Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2014-8162 | 7.5 |
XML external entity (XXE) in the RPC interface in Spacewalk and Red Hat Network (RHN) Satellite 5.7 and earlier allows remote attackers to read arbitrary files and possibly have other unspecified impact via unknown vectors.
|
13-02-2023 - 00:44 | 14-05-2015 - 14:59 | |
CVE-2015-1902 | 10.0 |
Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and 9.0 before 9.0.1 FP3 IF3 allows remote attackers to execute arbitrary code via a crafted BMP image, aka SPR KLYH9TSMLA.
|
16-10-2019 - 12:40 | 20-05-2015 - 10:59 | |
CVE-2015-1903 | 10.0 |
Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and 9.0 before 9.0.1 FP3 IF3 allows remote attackers to execute arbitrary code via a crafted BMP image, aka SPR KLYH9TSN3Y.
|
16-10-2019 - 12:40 | 20-05-2015 - 10:59 | |
CVE-2006-0014 | 5.1 |
Buffer overflow in Microsoft Outlook Express 5.5 and 6 allows remote attackers to execute arbitrary code via a crafted Windows Address Book (WAB) file containing "certain Unicode strings" and modified length values.
|
19-10-2018 - 15:41 | 12-04-2006 - 00:02 | |
CVE-2015-3885 | 4.3 |
Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.
|
09-10-2018 - 19:56 | 19-05-2015 - 18:59 | |
CVE-2003-1097 | 7.2 |
Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option.
|
11-10-2017 - 01:29 | 31-12-2003 - 05:00 | |
CVE-2015-3431 | 10.0 |
Pydio (formerly AjaXplorer) before 6.0.7 allows remote attackers to execute arbitrary commands via unspecified vectors, aka "Pydio OS Command Injection Vulnerabilities."
|
28-09-2017 - 18:33 | 19-09-2017 - 15:29 | |
CVE-2015-3880 | 5.8 |
Open redirect vulnerability in phpBB before 3.0.14 and 3.1.x before 3.1.4 allows remote attackers to redirect users of Google Chrome to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
27-09-2017 - 17:42 | 19-09-2017 - 15:29 | |
CVE-2015-3432 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Pydio (formerly AjaXplorer) before 6.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Pydio XSS Vulnerabilities."
|
23-09-2017 - 14:40 | 19-09-2017 - 15:29 | |
CVE-2007-6695 | 4.3 |
Cross-site scripting (XSS) vulnerability in index.php in Drake CMS 0.4.9 allows remote attackers to inject arbitrary web script or HTML via the option parameter.
|
08-08-2017 - 01:29 | 01-02-2008 - 20:00 | |
CVE-2017-0169 | 5.2 |
An information disclosure vulnerability exists when Windows Hyper-V running on a Windows 8.1, Windows Server 2012. or Windows Server 2012 R2 host operating system fails to properly validate input from an authenticated user on a guest operating system
|
11-07-2017 - 01:33 | 12-04-2017 - 14:59 |