Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2008-3832 | 4.9 |
A certain Fedora patch for the utrace subsystem in the Linux kernel before 2.6.26.5-28 on Fedora 8, and before 2.6.26.5-45 on Fedora 9, allows local users to cause a denial of service (NULL pointer dereference and system crash or hang) via a call to
|
13-02-2023 - 02:19 | 03-10-2008 - 17:41 | |
CVE-2008-3964 | 4.3 |
Multiple off-by-one errors in libpng before 1.2.32beta01, and 1.4 before 1.4.0beta34, allow context-dependent attackers to cause a denial of service (crash) or have unspecified other impact via a PNG image with crafted zTXt chunks, related to (1) the
|
31-01-2022 - 14:18 | 11-09-2008 - 01:13 | |
CVE-2008-4107 | 5.1 |
The (1) rand and (2) mt_rand functions in PHP 5.2.6 do not produce cryptographically strong random numbers, which allows attackers to leverage exposures in products that rely on these functions for security-relevant functionality, as demonstrated by
|
30-10-2018 - 16:26 | 18-09-2008 - 17:59 | |
CVE-2008-4382 | 5.0 |
Konqueror in KDE 3.5.9 allows remote attackers to cause a denial of service (application crash) via Javascript that calls the alert function with a URL-encoded string of a large number of invalid characters.
|
11-10-2018 - 20:51 | 02-10-2008 - 18:18 | |
CVE-2008-3659 | 6.4 |
Buffer overflow in the memnstr function in PHP 4.4.x before 4.4.9 and PHP 5.6 through 5.2.6 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via the delimiter argument to the explode function
|
11-10-2018 - 20:49 | 15-08-2008 - 00:41 | |
CVE-2008-4410 | 4.9 |
The vmi_write_ldt_entry function in arch/x86/kernel/vmi_32.c in the Virtual Machine Interface (VMI) in the Linux kernel 2.6.26.5 invokes write_idt_entry where write_ldt_entry was intended, which allows local users to cause a denial of service (persis
|
08-08-2017 - 01:32 | 03-10-2008 - 17:41 | |
CVE-2008-4163 | 7.8 |
Unspecified vulnerability in ISC BIND 9.3.5-P2-W1, 9.4.2-P2-W1, and 9.5.0-P2-W1 on Windows allows remote attackers to cause a denial of service (UDP client handler termination) via unknown vectors.
|
08-08-2017 - 01:32 | 22-09-2008 - 18:52 | |
CVE-2008-4409 | 5.0 |
libxml2 2.7.0 and 2.7.1 does not properly handle "predefined entities definitions" in entities, which allows context-dependent attackers to cause a denial of service (memory consumption and application crash), as demonstrated by use of xmllint on a c
|
08-08-2017 - 01:32 | 03-10-2008 - 17:41 | |
CVE-2008-4109 | 5.0 |
A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attac
|
08-08-2017 - 01:32 | 18-09-2008 - 15:04 | |
CVE-2008-3949 | 7.2 |
emacs/lisp/progmodes/python.el in Emacs 22.1 and 22.2 imports Python script from the current working directory during editing of a Python file, which allows local users to execute arbitrary code via a Trojan horse Python file.
|
08-08-2017 - 01:32 | 22-09-2008 - 18:52 |