| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-2437 | 10.0 |
Stack-based buffer overflow in cgiRecvFile.exe in Trend Micro OfficeScan 7.3 patch 4 build 1362 and other builds, OfficeScan 8.0 and 8.0 SP1, and Client Server Messaging Security 3.6 allows remote attackers to execute arbitrary code via an HTTP reque
|
11-10-2018 - 20:41 | 16-09-2008 - 22:00 | |
| CVE-2000-1199 | 4.6 |
PostgreSQL stores usernames and passwords in plaintext in (1) pg_shadow and (2) pg_pwd, which allows attackers with sufficient privileges to gain access to databases.
|
19-12-2017 - 02:29 | 31-08-2001 - 04:00 | |
| CVE-2017-11812 | 9.3 |
ChakraCore and Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting
|
20-10-2017 - 16:58 | 13-10-2017 - 13:29 | |
| CVE-2014-4458 | 5.0 |
The "System Profiler About This Mac" component in Apple OS X before 10.10.1 includes extraneous cookie data in system-model requests, which might allow remote attackers to obtain sensitive information via unspecified vectors.
|
29-08-2017 - 01:35 | 18-11-2014 - 11:59 | |
| CVE-2005-4864 | 7.2 |
Stack-based buffer overflow in libdb2.so in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long DB2LPORT environment variable.
|
29-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2005-4867 | 9.3 |
Stack-based buffer overflow in the SATENCRYPT function in IBM DB2 8.1, when Satellite Administration (SATADMIN) is enabled, allows remote attackers to execute arbitrary code via a long parameter.
|
29-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2005-4865 | 10.0 |
Stack-based buffer overflow in call in IBM DB2 7.x and 8.1 allows remote attackers to execute arbitrary code via a long libname.
|
29-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2005-4863 | 7.2 |
Stack-based buffer overflow in db2fmp in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long parameter.
|
29-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2004-2630 | 7.5 |
The MIME transformation system (transformations/text_plain__external.inc.php) in phpMyAdmin 2.5.0 up to 2.6.0-pl1 allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors.
|
20-07-2017 - 01:29 | 31-12-2004 - 05:00 | |
| CVE-2004-1593 | 4.3 |
Cross-site scripting (XSS) vulnerability in render.UserLayoutRootNode.uP in SCT Campus Pipeline allows remote attackers to inject arbitrary web script or HTML via the utf parameter.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-1594 | 4.3 |
Cross-site scripting (XSS) vulnerability in FuseTalk 4.0 allows remote attackers to execute arbitrary web script via an img src tag.
|
11-07-2017 - 01:31 | 13-10-2004 - 04:00 | |
| CVE-2004-0824 | 2.1 |
PPPDialer for Mac OS X 10.2.8 through 10.3.5 allows local users to overwrite system files via a symlink attack on PPPDialer log files.
|
11-07-2017 - 01:30 | 31-12-2004 - 05:00 | |
| CVE-2006-4413 | 7.2 |
Apple Remote Desktop before 3.1 uses insecure permissions for certain built-in packages, which allows local users on an Apple Remote Desktop administration system to modify the packages and gain root privileges on client systems that use the packages
|
08-03-2011 - 02:40 | 18-11-2006 - 01:07 |