.0 |
OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
|
08-11-2021 - 15:48 | 23-11-2004 - 05:00 | |
CVE-2004-0971 | 2.1 |
The krb5-send-pr script in the kerberos5 (krb5) package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.
|
18-06-2021 - 15:15 | 09-02-2005 - 05:00 | |
CVE-2004-0885 | 7.5 |
The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the "SSLCipherSuite" directive in directory or location context, allows remote clients to bypass intended restrictions by using any cipher suite that is allowed by the virtual host config
|
06-06-2021 - 11:15 | 03-11-2004 - 05:00 | |
CVE-2004-0942 | 5.0 |
Apache webserver 2.0.52 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request with a MIME header containing multiple lines with a large number of space characters.
|
06-06-2021 - 11:15 | 09-02-2005 - 05:00 | |
CVE-2005-2728 | 5.0 |
The byte-range filter in Apache 2.0 before 2.0.54 allows remote attackers to cause a denial of service (memory consumption) via an HTTP header with a large Range field.
|
06-06-2021 - 11:15 | 30-08-2005 - 11:45 | |
CVE-2004-0493 | 6.4 |
The ap_get_mime_headers_core function in Apache httpd 2.0.49 allows remote attackers to cause a denial of service (memory exhaustion), and possibly an integer signedness error leading to a heap-based buffer overflow on 64 bit systems, via long header
|
06-06-2021 - 11:15 | 06-08-2004 - 04:00 | |
CVE-2004-1834 | 2.1 |
mod_disk_cache in Apache 2.0 through 2.0.49 stores client headers, including authentication information, on the hard disk, which could allow local users to gain sensitive information.
|
06-06-2021 - 11:15 | 20-03-2004 - 05:00 | |
CVE-2003-0542 | 7.2 |
Multiple stack-based buffer overflows in (1) mod_alias and (2) mod_rewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service (crash) or execute arbitrary code via a regular expression with more than 9
|
06-06-2021 - 11:15 | 03-11-2003 - 05:00 | |
CVE-2006-2661 | 5.0 |
ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a crafted font file that triggers a null dereference.
|
05-04-2021 - 19:25 | 30-05-2006 - 19:02 | |
CVE-2004-1189 | 7.2 |
The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a password change, does not properly track the password policy's history count and the maximum number of keys, which can cause an arr
|
02-02-2021 - 18:16 | 31-12-2004 - 05:00 | |
CVE-2004-0643 | 4.6 |
Double free vulnerability in the krb5_rd_cred function for MIT Kerberos 5 (krb5) 1.3.1 and earlier may allow local users to execute arbitrary code.
|
02-02-2021 - 18:08 | 28-09-2004 - 04:00 | |
CVE-2007-4045 | 5.0 |
The CUPS service, as used in SUSE Linux before 20070720 and other Linux distributions, allows remote attackers to cause a denial of service via unspecified vectors related to an incomplete fix for CVE-2007-0720 that introduced a different denial of s
|
23-12-2020 - 15:20 | 27-07-2007 - 22:30 | |
CVE-2000-1191 | 5.0 |
htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that inclu
|
09-12-2020 - 15:58 | 31-08-2001 - 04:00 | |
CVE-2002-0147 | 7.5 |
Buffer overflow in the ASP data transfer mechanism in Internet Information Server (IIS) 4.0, 5.0, and 5.1 allows remote attackers to cause a denial of service or execute code, aka "Microsoft-discovered variant of Chunked Encoding buffer overrun."
|
23-11-2020 - 19:49 | 22-04-2002 - 04:00 | |
CVE-2002-0073 | 5.0 |
The FTP service in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows attackers who have established an FTP session to cause a denial of service via a specially crafted status request containing glob characters.
|
23-11-2020 - 19:49 | 22-04-2002 - 04:00 | |
CVE-2002-0149 | 7.5 |
Buffer overflow in ASP Server-Side Include Function in IIS 4.0, 5.0 and 5.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via long file names.
|
23-11-2020 - 19:49 | 22-04-2002 - 04:00 | |
CVE-2002-0150 | 7.5 |
Buffer overflow in Internet Information Server (IIS) 4.0, 5.0, and 5.1 allows remote attackers to spoof the safety check for HTTP headers and cause a denial of service or execute arbitrary code via HTTP header field values.
|
23-11-2020 - 19:49 | 22-04-2002 - 04:00 | |
CVE-2003-0226 | 5.0 |
Microsoft Internet Information Services (IIS) 5.0 and 5.1 allows remote attackers to cause a denial of service via a long WebDAV request with a (1) PROPFIND or (2) SEARCH method, which generates an error condition that is not properly handled.
|
23-11-2020 - 19:49 | 09-06-2003 - 04:00 | |
CVE-2005-2069 | 5.0 |
pam_ldap and nss_ldap, when used with OpenLDAP and connecting to a slave using TLS, does not use TLS for the subsequent connection if the client is referred to a master, which may cause a password to be sent in cleartext and allows remote attackers t
|
16-11-2020 - 19:30 | 30-06-2005 - 04:00 | |
CVE-2005-1260 | 5.0 |
bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
|
13-11-2020 - 17:07 | 19-05-2005 - 04:00 | |
CVE-2004-0179 | 6.8 |
Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.
|
13-10-2020 - 16:52 | 01-06-2004 - 04:00 | |
CVE-2006-2932 | 4.9 |
A regression error in the restore_all code path of the 4/4GB split support for non-hugemem Linux kernels on Red Hat Linux Desktop and Enterprise Linux 4 allows local users to cause a denial of service (panic) via unspecified vectors. Red Hat has issu
|
28-09-2020 - 14:54 | 23-08-2006 - 19:04 | |
CVE-2006-2932 | 4.9 |
A regression error in the restore_all code path of the 4/4GB split support for non-hugemem Linux kernels on Red Hat Linux Desktop and Enterprise Linux 4 allows local users to cause a denial of service (panic) via unspecified vectors. Red Hat has issu
|
28-09-2020 - 14:54 | 23-08-2006 - 19:04 | |
CVE-2006-2935 | 4.6 |
The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device
|
28-08-2020 - 13:06 | 05-07-2006 - 18:05 | |
CVE-2005-3388 | 4.3 |
Cross-site scripting (XSS) vulnerability in the phpinfo function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5 allows remote attackers to inject arbitrary web script or HTML via a crafted URL with a "stacked array assignment."
|
23-06-2020 - 03:15 | 01-11-2005 - 12:47 | |
CVE-2004-0840 | 10.0 |
The SMTP (Simple Mail Transfer Protocol) component of Microsoft Windows XP 64-bit Edition, Windows Server 2003, Windows Server 2003 64-bit Edition, and the Exchange Routing Engine component of Exchange Server 2003, allows remote attackers to execute
|
09-04-2020 - 13:51 | 03-11-2004 - 05:00 | |
CVE-2004-0574 | 10.0 |
The Network News Transfer Protocol (NNTP) component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange 2000 Server, and Exchange Server 2003 allows remote attackers to execute arbitrary code via XPAT patterns, poss
|
09-04-2020 - 13:50 | 03-11-2004 - 05:00 | |
CVE-2004-0523 | 10.0 |
Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.
|
21-01-2020 - 15:47 | 18-08-2004 - 04:00 | |
CVE-2006-3083 | 7.2 |
The (1) krshd and (2) v4rcp applications in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x before 1.4.4, when running on Linux and AIX, and (b) Heimdal 0.7.2 and earlier, do not check return codes for setuid calls, which allows local users to gain pr
|
21-01-2020 - 15:45 | 09-08-2006 - 10:04 | |
CVE-2005-1175 | 7.5 |
Heap-based buffer overflow in the Key Distribution Center (KDC) in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain valid TCP or UDP req
|
21-01-2020 - 15:45 | 18-07-2005 - 04:00 | |
CVE-2005-1174 | 5.0 |
MIT Kerberos 5 (krb5) 1.3 through 1.4.1 Key Distribution Center (KDC) allows remote attackers to cause a denial of service (application crash) via a certain valid TCP connection that causes a free of unallocated memory.
|
21-01-2020 - 15:45 | 18-07-2005 - 04:00 | |
CVE-2004-0644 | 5.0 |
The asn1buf_skiptail function in the ASN.1 decoder library for MIT Kerberos 5 (krb5) 1.2.2 through 1.3.4 allows remote attackers to cause a denial of service (infinite loop) via a certain BER encoding.
|
21-01-2020 - 15:45 | 28-09-2004 - 04:00 | |
CVE-2004-0804 | 4.3 |
Vulnerability in tif_dirread.c for libtiff allows remote attackers to cause a denial of service (application crash) via a TIFF image that causes a divide-by-zero error when the number of row bytes is zero, a different vulnerability than CVE-2005-2452
|
31-12-2019 - 19:18 | 03-11-2004 - 05:00 | |
CVE-2008-4098 | 4.6 |
MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and
|
17-12-2019 - 20:26 | 18-09-2008 - 15:04 | |
CVE-2006-4226 | 3.6 |
MySQL before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12, when run on case-sensitive filesystems, allows remote authenticated users to create or access a database when the database name differs only in case from a database for which they have pe
|
17-12-2019 - 20:16 | 18-08-2006 - 20:04 | |
CVE-2006-3469 | 4.0 |
Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_forma
|
17-12-2019 - 20:16 | 21-07-2006 - 14:03 | |
CVE-2006-2753 | 7.5 |
SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x before 5.0.22 allows context-dependent attackers to execute arbitrary SQL commands via crafted multibyte encodings in character sets such as SJIS, BIG5, and GBK, which are not properl
|
17-12-2019 - 20:16 | 01-06-2006 - 17:02 | |
CVE-2006-1516 | 5.0 |
The check_connection function in sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to read portions of memory via a username without a trailing null byte, which causes a buffer over-read.
|
17-12-2019 - 20:16 | 05-05-2006 - 12:46 | |
CVE-2006-1517 | 5.0 |
sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to obtain sensitive information via a COM_TABLE_DUMP request with an incorrect packet length, which includes portions of memory in an error m
|
17-12-2019 - 20:16 | 05-05-2006 - 12:46 | |
CVE-2004-0388 | 2.1 |
The mysqld_multi script in MySQL allows local users to overwrite arbitrary files via a symlink attack.
|
17-12-2019 - 17:14 | 01-06-2004 - 04:00 | |
CVE-2006-3081 | 4.0 |
mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function.
|
17-12-2019 - 17:13 | 19-06-2006 - 18:02 | |
CVE-2005-0709 | 4.6 |
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.
|
17-12-2019 - 17:12 | 02-05-2005 - 04:00 | |
CVE-2005-0710 | 4.6 |
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to bypass library path restrictions and execute arbitrary libraries by using INSERT INTO to modify the mysql.func table, which is pr
|
17-12-2019 - 17:12 | 02-05-2005 - 04:00 | |
CVE-2005-1636 | 4.6 |
mysql_install_db in MySQL 4.1.x before 4.1.12 and 5.x up to 5.0.4 creates the mysql_install_db.X file with a predictable filename and insecure permissions, which allows local users to execute arbitrary SQL commands by modifying the file's contents.
|
17-12-2019 - 17:12 | 17-05-2005 - 04:00 | |
CVE-2005-0711 | 2.1 |
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary files via a symlink attack.
|
17-12-2019 - 17:12 | 02-05-2005 - 04:00 | |
CVE-2004-0457 | 4.6 |
The mysqlhotcopy script in mysql 4.0.20 and earlier, when using the scp method from the mysql-server package, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
|
17-12-2019 - 17:11 | 28-09-2004 - 04:00 | |
CVE-2005-0758 | 4.6 |
zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.
|
16-10-2019 - 20:01 | 13-05-2005 - 04:00 | |
CVE-2013-3918 | 9.3 |
The InformationCardSigninHelper Class ActiveX control in icardie.dll in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold
|
14-05-2019 - 14:24 | 12-11-2013 - 14:35 | |
CVE-2009-3002 | 4.9 |
The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows local users to read the contents of some kernel memory locations by calling getsockname on (1) an AF_APPLETALK socket, related to th
|
16-11-2018 - 15:43 | 28-08-2009 - 15:30 | |
CVE-2006-5823 | 4.0 |
The zlib_inflate function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via a malformed filesystem that uses zlib compression that triggers memory corruption, as demonstrated using cramfs.
|
30-10-2018 - 16:26 | 09-11-2006 - 11:07 | |
CVE-2006-5751 | 7.2 |
Integer overflow in the get_fdb_entries function in net/bridge/br_ioctl.c in the Linux kernel before 2.6.18.4 allows local users to execute arbitrary code via a large maxnum value in an ioctl request.
|
30-10-2018 - 16:26 | 02-12-2006 - 02:28 | |
CVE-2006-4538 | 4.9 |
Linux kernel 2.6.17 and earlier, when running on IA64 or SPARC platforms, allows local users to cause a denial of service (crash) via a malformed ELF file that triggers memory maps that cross region boundaries.
|
30-10-2018 - 16:26 | 05-09-2006 - 19:04 | |
CVE-2006-5174 | 2.1 |
The copy_from_user function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running on s390, does not properly clear a kernel buffer, which allows local user space programs to read portions of kernel memory by "appending to a file fro
|
30-10-2018 - 16:26 | 10-10-2006 - 04:06 | |
CVE-2006-3468 | 7.8 |
Linux kernel 2.6.x, when using both NFS and EXT3, allows remote attackers to cause a denial of service (file system panic) via a crafted UDP packet with a V2 lookup procedure that specifies a bad file handle (inode number), which triggers an error an
|
30-10-2018 - 16:26 | 21-07-2006 - 14:03 | |
CVE-2006-1052 | 2.1 |
The selinux_ptrace logic in hooks.c in SELinux for Linux 2.6.6 allows local users with ptrace permissions to change the tracer SID to an SID of another process.
|
30-10-2018 - 16:26 | 05-05-2006 - 12:46 | |
CVE-2004-2660 | 4.9 |
Memory leak in direct-io.c in Linux kernel 2.6.x before 2.6.10 allows local users to cause a denial of service (memory consumption) via certain O_DIRECT (direct IO) write requests. This vulnerability is addressed in the following product release:
Li
|
30-10-2018 - 16:26 | 31-12-2004 - 05:00 | |
CVE-2004-1307 | 7.5 |
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be a
|
30-10-2018 - 16:26 | 21-12-2004 - 05:00 | |
CVE-2006-1056 | 2.1 |
The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allow
|
30-10-2018 - 16:26 | 20-04-2006 - 10:02 | |
CVE-2006-0744 | 4.9 |
Linux kernel before 2.6.16.5 does not properly handle uncanonical return addresses on Intel EM64T CPUs, which reports an exception in the SYSRET instead of the next instruction, which causes the kernel exception handler to run on the user stack with
|
30-10-2018 - 16:26 | 18-04-2006 - 10:02 | |
CVE-2005-0136 | 2.1 |
The Linux kernel before 2.6.11 on the Itanium IA64 platform has certain "ptrace corner cases" that allow local users to cause a denial of service (crash) via crafted syscalls, possibly related to MCA/INIT, a different vulnerability than CVE-2005-1761
|
30-10-2018 - 16:26 | 31-12-2005 - 05:00 | |
CVE-2004-0791 | 5.0 |
Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via a blind throughput-reduction attack using spoofed Source Quench packets, aka the "ICMP Source Quench a
|
30-10-2018 - 16:26 | 12-04-2005 - 04:00 | |
CVE-2008-4031 | 9.3 |
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Ma
|
30-10-2018 - 16:25 | 10-12-2008 - 14:00 | |
CVE-2008-4030 | 9.3 |
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1 allow remote attackers t
|
30-10-2018 - 16:25 | 10-12-2008 - 14:00 | |
CVE-2008-4025 | 9.3 |
Integer overflow in Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office
|
30-10-2018 - 16:25 | 10-12-2008 - 14:00 | |
CVE-2008-4027 | 9.3 |
Double free vulnerability in Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1
|
30-10-2018 - 16:25 | 10-12-2008 - 14:00 | |
CVE-2008-4028 | 9.3 |
Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Ma
|
30-10-2018 - 16:25 | 10-12-2008 - 14:00 | |
CVE-2006-5465 | 7.5 |
Buffer overflow in PHP before 5.2.0 allows remote attackers to execute arbitrary code via crafted UTF-8 inputs to the (1) htmlentities or (2) htmlspecialchars functions.
|
30-10-2018 - 16:25 | 04-11-2006 - 00:07 | |
CVE-2009-3376 | 9.3 |
Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly handle a right-to-left override (aka RLO or U+202E) Unicode character in a download filename, which allows remote attackers to spoof file extensions via
|
30-10-2018 - 16:25 | 29-10-2009 - 14:30 | |
CVE-2006-4486 | 2.6 |
Integer overflow in memory allocation routines in PHP before 5.1.6, when running on a 64-bit system, allows context-dependent attackers to bypass the memory_limit restriction.
|
30-10-2018 - 16:25 | 31-08-2006 - 21:04 | |
CVE-2002-0079 | 7.5 |
Buffer overflow in the chunked encoding transfer mechanism in Internet Information Server (IIS) 4.0 and 5.0 Active Server Pages allows attackers to cause a denial of service or execute arbitrary code.
|
30-10-2018 - 16:25 | 22-04-2002 - 04:00 | |
CVE-2006-3017 | 9.3 |
zend_hash_del_key_or_index in zend_hash.c in PHP before 4.4.3 and 5.x before 5.1.3 can cause zend_hash_del to delete the wrong element, which prevents a variable from being unset even when the PHP unset function is called, which might cause the varia
|
30-10-2018 - 16:25 | 14-06-2006 - 23:02 | |
CVE-2002-0071 | 7.5 |
Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names.
|
30-10-2018 - 16:25 | 22-04-2002 - 04:00 | |
CVE-2005-3883 | 5.0 |
CRLF injection vulnerability in the mb_send_mail function in PHP before 5.1.0 might allow remote attackers to inject arbitrary e-mail headers via line feeds (LF) in the "To" address argument.
|
30-10-2018 - 16:25 | 29-11-2005 - 11:03 | |
CVE-2005-3389 | 5.0 |
The parse_str function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one parameter, allows remote attackers to enable the register_globals directive via inputs that cause a request to be terminated due to the memory_limit setting,
|
30-10-2018 - 16:25 | 01-11-2005 - 12:47 | |
CVE-2005-1042 | 7.5 |
Integer overflow in the exif_process_IFD_TAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execute arbitrary code via an IFD tag that leads to a negative byte count.
|
30-10-2018 - 16:25 | 02-05-2005 - 04:00 | |
CVE-2003-1303 | 5.0 |
Buffer overflow in the imap_fetch_overview function in the IMAP functionality (php_imap.c) in PHP before 4.3.3 allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a long e-mail address in
|
30-10-2018 - 16:25 | 31-12-2003 - 05:00 | |
CVE-2009-1303 | 5.0 |
The browser engine in Mozilla Firefox before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly trigger memory corruption via vectors related to nsSVGE
|
30-10-2018 - 16:25 | 22-04-2009 - 18:30 | |
CVE-2004-0595 | 6.8 |
The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, does not filter null (\0) characters within tag names when restricting input to allowed tags, which allows dangerous tags to be processed by web browsers such as Internet Explore
|
30-10-2018 - 16:25 | 27-07-2004 - 04:00 | |
CVE-2006-1494 | 2.6 |
Directory traversal vulnerability in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass open_basedir restrictions allows remote attackers to create files in arbitrary directories via the tempnam function.
|
30-10-2018 - 16:25 | 10-04-2006 - 19:02 | |
CVE-2005-3390 | 7.5 |
The RFC1867 file upload feature in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when register_globals is enabled, allows remote attackers to modify the GLOBALS array and bypass security protections of PHP applications via a multipart/form-data POST reque
|
30-10-2018 - 16:25 | 01-11-2005 - 12:47 | |
CVE-2005-1043 | 5.0 |
exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.
|
30-10-2018 - 16:25 | 14-04-2005 - 04:00 | |
CVE-2004-0882 | 10.0 |
Buffer overflow in the QFILEPATHINFO request handler in Samba 3.0.x through 3.0.7 may allow remote attackers to execute arbitrary code via a TRANSACT2_QFILEPATHINFO request with a small "maximum data bytes" value.
|
30-10-2018 - 16:25 | 27-01-2005 - 05:00 | |
CVE-2004-1065 | 10.0 |
Buffer overflow in the exif_read_data function in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to execute arbitrary code via a long section name in an image file.
|
30-10-2018 - 16:25 | 10-01-2005 - 05:00 | |
CVE-2004-0808 | 5.0 |
The process_logon_packet function in the nmbd server for Samba 3.0.6 and earlier, when domain logons are enabled, allows remote attackers to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of
|
30-10-2018 - 16:25 | 31-12-2004 - 05:00 | |
CVE-2004-1019 | 10.0 |
The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function that may trigger "information disclosure, double-free
|
30-10-2018 - 16:25 | 10-01-2005 - 05:00 | |
CVE-2005-3353 | 5.0 |
The exif_read_data function in the Exif module in PHP before 4.4.1 allows remote attackers to cause a denial of service (infinite loop) via a malformed JPEG image.
|
30-10-2018 - 16:25 | 18-11-2005 - 23:03 | |
CVE-2004-1154 | 10.0 |
Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x through 3.0.9 allows remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a Samba request with a large number of securit
|
30-10-2018 - 16:25 | 10-01-2005 - 05:00 | |
CVE-2006-0747 | 5.0 |
Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of val
|
19-10-2018 - 15:46 | 23-05-2006 - 10:06 | |
CVE-2006-0746 | 7.5 |
Certain patches for kpdf do not include all relevant patches from xpdf that were associated with CVE-2005-3627, which allows context-dependent attackers to exploit vulnerabilities that were present in CVE-2005-3627.
|
19-10-2018 - 15:46 | 09-03-2006 - 00:02 | |
CVE-2006-0748 | 9.3 |
Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via "an invalid and non-sensical ordering of table-related tags" that
|
19-10-2018 - 15:46 | 14-04-2006 - 10:02 | |
CVE-2006-0749 | 9.3 |
nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via
|
19-10-2018 - 15:46 | 14-04-2006 - 10:02 | |
CVE-2006-0645 | 7.5 |
Tiny ASN.1 Library (libtasn1) before 0.2.18, as used by (1) GnuTLS 1.2.x before 1.2.10 and 1.3.x before 1.3.4, and (2) GNU Shishi, allows attackers to crash the DER decoder and possibly execute arbitrary code via "out-of-bounds access" caused by inva
|
19-10-2018 - 15:45 | 10-02-2006 - 18:06 | |
CVE-2006-0301 | 7.5 |
Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as (1) poppler, (2) kdegraphics, (3) gpdf, (4) pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted
|
19-10-2018 - 15:44 | 30-01-2006 - 22:03 | |
CVE-2006-0300 | 5.1 |
Buffer overflow in tar 1.14 through 1.15.90 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute code via unspecified vectors involving PAX extended headers.
|
19-10-2018 - 15:44 | 24-02-2006 - 00:02 | |
CVE-2006-0225 | 4.6 |
scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.
|
19-10-2018 - 15:43 | 25-01-2006 - 11:03 | |
CVE-2006-0292 | 7.5 |
The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before 1.5.1 does not properly dereference objects, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via unknown attack vectors related to garb
|
19-10-2018 - 15:43 | 02-02-2006 - 20:06 | |
CVE-2006-0058 | 7.6 |
Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory location
|
19-10-2018 - 15:42 | 22-03-2006 - 20:06 | |
CVE-2006-0019 | 7.5 |
Heap-based buffer overflow in the encodeURI and decodeURI functions in the kjs JavaScript interpreter engine in KDE 3.2.0 through 3.5.0 allows remote attackers to execute arbitrary code via a crafted, UTF-8 encoded URI.
|
19-10-2018 - 15:42 | 20-01-2006 - 21:03 | |
CVE-2006-0095 | 2.1 |
dm-crypt in Linux kernel 2.6.15 and earlier does not clear a structure before it is freed, which leads to a memory disclosure that could allow local users to obtain sensitive information about a cryptographic key.
|
19-10-2018 - 15:42 | 06-01-2006 - 11:03 | |
CVE-2006-0082 | 5.1 |
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a numeric fo
|
19-10-2018 - 15:42 | 04-01-2006 - 23:03 | |
CVE-2005-4601 | 7.5 |
The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename that is processed by the display command.
|
19-10-2018 - 15:41 | 31-12-2005 - 05:00 | |
CVE-2005-4667 | 3.7 |
Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses
|
19-10-2018 - 15:41 | 31-12-2005 - 05:00 | |
CVE-2005-4348 | 7.8 |
fetchmail before 6.3.1 and before 6.2.5.5, when configured for multidrop mode, allows remote attackers to cause a denial of service (application crash) by sending messages without headers from upstream mail servers.
|
19-10-2018 - 15:40 | 21-12-2005 - 00:03 | |
CVE-2005-4134 | 5.0 |
Mozilla Firefox 1.5, Netscape 8.0.4 and 7.2, and K-Meleon before 0.9.12 allows remote attackers to cause a denial of service (CPU consumption and delayed application startup) via a web site with a large title, which is recorded in history.dat but not
|
19-10-2018 - 15:40 | 09-12-2005 - 15:03 | |
CVE-2005-4077 | 4.6 |
Multiple off-by-one errors in the cURL library (libcurl) 7.11.2 through 7.15.0 allow local users to trigger a buffer overflow and cause a denial of service or bypass PHP security restrictions via certain URLs that (1) are malformed in a way that prev
|
19-10-2018 - 15:40 | 08-12-2005 - 01:03 | |
CVE-2005-3962 | 4.6 |
Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an int
|
19-10-2018 - 15:39 | 01-12-2005 - 17:03 | |
CVE-2005-3784 | 4.9 |
The auto-reap of child processes in Linux kernel 2.6 before 2.6.15 includes processes with ptrace attached, which leads to a dangling ptrace reference and allows local users to cause a denial of service (crash) and gain root privileges.
|
19-10-2018 - 15:39 | 23-11-2005 - 21:03 | |
CVE-2005-3806 | 6.6 |
The IPv6 flow label handling code (ip6_flowlabel.c) in Linux kernels 2.4 up to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain circumstances, which allows local users to corrupt kernel memory or cause a denial of service (crash) b
|
19-10-2018 - 15:39 | 25-11-2005 - 21:03 | |
CVE-2005-3857 | 4.9 |
The time_out_leases function in locks.c for Linux kernel before 2.6.15-rc3 allows local users to cause a denial of service (kernel log message consumption) by causing a large number of broken leases, which is recorded to the log using the printk func
|
19-10-2018 - 15:39 | 27-11-2005 - 21:03 | |
CVE-2005-3732 | 7.8 |
The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packet
|
19-10-2018 - 15:38 | 21-11-2005 - 22:03 | |
CVE-2005-3624 | 5.0 |
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to int
|
19-10-2018 - 15:37 | 31-12-2005 - 05:00 | |
CVE-2005-3625 | 10.0 |
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and
|
19-10-2018 - 15:37 | 31-12-2005 - 05:00 | |
CVE-2005-3626 | 5.0 |
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.
|
19-10-2018 - 15:37 | 31-12-2005 - 05:00 | |
CVE-2005-3627 | 7.5 |
Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDecode stream with (1) a large "number of components"
|
19-10-2018 - 15:37 | 31-12-2005 - 05:00 | |
CVE-2005-3273 | 5.0 |
The rose_rt_ioctl function in rose_route.c for Radionet Open Source Environment (ROSE) in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array ou
|
19-10-2018 - 15:35 | 21-10-2005 - 01:02 | |
CVE-2005-3276 | 2.1 |
The sys_get_thread_area function in process.c in Linux 2.6 before 2.6.12.4 and 2.6.13 does not clear a data structure before copying it to userspace, which might allow a user process to obtain sensitive information.
|
19-10-2018 - 15:35 | 21-10-2005 - 01:02 | |
CVE-2005-3192 | 7.5 |
Heap-based buffer overflow in the StreamPredictor function in Xpdf 3.01, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, and (4) pdftohtml, (5) KOffice KWord, (6) CUPS, and (7) libextractor allows remote attackers to execute arbitra
|
19-10-2018 - 15:35 | 08-12-2005 - 01:03 | |
CVE-2005-3193 | 5.1 |
Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and earlier, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, (4) CUPS, and (5) libextractor allows user-
|
19-10-2018 - 15:35 | 07-12-2005 - 00:03 | |
CVE-2005-3275 | 2.6 |
The NAT code (1) ip_nat_proto_tcp.c and (2) ip_nat_proto_udp.c in Linux kernel 2.6 before 2.6.13 and 2.4 before 2.4.32-rc1 incorrectly declares a variable to be static, which allows remote attackers to cause a denial of service (memory corruption) by
|
19-10-2018 - 15:35 | 21-10-2005 - 01:02 | |
CVE-2005-3191 | 5.1 |
Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and earlier, as used in products such as (a) Poppler, (b) teTeX, (c) KD
|
19-10-2018 - 15:34 | 07-12-2005 - 01:03 | |
CVE-2005-2933 | 7.5 |
Buffer overflow in the mail_valid_net_parse_work function in mail.c for Washington's IMAP Server (UW-IMAP) before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote (") character without a
|
19-10-2018 - 15:34 | 13-10-2005 - 22:02 | |
CVE-2005-3055 | 2.1 |
Linux kernel 2.6.8 to 2.6.14-rc2 allows local users to cause a denial of service (kernel OOPS) via a userspace process that issues a USB Request Block (URB) to a USB device and terminates before the URB is finished, which leads to a stale pointer ref
|
19-10-2018 - 15:34 | 26-09-2005 - 19:03 | |
CVE-2005-3110 | 2.6 |
Race condition in ebtables netfilter module (ebtables.c) in Linux 2.6, when running on an SMP system that is operating under a heavy load, might allow remote attackers to cause a denial of service (crash) via a series of packets that cause a value to
|
19-10-2018 - 15:34 | 30-09-2005 - 10:05 | |
CVE-2005-3044 | 2.1 |
Multiple vulnerabilities in Linux kernel before 2.6.13.2 allow local users to cause a denial of service (kernel OOPS from null dereference) via (1) fput in a 32-bit ioctl on 64-bit x86 systems or (2) sockfd_put in the 32-bit routing_ioctl function on
|
19-10-2018 - 15:34 | 22-09-2005 - 21:03 | |
CVE-2005-3109 | 2.1 |
The HFS and HFS+ (hfsplus) modules in Linux 2.6 allow attackers to cause a denial of service (oops) by using hfsplus to mount a filesystem that is not hfsplus.
|
19-10-2018 - 15:34 | 30-09-2005 - 10:05 | |
CVE-2005-2929 | 7.5 |
Lynx 2.8.5, and other versions before 2.8.6dev.15, allows remote attackers to execute arbitrary commands via (1) lynxcgi:, (2) lynxexec, and (3) lynxprog links, which are not properly restricted in the default configuration in some environments.
|
19-10-2018 - 15:34 | 18-11-2005 - 06:03 | |
CVE-2005-2872 | 5.0 |
The ipt_recent kernel module (ipt_recent.c) in Linux kernel before 2.6.12, when running on 64-bit processors such as AMD64, allows remote attackers to cause a denial of service (kernel panic) via certain attacks such as SSH brute force, which leads t
|
19-10-2018 - 15:34 | 09-09-2005 - 19:07 | |
CVE-2005-3186 | 7.5 |
Integer overflow in the GTK+ gdk-pixbuf XPM image rendering library in GTK+ 2.4.0 allows attackers to execute arbitrary code via an XPM file with a number of colors that causes insufficient memory to be allocated, which leads to a heap-based buffer o
|
19-10-2018 - 15:34 | 18-11-2005 - 06:03 | |
CVE-2005-2876 | 7.2 |
umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2, and other packages such as loop-aes-utils, allows local users with unmount permissions to gain privileges via the -r (remount) option, which causes the file system to be remounted with just
|
19-10-2018 - 15:34 | 13-09-2005 - 23:03 | |
CVE-2005-2708 | 2.1 |
The search_binary_handler function in exec.c in Linux 2.4 kernel on 64-bit x86 architectures does not check a return code for a particular function call when virtual memory is low, which allows local users to cause a denial of service (panic), as dem
|
19-10-2018 - 15:33 | 25-10-2005 - 18:02 | |
CVE-2005-2641 | 7.5 |
Unknown vulnerability in pam_ldap before 180 does not properly handle a new password policy control, which could allow attackers to gain privileges. NOTE: CVE-2005-2497 had also been assigned to this issue, but CVE-2005-2641 is the correct candidate
|
19-10-2018 - 15:33 | 23-08-2005 - 04:00 | |
CVE-2005-2555 | 4.6 |
Linux kernel 2.6.x does not properly restrict socket policy access to users with the CAP_NET_ADMIN capability, which could allow local users to conduct unauthorized activities via (1) ipv4/ip_sockglue.c and (2) ipv6/ipv6_sockglue.c.
|
19-10-2018 - 15:33 | 16-08-2005 - 04:00 | |
CVE-2005-2798 | 5.0 |
sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to untrusted users or hosts.
|
19-10-2018 - 15:33 | 06-09-2005 - 17:03 | |
CVE-2005-2492 | 3.6 |
The raw_sendmsg function in the Linux kernel 2.6 before 2.6.13.1 allows local users to cause a denial of service (change hardware state) or read from arbitrary memory via crafted input.
|
19-10-2018 - 15:33 | 14-09-2005 - 19:03 | |
CVE-2005-2709 | 4.6 |
The sysctl functionality (sysctl.c) in Linux kernel before 2.6.14.1 allows local users to cause a denial of service (kernel oops) and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unreg
|
19-10-2018 - 15:33 | 20-11-2005 - 22:03 | |
CVE-2005-2495 | 5.1 |
Multiple integer overflows in XFree86 before 4.3.0 allow user-assisted attackers to execute arbitrary code via a crafted pixmap image.
|
19-10-2018 - 15:33 | 15-09-2005 - 20:03 | |
CVE-2005-2098 | 5.0 |
The KEYCTL_JOIN_SESSION_KEYRING operation in the Linux kernel before 2.6.12.5 contains an error path that does not properly release the session management semaphore, which allows local users or remote attackers to cause a denial of service (semaphore
|
19-10-2018 - 15:32 | 23-08-2005 - 04:00 | |
CVE-2005-2335 | 5.0 |
Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote POP3 servers to cause a denial of service and possibly execute arbitrary code via long UIDL responses. NOTE: a typo in an advisory accidentally used the wrong CVE identifie
|
19-10-2018 - 15:32 | 27-07-2005 - 04:00 | |
CVE-2005-2458 | 5.0 |
inflate.c in the zlib routines in the Linux kernel before 2.6.12.5 allows remote attackers to cause a denial of service (kernel crash) via a compressed file with "improper tables".
|
19-10-2018 - 15:32 | 23-08-2005 - 04:00 | |
CVE-2005-1934 | 5.0 |
Gaim before 1.3.1 allows remote attackers to cause a denial of service (crash) via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error.
|
19-10-2018 - 15:32 | 19-05-2005 - 04:00 | |
CVE-2005-2490 | 4.6 |
Stack-based buffer overflow in the sendmsg function call in the Linux kernel 2.6 before 2.6.13.1 allows local users to execute arbitrary code by calling sendmsg and modifying the message contents in another thread.
|
19-10-2018 - 15:32 | 14-09-2005 - 19:03 | |
CVE-2005-2177 | 5.0 |
Net-SNMP 5.0.x before 5.0.10.2, 5.2.x before 5.2.1.2, and 5.1.3, when net-snmp is using stream sockets such as TCP, allows remote attackers to cause a denial of service (daemon hang and CPU consumption) via a TCP packet of length 1, which triggers an
|
19-10-2018 - 15:32 | 11-07-2005 - 04:00 | |
CVE-2005-2099 | 5.0 |
The Linux kernel before 2.6.12.5 does not properly destroy a keyring that is not instantiated properly, which allows local users or remote attackers to cause a denial of service (kernel oops) via a keyring with a payload that is not empty, which caus
|
19-10-2018 - 15:32 | 23-08-2005 - 04:00 | |
CVE-2005-1918 | 2.6 |
The original patch for a GNU tar directory traversal vulnerability (CVE-2002-0399) in Red Hat Enterprise Linux 3 and 2.1 uses an "incorrect optimization" that allows user-assisted attackers to overwrite arbitrary files via a crafted tar file, probabl
|
19-10-2018 - 15:32 | 31-12-2005 - 05:00 | |
CVE-2005-1993 | 3.7 |
Race condition in sudo 1.3.1 up to 1.6.8p8, when the ALL pseudo-command is used after a user entry in the sudoers file, allows local users to gain privileges via a symlink attack.
|
19-10-2018 - 15:32 | 20-06-2005 - 04:00 | |
CVE-2005-2102 | 5.0 |
The AIM/ICQ module in Gaim before 1.5.0 allows remote attackers to cause a denial of service (application crash) via a filename that contains invalid UTF-8 characters.
|
19-10-2018 - 15:32 | 16-08-2005 - 04:00 | |
CVE-2005-0867 | 7.2 |
Integer overflow in Linux kernel 2.6 allows local users to overwrite kernel memory by writing to a sysfs file.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-0208 | 5.0 |
The HTML parsing functions in Gaim before 1.1.4 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0473.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-1763 | 7.2 |
Buffer overflow in ptrace in the Linux Kernel for 64-bit architectures allows local users to write bytes into kernel memory.
|
19-10-2018 - 15:31 | 09-06-2005 - 04:00 | |
CVE-2005-0967 | 5.0 |
Gaim 1.2.0 allows remote attackers to cause a denial of service (application crash) via a malformed file transfer request to a Jabber user, which leads to an out-of-bounds read.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-0472 | 5.0 |
Gaim before 1.1.3 allows remote attackers to cause a denial of service (infinite loop) via malformed SNAC packets from (1) AIM or (2) ICQ.
|
19-10-2018 - 15:31 | 14-03-2005 - 05:00 | |
CVE-2005-0088 | 7.5 |
The publisher handler for mod_python 2.7.8 and earlier allows remote attackers to obtain access to restricted objects via a crafted URL.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-1262 | 5.0 |
Gaim 1.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a malformed MSN message.
|
19-10-2018 - 15:31 | 11-05-2005 - 04:00 | |
CVE-2005-1264 | 7.2 |
Raw character devices (raw.c) in the Linux kernel 2.6.x call the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space, a similar vulnerability to CVE-2
|
19-10-2018 - 15:31 | 17-05-2005 - 04:00 | |
CVE-2005-0237 | 5.0 |
The International Domain Name (IDN) support in Konqueror 3.2.1 on KDE 3.2.1 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from o
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-1041 | 2.1 |
The fib_seq_start function in fib_hash.c in Linux kernel allows local users to cause a denial of service (system crash) via /proc/net/route.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-1704 | 4.6 |
Integer overflow in the Binary File Descriptor (BFD) library for gdb before 6.3, binutils, elfutils, and possibly other packages, allows user-assisted attackers to execute arbitrary code via a crafted object file that specifies a large number of sect
|
19-10-2018 - 15:31 | 24-05-2005 - 04:00 | |
CVE-2005-0473 | 5.0 |
The HTML parsing functions in Gaim before 1.1.3 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0208.
|
19-10-2018 - 15:31 | 14-03-2005 - 05:00 | |
CVE-2005-1410 | 2.1 |
The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause
|
19-10-2018 - 15:31 | 03-05-2005 - 04:00 | |
CVE-2005-1269 | 5.0 |
Gaim before 1.3.1 allows remote attackers to cause a denial of service (application crash) via a Yahoo! message with non-ASCII characters in a file name.
|
19-10-2018 - 15:31 | 16-06-2005 - 04:00 | |
CVE-2005-0977 | 2.1 |
The shmem_nopage function in shmem.c for the tmpfs driver in Linux kernel 2.6 does not properly verify the address argument, which allows local users to cause a denial of service (kernel crash) via an invalid address.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-0756 | 2.1 |
ptrace in Linux kernel 2.6.8.1 does not properly verify addresses on the amd64 platform, which allows local users to cause a denial of service (kernel crash).
|
19-10-2018 - 15:31 | 08-06-2005 - 04:00 | |
CVE-2005-0100 | 7.5 |
Format string vulnerability in the movemail utility in (1) Emacs 20.x, 21.3, and possibly other versions, and (2) XEmacs 21.4 and earlier, allows remote malicious POP3 servers to execute arbitrary code via crafted packets.
|
19-10-2018 - 15:31 | 07-02-2005 - 05:00 | |
CVE-2005-0953 | 3.7 |
Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-1267 | 5.0 |
The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet.
|
19-10-2018 - 15:31 | 10-06-2005 - 04:00 | |
CVE-2005-1265 | 2.1 |
The mmap function in the Linux Kernel 2.6.10 can be used to create memory maps with a start address beyond the end address, which allows local users to cause a denial of service (kernel crash).
|
19-10-2018 - 15:31 | 16-06-2005 - 04:00 | |
CVE-2005-1278 | 5.0 |
The isis_print function, as called by isoclns_print, in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via a zero length, as demonstrated using a GRE packet.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-1263 | 7.2 |
The elf_core_dump function in binfmt_elf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the create_elf_tables
|
19-10-2018 - 15:31 | 11-05-2005 - 04:00 | |
CVE-2005-1280 | 5.0 |
The rsvp_print function in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted RSVP packet of length 4.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-1279 | 5.0 |
tcpdump 3.8.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted (1) BGP packet, which is not properly handled by RT_ROUTING_INFO, or (2) LDP packet, which is not properly handled by the ldp_print function.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-1762 | 2.1 |
The ptrace call in the Linux kernel 2.6.8.1 and 2.6.10 for the AMD64 platform allows local users to cause a denial of service (kernel crash) via a "non-canonical" address.
|
19-10-2018 - 15:31 | 02-08-2005 - 04:00 | |
CVE-2005-0965 | 5.0 |
The gaim_markup_strip_html function in Gaim 1.2.0, and possibly earlier versions, allows remote attackers to cause a denial of service (application crash) via a string that contains malformed HTML, which causes an out-of-bounds read.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-0124 | 2.1 |
The coda_pioctl function in the coda functionality (pioctl.c) for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service (crash) or execute arbitrary code via negative vi.in_size or vi.out_size values, which may
|
19-10-2018 - 15:31 | 14-04-2005 - 04:00 | |
CVE-2005-1261 | 7.5 |
Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL.
|
19-10-2018 - 15:31 | 11-05-2005 - 04:00 | |
CVE-2005-1409 | 7.5 |
PostgreSQL 7.3.x through 8.0.x gives public EXECUTE access to certain character conversion functions, which allows unprivileged users to call those functions with malicious values, with unknown impact, aka the "Character conversion vulnerability."
|
19-10-2018 - 15:31 | 03-05-2005 - 04:00 | |
CVE-2005-1046 | 7.5 |
Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-0966 | 6.4 |
The IRC protocol plugin in Gaim 1.2.0, and possibly earlier versions, allows (1) remote attackers to inject arbitrary Gaim markup via irc_msg_kick, irc_msg_mode, irc_msg_part, irc_msg_quit, (2) remote attackers to inject arbitrary Pango markup and po
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2005-0396 | 2.1 |
Desktop Communication Protocol (DCOP) daemon, aka dcopserver, in KDE before 3.4 allows local users to cause a denial of service (dcopserver consumption) by "stalling the DCOP authentication process."
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
CVE-2004-0688 | 7.5 |
Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a
|
19-10-2018 - 15:30 | 20-10-2004 - 04:00 | |
CVE-2004-1014 | 5.0 |
statd in nfs-utils 1.257 and earlier does not ignore the SIGPIPE signal, which allows remote attackers to cause a denial of service (server process crash) via a TCP connection that is prematurely terminated.
|
19-10-2018 - 15:30 | 10-01-2005 - 05:00 | |
CVE-2004-0946 | 10.0 |
rquotad in nfs-utils (rquota_server.c) before 1.0.6-r6 on 64-bit architectures does not properly perform an integer conversion, which leads to a stack-based buffer overflow and allows remote attackers to execute arbitrary code via a crafted NFS reque
|
19-10-2018 - 15:30 | 10-01-2005 - 05:00 | |
CVE-2004-2069 | 5.0 |
sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceeding the LoginGraceTime setting, which leaves the co
|
19-10-2018 - 15:30 | 31-12-2004 - 05:00 | |
CVE-2004-1186 | 5.0 |
Multiple buffer overflows in enscript 1.6.3 allow remote attackers or local users to cause a denial of service (application crash).
|
19-10-2018 - 15:30 | 31-12-2004 - 05:00 | |
CVE-2004-1184 | 4.6 |
The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters.
|
19-10-2018 - 15:30 | 21-01-2005 - 05:00 | |
CVE-2004-1185 | 7.5 |
Enscript 1.6.3 does not sanitize filenames, which allows remote attackers or local users to execute arbitrary commands via crafted filenames.
|
19-10-2018 - 15:30 | 21-01-2005 - 05:00 | |
CVE-2002-2185 | 4.9 |
The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the
|
19-10-2018 - 15:29 | 31-12-2002 - 05:00 | |
CVE-2004-0057 | 5.0 |
The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via malformed ISAKMP packets that cause invalid "len" or "loc" values to be
|
19-10-2018 - 15:29 | 17-02-2004 - 05:00 | |
CVE-2003-0989 | 7.5 |
tcpdump before 3.8.1 allows remote attackers to cause a denial of service (infinite loop) via certain ISAKMP packets, a different vulnerability than CVE-2004-0057.
|
19-10-2018 - 15:29 | 17-02-2004 - 05:00 | |
CVE-2006-3626 | 6.2 |
Race condition in Linux kernel 2.6.17.4 and earlier allows local users to gain root privileges by using prctl with PR_SET_DUMPABLE in a way that causes /proc/self/environ to become setuid root.
|
18-10-2018 - 16:48 | 18-07-2006 - 15:46 | |
CVE-2006-3627 | 5.0 |
Unspecified vulnerability in the GSM BSSMAP dissector in Wireshark (aka Ethereal) 0.10.11 to 0.99.0 allows remote attackers to cause a denial of service (crash) via unspecified vectors. This vulnerability is addressed in the following product release
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
CVE-2006-3631 | 5.0 |
Unspecified vulnerability in the SSH dissector in Wireshark (aka Ethereal) 0.9.10 to 0.99.0 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. This vulnerability is addressed in the following product rele
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
CVE-2006-3677 | 7.5 |
Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a cra
|
18-10-2018 - 16:48 | 27-07-2006 - 19:04 | |
CVE-2006-3636 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in Mailman before 2.1.9rc1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
18-10-2018 - 16:48 | 06-09-2006 - 00:04 | |
CVE-2006-3628 | 10.0 |
Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissec
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
CVE-2006-3629 | 7.8 |
Unspecified vulnerability in the MOUNT dissector in Wireshark (aka Ethereal) 0.9.4 to 0.99.0 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. This vulnerability is addressed in the following product r
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
CVE-2006-3632 | 10.0 |
Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector. This vulnerability is addressed in the following product release:
Ethereal G
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
CVE-2006-3376 | 7.5 |
Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, and (6) imagemagick allows remote attackers to execute arbitrary code via the MaxRecordSize header field i
|
18-10-2018 - 16:47 | 06-07-2006 - 20:05 | |
CVE-2006-3242 | 7.5 |
Stack-based buffer overflow in the browse_get_namespace function in imap/browse.c of Mutt 1.4.2.1 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via long namespaces received from the IMAP server.
|
18-10-2018 - 16:46 | 27-06-2006 - 10:05 | |
CVE-2006-3113 | 7.5 |
Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via simultaneous XPCOM events, which causes a timer object to
|
18-10-2018 - 16:45 | 27-07-2006 - 20:04 | |
CVE-2006-3117 | 7.6 |
Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw,
|
18-10-2018 - 16:45 | 30-06-2006 - 18:05 | |
CVE-2006-3082 | 5.0 |
parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service (gpg crash) and possibly overwrite memory via a message packet with a large length (long user ID string), which could lead to a
|
18-10-2018 - 16:45 | 19-06-2006 - 18:02 | |
CVE-2006-3016 | 9.3 |
Unspecified vulnerability in session.c in PHP before 5.1.3 has unknown impact and attack vectors, related to "certain characters in session names," including special characters that are frequently associated with CRLF injection, SQL injection, cross-
|
18-10-2018 - 16:45 | 14-06-2006 - 23:02 | |
CVE-2006-2940 | 7.8 |
OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers to cause a denial of service (CPU consumption) via parasitic public keys with large (1) "public exponent" or (2) "public modulus" values in X.509 certificates tha
|
18-10-2018 - 16:44 | 28-09-2006 - 18:07 | |
CVE-2006-2937 | 7.8 |
OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a denial of service (infinite loop and memory consumption) via malformed ASN.1 structures that trigger an improperly handled error condition.
|
18-10-2018 - 16:43 | 28-09-2006 - 18:07 | |
CVE-2006-2783 | 4.3 |
Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode Byte-order-Mark (BOM) from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a BOM sequence in the mi
|
18-10-2018 - 16:42 | 02-06-2006 - 19:02 | |
CVE-2006-2781 | 6.4 |
Double free vulnerability in nsVCard.cpp in Mozilla Thunderbird before 1.5.0.4 and SeaMonkey before 1.0.2 allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via a VCard that contains invalid base64 charact
|
18-10-2018 - 16:42 | 02-06-2006 - 19:02 | |
CVE-2006-2784 | 5.1 |
The PLUGINSPAGE functionality in Mozilla Firefox before 1.5.0.4 allows remote user-assisted attackers to execute privileged code by tricking a user into installing missing plugins and selecting the "Manual Install" button, then using nested javascrip
|
18-10-2018 - 16:42 | 02-06-2006 - 19:02 | |
CVE-2006-2786 | 2.6 |
HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites
|
18-10-2018 - 16:42 | 02-06-2006 - 20:02 | |
CVE-2006-2782 | 4.3 |
Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote attackers to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control. Fixed in: Firefox 1.5
|
18-10-2018 - 16:42 | 02-06-2006 - 19:02 | |
CVE-2006-2779 | 9.3 |
Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) nested <option> tags in a select tag, (2) a DOMNodeRemoved mutation event, (3) "Content-implemented
|
18-10-2018 - 16:42 | 02-06-2006 - 19:02 | |
CVE-2006-2778 | 5.0 |
The crypto.signText function in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote attackers to execute arbitrary code via certain optional Certificate Authority name arguments, which causes an invalid array index and triggers a buffer over
|
18-10-2018 - 16:42 | 02-06-2006 - 18:02 | |
CVE-2006-2785 | 4.3 |
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 1.5.0.4 allows user-assisted remote attackers to inject arbitrary web script or HTML by tricking a user into (1) performing a "View Image" on a broken image in which the SRC attribute
|
18-10-2018 - 16:42 | 02-06-2006 - 19:02 | |
CVE-2006-2780 | 9.3 |
Integer overflow in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via "jsstr tagify," which leads to memory corruption. Fixed in: Firefox 1.5.0.4
Thu
|
18-10-2018 - 16:42 | 02-06-2006 - 19:02 | |
CVE-2006-2776 | 7.5 |
Certain privileged UI code in Mozilla Firefox and Thunderbird before 1.5.0.4 calls content-defined setters on an object prototype, which allows remote attackers to execute code at a higher privilege than intended. This vulnerability is addressed in t
|
18-10-2018 - 16:41 | 02-06-2006 - 18:02 | |
CVE-2006-2449 | 4.0 |
KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users to read arbitrary files via a symlink attack related to the session type for login. Vendor links provide patches for each version affected.
|
18-10-2018 - 16:40 | 15-06-2006 - 10:02 | |
CVE-2006-2451 | 4.6 |
The suid_dumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service (disk consumption) and possibly gain privileges via the PR_SET_DUMPABLE argument of the prc
|
18-10-2018 - 16:40 | 07-07-2006 - 18:05 | |
CVE-2006-2607 | 7.2 |
do_command.c in Vixie cron (vixie-cron) 4.1 does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or resource limits, as originally demonstrated by a progr
|
18-10-2018 - 16:40 | 25-05-2006 - 20:02 | |
CVE-2006-2447 | 5.1 |
SpamAssassin before 3.1.3, when running with vpopmail and the paranoid (-P) switch, allows remote attackers to execute arbitrary commands via a crafted message that is not properly handled when invoking spamd with the virtual pop username.
|
18-10-2018 - 16:40 | 06-06-2006 - 21:06 | |
CVE-2006-2313 | 7.5 |
PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications via invalid encodings of multibyte charact
|
18-10-2018 - 16:39 | 24-05-2006 - 10:06 | |
CVE-2006-2314 | 7.5 |
PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications that use multibyte encodings that allow th
|
18-10-2018 - 16:39 | 24-05-2006 - 10:06 | |
CVE-2006-2223 | 5.0 |
RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement configurations that (1) disable RIPv1 or (2) require plaintext or MD5 authentication, which allows remote attackers to obtain sensitive information (routing state) via REQUEST p
|
18-10-2018 - 16:38 | 05-05-2006 - 19:02 | |
CVE-2006-2224 | 5.0 |
RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly enforce RIPv2 authentication requirements, which allows remote attackers to modify routing state via RIPv1 RESPONSE packets.
|
18-10-2018 - 16:38 | 05-05-2006 - 19:02 | |
CVE-2006-2198 | 7.6 |
OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to conduct unauthorized activities via an OpenOffice document with a malicious BASIC macro, which is executed without prompting the user.
|
18-10-2018 - 16:38 | 30-06-2006 - 18:05 | |
CVE-2006-2071 | 2.1 |
Linux kernel 2.4.x and 2.6.x up to 2.6.16 allows local users to bypass IPC permissions and modify a readonly attachment of shared memory by using mprotect to give write permission to the attachment. NOTE: some original raw sources combined this issu
|
18-10-2018 - 16:37 | 27-04-2006 - 17:06 | |
CVE-2006-1990 | 5.0 |
Integer overflow in the wordwrap function in string.c in PHP 4.4.2 and 5.1.2 might allow context-dependent attackers to execute arbitrary code via certain long arguments that cause a small buffer to be allocated, which triggers a heap-based buffer ov
|
18-10-2018 - 16:37 | 24-04-2006 - 23:02 | |
CVE-2006-1864 | 4.6 |
Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1863.
|
18-10-2018 - 16:36 | 26-04-2006 - 18:06 | |
CVE-2006-1790 | 10.0 |
A regression fix in Mozilla Firefox 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the InstallTrigger.install method, which leads to memory corruption.
|
18-10-2018 - 16:36 | 14-04-2006 - 19:02 | |
CVE-2006-1737 | 9.3 |
Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary bytecode via
|
18-10-2018 - 16:35 | 14-04-2006 - 18:02 | |
CVE-2006-1739 | 9.3 |
The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary
|
18-10-2018 - 16:35 | 14-04-2006 - 10:02 | |
CVE-2006-1733 | 6.8 |
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 does not properly protect the compilation scope of privileged built-in XBL bindings, which allows remote attackers to execute
|
18-10-2018 - 16:35 | 14-04-2006 - 10:02 | |
CVE-2006-1740 | 2.6 |
Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to spoof secure site indicators such as the locked icon by opening the trusted site in a popup window, then changing
|
18-10-2018 - 16:35 | 14-04-2006 - 10:02 | |
CVE-2006-1738 | 5.0 |
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) by changing the (1) -moz-grid and (
|
18-10-2018 - 16:35 | 14-04-2006 - 18:02 | |
CVE-2006-1734 | 6.8 |
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using the Object.watch method to access the "clone parent" internal func
|
18-10-2018 - 16:35 | 14-04-2006 - 10:02 | |
CVE-2006-1741 | 4.3 |
Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to inject arbitrary Javascript into other sites by (1) "using a modal alert to suspend an event handler while a new p
|
18-10-2018 - 16:35 | 14-04-2006 - 10:02 | |
CVE-2006-1727 | 7.6 |
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to gain chrome privileges via multiple attack vectors related to t
|
18-10-2018 - 16:34 | 14-04-2006 - 10:02 | |
CVE-2006-1732 | 4.3 |
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin protections and conduct cross-site scripting (XSS)
|
18-10-2018 - 16:34 | 14-04-2006 - 10:02 | |
CVE-2006-1724 | 7.5 |
Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via atta
|
18-10-2018 - 16:34 | 14-04-2006 - 10:02 | |
CVE-2006-1721 | 2.6 |
digestmd5.c in the CMU Cyrus Simple Authentication and Security Layer (SASL) library 2.1.18, and possibly other versions before 2.1.21, allows remote unauthenticated attackers to cause a denial of service (segmentation fault) via malformed inputs in
|
18-10-2018 - 16:34 | 11-04-2006 - 23:02 | |
CVE-2006-1728 | 9.3 |
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via unknown vectors related to the crypt
|
18-10-2018 - 16:34 | 14-04-2006 - 10:02 | |
CVE-2006-1730 | 9.3 |
Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via a large number in the CSS letter-spacing prop
|
18-10-2018 - 16:34 | 14-04-2006 - 10:02 | |
CVE-2006-1731 | 4.3 |
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 returns the Object class prototype instead of the global window object when (1) .valueOf.call or (2) .valueOf.apply are calle
|
18-10-2018 - 16:34 | 14-04-2006 - 10:02 | |
CVE-2006-1526 | 2.1 |
Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest fro
|
18-10-2018 - 16:33 | 02-05-2006 - 21:06 | |
CVE-2006-1343 | 2.1 |
net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c in 2.6, does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the getsockopt function with SO_ORIGIN
|
18-10-2018 - 16:32 | 21-03-2006 - 18:02 | |
CVE-2006-1242 | 5.0 |
The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which b
|
18-10-2018 - 16:31 | 15-03-2006 - 17:06 | |
CVE-2006-1173 | 5.0 |
Sendmail before 8.13.7 allows remote attackers to cause a denial of service via deeply nested, malformed multipart MIME messages that exhaust the stack during the recursive mime8to7 function for performing 8-bit to 7-bit conversion, which prevents Se
|
18-10-2018 - 16:31 | 07-06-2006 - 23:06 | |
CVE-2006-1045 | 2.6 |
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive info
|
18-10-2018 - 16:30 | 07-03-2006 - 11:02 | |
CVE-2006-0884 | 9.3 |
The WYSIWYG rendering engine ("rich mail" editor) in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail containing a javascript U
|
18-10-2018 - 16:29 | 24-02-2006 - 22:02 | |
CVE-2006-6498 | 6.8 |
Multiple unspecified vulnerabilities in the JavaScript engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, SeaMonkey before 1.0.7, and Mozilla 1.7 and probably earlier on Solaris, allow remote attackers to
|
17-10-2018 - 21:48 | 20-12-2006 - 01:28 | |
CVE-2006-6497 | 6.8 |
Multiple unspecified vulnerabilities in the layout engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allow remote attackers to cause a denial of service (memory corruption and
|
17-10-2018 - 21:48 | 20-12-2006 - 01:28 | |
CVE-2006-6503 | 6.8 |
Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to bypass cross-site scripting (XSS) protection by changing the src attribute of an IMG element to a javascript:
|
17-10-2018 - 21:48 | 20-12-2006 - 01:28 | |
CVE-2006-6504 | 9.3 |
Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to execute arbitrary code by appending an SVG comment DOM node to another type of document, which triggers memory corruption.
|
17-10-2018 - 21:48 | 20-12-2006 - 01:28 | |
CVE-2006-6502 | 7.1 |
Use-after-free vulnerability in the LiveConnect bridge code for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) via unknown
|
17-10-2018 - 21:48 | 20-12-2006 - 01:28 | |
CVE-2006-6501 | 6.8 |
Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to gain privileges and install malicious code via the watch Javascript function.
|
17-10-2018 - 21:48 | 20-12-2006 - 01:28 | |
CVE-2006-6169 | 6.8 |
Heap-based buffer overflow in the ask_outfile_name function in openfile.c for GnuPG (gpg) 1.4 and 2.0, when running interactively, might allow attackers to execute arbitrary code via messages with "C-escape" expansions, which cause the make_printable
|
17-10-2018 - 21:47 | 29-11-2006 - 18:28 | |
CVE-2006-6235 | 10.0 |
A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG to dereference a function pointer from deallocated s
|
17-10-2018 - 21:47 | 07-12-2006 - 11:28 | |
CVE-2006-6097 | 4.0 |
GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPE_NAMES record with a symbolic link, which is not properly handled by the extract_archive function
|
17-10-2018 - 21:46 | 24-11-2006 - 18:07 | |
CVE-2006-6106 | 7.5 |
Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers to cause a denial of service
|
17-10-2018 - 21:46 | 19-12-2006 - 19:28 | |
CVE-2006-5925 | 7.5 |
Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements.
|
17-10-2018 - 21:45 | 15-11-2006 - 19:07 | |
CVE-2006-5867 | 7.8 |
fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.
|
17-10-2018 - 21:45 | 31-12-2006 - 05:00 | |
CVE-2006-5794 | 7.5 |
Unspecified vulnerability in the sshd Privilege Separation Monitor in OpenSSH before 4.5 causes weaker verification that authentication has been successful, which might allow attackers to bypass authentication. NOTE: as of 20061108, it is believed th
|
17-10-2018 - 21:45 | 08-11-2006 - 20:07 | |
CVE-2006-5870 | 9.3 |
Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that trig
|
17-10-2018 - 21:45 | 31-12-2006 - 05:00 | |
CVE-2006-5748 | 5.0 |
Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code vi
|
17-10-2018 - 21:44 | 08-11-2006 - 21:07 | |
CVE-2006-5740 | 5.0 |
Unspecified vulnerability in the LDAP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via a crafted LDAP packet.
|
17-10-2018 - 21:44 | 27-10-2006 - 23:07 | |
CVE-2006-5747 | 7.5 |
Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allows remote attackers to execute arbitrary code via the XML.prototype.hasOwnProperty JavaScript function.
|
17-10-2018 - 21:44 | 08-11-2006 - 21:07 | |
CVE-2006-5469 | 5.0 |
Unspecified vulnerability in the WBXML dissector in Wireshark (formerly Ethereal) 0.10.11 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger a null dereference.
|
17-10-2018 - 21:43 | 28-10-2006 - 00:07 | |
CVE-2006-5468 | 5.0 |
Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via unspecified vectors.
|
17-10-2018 - 21:43 | 27-10-2006 - 23:07 | |
CVE-2006-5463 | 7.5 |
Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allows remote attackers to execute arbitrary JavaScript bytecode via unspecified vectors involving modification of a Script object whi
|
17-10-2018 - 21:43 | 08-11-2006 - 22:07 | |
CVE-2006-5619 | 2.1 |
The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c) in Linux kernel 2.6 up to 2.6.18-stable allows local users to cause a denial of service (hang or oops) via unspecified manipulations that trigger an infinite loop while searching for flow
|
17-10-2018 - 21:43 | 31-10-2006 - 19:07 | |
CVE-2006-5464 | 5.0 |
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service (crash) via unspecified vectors.
|
17-10-2018 - 21:43 | 08-11-2006 - 21:07 | |
CVE-2006-5456 | 5.1 |
Multiple buffer overflows in GraphicsMagick before 1.1.7 and ImageMagick 6.0.7 allow user-assisted attackers to cause a denial of service and possibly execute arbitrary code via (1) a DCM image that is not properly handled by the ReadDCMImage functio
|
17-10-2018 - 21:43 | 23-10-2006 - 17:07 | |
CVE-2006-4924 | 7.8 |
sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service (CPU consumption) via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack d
|
17-10-2018 - 21:40 | 27-09-2006 - 01:07 | |
CVE-2006-4805 | 5.0 |
epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark (formerly Ethereal) 0.9.8 through 0.99.3 allows remote attackers to cause a denial of service (memory consumption and crash) via an encoded XOT packet that produces a ze
|
17-10-2018 - 21:39 | 27-10-2006 - 23:07 | |
CVE-2006-4624 | 2.6 |
CRLF injection vulnerability in Utils.py in Mailman before 2.1.9rc1 allows remote attackers to spoof messages in the error log and possibly trick the administrator into visiting malicious URLs via CRLF sequences in the URI.
|
17-10-2018 - 21:38 | 07-09-2006 - 19:04 | |
CVE-2006-4600 | 2.3 |
slapd in OpenLDAP before 2.3.25 allows remote authenticated users with selfwrite Access Control List (ACL) privileges to modify arbitrary Distinguished Names (DN).
|
17-10-2018 - 21:38 | 07-09-2006 - 00:04 | |
CVE-2006-4623 | 7.8 |
The Unidirectional Lightweight Encapsulation (ULE) decapsulation component in dvb-core/dvb_net.c in the dvb driver in the Linux kernel 2.6.17.8 allows remote attackers to cause a denial of service (crash) via an SNDU length of 0 in a ULE packet. Ther
|
17-10-2018 - 21:38 | 11-09-2006 - 17:04 | |
CVE-2006-4571 | 10.0 |
Multiple unspecified vulnerabilities in Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allow remote attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via unspecified ve
|
17-10-2018 - 21:38 | 15-09-2006 - 19:07 | |
CVE-2006-4567 | 2.6 |
Mozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it easy for users to accept self-signed certificates for the auto-update mechanism, which might allow remote user-assisted attackers to use DNS spoofing to trick users into visiting
|
17-10-2018 - 21:37 | 15-09-2006 - 18:07 | |
CVE-2006-4568 | 4.3 |
Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other atta
|
17-10-2018 - 21:37 | 15-09-2006 - 19:07 | |
CVE-2006-4569 | 2.6 |
The popup blocker in Mozilla Firefox before 1.5.0.7 opens the "blocked popups" display in the context of the Location bar instead of the subframe from which the popup originated, which might make it easier for remote user-assisted attackers to conduc
|
17-10-2018 - 21:37 | 15-09-2006 - 19:07 | |
CVE-2006-4565 | 9.3 |
Heap-based buffer overflow in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a JavaScript regular expression
|
17-10-2018 - 21:37 | 15-09-2006 - 18:07 | |
CVE-2006-4566 | 5.0 |
Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allows remote attackers to cause a denial of service (crash) via a malformed JavaScript regular expression that ends with a backslash in an unterminated character
|
17-10-2018 - 21:37 | 15-09-2006 - 18:07 | |
CVE-2006-4343 | 4.3 |
The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer derefer
|
17-10-2018 - 21:36 | 28-09-2006 - 18:07 | |
CVE-2006-4338 | 5.0 |
unlzh.c in the LHZ component in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted GZIP archive.
|
17-10-2018 - 21:35 | 19-09-2006 - 21:07 | |
CVE-2006-4337 | 7.5 |
Buffer overflow in the make_table function in the LHZ component in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted decoding table in a GZIP archive.
|
17-10-2018 - 21:34 | 19-09-2006 - 21:07 | |
CVE-2006-4330 | 4.3 |
Unspecified vulnerability in the SCSI dissector in Wireshark (formerly Ethereal) 0.99.2 allows remote attackers to cause a denial of service (crash) via unspecified vectors.
|
17-10-2018 - 21:34 | 24-08-2006 - 20:04 | |
CVE-2006-4335 | 7.5 |
Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code v
|
17-10-2018 - 21:34 | 19-09-2006 - 21:07 | |
CVE-2006-4336 | 7.5 |
Buffer underflow in the build_tree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted leaf count table that causes a write to a negative index.
|
17-10-2018 - 21:34 | 19-09-2006 - 21:07 | |
CVE-2006-4334 | 5.0 |
Unspecified vulnerability in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (crash) via a crafted GZIP (gz) archive, which results in a NULL dereference.
|
17-10-2018 - 21:34 | 19-09-2006 - 21:07 | |
CVE-2006-4096 | 5.0 |
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via a flood of recursive queries, which cause an INSIST failure when the response is received after the recursion queue is empty.
|
17-10-2018 - 21:33 | 06-09-2006 - 00:04 | |
CVE-2006-4144 | 2.6 |
Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via large (1) bytes_per_pixel, (2) columns, and (3) rows values
|
17-10-2018 - 21:33 | 15-08-2006 - 23:04 | |
CVE-2006-4145 | 4.9 |
The Universal Disk Format (UDF) filesystem driver in Linux kernel 2.6.17 and earlier allows local users to cause a denial of service (hang and crash) via certain operations involving truncated files, as demonstrated via the dd command.
|
17-10-2018 - 21:33 | 21-08-2006 - 19:04 | |
CVE-2006-3809 | 7.5 |
Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data by reading into a p
|
17-10-2018 - 21:31 | 27-07-2006 - 20:04 | |
CVE-2006-3811 | 7.5 |
Multiple vulnerabilities in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Javascript that leads to memory cor
|
17-10-2018 - 21:31 | 27-07-2006 - 20:04 | |
CVE-2006-3808 | 7.5 |
Mozilla Firefox before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote Proxy AutoConfig (PAC) servers to execute code with elevated privileges via a PAC script that sets the FindProxyForURL function to an eval method on a privileged object.
|
17-10-2018 - 21:31 | 27-07-2006 - 20:04 | |
CVE-2006-3812 | 2.6 |
Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copying or dragging links.
|
17-10-2018 - 21:31 | 29-07-2006 - 00:04 | |
CVE-2006-3810 | 6.8 |
Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the XPCNativeWrapper(window).Function construct.
|
17-10-2018 - 21:31 | 27-07-2006 - 20:04 | |
CVE-2006-3805 | 7.5 |
The Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving garbage collection that causes deletion of a temporary object
|
17-10-2018 - 21:30 | 27-07-2006 - 20:04 | |
CVE-2006-3806 | 7.5 |
Multiple integer overflows in the Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving (1) long strings in the toSourc
|
17-10-2018 - 21:30 | 27-07-2006 - 19:04 | |
CVE-2006-3807 | 7.5 |
Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code via script that changes the standard Object() constructor to return a reference to a privileged object and callin
|
17-10-2018 - 21:30 | 27-07-2006 - 19:04 | |
CVE-2006-3803 | 5.1 |
Race condition in the JavaScript garbage collection in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code by causing the garbage collector to delete a temp
|
17-10-2018 - 21:30 | 27-07-2006 - 19:04 | |
CVE-2006-3802 | 5.8 |
Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to hijack native DOM methods from objects in another domain and conduct cross-site scripting (XSS) attacks using DOM methods of the top-lev
|
17-10-2018 - 21:30 | 27-07-2006 - 20:04 | |
CVE-2006-3804 | 5.0 |
Heap-based buffer overflow in Mozilla Thunderbird before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service (crash) via a VCard attachment with a malformed base64 field, which copies more data than expected due to
|
17-10-2018 - 21:30 | 27-07-2006 - 19:04 | |
CVE-2006-3739 | 7.2 |
Integer overflow in the CIDAFM function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted Adobe Font Metrics (AFM) files with a modified number of character metrics (StartCharMetrics), which leads to a heap-
|
17-10-2018 - 21:29 | 13-09-2006 - 01:07 | |
CVE-2006-3746 | 5.0 |
Integer overflow in parse_comment in GnuPG (gpg) 1.4.4 allows remote attackers to cause a denial of service (segmentation fault) via a crafted message.
|
17-10-2018 - 21:29 | 28-07-2006 - 21:04 | |
CVE-2006-3745 | 7.2 |
Unspecified vulnerability in the sctp_make_abort_user function in the SCTP implementation in Linux 2.6.x before 2.6.17.10 and 2.4.23 up to 2.4.33 allows local users to cause a denial of service (panic) and possibly gain root privileges via unknown at
|
17-10-2018 - 21:29 | 23-08-2006 - 19:04 | |
CVE-2006-3740 | 7.2 |
Integer overflow in the scan_cidfont function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted (1) CMap and (2) CIDFont font data with modified item counts in the (a) begincodespacerange, (b) cidrange, and
|
17-10-2018 - 21:29 | 13-09-2006 - 01:07 | |
CVE-2006-3738 | 10.0 |
Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers. Failed exploit attempts may crash appl
|
17-10-2018 - 21:29 | 28-09-2006 - 18:07 | |
CVE-2006-5868 | 9.3 |
Multiple buffer overflows in Imagemagick 6.0 before 6.0.6.2, and 6.2 before 6.2.4.5, has unknown impact and user-assisted attack vectors via a crafted SGI image.
|
17-10-2018 - 17:51 | 22-11-2006 - 01:07 | |
CVE-2006-4093 | 4.9 |
Linux kernel 2.x.6 before 2.6.17.9 and 2.4.x before 2.4.33.1 on PowerPC PPC970 systems allows local users to cause a denial of service (crash) related to the "HID0 attention enable on PPC970 at boot time." Upgrade to Linux Kernel version 2.4.33.1
|
17-10-2018 - 17:00 | 21-08-2006 - 21:04 | |
CVE-2007-2797 | 2.1 |
xterm, including 192-7.el4 in Red Hat Enterprise Linux and 208-3.1 in Debian GNU/Linux, sets the wrong group ownership of tty devices, which allows local users to write data to other users' terminals.
|
16-10-2018 - 16:45 | 27-08-2007 - 17:17 | |
CVE-2007-1711 | 6.8 |
Double free vulnerability in the unserializer in PHP 4.4.5 and 4.4.6 allows context-dependent attackers to execute arbitrary code by overwriting variables pointing to (1) the GLOBALS array or (2) the session data in _SESSION. NOTE: this issue was in
|
16-10-2018 - 16:40 | 27-03-2007 - 01:19 | |
CVE-2007-1286 | 6.8 |
Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter.
|
16-10-2018 - 16:37 | 06-03-2007 - 20:19 | |
CVE-2007-1092 | 9.3 |
Mozilla Firefox 1.5.0.9 and 2.0.0.1, and SeaMonkey before 1.0.8 allow remote attackers to execute arbitrary code via JavaScript onUnload handlers that modify the structure of a document, wich triggers memory corruption due to the lack of a finalize h
|
16-10-2018 - 16:36 | 26-02-2007 - 17:28 | |
CVE-2006-6899 | 5.4 |
hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack.
|
16-10-2018 - 16:29 | 31-12-2006 - 05:00 | |
CVE-2005-0109 | 4.7 |
Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain
|
16-10-2018 - 12:06 | 05-03-2005 - 05:00 | |
CVE-2008-0888 | 9.3 |
The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a
|
15-10-2018 - 22:03 | 17-03-2008 - 21:44 | |
CVE-2007-5935 | 6.8 |
Stack-based buffer overflow in hpc.c in dvips in teTeX and TeXlive 2007 and earlier allows user-assisted attackers to execute arbitrary code via a DVI file with a long href tag.
|
15-10-2018 - 21:47 | 13-11-2007 - 22:46 | |
CVE-2007-5378 | 4.3 |
Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is sm
|
15-10-2018 - 21:44 | 12-10-2007 - 01:17 | |
CVE-2007-4990 | 7.5 |
The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values that specify an arbitrary number of
|
15-10-2018 - 21:39 | 05-10-2007 - 21:17 | |
CVE-2013-3857 | 9.3 |
Microsoft Word Automation Services in SharePoint Server 2010 SP1 and SP2, Word Web App 2010 SP1 and SP2 in Office Web Apps 2010, Word 2003 SP3, Word 2007 SP3, Word 2010 SP1 and SP2, Office Compatibility Pack SP3, and Word Viewer allow remote attacker
|
12-10-2018 - 22:05 | 11-09-2013 - 14:03 | |
CVE-2013-3850 | 9.3 |
Microsoft Word 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Office Compatibility Pack SP3; and Word Viewer allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Word Memory
|
12-10-2018 - 22:04 | 11-09-2013 - 14:03 | |
CVE-2011-1969 | 9.3 |
Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 provides the MicrosoftClient.jar file containing a signed Java applet, which allows remote attackers to execute arbitrary code on client machines via unspecified
|
12-10-2018 - 22:01 | 12-10-2011 - 02:52 | |
CVE-2011-1896 | 4.3 |
Cross-site scripting (XSS) vulnerability in Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "ExcelTable Reflected XSS
|
12-10-2018 - 22:01 | 12-10-2011 - 02:52 | |
CVE-2011-1895 | 4.3 |
CRLF injection vulnerability in Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 allows remote attackers to inject arbitrary HTTP headers, and conduct HTTP response splitting attacks and cross-site scripting (XS
|
12-10-2018 - 22:01 | 12-10-2011 - 02:52 | |
CVE-2011-1897 | 4.3 |
Cross-site scripting (XSS) vulnerability in Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Default Reflected XSS Vul
|
12-10-2018 - 22:01 | 12-10-2011 - 02:52 | |
CVE-2011-2012 | 5.0 |
Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 does not properly validate session cookies, which allows remote attackers to cause a denial of service (IIS outage) via unspecified network traffic, aka "Null Ses
|
12-10-2018 - 22:01 | 12-10-2011 - 02:52 | |
CVE-2011-1272 | 9.3 |
Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 do not properly validate rec
|
12-10-2018 - 22:00 | 16-06-2011 - 20:55 | |
CVE-2011-1274 | 9.3 |
Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 do not properly validate rec
|
12-10-2018 - 22:00 | 16-06-2011 - 20:55 | |
CVE-2011-1276 | 9.3 |
Buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows re
|
12-10-2018 - 22:00 | 16-06-2011 - 20:55 | |
CVE-2010-3973 | 9.3 |
The WMITools ActiveX control in WBEMSingleView.ocx 1.50.1131.0 in Microsoft WMI Administrative Tools 1.1 and earlier in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via a crafted argument to the AddContextRef met
|
12-10-2018 - 21:59 | 23-12-2010 - 18:00 | |
CVE-2011-0978 | 9.3 |
Stack-based buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary c
|
12-10-2018 - 21:59 | 10-02-2011 - 19:00 | |
CVE-2010-3232 | 9.3 |
Microsoft Excel 2003 SP3 and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 do not properly validate record informa
|
12-10-2018 - 21:58 | 13-10-2010 - 19:00 | |
CVE-2009-0561 | 9.3 |
Integer overflow in Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Office System SP1 and SP2; Open XML File Format Converter for Mac; Microsoft Office Excel Viewer 2003 SP
|
12-10-2018 - 21:50 | 10-06-2009 - 18:30 | |
CVE-2008-4264 | 9.3 |
Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open
|
12-10-2018 - 21:48 | 10-12-2008 - 14:00 | |
CVE-2008-3015 | 9.3 |
Integer overflow in gdiplus.dll in GDI+ in Microsoft Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2,
|
12-10-2018 - 21:47 | 11-09-2008 - 01:11 | |
CVE-2008-1091 | 9.3 |
Unspecified vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via a Rich Text Format (.rtf) file with a malformed string that triggers
|
12-10-2018 - 21:45 | 13-05-2008 - 22:20 | |
CVE-2007-0675 | 7.6 |
A certain ActiveX control in sapi.dll (aka the Speech API) in Speech Components in Microsoft Windows Vista, when the Speech Recognition feature is enabled, allows user-assisted remote attackers to delete arbitrary files, and conduct other unauthorize
|
12-10-2018 - 21:42 | 03-02-2007 - 01:28 | |
CVE-2005-0211 | 7.5 |
Buffer overflow in wccp.c in Squid 2.5 before 2.5.STABLE7 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length pa
|
12-10-2018 - 18:28 | 02-05-2005 - 04:00 | |
CVE-2010-1083 | 4.7 |
The processcompl_compat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other versions, does not clear the transfer buffer before returning to userspace when a USB command fails, which might make it easier for
|
10-10-2018 - 19:55 | 06-04-2010 - 22:30 | |
CVE-2009-1309 | 4.3 |
Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey do not properly implement the Same Origin Policy for (1) XMLHttpRequest, involving a mismatch for a document's principal, and (2) XPCNativeWrapper.toString, involving an incorrect __proto__ sco
|
03-10-2018 - 22:00 | 22-04-2009 - 18:30 | |
CVE-2009-1307 | 6.8 |
The view-source: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey does not properly implement the Same Origin Policy, which allows remote attackers to (1) bypass crossdomain.xml restrictions and connect to arbitrary web
|
03-10-2018 - 21:59 | 22-04-2009 - 18:30 | |
CVE-2009-1306 | 4.3 |
The jar: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey does not follow the Content-Disposition header of the inner URI, which allows remote attackers to conduct cross-site scripting (XSS) attacks and possibly other at
|
03-10-2018 - 21:59 | 22-04-2009 - 18:30 | |
CVE-2009-1304 | 5.0 |
The JavaScript engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly trigger memory corruption via vectors involving
|
03-10-2018 - 21:59 | 22-04-2009 - 18:30 | |
CVE-2009-1305 | 5.0 |
The JavaScript engine in Mozilla Firefox before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly trigger memory corruption via vectors involving JSOP
|
03-10-2018 - 21:59 | 22-04-2009 - 18:30 | |
CVE-2009-1302 | 5.0 |
The browser engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly trigger memory corruption via vectors related to (1
|
03-10-2018 - 21:59 | 22-04-2009 - 18:30 | |
CVE-2009-0772 | 9.3 |
The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to nsCSSStyleSheet::GetO
|
03-10-2018 - 21:58 | 05-03-2009 - 02:30 | |
CVE-2009-0776 | 7.1 |
nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to bypass the same-origin policy and read XML data from another domain via a cross-domain redirect.
|
03-10-2018 - 21:58 | 05-03-2009 - 02:30 | |
CVE-2009-0774 | 9.3 |
The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to gczeal, a different v
|
03-10-2018 - 21:58 | 05-03-2009 - 02:30 | |
CVE-2008-5702 | 7.2 |
Buffer underflow in the ibwdt_ioctl function in drivers/watchdog/ib700wdt.c in the Linux kernel before 2.6.28-rc1 might allow local users to have an unknown impact via a certain /dev/watchdog WDIOC_SETTIMEOUT IOCTL call.
|
03-10-2018 - 21:57 | 22-12-2008 - 15:30 | |
CVE-2006-2788 | 7.5 |
Double free vulnerability in the getRawDER function for nsIX509Cert in Firefox allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via certain Javascript code.
|
03-10-2018 - 21:42 | 02-06-2006 - 21:06 | |
CVE-2006-2276 | 4.9 |
bgpd in Quagga 0.98 and 0.99 before 20060504 allows local users to cause a denial of service (CPU consumption) via a certain sh ip bgp command entered in the telnet interface.
|
03-10-2018 - 21:40 | 10-05-2006 - 02:14 | |
CVE-2006-2193 | 7.5 |
Buffer overflow in the t2p_write_pdf_string function in tiff2pdf in libtiff 3.8.2 and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a TIFF file with a DocumentName tag that contains UTF-8 charac
|
03-10-2018 - 21:40 | 08-06-2006 - 19:06 | |
CVE-2006-2120 | 2.1 |
The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read.
|
03-10-2018 - 21:40 | 01-05-2006 - 22:06 | |
CVE-2006-2026 | 6.5 |
Double free vulnerability in tif_jpeg.c in libtiff before 3.8.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image that triggers errors related to "setfield/getfield me
|
03-10-2018 - 21:40 | 25-04-2006 - 23:02 | |
CVE-2006-1931 | 5.0 |
The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking sockets, which allows attackers to cause a denial of service (blocked connections) via a large amount of data.
|
03-10-2018 - 21:40 | 20-04-2006 - 21:02 | |
CVE-2006-2025 | 6.5 |
Integer overflow in the TIFFFetchData function in tif_dirread.c for libtiff before 3.8.1 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via a crafted TIFF image. This vulnerability is addressed in
|
03-10-2018 - 21:40 | 25-04-2006 - 23:02 | |
CVE-2006-2024 | 4.0 |
Multiple vulnerabilities in libtiff before 3.8.1 allow context-dependent attackers to cause a denial of service via a TIFF image that triggers errors in (1) the TIFFFetchAnyArray function in (a) tif_dirread.c; (2) certain "codec cleanup methods" in (
|
03-10-2018 - 21:40 | 25-04-2006 - 23:02 | |
CVE-2006-1525 | 4.9 |
ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users to cause a denial of service (panic) via a request for a route for a multicast IP address, which triggers a null dereference.
|
03-10-2018 - 21:37 | 19-04-2006 - 18:18 | |
CVE-2006-1057 | 3.7 |
Race condition in daemon/slave.c in gdm before 2.14.1 allows local users to gain privileges via a symlink attack when gdm performs chown and chgrp operations on the .ICEauthority file.
|
03-10-2018 - 21:36 | 25-04-2006 - 01:02 | |
CVE-2006-0741 | 1.2 |
Linux kernel before 2.6.15.5, when running on Intel processors, allows local users to cause a denial of service ("endless recursive fault") via unknown attack vectors related to a "bad elf entry address."
|
03-10-2018 - 21:35 | 07-03-2006 - 02:02 | |
CVE-2006-0555 | 2.1 |
The Linux Kernel before 2.6.15.5 allows local users to cause a denial of service (NFS client panic) via unknown attack vectors related to the use of O_DIRECT (direct I/O).
|
03-10-2018 - 21:35 | 07-03-2006 - 02:02 | |
CVE-2006-0457 | 7.1 |
Race condition in the (1) add_key, (2) request_key, and (3) keyctl functions in Linux kernel 2.6.x allows local users to cause a denial of service (crash) or read sensitive kernel memory by modifying the length of a string argument between the time t
|
03-10-2018 - 21:35 | 14-03-2006 - 02:02 | |
CVE-2006-0557 | 4.9 |
sys_mbind in mempolicy.c in Linux kernel 2.6.16 and earlier does not sanity check the maxnod variable before making certain computations for the get_nodes function, which has unknown impact and attack vectors.
|
03-10-2018 - 21:35 | 12-03-2006 - 21:02 | |
CVE-2006-0742 | 4.6 |
The die_if_kernel function in arch/ia64/kernel/unaligned.c in Linux kernel 2.6.x before 2.6.15.6, possibly when compiled with certain versions of gcc, has the "noreturn" attribute set, which allows local users to cause a denial of service by causing
|
03-10-2018 - 21:35 | 09-03-2006 - 13:06 | |
CVE-2005-4268 | 3.7 |
Buffer overflow in cpio 2.6-8.FC4 on 64-bit platforms, when creating a cpio archive, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a file whose size is represented by more than 8 digits.
|
03-10-2018 - 21:34 | 15-12-2005 - 18:11 | |
CVE-2006-0052 | 5.0 |
The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part tha
|
03-10-2018 - 21:34 | 31-03-2006 - 11:06 | |
CVE-2005-3662 | 4.6 |
Off-by-one buffer overflow in pnmtopng before 2.39, when using the -alpha command line option (Alphas_Of_Color), allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNM file with exactly 256 colors.
|
03-10-2018 - 21:33 | 18-11-2005 - 02:02 | |
CVE-2005-3858 | 7.8 |
Memory leak in the ip6_input_finish function in ip6_input.c in Linux kernel 2.6.12 and earlier might allow attackers to cause a denial of service via malformed IPv6 packets with unspecified parameter problems, which prevents the SKB from being freed.
|
03-10-2018 - 21:33 | 27-11-2005 - 22:03 | |
CVE-2005-3632 | 4.6 |
Multiple buffer overflows in pnmtopng in netpbm 10.0 and earlier allow attackers to execute arbitrary code via a crafted PNM file.
|
03-10-2018 - 21:33 | 21-11-2005 - 22:03 | |
CVE-2005-3848 | 7.8 |
Memory leak in the icmp_push_reply function in Linux 2.6 before 2.6.12.6 and 2.6.13 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted packets that cause the ip_append_data function to fail, aka "D
|
03-10-2018 - 21:33 | 27-11-2005 - 00:03 | |
CVE-2005-3185 | 7.5 |
Stack-based buffer overflow in the ntlm_output function in http-ntlm.c for (1) wget 1.10, (2) curl 7.13.2, and (3) libcurl 7.13.2, and other products that use libcurl, when NTLM authentication is enabled, allows remote servers to execute arbitrary co
|
03-10-2018 - 21:31 | 13-10-2005 - 22:02 | |
CVE-2005-3257 | 4.6 |
The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using
|
03-10-2018 - 21:31 | 18-10-2005 - 22:02 | |
CVE-2005-2978 | 7.5 |
pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap (PNM) images to Portable Network Graphics (PNG), which might allow attackers to execute arbitrary code by modif
|
03-10-2018 - 21:31 | 18-10-2005 - 22:02 | |
CVE-2005-2550 | 7.5 |
Format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user se
|
03-10-2018 - 21:31 | 12-08-2005 - 04:00 | |
CVE-2005-3272 | 5.0 |
Linux kernel before 2.6.12 allows remote attackers to poison the bridge forwarding table using frames that have already been dropped by filtering, which can cause the bridge to forward spoofed packets.
|
03-10-2018 - 21:31 | 21-10-2005 - 01:02 | |
CVE-2005-1686 | 2.6 |
Format string vulnerability in gedit 2.10.2 may allow attackers to cause a denial of service (application crash) via a bin file with format string specifiers in the filename. NOTE: while this issue is triggered on the command line by the gedit user,
|
03-10-2018 - 21:30 | 20-05-2005 - 04:00 | |
CVE-2005-1739 | 5.0 |
The XWD Decoder in ImageMagick before 6.2.2.3, and GraphicsMagick before 1.1.6-r1, allows remote attackers to cause a denial of service (infinite loop) via an image with a zero color mask.
|
03-10-2018 - 21:30 | 24-05-2005 - 04:00 | |
CVE-2005-2549 | 7.5 |
Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task li
|
03-10-2018 - 21:30 | 12-08-2005 - 04:00 | |
CVE-2004-2014 | 2.6 |
Wget 1.9 and 1.9.1 allows local users to overwrite arbitrary files via a symlink attack on the name of the file being downloaded.
|
03-10-2018 - 21:29 | 31-12-2004 - 05:00 | |
CVE-2005-0664 | 2.6 |
Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a
|
03-10-2018 - 21:29 | 02-05-2005 - 04:00 | |
CVE-2005-0448 | 1.2 |
Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452.
|
03-10-2018 - 21:29 | 02-05-2005 - 04:00 | |
CVE-2004-1125 | 9.3 |
Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers to cause a denial of service (application crash) and
|
03-10-2018 - 21:29 | 10-01-2005 - 05:00 | |
CVE-2004-0983 | 5.0 |
The CGI module in Ruby 1.6 before 1.6.8, and 1.8 before 1.8.2, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a certain HTTP request.
|
03-10-2018 - 21:29 | 01-03-2005 - 05:00 | |
CVE-2005-0767 | 6.9 |
Race condition in the Radeon DRI driver for Linux kernel 2.6.8.1 allows local users with DRI privileges to execute arbitrary code as root.
|
03-10-2018 - 21:29 | 15-03-2005 - 05:00 | |
CVE-2005-0749 | 7.2 |
The load_elf_library in the Linux kernel before 2.6.11.6 allows local users to cause a denial of service (kernel crash) via a crafted ELF library or executable, which causes a free of an invalid pointer.
|
03-10-2018 - 21:29 | 01-04-2005 - 05:00 | |
CVE-2005-0400 | 2.1 |
The ext2_make_empty function call in the Linux kernel before 2.6.11.6 does not properly initialize memory when creating a block for a new directory entry, which allows local users to obtain potentially sensitive information by reading the block.
|
03-10-2018 - 21:29 | 02-05-2005 - 04:00 | |
CVE-2004-1487 | 5.0 |
wget 1.8.x and 1.9.x allows a remote malicious web server to overwrite certain files via a redirection URL containing a ".." that resolves to the IP address of the malicious server, which bypasses wget's filtering for ".." sequences.
|
03-10-2018 - 21:29 | 27-04-2005 - 04:00 | |
CVE-2005-0384 | 5.0 |
Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via a pppd client.
|
03-10-2018 - 21:29 | 15-03-2005 - 05:00 | |
CVE-2004-1267 | 6.5 |
Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote attackers to execute arbitrary code via a crafted HPGL file.
|
03-10-2018 - 21:29 | 10-01-2005 - 05:00 | |
CVE-2004-1058 | 1.2 |
Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline.
|
03-10-2018 - 21:29 | 10-01-2005 - 05:00 | |
CVE-2004-1269 | 5.0 |
lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail.
|
03-10-2018 - 21:29 | 10-01-2005 - 05:00 | |
CVE-2005-0736 | 2.1 |
Integer overflow in sys_epoll_wait in eventpoll.c for Linux kernel 2.6 to 2.6.11 allows local users to overwrite kernel memory via a large number of events.
|
03-10-2018 - 21:29 | 09-03-2005 - 05:00 | |
CVE-2005-0605 | 7.5 |
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
|
03-10-2018 - 21:29 | 02-03-2005 - 05:00 | |
CVE-2005-0806 | 5.0 |
Evolution 2.0.3 allows remote attackers to cause a denial of service (application crash or hang) via crafted messages, possibly involving charsets in attachment filenames.
|
03-10-2018 - 21:29 | 02-05-2005 - 04:00 | |
CVE-2004-1488 | 5.0 |
wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.
|
03-10-2018 - 21:29 | 27-04-2005 - 04:00 | |
CVE-2005-0626 | 2.6 |
Race condition in Squid 2.5.STABLE7 to 2.5.STABLE9, when using the Netscape Set-Cookie recommendations for handling cookies in caches, may cause Set-Cookie headers to be sent to other users, which allows attackers to steal the related cookies.
|
03-10-2018 - 21:29 | 08-03-2005 - 05:00 | |
CVE-2005-0449 | 7.1 |
The netfilter/iptables module in Linux before 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) or bypass firewall rules via crafted packets, which are not properly handled by the skb_checksum_help function.
|
03-10-2018 - 21:29 | 02-05-2005 - 04:00 | |
CVE-2004-1268 | 2.1 |
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
|
03-10-2018 - 21:29 | 10-01-2005 - 05:00 | |
CVE-2005-0201 | 2.1 |
D-BUS (dbus) before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket.
|
03-10-2018 - 21:29 | 29-06-2005 - 04:00 | |
CVE-2005-3107 | 2.1 |
fs/exec.c in Linux 2.6, when one thread is tracing another thread that shares the same memory map, might allow local users to cause a denial of service (deadlock) by forcing a core dump when the traced thread is in the TASK_TRACED state.
|
13-08-2018 - 21:47 | 30-09-2005 - 10:05 | |
CVE-2005-0155 | 4.6 |
The PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to create arbitrary files via the PERLIO_DEBUG variable.
|
13-08-2018 - 21:47 | 02-05-2005 - 04:00 | |
CVE-2005-3105 | 2.1 |
The mprotect code (mprotect.c) in Linux 2.6 on Itanium IA64 Montecito processors does not properly maintain cache coherency as required by the architecture, which allows local users to cause a denial of service and possibly corrupt data by modifying
|
13-08-2018 - 21:47 | 30-09-2005 - 10:05 | |
CVE-2005-0156 | 2.1 |
Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose full pathname contains a long
|
13-08-2018 - 21:47 | 07-02-2005 - 05:00 | |
CVE-2003-1040 | 2.1 |
kmod in the Linux kernel does not set its uid, suid, gid, or sgid to 0, which allows local users to cause a denial of service (crash) by sending certain signals to kmod.
|
13-08-2018 - 21:47 | 15-04-2004 - 04:00 | |
CVE-2004-0941 | 10.0 |
Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set
|
03-05-2018 - 01:29 | 09-02-2005 - 05:00 | |
CVE-2004-0180 | 2.6 |
The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405.
|
03-05-2018 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2004-1016 | 2.1 |
The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9, allows local users to cause a denial of service (system hang) via crafted auxiliary messages that are passed to the sendmsg function, which causes a de
|
03-05-2018 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2005-0525 | 5.0 |
The php_next_marker function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 and 5.0.3, as reachable by the getimagesize PHP function, allows remote attackers to cause a denial of service (infinite loop) via a JPEG image with an invalid marker value, which c
|
03-05-2018 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-2969 | 5.0 |
The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSL_OP_MSIE_SSLV2_RSA_PADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allow
|
03-05-2018 - 01:29 | 18-10-2005 - 21:02 | |
CVE-2005-0524 | 5.0 |
The php_handle_iff function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 and 5.0.3, as reachable by the getimagesize PHP function, allows remote attackers to cause a denial of service (infinite loop) via a -8 size value.
|
03-05-2018 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0541 | 10.0 |
Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote attackers to execute arbitrary code via a long password ("pass" variable).
|
03-05-2018 - 01:29 | 06-08-2004 - 04:00 | |
CVE-2005-2871 | 7.5 |
Buffer overflow in the International Domain Name (IDN) support in Mozilla Firefox 1.0.6 and earlier, and Netscape 8.0.3.3 and 7.2, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a hostname with al
|
03-05-2018 - 01:29 | 09-09-2005 - 18:03 | |
CVE-2005-0989 | 5.0 |
The find_replen function in jsstr.c in the Javascript engine for Mozilla Suite 1.7.6, Firefox 1.0.1 and 1.0.2, and Netscape 7.2 allows remote attackers to read portions of heap memory in a Javascript string via the lambda replace method.
|
03-05-2018 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0401 | 5.1 |
FireFox 1.0.1 and Mozilla before 1.7.6 do not sufficiently address all attack vectors for loading chrome files and hijacking drag and drop events, which allows remote attackers to execute arbitrary XUL code by tricking a user into dragging a scrollba
|
03-05-2018 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0399 | 5.1 |
Heap-based buffer overflow in GIF2.cpp in Firefox before 1.0.2, Mozilla before to 1.7.6, and Thunderbird before 1.0.2, and possibly other applications that use the same library, allows remote attackers to execute arbitrary code via a GIF image with a
|
03-05-2018 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0902 | 10.0 |
Multiple heap-based buffer overflows in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to cause a denial of service (application crash) or execute arbitrary code via (1) the "Send p
|
03-05-2018 - 01:29 | 27-01-2005 - 05:00 | |
CVE-2005-1751 | 3.7 |
Race condition in shtool 2.0.1 and earlier allows local users to create or modify arbitrary files via a symlink attack on the .shtool.$$ temporary file, a different vulnerability than CVE-2005-1759.
|
03-05-2018 - 01:29 | 25-05-2005 - 04:00 | |
CVE-2004-0424 | 7.2 |
Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.
|
03-05-2018 - 01:29 | 07-07-2004 - 04:00 | |
CVE-2004-0414 | 10.0 |
CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle malformed "Entry" lines, which prevents a NULL terminator from being used and may lead to a denial of service (crash), modification of critical program data, or arbitrary
|
03-05-2018 - 01:29 | 06-08-2004 - 04:00 | |
CVE-2004-1137 | 10.0 |
Multiple vulnerabilities in the IGMP functionality for Linux kernel 2.4.22 to 2.4.28, and 2.6.x to 2.6.9, allow local and remote attackers to cause a denial of service or execute arbitrary code via (1) the ip_mc_source function, which decrements a co
|
03-05-2018 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-0418 | 10.0 |
serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow remote attackers to perform an "out-of-bounds" write for a single byte to execute arbitrary code or modify critical prog
|
03-05-2018 - 01:29 | 06-08-2004 - 04:00 | |
CVE-2004-0417 | 5.0 |
Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consu
|
03-05-2018 - 01:29 | 06-08-2004 - 04:00 | |
CVE-2004-1316 | 5.0 |
Heap-based buffer overflow in MSG_UnEscapeSearchUrl in nsNNTPProtocol.cpp for Mozilla 1.7.3 and earlier allows remote attackers to cause a denial of service (application crash) via an NNTP URL (news:) with a trailing '\' (backslash) character, which
|
03-05-2018 - 01:29 | 29-12-2004 - 05:00 | |
CVE-2004-0558 | 5.0 |
The Internet Printing Protocol (IPP) implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of service (service hang) via a certain UDP packet to the IPP port.
|
13-03-2018 - 01:29 | 28-09-2004 - 04:00 | |
CVE-1999-1572 | 2.1 |
cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files
|
19-10-2017 - 01:29 | 16-07-1996 - 04:00 | |
CVE-2006-2440 | 7.5 |
Heap-based buffer overflow in the libMagick component of ImageMagick 6.0.6.2 might allow attackers to execute arbitrary code via an image index array that triggers the overflow during filename glob expansion by the ExpandFilenames function.
|
12-10-2017 - 01:29 | 18-05-2006 - 10:02 | |
CVE-2007-3379 | 2.1 |
Unspecified vulnerability in the kernel in Red Hat Enterprise Linux (RHEL) 4 on the x86_64 platform allows local users to cause a denial of service (OOPS) via unspecified vectors related to the get_gate_vma function and the fuser command.
|
11-10-2017 - 01:32 | 17-09-2007 - 17:17 | |
CVE-2006-6053 | 4.9 |
The ext3fs_dirhash function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext3 stream with malformed data structures.
|
11-10-2017 - 01:31 | 22-11-2006 - 01:07 | |
CVE-2006-6142 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.0 through 1.4.9 allow remote attackers to inject arbitrary web script or HTML via the (1) mailto parameter in (a) webmail.php, the (2) session and (3) delete_draft parameters in
|
11-10-2017 - 01:31 | 05-12-2006 - 11:28 | |
CVE-2006-6107 | 1.7 |
Unspecified vulnerability in the match_rule_equal function in bus/signals.c in D-Bus before 1.0.2 allows local applications to remove match rules for other applications and cause a denial of service (lost process messages). This vulnrability is addre
|
11-10-2017 - 01:31 | 14-12-2006 - 00:28 | |
CVE-2006-7108 | 4.1 |
login in util-linux-2.12a skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_m
|
11-10-2017 - 01:31 | 04-03-2007 - 22:19 | |
CVE-2006-6056 | 4.9 |
Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELinux hooks are enabled, allows local users to cause a denial of service (crash) via a malformed file stream that triggers a NULL pointer dereference in the superblock_doinit functio
|
11-10-2017 - 01:31 | 22-11-2006 - 01:07 | |
CVE-2006-6535 | 9.4 |
The dev_queue_xmit function in Linux kernel 2.6 can fail before calling the local_bh_disable function, which could lead to data corruption and "node lockups." NOTE: it is not clear whether this issue is exploitable.
|
11-10-2017 - 01:31 | 30-01-2007 - 19:28 | |
CVE-2006-6054 | 4.0 |
The ext2 file system code in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext2 stream with malformed data structures that triggers an error in the ext2_check_page due to a length that is smaller than the minimum.
|
11-10-2017 - 01:31 | 22-11-2006 - 01:07 | |
CVE-2006-5754 | 4.9 |
The aio_setup_ring function in Linux kernel does not properly initialize a variable, which allows local users to cause a denial of service (crash) via an unspecified error path that causes an incorrect free operation.
|
11-10-2017 - 01:31 | 30-01-2007 - 19:28 | |
CVE-2006-5757 | 1.2 |
Race condition in the __find_get_block_slow function in the ISO9660 filesystem in Linux 2.6.18 and possibly other versions allows local users to cause a denial of service (infinite loop) by mounting a crafted ISO9660 filesystem containing malformed d
|
11-10-2017 - 01:31 | 06-11-2006 - 20:07 | |
CVE-2006-6102 | 10.0 |
Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption durin
|
11-10-2017 - 01:31 | 31-12-2006 - 05:00 | |
CVE-2006-5871 | 4.1 |
smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before 2.4.34, when UNIX extensions are enabled, ignores certain mount options, which could cause clients to use server-specified uid, gid and mode settings.
|
11-10-2017 - 01:31 | 11-12-2006 - 23:28 | |
CVE-2006-6103 | 6.6 |
Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during
|
11-10-2017 - 01:31 | 31-12-2006 - 05:00 | |
CVE-2006-5467 | 5.0 |
The cgi.rb CGI library for Ruby 1.8 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an HTTP request with a multipart MIME body that contains an invalid boundary specifier, as demonstrated using a specifier
|
11-10-2017 - 01:31 | 27-10-2006 - 18:07 | |
CVE-2006-6303 | 5.0 |
The read_multipart function in cgi.rb in Ruby before 1.8.5-p2 does not properly detect boundaries in MIME multipart content, which allows remote attackers to cause a denial of service (infinite loop) via crafted HTTP requests, a different issue than
|
11-10-2017 - 01:31 | 06-12-2006 - 19:28 | |
CVE-2006-6101 | 6.6 |
Integer overflow in the ProcRenderAddGlyphs function in the Render extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption dur
|
11-10-2017 - 01:31 | 31-12-2006 - 05:00 | |
CVE-2006-5462 | 6.4 |
Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3, does not properly handle extra data in a signature
|
11-10-2017 - 01:31 | 08-11-2006 - 21:07 | |
CVE-2006-4790 | 5.0 |
verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signe
|
11-10-2017 - 01:31 | 14-09-2006 - 19:07 | |
CVE-2006-4380 | 2.1 |
MySQL before 4.1.13 allows local users to cause a denial of service (persistent replication slave crash) via a query with multiupdate and subselects.
|
11-10-2017 - 01:31 | 28-08-2006 - 18:04 | |
CVE-2006-3813 | 2.1 |
A regression error in the Perl package for Red Hat Enterprise Linux 4 omits the patch for CVE-2005-0155, which allows local users to overwrite arbitrary files with debugging information.
|
11-10-2017 - 01:31 | 11-08-2006 - 21:04 | |
CVE-2006-3463 | 7.8 |
The EstimateStripByteCounts function in TIFF library (libtiff) before 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent attackers to cause a denial of service via a large td_nstrips value,
|
11-10-2017 - 01:31 | 03-08-2006 - 01:04 | |
CVE-2006-3465 | 7.5 |
Unspecified vulnerability in the custom tag support for the TIFF library (libtiff) before 3.8.2 allows remote attackers to cause a denial of service (instability or crash) and execute arbitrary code via unknown vectors.
|
11-10-2017 - 01:31 | 03-08-2006 - 01:04 | |
CVE-2006-3462 | 7.5 |
Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library (libtiff) before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors involving decoding large RLE images.
|
11-10-2017 - 01:31 | 03-08-2006 - 01:04 | |
CVE-2006-3460 | 7.5 |
Heap-based buffer overflow in the JPEG decoder in the TIFF library (libtiff) before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line
|
11-10-2017 - 01:31 | 03-08-2006 - 01:04 | |
CVE-2006-4262 | 5.1 |
Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple vectors including (1) a long pathname that is not properly handled during file li
|
11-10-2017 - 01:31 | 23-08-2006 - 10:04 | |
CVE-2006-3461 | 7.5 |
Heap-based buffer overflow in the PixarLog decoder in the TIFF library (libtiff) before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors.
|
11-10-2017 - 01:31 | 03-08-2006 - 01:04 | |
CVE-2006-4146 | 5.1 |
Buffer overflow in the (1) DWARF (dwarfread.c) and (2) DWARF2 (dwarf2read.c) debugging code in GNU Debugger (GDB) 6.5 allows user-assisted attackers, or restricted users, to execute arbitrary code via a crafted file with a location block (DW_FORM_blo
|
11-10-2017 - 01:31 | 31-08-2006 - 22:04 | |
CVE-2006-4331 | 5.0 |
Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (formerly Ethereal) 0.99.2 allow remote attackers to cause a denial of service (crash) via unspecified vectors.
|
11-10-2017 - 01:31 | 24-08-2006 - 20:04 | |
CVE-2006-3459 | 7.5 |
Multiple stack-based buffer overflows in the TIFF library (libtiff) before 3.8.2, as used in Adobe Reader 9.3.0 and other products, allow context-dependent attackers to execute arbitrary code or cause a denial of service via unspecified vectors, incl
|
11-10-2017 - 01:31 | 03-08-2006 - 01:04 | |
CVE-2006-3744 | 5.1 |
Multiple integer overflows in ImageMagick before 6.2.9 allows user-assisted attackers to execute arbitrary code via crafted Sun Rasterfile (bitmap) images that trigger heap-based buffer overflows.
|
11-10-2017 - 01:31 | 25-08-2006 - 01:04 | |
CVE-2006-4814 | 4.6 |
The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock.
|
11-10-2017 - 01:31 | 20-12-2006 - 02:28 | |
CVE-2006-3694 | 6.4 |
Multiple unspecified vulnerabilities in Ruby before 1.8.5 allow remote attackers to bypass "safe level" checks via unspecified vectors involving (1) the alias function and (2) "directory operations".
|
11-10-2017 - 01:31 | 21-07-2006 - 14:03 | |
CVE-2006-4570 | 2.6 |
Mozilla Thunderbird before 1.5.0.7 and SeaMonkey before 1.0.5, with "Load Images" enabled, allows remote user-assisted attackers to bypass settings that disable JavaScript via a remote XBL file in a message that is loaded when the user views, forward
|
11-10-2017 - 01:31 | 15-09-2006 - 19:07 | |
CVE-2006-3619 | 2.6 |
Directory traversal vulnerability in FastJar 0.93, as used in Gnu GCC 4.1.1 and earlier, and 3.4.6 and earlier, allows user-assisted attackers to overwrite arbitrary files via a .jar file containing filenames with "../" sequences.
|
11-10-2017 - 01:31 | 25-07-2006 - 19:17 | |
CVE-2006-3464 | 7.5 |
TIFF library (libtiff) before 3.8.2 allows context-dependent attackers to pass numeric range checks and possibly execute code, and trigger assert errors, via large offset values in a TIFF directory that lead to an integer overflow and other unspecifi
|
11-10-2017 - 01:31 | 03-08-2006 - 01:04 | |
CVE-2006-4535 | 4.9 |
The Linux kernel 2.6.17.10 and 2.6.17.11 and 2.6.18-rc5 allows local users to cause a denial of service (crash) via an SCTP socket with a certain SO_LINGER value, possibly related to the patch for CVE-2006-3745. NOTE: older kernel versions for speci
|
11-10-2017 - 01:31 | 19-09-2006 - 19:07 | |
CVE-2006-3743 | 5.1 |
Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images.
|
11-10-2017 - 01:31 | 25-08-2006 - 01:04 | |
CVE-2007-1007 | 10.0 |
Format string vulnerability in GnomeMeeting 1.0.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format strings in the name, which is not properly handled in a call to the gnomemeeting
|
11-10-2017 - 01:31 | 20-02-2007 - 17:28 | |
CVE-2007-0001 | 4.7 |
The file watch implementation in the audit subsystem (auditctl -w) in the Red Hat Enterprise Linux (RHEL) 4 kernel 2.6.9 allows local users to cause a denial of service (kernel panic) by replacing a watched file, which does not cause the watch on the
|
11-10-2017 - 01:31 | 02-03-2007 - 21:18 | |
CVE-2007-0773 | 4.6 |
The Linux kernel before 2.6.9-42.0.8 in Red Hat 4.4 allows local users to cause a denial of service (kernel OOPS from null dereference) via fput in a 32-bit ioctl on 64-bit x86 systems, an incomplete fix of CVE-2005-3044.1.
|
11-10-2017 - 01:31 | 26-06-2007 - 18:30 | |
CVE-2005-4811 | 4.9 |
The hugepage code (hugetlb.c) in Linux kernel 2.6, possibly 2.6.12 and 2.6.13, in certain configurations, allows local users to cause a denial of service (crash) by triggering an mmap error before a prefault, which causes an error in the unmap_hugepa
|
11-10-2017 - 01:30 | 31-12-2005 - 05:00 | |
CVE-2006-2446 | 5.4 |
Race condition between the kfree_skb and __skb_unlink functions in the socket buffer handling in Linux kernel 2.6.9, and possibly other versions, allows remote attackers to cause a denial of service (crash), as demonstrated using the TCP stress tests
|
11-10-2017 - 01:30 | 15-08-2006 - 22:04 | |
CVE-2005-4881 | 4.9 |
The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.13-rc1 does not initialize certain padding fields in structures, which might allow local users to obtain sensitive information from kernel memory via unspecified vec
|
11-10-2017 - 01:30 | 19-10-2009 - 20:00 | |
CVE-2006-2271 | 7.8 |
The ECNE chunk handling in Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via an unexpected chunk when the session is in CLOSED state.
|
11-10-2017 - 01:30 | 09-05-2006 - 16:02 | |
CVE-2006-2941 | 5.0 |
Mailman before 2.1.9rc1 allows remote attackers to cause a denial of service via unspecified vectors involving "standards-breaking RFC 2231 formatted headers".
|
11-10-2017 - 01:30 | 06-09-2006 - 00:04 | |
CVE-2006-2272 | 7.8 |
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (kernel panic) via incoming IP fragmented (1) COOKIE_ECHO and (2) HEARTBEAT SCTP control chunks. This vulnerability is addressed in the following product release:
|
11-10-2017 - 01:30 | 09-05-2006 - 16:02 | |
CVE-2006-2274 | 5.0 |
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (infinite recursion and crash) via a packet that contains two or more DATA fragments, which causes an skb pointer to refer back to itself when the full message is
|
11-10-2017 - 01:30 | 09-05-2006 - 20:02 | |
CVE-2005-4837 | 10.0 |
snmp_api.c in snmpd in Net-SNMP 5.2.x before 5.2.2, 5.1.x before 5.1.3, and 5.0.x before 5.0.10.2, when running in master agentx mode, allows remote attackers to cause a denial of service (crash) by causing a particular TCP disconnect, which triggers
|
11-10-2017 - 01:30 | 31-12-2005 - 05:00 | |
CVE-2005-4153 | 7.8 |
Mailman 2.1.4 through 2.1.6 allows remote attackers to cause a denial of service via a message that causes the server to "fail with an Overflow on bad date data in a processed message," a different vulnerability than CVE-2005-3573.
|
11-10-2017 - 01:30 | 11-12-2005 - 02:03 | |
CVE-2006-2933 | 4.6 |
kdesktop_lock in kdebase before 3.1.3-5.11 for KDE in Red Hat Enterprise Linux (RHEL) 3 does not properly terminate, which can prevent the screensaver from activating or prevent users from manually locking the desktop.
|
11-10-2017 - 01:30 | 27-07-2006 - 22:04 | |
CVE-2005-3631 | 4.6 |
udev does not properly set permissions on certain files in /dev/input, which allows local users to obtain sensitive data that is entered at the console, such as user passwords.
|
11-10-2017 - 01:30 | 22-12-2005 - 11:03 | |
CVE-2005-2874 | 5.0 |
The is_path_absolute function in scheduler/client.c for the daemon in CUPS before 1.1.23 allows remote attackers to cause a denial of service (CPU consumption by tight loop) via a "..\.." URL in an HTTP request.
|
11-10-2017 - 01:30 | 13-09-2005 - 22:03 | |
CVE-2005-2264 | 7.5 |
Firefox before 1.0.5 allows remote attackers to steal sensitive information by opening a malicious link in the Firefox sidebar using the _search target, then injecting script into other pages via a data: URL.
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2005-1519 | 6.4 |
Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups.
|
11-10-2017 - 01:30 | 11-05-2005 - 04:00 | |
CVE-2005-1454 | 7.5 |
SQL injection vulnerability in the radius_xlat function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote authenticated users to execute arbitrary SQL commands via (1) group_membership_query, (2) simul_count_query, or (3) simul_verify_
|
11-10-2017 - 01:30 | 19-05-2005 - 04:00 | |
CVE-2006-0188 | 4.3 |
webmail.php in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to inject arbitrary web pages into the right frame via a URL in the right_frame parameter. NOTE: this has been called a cross-site scripting (XSS) issue, but it is different than wha
|
11-10-2017 - 01:30 | 24-02-2006 - 00:02 | |
CVE-2005-1705 | 7.2 |
gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb.
|
11-10-2017 - 01:30 | 24-05-2005 - 04:00 | |
CVE-2005-0762 | 7.5 |
Heap-based buffer overflow in the SGI parser in ImageMagick before 6.0 allows remote attackers to execute arbitrary code via a crafted SGI image file.
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-2968 | 7.5 |
Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash.
|
11-10-2017 - 01:30 | 20-09-2005 - 22:03 | |
CVE-2005-2269 | 7.5 |
Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2005-0750 | 7.2 |
The bluez_sock_create function in the Bluetooth stack for Linux kernel 2.4.6 through 2.4.30-rc1 and 2.6 through 2.6.11.5 allows local users to gain privileges via (1) socket or (2) socketpair call with a negative protocol value.
|
11-10-2017 - 01:30 | 27-03-2005 - 05:00 | |
CVE-2005-0988 | 3.7 |
Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip af
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-0752 | 7.5 |
The Plugin Finder Service (PFS) in Firefox before 1.0.3 allows remote attackers to execute arbitrary code via a javascript: URL in the PLUGINSPAGE attribute of an EMBED tag.
|
11-10-2017 - 01:30 | 18-04-2005 - 04:00 | |
CVE-2005-2499 | 2.1 |
slocate before 2.7 does not properly process very long paths, which allows local users to cause a denial of service (updatedb exit and incomplete slocate database) via a certain crafted directory structure.
|
11-10-2017 - 01:30 | 23-08-2005 - 04:00 | |
CVE-2005-2494 | 7.2 |
kcheckpass in KDE 3.2.0 up to 3.4.2 allows local users to gain root access via a symlink attack on lock files.
|
11-10-2017 - 01:30 | 06-09-2005 - 23:03 | |
CVE-2005-0815 | 6.4 |
Multiple "range checking flaws" in the ISO9660 filesystem handler in Linux 2.6.11 and earlier may allow attackers to cause a denial of service or corrupt memory via a crafted filesystem.
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2006-1527 | 5.0 |
The SCTP-netfilter code in Linux kernel before 2.6.16.13 allows remote attackers to trigger a denial of service (infinite loop) via unknown vectors that cause an invalid SCTP chunk size to be processed by the for_each_sctp_chunk function. Upgrade to
|
11-10-2017 - 01:30 | 03-05-2006 - 22:02 | |
CVE-2005-2702 | 7.5 |
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters.
|
11-10-2017 - 01:30 | 23-09-2005 - 19:03 | |
CVE-2005-2114 | 5.0 |
Mozilla 1.7.8, Firefox 1.0.4, Camino 0.8.4, Netscape 8.0.2, and K-Meleon 0.9, and possibly other products that use the Gecko engine, allow remote attackers to cause a denial of service (application crash) via JavaScript that repeatedly calls an empty
|
11-10-2017 - 01:30 | 05-07-2005 - 04:00 | |
CVE-2005-1159 | 7.5 |
The native implementations of InstallTrigger and other functions in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 do not properly verify the types of objects being accessed, which causes the Javascript interpreter to continue execution at the w
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-1154 | 7.5 |
Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to execute arbitrary script in other domains via a setter function for a variable in the target domain, which is executed when the user visits that domain, aka "Cross-site sc
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2006-1354 | 7.5 |
Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via "Insufficient input validation" in the EAP-MSCHAPv2 state machine module.
|
11-10-2017 - 01:30 | 22-03-2006 - 02:02 | |
CVE-2005-1760 | 7.5 |
sysreport 1.3.15 and earlier includes contents of the up2date file in a report, which leaks the password for a proxy server in plaintext and allows local users to gain privileges.
|
11-10-2017 - 01:30 | 13-06-2005 - 04:00 | |
CVE-2005-1157 | 7.5 |
Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to replace existing search plugins with malicious ones using sidebar.addSearchEngine and the same filename as the target engine, which may not be displayed in
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-3108 | 2.1 |
mm/ioremap.c in Linux 2.6 on 64-bit x86 systems allows local users to cause a denial of service or an information leak via an ioremap on a certain memory map that causes the iounmap to perform a lookup of a page that does not exist.
|
11-10-2017 - 01:30 | 30-09-2005 - 10:05 | |
CVE-2005-2794 | 5.0 |
store.c in Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of service (crash) via certain aborted requests that trigger an assert error related to STORE_PENDING.
|
11-10-2017 - 01:30 | 07-09-2005 - 18:03 | |
CVE-2005-2496 | 4.6 |
The xntpd ntp (ntpd) daemon before 4.2.0b, when run with the -u option and using a string to specify the group, uses the group ID of the user instead of the group, which causes xntpd to run with different privileges than intended.
|
11-10-2017 - 01:30 | 02-09-2005 - 17:03 | |
CVE-2005-1769 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.0 through 1.4.4 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors in (1) the URL or (2) an e-mail message.
|
11-10-2017 - 01:30 | 16-06-2005 - 04:00 | |
CVE-2005-1160 | 5.1 |
The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to gain privileges by overriding certain properties or methods of DOM nodes, as demonstrated using multiple attacks involving the eval func
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2006-0996 | 4.3 |
Cross-site scripting (XSS) vulnerability in phpinfo (info.c) in PHP 5.1.2 and 4.4.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including (1) a large number of dimensions or (2) long values, which prevents
|
11-10-2017 - 01:30 | 10-04-2006 - 18:06 | |
CVE-2005-2706 | 6.4 |
Firefox before 1.0.7 and Mozilla before Suite 1.7.12 allows remote attackers to execute Javascript with chrome privileges via an about: page such as about:mozilla.
|
11-10-2017 - 01:30 | 23-09-2005 - 19:03 | |
CVE-2005-1937 | 2.6 |
A regression error in Firefox 1.0.3 and Mozilla 1.7.7 allows remote attackers to inject arbitrary Javascript from one page into the frameset of another site, aka the frame injection spoofing vulnerability, a re-introduction of a vulnerability that wa
|
11-10-2017 - 01:30 | 14-06-2005 - 04:00 | |
CVE-2005-1153 | 7.5 |
Firefox before 1.0.3 and Mozilla Suite before 1.7.7, when blocking a popup, allows remote attackers to execute arbitrary code via a javascript: URL that is executed when the user selects the "Show javascript" option.
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-0757 | 2.1 |
The xattr file system code, as backported in Red Hat Enterprise Linux 3 on 64-bit systems, does not properly handle certain offsets, which allows local users to cause a denial of service (system crash) via certain actions on an ext3 file system with
|
11-10-2017 - 01:30 | 18-05-2005 - 04:00 | |
CVE-2005-3573 | 5.0 |
Scrubber.py in Mailman 2.1.5-8 does not properly handle UTF8 character encodings in filenames of e-mail attachments, which allows remote attackers to cause a denial of service (application crash).
|
11-10-2017 - 01:30 | 16-11-2005 - 07:42 | |
CVE-2005-2796 | 5.0 |
The sslConnectTimeout function in ssl.c for Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of service (segmentation fault) via certain crafted requests.
|
11-10-2017 - 01:30 | 07-09-2005 - 18:03 | |
CVE-2005-1992 | 7.5 |
The XMLRPC server in utils.rb for the ruby library (libruby) 1.8 sets an invalid default value that prevents "security protection" using handlers, which allows remote attackers to execute arbitrary commands.
|
11-10-2017 - 01:30 | 20-06-2005 - 04:00 | |
CVE-2006-1858 | 7.8 |
SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a chunk length that is inconsistent with the actual length of provided parameters.
|
11-10-2017 - 01:30 | 22-05-2006 - 16:06 | |
CVE-2006-0195 | 4.3 |
Interpretation conflict in the MagicHTML filter in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to conduct cross-site scripting (XSS) attacks via style sheet specifiers with invalid (1) "/*" and "*/" comments, or (2) a newline in a "url" speci
|
11-10-2017 - 01:30 | 24-02-2006 - 00:02 | |
CVE-2005-3089 | 2.6 |
Firefox 1.0.6 allows attackers to cause a denial of service (crash) via a Proxy Auto-Config (PAC) script that uses an eval statement. NOTE: it is not clear whether an untrusted party has any role in triggering this issue, so it might not be a vulnera
|
11-10-2017 - 01:30 | 28-09-2005 - 18:03 | |
CVE-2005-2471 | 7.5 |
pstopnm in netpbm does not properly use the "-dSAFER" option when calling Ghostscript to convert a PostScript file into a (1) PBM, (2) PGM, or (3) PNM file, which allows external user-assisted attackers to execute arbitrary commands.
|
11-10-2017 - 01:30 | 05-08-2005 - 04:00 | |
CVE-2005-2266 | 5.0 |
Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child frame to call top.focus and other methods in a parent frame, even when the parent is in a different domain, which violates the same origin policy and allows remote attackers to steal sensit
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2005-2262 | 5.1 |
Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers to execute arbitrary code by tricking the user into using the "Set As Wallpaper" (in Firefox) or "Set as Background" (in Netscape) context menu on an image URL that is really a java
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2005-2095 | 4.3 |
options_identities.php in SquirrelMail 1.4.4 and earlier uses the extract function to process the $_POST variable, which allows remote attackers to modify or read the preferences of other users, conduct cross-site scripting XSS) attacks, and write ar
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2005-3629 | 7.2 |
initscripts in Red Hat Enterprise Linux 4 does not properly handle certain environment variables when /sbin/service is executed, which allows local users with sudo permissions for /sbin/service to gain root privileges via unknown vectors.
|
11-10-2017 - 01:30 | 31-12-2005 - 05:00 | |
CVE-2005-1345 | 7.5 |
Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access configuration, which could lead to less restrictive ACLs than intended by the administrator.
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-0753 | 7.5 |
Buffer overflow in CVS before 1.11.20 allows remote attackers to execute arbitrary code.
|
11-10-2017 - 01:30 | 18-04-2005 - 04:00 | |
CVE-2005-2917 | 5.0 |
Squid 2.5.STABLE10 and earlier, while performing NTLM authentication, does not properly handle certain request sequences, which allows attackers to cause a denial of service (daemon restart).
|
11-10-2017 - 01:30 | 30-09-2005 - 18:05 | |
CVE-2006-1862 | 4.9 |
The virtual memory implementation in Linux kernel 2.6.x allows local users to cause a denial of service (panic) by running lsof a large number of times in a way that produces a heavy system load.
|
11-10-2017 - 01:30 | 24-05-2006 - 17:06 | |
CVE-2005-2701 | 7.5 |
Heap-based buffer overflow in Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to execute arbitrary code via an XBM image file that ends in a large number of spaces instead of the expected end tag.
|
11-10-2017 - 01:30 | 23-09-2005 - 19:03 | |
CVE-2005-2475 | 1.2 |
Race condition in Unzip 5.52 allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by Unzip after the decompression is complete.
|
11-10-2017 - 01:30 | 05-08-2005 - 04:00 | |
CVE-2006-0558 | 4.9 |
perfmon (perfmon.c) in Linux kernel on IA64 architectures allows local users to cause a denial of service (crash) by interrupting a task while another process is accessing the mm_struct, which triggers a BUG_ON action in the put_page_testzero functio
|
11-10-2017 - 01:30 | 14-04-2006 - 21:02 | |
CVE-2005-2337 | 7.5 |
Ruby 1.6.x up to 1.6.8, 1.8.x up to 1.8.2, and 1.9.0 development up to 2005-09-01 allows attackers to bypass safe level and taint flag protections and execute disallowed code when Ruby processes a program through standard input (stdin).
|
11-10-2017 - 01:30 | 07-10-2005 - 23:02 | |
CVE-2005-2369 | 7.5 |
Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to cause a denial of service or execute arbitrary code.
|
11-10-2017 - 01:30 | 26-07-2005 - 04:00 | |
CVE-2005-0761 | 5.0 |
Unknown vulnerability in ImageMagick before 6.1.8 allows remote attackers to cause a denial of service (application crash) via a crafted PSD file.
|
11-10-2017 - 01:30 | 23-03-2005 - 05:00 | |
CVE-2005-2104 | 2.1 |
sysreport before 1.3.7 allows local users to obtain sensitive information via a symlink attack on a temporary directory.
|
11-10-2017 - 01:30 | 07-10-2005 - 18:02 | |
CVE-2005-1532 | 7.5 |
Firefox before 1.0.4 and Mozilla Suite before 1.7.8 do not properly limit privileges of Javascript eval and Script objects in the calling context, which allows remote attackers to conduct unauthorized activities via "non-DOM property overrides," a va
|
11-10-2017 - 01:30 | 12-05-2005 - 04:00 | |
CVE-2005-2270 | 7.5 |
Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly clone base objects, which allows remote attackers to execute arbitrary code by navigating the prototype chain to reach a privileged object.
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2005-2100 | 2.1 |
The rw_vm function in usercopy.c in the 4GB split patch for the Linux kernel in Red Hat Enterprise Linux 4 does not perform proper bounds checking, which allows local users to cause a denial of service (crash).
|
11-10-2017 - 01:30 | 25-10-2005 - 17:06 | |
CVE-2005-1531 | 7.5 |
Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not properly implement certain security checks for script injection, which allows remote attackers to execute script via "Wrapped" javascript: URLs, as demonstrated using (1) a javascript: URL
|
11-10-2017 - 01:30 | 12-05-2005 - 04:00 | |
CVE-2005-1156 | 7.5 |
Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to execute arbitrary script and code via a new search plugin using sidebar.addSearchEngine, aka "Firesearching 1."
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-2705 | 7.5 |
Integer overflow in the JavaScript engine in Firefox before 1.0.7 and Mozilla Suite before 1.7.12 might allow remote attackers to execute arbitrary code.
|
11-10-2017 - 01:30 | 23-09-2005 - 19:03 | |
CVE-2005-0941 | 5.1 |
The StgCompObjStream::Load function in OpenOffice.org OpenOffice 1.1.4 and earlier allocates memory based on 16 bit length values, but process memory using 32 bit values, which allows remote attackers to cause a denial of service and possibly execute
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-2265 | 5.0 |
Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 allows remote attackers to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2005-0760 | 5.0 |
The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service (crash) via a crafted TIFF file.
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-0759 | 5.0 |
ImageMagick before 6.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image with an invalid tag.
|
11-10-2017 - 01:30 | 23-03-2005 - 05:00 | |
CVE-2005-1431 | 5.0 |
The "record packet parsing" in GnuTLS 1.2 before 1.2.3 and 1.0 before 1.0.25 allows remote attackers to cause a denial of service, possibly related to padding bytes in gnutils_cipher.c.
|
11-10-2017 - 01:30 | 03-05-2005 - 04:00 | |
CVE-2006-1857 | 9.0 |
Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed HB-ACK chunk.
|
11-10-2017 - 01:30 | 22-05-2006 - 16:06 | |
CVE-2005-1768 | 3.7 |
Race condition in the ia32 compatibility code for the execve system call in Linux kernel 2.4 before 2.4.31 and 2.6 before 2.6.6 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via a concurrent thread
|
11-10-2017 - 01:30 | 11-07-2005 - 04:00 | |
CVE-2005-1740 | 10.0 |
fixproc in Net-snmp 5.x before 5.2.1-r1 creates temporary files insecurely, which allows local users to modify the contents of those files to execute arbitrary commands, or overwrite arbitrary files via a symlink attack.
|
11-10-2017 - 01:30 | 24-05-2005 - 04:00 | |
CVE-2005-1155 | 7.5 |
The favicon functionality in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to execute arbitrary code via a <LINK rel="icon"> tag with a javascript: URL in the href attribute, aka "Firelinking."
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2005-2873 | 2.1 |
The ipt_recent kernel module (ipt_recent.c) in Linux kernel 2.6.12 and earlier does not properly perform certain time tests when the jiffies value is greater than LONG_MAX, which can cause ipt_recent netfilter rules to block too early, a different vu
|
11-10-2017 - 01:30 | 09-09-2005 - 19:07 | |
CVE-2005-2448 | 5.0 |
Multiple "endianness errors" in libgadu in ekg before 1.6rc2 allow remote attackers to cause a denial of service (invalid behavior in applications) on big-endian systems.
|
11-10-2017 - 01:30 | 03-08-2005 - 04:00 | |
CVE-2005-2260 | 7.5 |
The browser user interface in Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 does not properly distinguish between user-generated events and untrusted synthetic events, which makes it easier for remote attackers to perform dan
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2006-1855 | 2.1 |
choose_new_parent in Linux kernel before 2.6.11.12 includes certain debugging code, which allows local users to cause a denial of service (panic) by causing certain circumstances involving termination of a parent process.
|
11-10-2017 - 01:30 | 18-05-2006 - 19:06 | |
CVE-2005-2707 | 5.0 |
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks.
|
11-10-2017 - 01:30 | 23-09-2005 - 19:03 | |
CVE-2005-1158 | 5.0 |
Multiple "missing security checks" in Firefox before 1.0.3 allow remote attackers to inject arbitrary Javascript into privileged pages using the _search target of the Firefox sidebar.
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2006-0377 | 5.0 |
CRLF injection vulnerability in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to inject arbitrary IMAP commands via newline characters in the mailbox parameter of the sqimap_mailbox_select command, aka "IMAP injection."
|
11-10-2017 - 01:30 | 24-02-2006 - 00:02 | |
CVE-2006-1856 | 7.5 |
Certain modifications to the Linux kernel 2.6.16 and earlier do not add the appropriate Linux Security Modules (LSM) file_permission hooks to the (1) readv and (2) writev functions, which might allow attackers to bypass intended access restrictions.
|
11-10-2017 - 01:30 | 19-05-2006 - 23:02 | |
CVE-2005-2977 | 2.1 |
The SELinux version of PAM before 0.78 r3 allows local users to perform brute force password guessing attacks via unix_chkpwd, which does not log failed guesses or delay its responses.
|
11-10-2017 - 01:30 | 01-11-2005 - 12:47 | |
CVE-2005-2368 | 9.3 |
vim 6.3 before 6.3.082, with modelines enabled, allows external user-assisted attackers to execute arbitrary commands via shell metacharacters in the (1) glob or (2) expand commands of a foldexpr expression for calculating fold levels.
|
11-10-2017 - 01:30 | 26-07-2005 - 04:00 | |
CVE-2005-2268 | 2.6 |
Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "D
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2005-1455 | 7.5 |
Buffer overflow in the sql_escape_func function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote attackers to cause a denial of service (crash).
|
11-10-2017 - 01:30 | 19-05-2005 - 04:00 | |
CVE-2005-2704 | 5.0 |
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface.
|
11-10-2017 - 01:30 | 23-09-2005 - 19:03 | |
CVE-2005-1852 | 7.5 |
Multiple integer overflows in libgadu, as used in Kopete in KDE 3.2.3 to 3.4.1, ekg before 1.6rc3, GNU Gadu, CenterICQ, Kadu, and other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an
|
11-10-2017 - 01:30 | 26-07-2005 - 04:00 | |
CVE-2005-3351 | 5.0 |
SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e-mail with a large number of recipients ("To" addresses), which triggers a bus error in Perl.
|
11-10-2017 - 01:30 | 20-11-2005 - 21:03 | |
CVE-2005-2703 | 5.0 |
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to modify HTTP headers of XML HTTP requests via XMLHttpRequest, and possibly use the client to exploit vulnerabilities in servers or proxies, including HTTP request smugglin
|
11-10-2017 - 01:30 | 23-09-2005 - 19:03 | |
CVE-2005-2693 | 4.6 |
cvsbug in CVS 1.12.12 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack.
|
11-10-2017 - 01:30 | 26-08-2005 - 15:50 | |
CVE-2005-1275 | 5.0 |
Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a PNM file with a small colors value.
|
11-10-2017 - 01:30 | 25-04-2005 - 04:00 | |
CVE-2005-2666 | 1.2 |
SSH, as implemented in OpenSSH before 4.0 and possibly other implementations, stores hostnames, IP addresses, and keys in plaintext in the known_hosts file, which makes it easier for an attacker that has compromised an SSH user's account to generate
|
11-10-2017 - 01:30 | 23-08-2005 - 04:00 | |
CVE-2005-2263 | 5.0 |
The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote attackers to execute a callback function in the context of another domain by forcing a page navigation after the install method has been called, which ca
|
11-10-2017 - 01:30 | 13-07-2005 - 04:00 | |
CVE-2005-1228 | 5.0 |
Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
CVE-2004-1183 | 5.1 |
Integer overflow in the tiffdump utility for libtiff 3.7.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF file.
|
11-10-2017 - 01:29 | 06-01-2005 - 05:00 | |
CVE-2004-1068 | 6.2 |
A "missing serialization" error in the unix_dgram_recvmsg function in Linux 2.4.27 and earlier, and 2.6.x up to 2.6.9, allows local users to gain privileges via a race condition.
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-0903 | 10.0 |
Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to execute arbitrary code via malformed VCard attachment
|
11-10-2017 - 01:29 | 27-01-2005 - 05:00 | |
CVE-2004-0758 | 5.0 |
Mozilla 1.5 through 1.7 allows a CA certificate to be imported even when their DN is the same as that of the built-in CA root certificate, which allows remote attackers to cause a denial of service to SSL pages because the malicious certificate is tr
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0755 | 2.1 |
The FileStore capability in CGI::Session for Ruby before 1.8.1, and possibly PStore, creates files with insecure permissions, which can allow local users to steal session information and hijack sessions.
|
11-10-2017 - 01:29 | 20-10-2004 - 04:00 | |
CVE-2005-0593 | 2.6 |
Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote attackers to spoof the SSL "secure site" lock icon via (1) a web site that does not finish loading, which shows the lock of the previous site, (2) a non-HTTP server that uses SSL, which caus
|
11-10-2017 - 01:29 | 04-03-2005 - 05:00 | |
CVE-2005-0244 | 6.5 |
PostgreSQL 8.0.0 and earlier allows local users to bypass the EXECUTE permission check for functions by using the CREATE AGGREGATE command.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-1158 | 7.5 |
Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated usi
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2005-0585 | 2.6 |
Firefox before 1.0.1 and Mozilla before 1.7.6 truncates long sub-domains or paths for display, which may allow remote malicious web sites to spoof legitimate sites and facilitate phishing attacks.
|
11-10-2017 - 01:29 | 25-03-2005 - 05:00 | |
CVE-2003-0564 | 5.0 |
Multiple vulnerabilities in multiple vendor implementations of the Secure/Multipurpose Internet Mail Extensions (S/MIME) protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an S/MIME email message cont
|
11-10-2017 - 01:29 | 01-12-2003 - 05:00 | |
CVE-2005-0241 | 5.0 |
The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access contro
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0142 | 2.1 |
Firefox 0.9, Thunderbird 0.6 and other versions before 0.9, and Mozilla 1.7 before 1.7.5 save temporary files with world-readable permissions, which allows local users to read certain web content or attachments that belong to other users, e.g. conten
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-1156 | 4.3 |
Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up windo
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-0760 | 6.4 |
Mozilla allows remote attackers to cause Mozilla to open a URI as a different MIME type than expected via a null character (%00) in an FTP URI.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0693 | 5.0 |
The GIF parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different vulnerability than CVE-2004-0692.
|
11-10-2017 - 01:29 | 28-09-2004 - 04:00 | |
CVE-2005-0095 | 5.0 |
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU
|
11-10-2017 - 01:29 | 15-01-2005 - 05:00 | |
CVE-2004-0827 | 7.5 |
Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3)
|
11-10-2017 - 01:29 | 16-09-2004 - 04:00 | |
CVE-2004-0769 | 10.0 |
Buffer overflow in LHA allows remote attackers to execute arbitrary code via long pathnames in LHarc format 2 headers for a .LHZ archive, as originally demonstrated using the "x" option but also exploitable through "l" and "v", and fixed in header.c,
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2003-0971 | 5.0 |
GnuPG (GPG) 1.0.2, and other versions up to 1.2.3, creates ElGamal type 20 (sign+encrypt) keys using the same key component for encryption as for signing, which allows attackers to determine the private key from a signature.
|
11-10-2017 - 01:29 | 15-12-2003 - 05:00 | |
CVE-2003-0858 | 2.1 |
Zebra 0.93b and earlier, and quagga before 0.95, allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface.
|
11-10-2017 - 01:29 | 15-12-2003 - 05:00 | |
CVE-2004-0495 | 7.2 |
Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool.
|
11-10-2017 - 01:29 | 06-08-2004 - 04:00 | |
CVE-2005-0584 | 2.6 |
Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the HTTP Authentication dialog, do not change the focus to the tab that generated the prompt, which could facilitate spoofing and phishing attacks.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0527 | 5.1 |
Firefox 1.0 allows remote attackers to execute arbitrary code via plugins that load "privileged content" into frames, as demonstrated using certain XUL events when a user drags a scrollbar two times, aka "Firescrolling."
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0365 | 2.1 |
The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0149 | 5.0 |
Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not obey the network.cookie.disableCookieForMailNews preference, which could allow remote attackers to bypass the user's intended privacy and security policy by using cookies in e-mail me
|
11-10-2017 - 01:29 | 15-02-2005 - 05:00 | |
CVE-2005-0085 | 6.8 |
Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before 3.1.6-r7 allows remote attackers to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message.
|
11-10-2017 - 01:29 | 27-04-2005 - 04:00 | |
CVE-2004-1308 | 10.0 |
Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff 3.5.7 and 3.7.0 allows remote attackers to execute arbitrary code via a TIFF file containing a TIFF_ASCII or TIFF_UNDEFINED directory entry with a -1 entry count, which leads to a h
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-1036 | 6.8 |
Cross-site scripting (XSS) vulnerability in the decoding of encoded text in certain headers in mime.php for SquirrelMail 1.4.3a and earlier, and 1.5.1-cvs before 23rd October 2004, allows remote attackers to execute arbitrary web script or HTML.
|
11-10-2017 - 01:29 | 01-03-2005 - 05:00 | |
CVE-2004-0807 | 5.0 |
Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop.
|
11-10-2017 - 01:29 | 13-09-2004 - 04:00 | |
CVE-2003-0935 | 6.4 |
Net-SNMP before 5.0.9 allows a user or community to access data in MIB objects, even if that data is not allowed to be viewed.
|
11-10-2017 - 01:29 | 01-12-2003 - 05:00 | |
CVE-2004-0745 | 10.0 |
LHA 1.14 and earlier allows attackers to execute arbitrary commands via a directory with shell metacharacters in its name.
|
11-10-2017 - 01:29 | 28-09-2004 - 04:00 | |
CVE-2005-0588 | 5.0 |
Firefox before 1.0.1 and Mozilla before 1.7.6 does not restrict xsl:include and xsl:import tags in XSLT stylesheets to the current domain, which allows remote attackers to determine the existence of files on the local system.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-1235 | 6.2 |
Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.
|
11-10-2017 - 01:29 | 14-04-2005 - 04:00 | |
CVE-2004-0785 | 7.5 |
Multiple buffer overflows in Gaim before 0.82 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) Rich Text Format (RTF) messages, (2) a long hostname for the local system as obtained from DNS, or (3) a lon
|
11-10-2017 - 01:29 | 20-10-2004 - 04:00 | |
CVE-2004-0494 | 7.5 |
Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.
|
11-10-2017 - 01:29 | 23-11-2004 - 05:00 | |
CVE-2004-0164 | 5.0 |
KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message th
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0083 | 10.0 |
Buffer overflow in ReadFontAlias from dirfile.c of XFree86 4.1.0 through 4.3.0 allows local users and remote attackers to execute arbitrary code via a font alias file (font.alias) with a long token, a different vulnerability than CVE-2004-0084 and CV
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-1057 | 7.2 |
Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VM_IO flag, which causes incorrect reference counts and may lead to a denial of service (kernel panic) when accessing freed kernel pages.
|
11-10-2017 - 01:29 | 21-01-2005 - 05:00 | |
CVE-2005-0591 | 2.6 |
Firefox before 1.0.1 allows remote attackers to spoof the (1) security and (2) download modal dialog boxes, which could be used to trick users into executing script or downloading and executing a file, aka "Firespoofing."
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0154 | 5.0 |
rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service (crash) via an NFS mount of a directory from a client whose reverse DNS lookup name is different from the forward lookup name.
|
11-10-2017 - 01:29 | 14-06-2004 - 04:00 | |
CVE-2004-0084 | 10.0 |
Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias (font.alias) file, a d
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2005-0135 | 2.1 |
The unw_unwind_to_user function in unwind.c on Itanium (ia64) architectures in Linux kernel 2.6 allows local users to cause a denial of service (system crash).
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0064 | 7.5 |
Buffer overflow in the Decrypt::makeFileKey2 function in Decrypt.cc for xpdf 3.00 and earlier allows remote attackers to execute arbitrary code via a PDF file with a large /Encrypt /Length keyLength value.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0006 | 7.5 |
Multiple buffer overflows in Gaim 0.75 and earlier, and Ultramagnetic before 0.81, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yah
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0765 | 7.5 |
The cert_TestHostName function in Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, only checks the hostname portion of a certificate when the hostname portion of the URI is not a fully qualified domain name (FQDN), which allows rem
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0521 | 10.0 |
SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0010 | 7.2 |
Stack-based buffer overflow in the ncp_lookup function for ncpfs in Linux kernel 2.4.x allows local users to gain privileges.
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0975 | 2.1 |
The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.
|
11-10-2017 - 01:29 | 09-02-2005 - 05:00 | |
CVE-2004-0908 | 4.0 |
Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows untrusted Javascript code to read and write to the clipboard, and possibly obtain sensitive information, via script-generated events such as Ctrl-Ins.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-0764 | 10.0 |
Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, allow remote web sites to hijack the user interface via the "chrome" flag and XML User Interface Language (XUL) files.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0721 | 7.5 |
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vul
|
11-10-2017 - 01:29 | 27-07-2004 - 04:00 | |
CVE-2004-0447 | 7.2 |
Unknown vulnerability in Linux before 2.4.26 for IA64 allows local users to cause a denial of service, with unknown impact. NOTE: due to a typo, this issue was accidentally assigned CVE-2004-0477. This is the proper candidate to use for the Linux l
|
11-10-2017 - 01:29 | 06-08-2004 - 04:00 | |
CVE-2004-0403 | 5.0 |
Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2005-0590 | 5.0 |
The installation confirmation dialog in Firefox before 1.0.1, Thunderbird before 1.0.1, and Mozilla before 1.7.6 allows remote attackers to use InstallTrigger to spoof the hostname of the host performing the installation via a long "user:pass" sequen
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0402 | 2.6 |
Firefox before 1.0.2 allows remote attackers to execute arbitrary code by tricking a user into saving a page as a Firefox sidebar panel, then using the sidebar panel to inject Javascript into a privileged page.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0175 | 5.0 |
Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the cache via an HTTP response splitting attack.
|
11-10-2017 - 01:29 | 07-02-2005 - 05:00 | |
CVE-2004-1074 | 2.1 |
The binfmt functionality in the Linux kernel, when "memory overcommit" is enabled, allows local users to cause a denial of service (kernel oops) via a malformed a.out binary.
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2005-0247 | 6.5 |
Multiple buffer overflows in gram.y for PostgreSQL 8.0.1 and earlier may allow attackers to execute arbitrary code via (1) a large number of variables in a SQL statement being handled by the read_sql_construct function, (2) a large number of INTO var
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-1138 | 7.2 |
VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap, (2) printdevice, (3) titleold, (4) filetype, (5) s
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-0981 | 10.0 |
Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute arbitrary code via a certain image file.
|
11-10-2017 - 01:29 | 09-02-2005 - 05:00 | |
CVE-2004-0784 | 7.5 |
The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector.
|
11-10-2017 - 01:29 | 20-10-2004 - 04:00 | |
CVE-2003-0986 | 1.7 |
Various routines for the ppc64 architecture on Linux kernel 2.6 prior to 2.6.2 and 2.4 prior to 2.4.24 do not use the copy_from_user function when copying data from userspace to kernelspace, which crosses security boundaries and allows local users to
|
11-10-2017 - 01:29 | 31-12-2003 - 05:00 | |
CVE-2004-0757 | 10.0 |
Heap-based buffer overflow in the SendUidl in the POP3 capability for Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, may allow remote POP3 mail servers to execute arbitrary code.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-2479 | 5.0 |
Squid Web Proxy Cache 2.5 might allow remote attackers to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-0914 | 10.0 |
Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) m
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2003-0973 | 5.0 |
Unknown vulnerability in mod_python 3.0.x before 3.0.4, and 2.7.x before 2.7.9, allows remote attackers to cause a denial of service (httpd crash) via a certain query string.
|
11-10-2017 - 01:29 | 15-12-2003 - 05:00 | |
CVE-2004-0958 | 5.0 |
php_variables.c in PHP before 5.0.2 allows remote attackers to read sensitive memory contents via (1) GET, (2) POST, or (3) COOKIE GPC variables that end in an open bracket character, which causes PHP to calculate an incorrect string length.
|
11-10-2017 - 01:29 | 03-11-2004 - 05:00 | |
CVE-2004-0796 | 5.0 |
SpamAssassin 2.5x, and 2.6x before 2.64, allows remote attackers to cause a denial of service via certain malformed messages.
|
11-10-2017 - 01:29 | 20-10-2004 - 04:00 | |
CVE-2005-0589 | 5.0 |
The Form Fill feature in Firefox before 1.0.1 allows remote attackers to steal potentially sensitive information via an input control that monitors the values that are generated by the autocomplete capability.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0204 | 2.1 |
Linux kernel before 2.6.9, when running on the AMD64 and Intel EM64T architectures, allows local users to write to privileged IO ports via the OUTS instruction.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0143 | 2.6 |
Firefox before 1.0 and Mozilla before 1.7.5 display the SSL lock icon when an insecure page loads a binary file from a trusted site, which could facilitate phishing attacks.
|
11-10-2017 - 01:29 | 23-03-2005 - 05:00 | |
CVE-2004-1190 | 2.1 |
SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associ
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-0959 | 2.1 |
rfc1867.c in PHP before 5.0.2 allows local users to upload files to arbitrary locations via a PHP script with a certain MIME header that causes the "$_FILES" array to be modified.
|
11-10-2017 - 01:29 | 03-11-2004 - 05:00 | |
CVE-2004-0884 | 7.2 |
The (1) libsasl and (2) libsasl2 libraries in Cyrus-SASL 2.1.18 and earlier trust the SASL_PATH environment variable to find all available SASL plug-ins, which allows local users to execute arbitrary code by modifying the SASL_PATH to point to malici
|
11-10-2017 - 01:29 | 27-01-2005 - 05:00 | |
CVE-2004-0405 | 5.0 |
CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client requests, a different vulnerability than CVE-2004-0180.
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2004-0814 | 1.2 |
Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is being accessed by another thread, or (2) remote a
|
11-10-2017 - 01:29 | 23-12-2004 - 05:00 | |
CVE-2003-0967 | 5.0 |
rad_decode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Passw
|
11-10-2017 - 01:29 | 15-12-2003 - 05:00 | |
CVE-2005-0255 | 5.0 |
String handling functions in Mozilla 1.7.3, Firefox 1.0, and Thunderbird before 1.0.2, such as the nsTSubstring_CharT::Replace function, do not properly check the return values of other functions that resize the string, which allows remote attackers
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0174 | 5.0 |
Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the cache or conduct certain attacks via headers that do not follow the HTTP specification, including (1) multiple Content-Length headers, (2) carriage return (CR) characters that are not
|
11-10-2017 - 01:29 | 07-02-2005 - 05:00 | |
CVE-2003-0848 | 4.6 |
Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions, may allow local users to gain privileges via a modified slocate database that causes a negative "pathlen" value to be used.
|
11-10-2017 - 01:29 | 17-11-2003 - 05:00 | |
CVE-2005-0092 | 2.1 |
Unknown vulnerability in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split patch, when running on x86 with the hugemem kernel, allows local users to cause a denial of service (crash).
|
11-10-2017 - 01:29 | 19-02-2005 - 05:00 | |
CVE-2004-0497 | 2.1 |
Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4.
|
11-10-2017 - 01:29 | 06-12-2004 - 05:00 | |
CVE-2005-0592 | 7.5 |
Heap-based buffer overflow in the UTF8ToNewUnicode function for Firefox before 1.0.1 and Mozilla before 1.7.6 might allow remote attackers to cause a denial of service (crash) or execute arbitrary code via invalid sequences in a UTF8 encoded string t
|
11-10-2017 - 01:29 | 25-03-2005 - 05:00 | |
CVE-2004-0235 | 6.4 |
Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0771 | 10.0 |
Buffer overflow in the extract_one function from lhext.c in LHA may allow attackers to execute arbitrary code via a long w (working directory) command line option, a different issue than CVE-2004-0769. NOTE: this issue may be REJECTED if there are no
|
11-10-2017 - 01:29 | 23-11-2004 - 05:00 | |
CVE-2005-0005 | 7.5 |
Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote attackers to execute arbitrary code via a .PSD image file with a large number of layers.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0155 | 7.5 |
The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish unauthorized IP connections or conduct man-in-the-
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2005-0090 | 2.1 |
A regression error in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split patch omits an "access check," which allows local users to cause a denial of service (crash).
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-1392 | 5.0 |
PHP 4.0 with cURL functions allows remote attackers to bypass the open_basedir setting and read arbitrary files via a file: URL argument to the curl_init function.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-1145 | 5.0 |
Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sa
|
11-10-2017 - 01:29 | 15-12-2004 - 05:00 | |
CVE-2004-1070 | 7.2 |
The load_elf_binary function in the binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly check return values from calls to the kernel_read function, which may allow local users to modify sensit
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-0961 | 5.0 |
Memory leak in FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (memory exhaustion) via a series of Access-Request packets with (1) Ascend-Send-Secret, (2) Ascend-Recv-Secret, or (3) Tunnel-Password attributes.
|
11-10-2017 - 01:29 | 09-02-2005 - 05:00 | |
CVE-2004-0906 | 4.6 |
The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, which could allow local users to overwrite arbitrary fi
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-1017 | 10.0 |
Multiple "overflows" in the io_edgeport driver for Linux kernel 2.4.x have unknown impact and unknown attack vectors.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-0886 | 5.0 |
Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.
|
11-10-2017 - 01:29 | 27-01-2005 - 05:00 | |
CVE-2004-1613 | 5.0 |
Mozilla allows remote attackers to cause a denial of service (application crash from null dereference or infinite loop) via a web page that contains a (1) TEXTAREA, (2) INPUT, (3) FRAMESET or (4) IMG tag followed by a null character and some trailing
|
11-10-2017 - 01:29 | 18-10-2004 - 04:00 | |
CVE-2004-1237 | 2.1 |
Unknown vulnerability in the system call filtering code in the audit subsystem for Red Hat Enterprise Linux 3 allows local users to cause a denial of service (system crash) via unknown vectors.
|
11-10-2017 - 01:29 | 14-04-2005 - 04:00 | |
CVE-2004-0949 | 6.4 |
The smb_recv_trans2 function call in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 does not properly handle the re-assembly of fragmented packets correctly, which could allow remote samba servers to (1) read arbitrary kernel information or
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-0923 | 2.1 |
CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.
|
11-10-2017 - 01:29 | 27-01-2005 - 05:00 | |
CVE-2003-0984 | 4.6 |
Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space.
|
11-10-2017 - 01:29 | 05-01-2004 - 05:00 | |
CVE-2004-0763 | 5.0 |
Mozilla Firefox 0.9.1 and 0.9.2 allows remote web sites to spoof certificates of trusted web sites via redirects and Javascript that uses the "onunload" method.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0520 | 6.8 |
Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using read_body.php.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2005-0504 | 4.6 |
Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver (moxa.c) in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value.
|
11-10-2017 - 01:29 | 14-03-2005 - 05:00 | |
CVE-2004-0109 | 4.6 |
Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry.
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2003-0386 | 7.5 |
OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse
|
11-10-2017 - 01:29 | 02-07-2003 - 04:00 | |
CVE-2005-0232 | 2.6 |
Firefox 1.0 allows remote attackers to modify Boolean configuration parameters for the about:config site by using a plugin such as Flash, and the -moz-opacity filter, to display the about:config site then cause the user to double-click at a certain s
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0137 | 2.1 |
Linux kernel 2.6 on Itanium (ia64) architectures allows local users to cause a denial of service via a "missing Itanium syscall table entry."
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0762 | 5.0 |
Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, allow remote web sites to install arbitrary extensions by using interactive events to manipulate the XPInstall Security dialog box.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0722 | 10.0 |
Integer overflow in the SOAPParameter object constructor in (1) Netscape version 7.0 and 7.1 and (2) Mozilla 1.6, and possibly earlier versions, allows remote attackers to execute arbitrary code.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0761 | 5.0 |
Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, allow remote attackers to use certain redirect sequences to spoof the security lock icon that makes a web page appear to be encrypted.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0718 | 7.5 |
The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other
|
11-10-2017 - 01:29 | 27-07-2004 - 04:00 | |
CVE-2004-0619 | 7.2 |
Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add_dsa_buf_bytes variable, which leads to a buffer ov
|
11-10-2017 - 01:29 | 06-12-2004 - 05:00 | |
CVE-2003-0963 | 7.5 |
Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for lftp 2.6.9 and earlier allow remote HTTP servers to execute arbitrary code via long directory names that are processed by the ls or rels commands.
|
11-10-2017 - 01:29 | 05-01-2004 - 05:00 | |
CVE-2004-0685 | 4.6 |
Certain USB drivers in the Linux 2.4 kernel use the copy_to_user function on uninitialized structures, which could allow local users to obtain sensitive information by reading memory that was not cleared from previous usage.
|
11-10-2017 - 01:29 | 23-12-2004 - 05:00 | |
CVE-2005-0146 | 5.0 |
Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to obtain sensitive data from the clipboard via Javascript that generates a middle-click event on systems for which a middle-click performs a paste operation.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0103 | 7.5 |
PHP remote file inclusion vulnerability in webmail.php in SquirrelMail before 1.4.4 allows remote attackers to execute arbitrary PHP code by modifying a URL parameter to reference a URL on a remote web server that contains the code.
|
11-10-2017 - 01:29 | 24-01-2005 - 05:00 | |
CVE-2004-0491 | 2.1 |
The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to mlock more memory than specified by the rlimit.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-0234 | 10.0 |
Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0938 | 5.0 |
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (server crash) by sending an Ascend-Send-Secret attribute without the required leading packet.
|
11-10-2017 - 01:29 | 03-11-2004 - 05:00 | |
CVE-2004-0883 | 6.4 |
Multiple vulnerabilities in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 allow remote samba servers to cause a denial of service (crash) or gain sensitive information from kernel memory via a samba server (1) returning more data than requ
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-0806 | 7.2 |
cdrecord in the cdrtools package before 2.01, when installed setuid root, does not properly drop privileges before executing a program specified in the RSH environment variable, which allows local users to gain privileges.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-1165 | 7.5 |
Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserted into the resulting FTP session, as demonstrated u
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-1071 | 7.2 |
The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly handle a failed call to the mmap function, which causes an incorrect mapped image and may allow local users to execute arbitrary code.
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2005-0207 | 2.1 |
Unknown vulnerability in Linux kernel 2.4.x, 2.5.x, and 2.6.x allows NFS clients to cause a denial of service via O_DIRECT.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0055 | 5.0 |
The print_attr_string function in print-radius.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a RADIUS attribute with a large length value.
|
11-10-2017 - 01:29 | 17-02-2004 - 05:00 | |
CVE-2004-0519 | 6.8 |
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple attack vectors, including the mailbox parameter in
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0106 | 7.2 |
Multiple unknown vulnerabilities in XFree86 4.1.0 to 4.3.0, related to improper handling of font files, a different set of vulnerabilities than CVE-2004-0083 and CVE-2004-0084.
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2005-0177 | 7.8 |
nls_ascii.c in Linux before 2.6.8.1 uses an incorrect table size, which allows attackers to cause a denial of service (kernel crash) via a buffer overflow.
|
11-10-2017 - 01:29 | 07-03-2005 - 05:00 | |
CVE-2005-0141 | 2.6 |
Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to load local files via links "with a custom getter and toString method" that are middle-clicked by the user to be opened in a new tab.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0097 | 5.0 |
The NTLM component in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via a malformed NTLM type 3 message that triggers a NULL dereference.
|
11-10-2017 - 01:29 | 11-01-2005 - 05:00 | |
CVE-2005-0075 | 5.0 |
prefs.php in SquirrelMail before 1.4.4, with register_globals enabled, allows remote attackers to inject local code into the SquirrelMail code via custom preference handlers.
|
11-10-2017 - 01:29 | 29-01-2005 - 05:00 | |
CVE-2004-0832 | 5.0 |
The (1) ntlm_fetch_string and (2) ntlm_get_string functions in Squid 2.5.6 and earlier, with NTLM authentication enabled, allow remote attackers to cause a denial of service (application crash) via an NTLMSSP packet that causes a negative value to be
|
11-10-2017 - 01:29 | 03-11-2004 - 05:00 | |
CVE-2004-0754 | 7.5 |
Integer overflow in Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the size variable in Groupware server messages.
|
11-10-2017 - 01:29 | 20-10-2004 - 04:00 | |
CVE-2005-0094 | 5.0 |
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service (crash) via crafted responses.
|
11-10-2017 - 01:29 | 15-01-2005 - 05:00 | |
CVE-2004-0452 | 2.6 |
Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, and possibly read files and directories, via a symli
|
11-10-2017 - 01:29 | 21-12-2004 - 05:00 | |
CVE-2004-0415 | 2.1 |
Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory.
|
11-10-2017 - 01:29 | 23-11-2004 - 05:00 | |
CVE-2005-0398 | 5.0 |
The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed ISAKMP packets.
|
11-10-2017 - 01:29 | 14-03-2005 - 05:00 | |
CVE-2004-1144 | 7.2 |
Unknown vulnerability in the 32bit emulation code in Linux 2.4 on AMD64 systems allows local users to gain privileges.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-1072 | 7.2 |
The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATH_MAX to be used, leading to buffer overflows
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-1056 | 6.4 |
Direct Rendering Manager (DRM) driver in Linux kernel 2.6 does not properly check the DMA lock, which could allow remote attackers or local users to cause a denial of service (X Server crash) and possibly modify the video output.
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2005-0209 | 7.8 |
Netfilter in Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via crafted IP packet fragments.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0202 | 5.0 |
Directory traversal vulnerability in the true_path function in private.py for Mailman 2.1.5 and earlier allows remote attackers to read arbitrary files via ".../....///" sequences, which are not properly cleansed by regular expressions that are inten
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0104 | 4.3 |
Cross-site scripting (XSS) vulnerability in webmail.php in SquirrelMail before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via certain integer variables.
|
11-10-2017 - 01:29 | 29-01-2005 - 05:00 | |
CVE-2005-0069 | 4.6 |
The (1) tcltags or (2) vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files.
|
11-10-2017 - 01:29 | 13-01-2005 - 05:00 | |
CVE-2004-1380 | 5.0 |
Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows and facilitate phishing attacks, aka the "Dialog Box Spoo
|
11-10-2017 - 01:29 | 20-10-2004 - 04:00 | |
CVE-2004-0960 | 5.0 |
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (core dump) via malformed USR vendor-specific attributes (VSA) that cause a memcpy operation with a -1 argument.
|
11-10-2017 - 01:29 | 09-02-2005 - 05:00 | |
CVE-2004-0888 | 10.0 |
Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabili
|
11-10-2017 - 01:29 | 27-01-2005 - 05:00 | |
CVE-2004-0746 | 7.5 |
Konqueror in KDE 3.2.3 and earlier allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session
|
11-10-2017 - 01:29 | 20-10-2004 - 04:00 | |
CVE-2004-0607 | 10.0 |
The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication.
|
11-10-2017 - 01:29 | 06-12-2004 - 05:00 | |
CVE-2005-0586 | 2.6 |
Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to spoof the extensions of files to download via the Content-Disposition header, which could be used to trick users into downloading dangerous content.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0178 | 2.1 |
The OSS code for the Sound Blaster (sb16) driver in Linux 2.4.x before 2.4.26, when operating in 16 bit mode, does not properly handle certain sample sizes, which allows local users to cause a denial of service (crash) via a sample with an odd number
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2005-0180 | 3.6 |
Multiple integer signedness errors in the sg_scsi_ioctl function in scsi_ioctl.c for Linux 2.6.x allow local users to read or modify kernel memory via negative integers in arguments to the scsi ioctl, which bypass a maximum length check before callin
|
11-10-2017 - 01:29 | 07-03-2005 - 05:00 | |
CVE-2004-0007 | 7.5 |
Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code.
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0976 | 2.1 |
Multiple scripts in the perl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.
|
11-10-2017 - 01:29 | 09-02-2005 - 05:00 | |
CVE-2003-0594 | 7.5 |
Mozilla allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Mozilla to send the cookie outside the specified URL subsets, e.g.
|
11-10-2017 - 01:29 | 15-04-2004 - 04:00 | |
CVE-2004-0177 | 5.0 |
The ext3 code in Linux 2.4.x before 2.4.26 does not properly initialize journal descriptor blocks, which causes an information leak in which in-memory data is written to the device for the ext3 file system, which allows privileged users to obtain por
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2005-0397 | 7.5 |
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick before 6.0.2.5 may allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a filen
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0205 | 4.6 |
KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control o
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0178 | 6.2 |
Race condition in the setsid function in Linux before 2.6.8.1 allows local users to cause a denial of service (crash) and possibly access portions of kernel memory, related to TTY changes, locking, and semaphores.
|
11-10-2017 - 01:29 | 07-03-2005 - 05:00 | |
CVE-2005-0096 | 5.0 |
Memory leak in the NTLM fakeauth_auth helper for Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (memory consumption).
|
11-10-2017 - 01:29 | 25-01-2005 - 05:00 | |
CVE-2005-0091 | 7.2 |
Unknown vulnerability in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split patch, when using the hugemem kernel, allows local users to read and write to arbitrary kernel memory and gain privileges via certain syscalls.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0078 | 4.6 |
The KDE screen saver in KDE before 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0003 | 2.1 |
The 64 bit ELF support in Linux kernel 2.6 before 2.6.10, on 64-bit architectures, does not properly check for overlapping VMA (virtual memory address) allocations, which allows local users to cause a denial of service (system crash) or execute arbit
|
11-10-2017 - 01:29 | 14-04-2005 - 04:00 | |
CVE-2004-2259 | 5.0 |
vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service (crash) via a SIGCHLD signal during a malloc or free call, which is not re-entrant.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-1234 | 2.1 |
load_elf_binary in Linux before 2.4.26 allows local users to cause a denial of service (system crash) via an ELF binary in which the interpreter is NULL.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-0812 | 2.1 |
Unknown vulnerability in the Linux kernel before 2.4.23, on the AMD AMD64 and Intel EM64T architectures, associated with "setting up TSS limits," allows local users to cause a denial of service (crash) and possibly execute arbitrary code.
|
11-10-2017 - 01:29 | 14-04-2005 - 04:00 | |
CVE-2004-0759 | 6.4 |
Mozilla before 1.7 allows remote web servers to read arbitrary files via Javascript that sets the value of an <input type="file"> tag.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2004-0752 | 2.1 |
OpenOffice (OOo) 1.1.2 creates predictable directory names with insecure permissions during startup, which may allow local users to read or list files of other users.
|
11-10-2017 - 01:29 | 20-10-2004 - 04:00 | |
CVE-2004-0107 | 4.6 |
The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.
|
11-10-2017 - 01:29 | 15-04-2004 - 04:00 | |
CVE-2005-0179 | 2.1 |
Linux kernel 2.4.x and 2.6.x allows local users to cause a denial of service (CPU and memory consumption) and bypass RLIM_MEMLOCK limits via the mlockall call.
|
11-10-2017 - 01:29 | 07-03-2005 - 05:00 | |
CVE-2004-0396 | 7.5 |
Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines.
|
11-10-2017 - 01:29 | 14-06-2004 - 04:00 | |
CVE-2004-0138 | 4.9 |
The ELF loader in Linux kernel 2.4 before 2.4.25 allows local users to cause a denial of service (crash) via a crafted ELF file with an interpreter with an invalid arch (architecture), which triggers a BUG() when an invalid VMA is unmapped.
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2005-0210 | 4.9 |
Netfilter in the Linux kernel 2.6.8.1 allows local users to cause a denial of service (memory consumption) via certain packet fragments that are reassembled twice, which causes a data structure to be allocated twice.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0144 | 2.6 |
Firefox before 1.0 and Mozilla before 1.7.5 display the secure site lock icon when a view-source: URL references a secure SSL site while an insecure page is being loaded, which could facilitate phishing attacks.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0008 | 7.5 |
Integer overflow in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2005-0001 | 6.9 |
Race condition in the page fault handler (fault.c) for Linux kernel 2.2.x to 2.2.7, 2.4 to 2.4.29, and 2.6 to 2.6.10, when running on multiprocessor machines, allows local users to execute arbitrary code via concurrent threads that share the same vir
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-1177 | 4.3 |
Cross-site scripting (XSS) vulnerability in the driver script in mailman before 2.1.5 allows remote attackers to inject arbitrary web script or HTML via a URL, which is not properly escaped in the resulting error page.
|
11-10-2017 - 01:29 | 10-01-2005 - 05:00 | |
CVE-2004-0990 | 10.0 |
Integer overflow in GD Graphics Library libgd 2.0.28 (libgd2), and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via PNG image files with large image rows values that lead to a heap-
|
11-10-2017 - 01:29 | 01-03-2005 - 05:00 | |
CVE-2004-0968 | 2.1 |
The catchsegv script in glibc 2.3.2 and earlier allows local users to overwrite files via a symlink attack on temporary files.
|
11-10-2017 - 01:29 | 09-02-2005 - 05:00 | |
CVE-2004-0905 | 4.6 |
Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincing a user to drag and drop javascript: links to a fr
|
11-10-2017 - 01:29 | 14-09-2004 - 04:00 | |
CVE-2004-0500 | 7.5 |
Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protocol messages that are not properly handled in a strnc
|
11-10-2017 - 01:29 | 28-09-2004 - 04:00 | |
CVE-2004-0419 | 7.5 |
XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions.
|
11-10-2017 - 01:29 | 18-08-2004 - 04:00 | |
CVE-2005-0173 | 7.5 |
squid_ldap_auth in Squid 2.5 and earlier allows remote authenticated users to bypass username-based Access Control Lists (ACLs) via a username with a space at the beginning or end, which is ignored by the LDAP server.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-0554 | 2.1 |
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated usi
|
11-10-2017 - 01:29 | 06-08-2004 - 04:00 | |
CVE-2003-0461 | 2.1 |
/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, which could allow local users to obtain potentially sensitive information such as the length of passwords.
|
11-10-2017 - 01:29 | 27-08-2003 - 04:00 | |
CVE-2005-0147 | 7.5 |
Firefox before 1.0 and Mozilla before 1.7.5, when configured to use a proxy, respond to 407 proxy auth requests from arbitrary servers, which allows remote attackers to steal NTLM or SPNEGO credentials.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2004-1453 | 2.1 |
GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before 2.3.3.20040420, and 2.3.2 before 2.3.2-r10 does not restrict the use of LD_DEBUG for a setuid program, which allows local users to gain sensitive information, such as the list of symbols used by the
|
11-10-2017 - 01:29 | 31-12-2004 - 05:00 | |
CVE-2004-0891 | 10.0 |
Buffer overflow in the MSN protocol handler for gaim 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an "unexpected sequence of MSNSLP messages" that results in an unbound
|
11-10-2017 - 01:29 | 27-01-2005 - 05:00 | |
CVE-2004-0823 | 7.5 |
OpenLDAP 1.0 through 2.1.19, as used in Apple Mac OS 10.3.4 and 10.3.5 and possibly other operating systems, may allow certain authentication schemes to use hashed (crypt) passwords in the userPassword attribute as if they were plaintext passwords, w
|
11-10-2017 - 01:29 | 07-09-2004 - 04:00 | |
CVE-2004-0803 | 7.5 |
Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files.
|
11-10-2017 - 01:29 | 23-12-2004 - 05:00 | |
CVE-2004-0600 | 10.0 |
Buffer overflow in the Samba Web Administration Tool (SWAT) in Samba 3.0.2 to 3.0.4 allows remote attackers to execute arbitrary code via an invalid base-64 character during HTTP basic authentication.
|
11-10-2017 - 01:29 | 27-07-2004 - 04:00 | |
CVE-2004-0587 | 2.1 |
Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service.
|
11-10-2017 - 01:29 | 06-08-2004 - 04:00 | |
CVE-2004-0565 | 2.1 |
Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit.
|
11-10-2017 - 01:29 | 06-12-2004 - 05:00 | |
CVE-2004-0535 | 2.1 |
The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some
|
11-10-2017 - 01:29 | 06-08-2004 - 04:00 | |
CVE-2004-0181 | 2.1 |
The JFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the JFS file system, which allows local users to obtain sensitive information by reading the raw device.
|
11-10-2017 - 01:29 | 01-06-2004 - 04:00 | |
CVE-2005-0446 | 5.0 |
Squid 2.5.STABLE8 and earlier allows remote attackers to cause a denial of service (crash) via certain DNS responses regarding (1) Fully Qualified Domain Names (FQDN) in fqdncache.c or (2) IP addresses in ipcache.c, which trigger an assertion failure
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0403 | 7.2 |
init_dev in tty_io.c in the Red Hat backport of NPTL to Red Hat Enterprise Linux 3 does not properly clear controlling tty's in multi-threaded applications, which allows local users to cause a denial of service (crash) and possibly gain tty access vi
|
11-10-2017 - 01:29 | 01-09-2005 - 22:03 | |
CVE-2009-1577 | 9.3 |
Multiple stack-based buffer overflows in the putstring function in find.c in Cscope before 15.6 allow user-assisted remote attackers to execute arbitrary code via a long (1) function name or (2) symbol in a source-code file.
|
29-09-2017 - 01:34 | 07-05-2009 - 17:30 | |
CVE-2009-1883 | 4.4 |
The z90crypt_unlocked_ioctl function in the z90crypt driver in the Linux kernel 2.6.9 does not perform a capability check for the Z90QUIESCE operation, which allows local users to leverage euid 0 privileges to force a driver outage.
|
29-09-2017 - 01:34 | 18-09-2009 - 10:30 | |
CVE-2009-1196 | 5.0 |
The directory-services functionality in the scheduler in CUPS 1.1.17 and 1.1.22 allows remote attackers to cause a denial of service (cupsd daemon outage or crash) via manipulations of the timing of CUPS browse packets, related to a "pointer use-afte
|
29-09-2017 - 01:34 | 09-06-2009 - 17:30 | |
CVE-2009-0773 | 10.0 |
The JavaScript engine in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a splice of an array that contains "some
|
29-09-2017 - 01:34 | 05-03-2009 - 02:30 | |
CVE-2009-0775 | 10.0 |
Double free vulnerability in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to execute arbitrary code via "cloned XUL DOM elements which were linked as a parent and child," which are not
|
29-09-2017 - 01:34 | 05-03-2009 - 02:30 | |
CVE-2009-0777 | 5.8 |
Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 decode invisible characters when they are displayed in the location bar, which causes an incorrect address to be displayed and makes it easier for remote attackers
|
29-09-2017 - 01:34 | 05-03-2009 - 02:30 | |
CVE-2009-0398 | 9.3 |
Array index error in the gst_qtp_trak_handler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins (aka gstreamer-plugins) 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file.
|
29-09-2017 - 01:33 | 03-02-2009 - 11:30 | |
CVE-2008-5286 | 7.5 |
Integer overflow in the _cupsImageReadPNG function in CUPS 1.1.17 through 1.3.9 allows remote attackers to execute arbitrary code via a PNG image with a large height value, which bypasses a validation check and triggers a buffer overflow.
|
29-09-2017 - 01:32 | 01-12-2008 - 15:30 | |
CVE-2008-4069 | 5.0 |
The XBM decoder in Mozilla Firefox before 2.0.0.17 and SeaMonkey before 1.1.12 allows remote attackers to read uninitialized memory, and possibly obtain sensitive information in opportunistic circumstances, via a crafted XBM image file.
|
29-09-2017 - 01:31 | 24-09-2008 - 20:37 | |
CVE-2008-1514 | 4.9 |
arch/s390/kernel/ptrace.c in Linux kernel 2.6.9, and other versions before 2.6.27-rc6, on s390 platforms allows local users to cause a denial of service (kernel panic) via the user-area-padding test from the ptrace testsuite in 31-bit mode, which tri
|
29-09-2017 - 01:30 | 26-03-2008 - 00:44 | |
CVE-2008-0554 | 6.8 |
Buffer overflow in the readImageData function in giftopnm.c in netpbm before 10.27 in netpbm before 10.27 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GIF image, a simila
|
29-09-2017 - 01:30 | 08-02-2008 - 02:00 | |
CVE-2007-5001 | 4.9 |
Linux kernel before 2.4.21 allows local users to cause a denial of service (kernel panic) via asynchronous input or output on a FIFO special file.
|
29-09-2017 - 01:29 | 08-05-2008 - 00:20 | |
CVE-2007-4730 | 4.3 |
Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap
|
29-09-2017 - 01:29 | 11-09-2007 - 19:17 | |
CVE-2007-6151 | 7.2 |
The isdn_ioctl function in isdn_common.c in Linux kernel 2.6.23 allows local users to cause a denial of service via a crafted ioctl struct in which iocts is not null terminated, which triggers a buffer overflow.
|
29-09-2017 - 01:29 | 15-12-2007 - 01:46 | |
CVE-2007-4130 | 7.2 |
The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64) does not properly handle page faults during NUMA memory access, which allows local users to cause a denial of service (panic) via invalid arguments to set_m
|
29-09-2017 - 01:29 | 05-02-2008 - 00:00 | |
CVE-2013-1705 | 10.0 |
Heap-based buffer underflow in the cryptojs_interpret_key_gen_type function in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Cert
|
19-09-2017 - 01:36 | 07-08-2013 - 01:55 | |
CVE-2013-1704 | 9.3 |
Use-after-free vulnerability in the nsINode::GetParentNode function in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash)
|
19-09-2017 - 01:36 | 07-08-2013 - 01:55 | |
CVE-2013-1721 | 9.3 |
Integer overflow in the drawLineLoop function in the libGLESv2 library in Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox before 24.0 and SeaMonkey before 2.21, allows remote attackers to execute arbitrary code via a crafted w
|
19-09-2017 - 01:36 | 18-09-2013 - 10:08 | |
CVE-2013-1711 | 4.3 |
The XrayWrapper implementation in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 does not properly address the possibility of an XBL scope bypass resulting from non-native arguments in XBL function calls, which makes it easier for remote attac
|
19-09-2017 - 01:36 | 07-08-2013 - 01:55 | |
CVE-2013-1702 | 10.0 |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via u
|
19-09-2017 - 01:36 | 07-08-2013 - 01:55 | |
CVE-2013-1708 | 4.3 |
Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allow remote attackers to cause a denial of service (application crash) via a crafted WAV file that is not properly handled by the nsCString::CharAt function.
|
19-09-2017 - 01:36 | 07-08-2013 - 01:55 | |
CVE-2013-0792 | 4.3 |
Mozilla Firefox before 20.0 and SeaMonkey before 2.17, when gfx.color_management.enablev4 is used, do not properly handle color profiles during PNG rendering, which allows remote attackers to obtain sensitive information from process memory or cause
|
19-09-2017 - 01:35 | 03-04-2013 - 11:56 | |
CVE-2013-0794 | 5.8 |
Mozilla Firefox before 20.0 and SeaMonkey before 2.17 do not prevent origin spoofing of tab-modal dialogs, which allows remote attackers to conduct phishing attacks via a crafted web site.
|
19-09-2017 - 01:35 | 03-04-2013 - 11:56 | |
CVE-2011-3653 | 5.0 |
Mozilla Firefox before 8.0 and Thunderbird before 8.0 on Mac OS X do not properly interact with the GPU memory behavior of a certain driver for Intel integrated GPUs, which allows remote attackers to bypass the Same Origin Policy and read image data
|
19-09-2017 - 01:34 | 09-11-2011 - 11:55 | |
CVE-2010-0729 | 6.9 |
A certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 4 on the ia64 platform allows local users to use ptrace on an arbitrary process, and consequently gain privileges, via vectors related to a missing ptrace_check_attach ca
|
19-09-2017 - 01:30 | 16-03-2010 - 19:30 | |
CVE-2010-0731 | 7.5 |
The gnutls_x509_crt_get_serial function in the GnuTLS library before 1.2.1, when running on big-endian, 64-bit platforms, calls the asn1_read_value with a pointer to the wrong data type and the wrong length value, which allows remote attackers to byp
|
19-09-2017 - 01:30 | 26-03-2010 - 18:30 | |
CVE-2010-0827 | 6.8 |
Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted virtual font (VF) file associated with a DVI file.
|
19-09-2017 - 01:30 | 07-05-2010 - 18:24 | |
CVE-2009-3981 | 9.3 |
Unspecified vulnerability in the browser engine in Mozilla Firefox before 3.0.16, SeaMonkey before 2.0.1, and Thunderbird allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary cod
|
19-09-2017 - 01:29 | 17-12-2009 - 17:30 | |
CVE-2009-4035 | 9.3 |
The FoFiType1::parse function in fofi/FoFiType1.cc in Xpdf 3.0.0, gpdf 2.8.2, kpdf in kdegraphics 3.3.1, and possibly other libraries and versions, does not check the return value of the getNextLine function, which allows context-dependent attackers
|
19-09-2017 - 01:29 | 21-12-2009 - 21:30 | |
CVE-2009-3984 | 6.8 |
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to spoof an SSL indicator for an http URL or a file URL by setting document.location to an https URL corresponding to a site that responds with
|
19-09-2017 - 01:29 | 17-12-2009 - 17:30 | |
CVE-2009-3985 | 6.8 |
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to associate spoofed content with an invalid URL by setting document.location to this URL, and then writing arbitrary web script or HTML to the
|
19-09-2017 - 01:29 | 17-12-2009 - 17:30 | |
CVE-2009-4271 | 4.7 |
The Linux kernel 2.6.9 through 2.6.17 on the x86_64 and amd64 platforms allows local users to cause a denial of service (panic) via a 32-bit application that calls mprotect on its Virtual Dynamic Shared Object (VDSO) page and then triggers a segmenta
|
19-09-2017 - 01:29 | 19-03-2010 - 19:30 | |
CVE-2009-3982 | 9.3 |
Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.6, SeaMonkey before 2.0.1, and Thunderbird allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe
|
19-09-2017 - 01:29 | 17-12-2009 - 17:30 | |
CVE-2009-3986 | 7.6 |
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to execute arbitrary JavaScript with chrome privileges by leveraging a reference to a chrome window from a content window, related to the window
|
19-09-2017 - 01:29 | 17-12-2009 - 17:30 | |
CVE-2009-4005 | 7.2 |
The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read.
|
19-09-2017 - 01:29 | 20-11-2009 - 02:30 |