|Max CVSS||10.0||Min CVSS||2.1||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
Heap-based buffer overflow in the Cirrus VGA implementation in (1) KVM before kvm-82 and (2) QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka the LGD-54XX "bitblt" heap over
|14-05-2021 - 18:37||29-12-2008 - 15:24|
QEMU 0.9.0 does not properly handle changes to removable media, which allows guest OS users to read arbitrary files on the host OS by using the diskformat: parameter in the -usbdevice option to modify the disk-image header to identify a different for
|16-12-2020 - 00:34||08-08-2008 - 19:41|
The protocol_client_msg function in vnc.c in the VNC server in (1) Qemu 0.9.1 and earlier and (2) KVM kvm-79 and earlier allows remote attackers to cause a denial of service (infinite loop) via a certain message.
|02-11-2020 - 14:39||24-12-2008 - 18:29|
Qemu 0.9.1 and earlier does not perform range checks for block device read or write requests, which allows guest host users with root privileges to access arbitrary memory and escape the virtual machine.
|02-11-2020 - 14:39||03-03-2008 - 22:44|
Array index error in the imageRotate function in PHP 5.2.8 and earlier allows context-dependent attackers to read the contents of arbitrary memory locations via a crafted value of the third argument (aka the bgd_color or clrBack argument) for an inde
|30-10-2018 - 16:25||26-12-2008 - 20:30|
Integer overflow in libsndfile 1.0.18, as used in Winamp and other products, allows context-dependent attackers to execute arbitrary code via crafted description chunks in a CAF audio file, leading to a heap-based buffer overflow.
|11-10-2018 - 21:00||05-03-2009 - 02:30|
NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for
|11-10-2018 - 20:58||07-01-2009 - 17:30|
Heap-based buffer overflow in ext/mbstring/libmbfl/filters/mbfilter_htmlent.c in the mbstring extension in PHP 4.3.0 through 5.2.6 allows context-dependent attackers to execute arbitrary code via a crafted string containing an HTML entity, which is n
|11-10-2018 - 20:56||23-12-2008 - 18:30|
Static code injection vulnerability in setup.php in phpMyAdmin 2.11.x before 184.108.40.206 and 3.x before 220.127.116.11 allows remote attackers to inject arbitrary PHP code into a configuration file via the save action.
|10-10-2018 - 19:34||26-03-2009 - 14:30|
PHP 4.4.4, 5.1.6, and other versions, when running on Apache, allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within .htaccess, which causes this setting to be applied
|03-10-2018 - 21:58||03-03-2009 - 16:30|
The Device Mapper multipathing driver (aka multipath-tools or device-mapper-multipath) 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server (SLES), Fedora, and possibly other operating systems, uses world-writable permissions for the socket
|29-09-2017 - 01:33||30-03-2009 - 16:30|
Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended.
|08-08-2017 - 01:33||24-12-2008 - 18:29|
The default configuration of system.conf in D-Bus (aka DBus) before 1.2.6 omits the send_type attribute in certain rules, which allows local users to bypass intended access restrictions by (1) sending messages, related to send_requested_reply; and po
|08-08-2017 - 01:32||10-12-2008 - 00:30|
Multiple cross-site scripting (XSS) vulnerabilities in the export page (display_export.lib.php) in phpMyAdmin 2.11.x before 18.104.22.168 and 3.x before 22.214.171.124 allow remote attackers to inject arbitrary web script or HTML via the pma_db_filename_template
|15-07-2009 - 04:00||26-03-2009 - 14:30|
Cross-site scripting (XSS) vulnerability in Apache Struts before 1.2.9-162.31.1 on SUSE Linux Enterprise (SLE) 11, before 1.2.9-108.2 on SUSE openSUSE 10.3, before 1.2.9-198.2 on SUSE openSUSE 11.0, and before 1.2.9-162.163.2 on SUSE openSUSE 11.1 al
|18-04-2009 - 05:35||09-04-2009 - 15:08|
CRLF injection vulnerability in bs_disp_as_mime_type.php in the BLOB streaming feature in phpMyAdmin before 126.96.36.199 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the (1) c_type and possibly (
|16-04-2009 - 05:38||26-03-2009 - 14:30|
Directory traversal vulnerability in bs_disp_as_mime_type.php in the BLOB streaming feature in phpMyAdmin before 188.8.131.52 allows remote attackers to read arbitrary files via directory traversal sequences in the file_path parameter ($filename variable)
|16-04-2009 - 05:38||26-03-2009 - 14:30|