| Max CVSS | 7.8 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-1870 | 7.8 |
lighttpd before 1.4.14 allows attackers to cause a denial of service (crash) via a request to a file whose mtime is 0, which results in a NULL pointer dereference.
|
16-10-2018 - 16:41 | 18-04-2007 - 03:19 | |
| CVE-2007-1869 | 5.0 |
lighttpd 1.4.12 and 1.4.13 allows remote attackers to cause a denial of service (cpu and resource consumption) by disconnecting while lighttpd is parsing CRLF sequences, which triggers an infinite loop and file descriptor consumption.
|
16-10-2018 - 16:41 | 18-04-2007 - 03:19 | |
| CVE-2007-1473 | 4.3 |
Cross-site scripting (XSS) vulnerability in framework/NLS/NLS.php in Horde Framework before 3.1.4 RC1, when the login page contains a language selection box, allows remote attackers to inject arbitrary web script or HTML via the new_lang parameter to
|
16-10-2018 - 16:38 | 16-03-2007 - 21:19 | |
| CVE-2007-1246 | 7.6 |
The DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in MPlayer 1.0rc1 and earlier, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer overflow and possibl
|
16-10-2018 - 16:37 | 03-03-2007 - 19:19 | |
| CVE-2007-1856 | 2.1 |
Vixie Cron before 4.1-r10 on Gentoo Linux is installed with insecure permissions, which allows local users to cause a denial of service (cron failure) by creating hard links, which results in a failed st_nlink check in database.c.
|
11-10-2017 - 01:32 | 18-04-2007 - 03:19 | |
| CVE-2005-1038 | 2.1 |
crontab in Vixie cron 4.1, when running with the -e option, allows local users to read the cron files of other users by changing the file being edited to a symlink. NOTE: there is insufficient information to know whether this is a duplicate of CVE-2
|
11-10-2017 - 01:30 | 02-05-2005 - 04:00 | |
| CVE-2007-1799 | 6.4 |
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ".." string, which allows remote attackers to overwrite arbitrary files via modified ".." sequences in a torrent filename, as demonstrated by "../" sequence
|
29-07-2017 - 01:30 | 02-04-2007 - 22:19 | |
| CVE-2006-4250 | 4.6 |
Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arguments to the -H flag.
|
20-07-2017 - 01:32 | 10-04-2007 - 18:19 | |
| CVE-2007-1385 | 7.5 |
chunkcounter.cpp in KTorrent before 2.1.2 allows remote attackers to cause a denial of service (crash) and heap corruption via a negative or large idx value. This vulnerability has been addressed in the following product update:
http://ktorrent.org/
|
08-03-2011 - 02:52 | 10-03-2007 - 18:19 | |
| CVE-2007-1384 | 6.4 |
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers to overwrite arbitrary files via ".." sequences in a torrent filename. This vulnerability has been addressed with the following product update:
http://
|
08-03-2011 - 02:52 | 10-03-2007 - 18:19 | |
| CVE-2006-6870 | 5.0 |
The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 allows remote attackers to cause a denial of service (infinite loop) via a crafted compressed DNS response with a label that points to itself. This vulnerability is addressed in t
|
08-03-2011 - 02:47 | 31-12-2006 - 05:00 |