| Max CVSS | 10.0 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-5923 | 4.3 |
Cross-site scripting (XSS) vulnerability in forms/smpwservices.fcc in CA (formerly Computer Associates) eTrust SiteMinder Agent allows remote attackers to inject arbitrary web script or HTML via the SMAUTHREASON parameter, a different vector than CVE
|
09-04-2021 - 16:30 | 10-11-2007 - 02:46 | |
| CVE-2018-2610 | 5.0 |
Vulnerability in the Hyperion Data Relationship Management component of Oracle Hyperion (subcomponent: Access and security). The supported version that is affected is 11.1.2.4.330. Easily exploitable vulnerability allows unauthenticated attacker with
|
24-08-2020 - 17:37 | 18-01-2018 - 02:29 | |
| CVE-2007-5921 | 4.7 |
Unspecified vulnerability in the ioctl interface in the Solaris Volume Manager (SVM) in Sun Solaris 9 and 10 allows local users to cause a denial of service (panic) via unspecified vectors, a different vulnerability than CVE-2004-1346.
|
30-10-2018 - 16:25 | 10-11-2007 - 02:46 | |
| CVE-2007-5922 | 5.0 |
The modules/mdop.m in the Cypress 1.0k script for BitchX, as downloaded from a distribution site in November 2007, contains an externally introduced backdoor that e-mails sensitive information (hostnames, usernames, and shell history) to a fixed addr
|
15-10-2018 - 21:47 | 10-11-2007 - 02:46 | |
| CVE-2007-5846 | 7.8 |
The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value.
|
15-10-2018 - 21:46 | 06-11-2007 - 21:46 | |
| CVE-2007-4517 | 6.0 |
Buffer overflow in the XDB.XDB_PITRIG_PKG.PITRIG_DROPMETADATA procedure in Oracle 10g R2 allows remote authenticated users to execute arbitrary code via a long (1) OWNER or (2) NAME argument.
|
15-10-2018 - 21:35 | 08-11-2007 - 20:46 | |
| CVE-2007-1079 | 7.8 |
Stack-based buffer overflow in Rhino Software, Inc. FTP Voyager 14.0.0.3 and earlier allows remote servers to cause a denial of service (crash) via a long response to a CWD command, which triggers the overflow when the user aborts the command.
|
11-10-2017 - 01:31 | 22-02-2007 - 23:28 | |
| CVE-2001-0596 | 7.5 |
Netscape Communicator before 4.77 allows remote attackers to execute arbitrary Javascript via a GIF image whose comment contains the Javascript.
|
10-10-2017 - 01:29 | 02-08-2001 - 04:00 | |
| CVE-2007-4570 | 1.9 |
Algorithmic complexity vulnerability in the MCS translation daemon in mcstrans 0.2.3 allows local users to cause a denial of service (temporary daemon outage) via a large range of compartments in sensitivity labels.
|
29-09-2017 - 01:29 | 10-11-2007 - 00:46 | |
| CVE-2007-3921 | 3.3 |
gforge 3.1 and 4.5.14 allows local users to truncate arbitrary files via a symlink attack on temporary files.
|
29-07-2017 - 01:32 | 08-11-2007 - 11:46 | |
| CVE-2016-4267 | 10.0 |
Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of se
|
28-11-2016 - 20:17 | 26-08-2016 - 19:59 | |
| CVE-2007-4994 | 7.5 |
Certificate Server 7.2 in Red Hat Certificate System (RHCS) does not properly handle new revocations that occur while a Certificate Revocation List (CRL) is being generated, which might prevent certain revoked certificates from appearing on the CRL q
|
08-03-2011 - 02:59 | 06-11-2007 - 21:46 | |
| CVE-2009-4269 | 2.1 |
The password hash generation algorithm in the BUILTIN authentication functionality for Apache Derby before 10.6.1.0 performs a transformation that reduces the size of the set of inputs to SHA-1, which produces a small search space that makes it easie
|
26-01-2011 - 06:41 | 16-08-2010 - 20:00 |