VYPR

CVEs

344,841 total · page 6332 of 6,897

  • CVE-2007-6471Dec 20, 2007
    risk 0.03cvss epss 0.02

    Incomplete blacklist vulnerability in main.php in phPay 2.02.01 on Windows allows remote attackers to conduct directory traversal attacks and include and execute arbitrary local files via a ..\ (dot dot backslash) in the config parameter.

  • CVE-2007-5963Dec 19, 2007
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in kdebase allows local users to cause a denial of service (KDM login inaccessible, or resource consumption) via unknown vectors.

  • CVE-2007-6438Dec 19, 2007
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in the SMB dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service via unknown vectors. NOTE: this identifier originally included MP3 and NCP, but those issues are already covered by CVE-2007-6111.

  • CVE-2007-6439Dec 19, 2007
    risk 0.00cvss epss 0.01

    Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite or large loop) via the (1) IPv6 or (2) USB dissector, which can trigger resource consumption or a crash. NOTE: this identifier originally included Firebird/Interbase, but it is…

  • CVE-2007-6441Dec 19, 2007
    risk 0.00cvss epss 0.01

    The WiMAX dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (crash) via unknown vectors related to "unaligned access on some platforms."

  • CVE-2007-6450Dec 19, 2007
    risk 0.00cvss epss 0.03

    The RPL dissector in Wireshark (formerly Ethereal) 0.9.8 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.

  • CVE-2007-6451Dec 19, 2007
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in the CIP dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger allocation of large amounts of memory.

  • CVE-2007-3876Dec 19, 2007
    risk 0.03cvss epss 0.02

    Stack-based buffer overflow in SMB in Apple Mac OS X 10.4.11 allows local users to execute arbitrary code via (1) a long workgroup (-W) option to mount_smbfs or (2) an unspecified manipulation of the command line to smbutil.

  • CVE-2007-4708Dec 19, 2007
    risk 0.00cvss epss 0.05

    Format string vulnerability in Address Book in Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary code via the URL handler.

  • CVE-2007-4709Dec 19, 2007
    risk 0.00cvss epss 0.03

    Directory traversal vulnerability in CFNetwork in Apple Mac OS X 10.5.1 allows remote attackers to overwrite arbitrary files via a crafted HTTP response.

  • CVE-2007-4710Dec 19, 2007
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in ColorSync in Apple Mac OS X 10.4.11 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via an image with a crafted ColorSync profile, which triggers memory corruption.

  • CVE-2007-5847Dec 19, 2007
    risk 0.00cvss epss 0.00

    Race condition in the CFURLWriteDataAndPropertiesToResource API in Core Foundation in Apple Mac OS X 10.4.11 creates files with insecure permissions, which might allow local users to obtain sensitive information.

  • CVE-2007-5848Dec 19, 2007
    risk 0.00cvss epss 0.01

    Buffer overflow in CUPS in Apple Mac OS X 10.4.11 allows local admin users to execute arbitrary code via a crafted URI to the CUPS service.

  • CVE-2007-5849Dec 19, 2007
    risk 0.04cvss epss 0.14

    Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) for CUPS 1.2 through 1.3.4 allows remote attackers to execute arbitrary code via a crafted SNMP response that triggers a stack-based buffer overflow.

  • CVE-2007-5850Dec 19, 2007
    risk 0.00cvss epss 0.03

    Heap-based buffer overflow in Desktop Services in Apple Mac OS X 10.4.11 allows user-assisted attackers to execute arbitrary code via a directory with a crafted .DS_Store file.

  • CVE-2007-5851Dec 19, 2007
    risk 0.00cvss epss 0.01

    iChat in Apple Mac OS X 10.4.11 allows network-adjacent remote attackers to automatically initiate a video connection to another user via unknown vectors.

  • CVE-2007-5853Dec 19, 2007
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in IO Storage Family in Apple Mac OS X 10.4.11 allows user-assisted attackers to cause a denial of service (system shutdown) or execute arbitrary code via a disk image with crafted GUID partition maps, which triggers memory corruption.

  • CVE-2007-5854Dec 19, 2007
    risk 0.00cvss epss 0.01

    Launch Services in Apple Mac OS X 10.4.11 and 10.5.1 does not treat HTML files as unsafe content, which allows attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive information via a crafted HTML file.

  • CVE-2007-5855Dec 19, 2007
    risk 0.00cvss epss 0.02

    Mail in Apple Mac OS X 10.4.11 and 10.5.1, when an SMTP account has been set up using Account Assistant, can use plaintext authentication even when MD5 Challenge-Response authentication is available, which makes it easier for remote attackers to sniff account activity.

  • CVE-2007-5856Dec 19, 2007
    risk 0.00cvss epss 0.02

    Quick Look Apple Mac OS X 10.5.1, when previewing an HTML file, does not prevent plug-ins from making network requests, which might allow remote attackers to obtain sensitive information.

  • CVE-2007-5857Dec 19, 2007
    risk 0.00cvss epss 0.03

    Quick Look in Apple Mac OS X 10.5.1 does not prevent a movie from accessing URLs when the movie file is previewed or if an icon is created, which might allow remote attackers to obtain sensitive information via HREFTrack.

  • CVE-2007-5858Dec 19, 2007
    risk 0.00cvss epss 0.03

    WebKit in Safari in Apple Mac OS X 10.4.11 and 10.5.1, iPhone 1.0 through 1.1.2, and iPod touch 1.1 through 1.1.2 allows remote attackers to "navigate the subframes of any other page," which can be leveraged to conduct cross-site scripting (XSS) attacks and obtain sensitive…

  • CVE-2007-5859Dec 19, 2007
    risk 0.00cvss epss 0.06

    Unspecified vulnerability in Safari RSS in Apple Mac OS X 10.4.11 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted feed: URL that triggers memory corruption.

  • CVE-2007-5860Dec 19, 2007
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in Spin Tracer in Apple Mac OS X 10.5.1 allows local users to execute arbitrary code via unspecified output files, involving an "insecure file operation."

  • CVE-2007-5861Dec 19, 2007
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Spotlight in Apple Mac OS X 10.4.11 allows user-assisted attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted .XLS file that triggers memory corruption in the Microsoft Office Spotlight Importer.

  • CVE-2007-5863Dec 19, 2007
    risk 0.05cvss epss 0.23

    Software Update in Apple Mac OS X 10.5.1 allows remote attackers to execute arbitrary commands via a man-in-the-middle (MITM) attack between the client and the server, using a modified distribution definition file with the "allow-external-scripts" option.

  • CVE-2007-6437Dec 19, 2007
    risk 0.00cvss epss 0.03

    Balabit syslog-ng 2.0.x before 2.0.6 and 2.1.x before 2.1.8 allows remote attackers to cause a denial of service (crash) via a message with a timestamp that does not contain a trailing space, which triggers a NULL pointer dereference.

  • CVE-2007-5862Dec 18, 2007
    risk 0.00cvss epss 0.03

    Java in Mac OS X 10.4 through 10.4.11 allows remote attackers to bypass Keychain access controls and add or delete arbitrary Keychain items via a crafted Java applet.

  • CVE-2007-6354Dec 18, 2007
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2007-6355.

  • CVE-2007-6355Dec 18, 2007
    risk 0.00cvss epss 0.02

    Integer overflow in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2007-6354.

  • CVE-2007-6356Dec 18, 2007
    risk 0.00cvss epss 0.02

    exiftags before 1.01 allows attackers to cause a denial of service (infinite loop) via recursive IFD references in the EXIF data in a JPEG image.

  • CVE-2007-6433Dec 18, 2007
    risk 0.00cvss epss 0.03

    The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before 2.0.0.CR3 allows remote attackers to inject and execute arbitrary EJBQL commands via the order parameter.

  • CVE-2007-6434Dec 18, 2007
    risk 0.00cvss epss 0.00

    Linux kernel 2.6.23 allows local users to create low pages in virtual userspace memory and bypass mmap_min_addr protection via a crafted executable file that calls the do_brk function.

  • CVE-2007-6435Dec 18, 2007
    risk 0.01cvss epss 0.07

    Stack-based buffer overflow in Novell GroupWise before 6.5.7, when HTML preview of e-mail is enabled, allows user-assisted remote attackers to execute arbitrary code via a long SRC attribute in an IMG element when forwarding or replying to a crafted e-mail.

  • CVE-2007-6436Dec 18, 2007
    risk 0.00cvss epss 0.04

    Stack-based buffer overflow in JSGCI.DLL in JustSystems Ichitaro 2005, 2006, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted document, as actively exploited in December 2007 by the Tarodrop.F trojan. NOTE: some of these details are…

  • CVE-2007-6424Dec 18, 2007
    risk 0.00cvss epss 0.02

    registry.pl in Fonality Trixbox 2.0 PBX products, when running in certain environments, reads and executes a set of commands from a remote web site without sufficiently validating the origin of the commands, which allows remote attackers to disable trixbox and execute arbitrary…

  • CVE-2007-5583Dec 18, 2007
    risk 0.03cvss epss 0.06

    Cisco IP Phone 7940 with firmware P0S3-08-7-00 allows remote attackers to cause a denial of service ("486 Busy" responses or device reboot) via a sequence of SIP INVITE transactions in which the Request-URI lacks a user name, a different vulnerability than CVE-2007-4459.

  • CVE-2007-6283Dec 18, 2007
    risk 0.00cvss epss 0.00

    Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permissions, which allows local users to perform unauthorized named commands, such as causing a denial of service by stopping named.

  • CVE-2007-6417Dec 18, 2007
    risk 0.00cvss epss 0.00

    The shmem_getpage function (mm/shmem.c) in Linux kernel 2.6.11 through 2.6.23 does not properly clear allocated memory in some rare circumstances related to tmpfs, which might allow local users to read sensitive kernel data or cause a denial of service (crash).

  • CVE-2007-6418Dec 18, 2007
    risk 0.00cvss epss 0.00

    The libdspam7-drv-mysql cron job in Debian GNU/Linux includes the MySQL dspam database password in a command line argument, which might allow local users to read the password by listing the process and its arguments.

  • CVE-2007-6413Dec 17, 2007
    risk 0.00cvss epss 0.03

    Sun Solaris 10 with the 120011-04 and 120012-04 patches, and later 120011-* and 120012-* patches, allows remote attackers to bypass certain netgroup restrictions and obtain root access to a filesystem via NFS requests from a client root user.

  • CVE-2007-6414Dec 17, 2007
    risk 0.03cvss epss 0.04

    admin/administrator.php in Adult Script 1.6 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication and obtain administrative credentials via a direct request. NOTE: this can be leveraged for arbitrary code…

  • CVE-2007-6416Dec 17, 2007
    risk 0.00cvss epss 0.00

    The copy_to_user function in the PAL emulation functionality for Xen 3.1.2 and earlier, when running on ia64 systems, allows HVM guest users to access arbitrary physical memory by triggering certain mapping operations.

  • CVE-2007-4473Dec 17, 2007
    risk 0.00cvss epss 0.06

    Gesytec Easylon OPC Server before 2.3.44 does not properly validate server handles, which allows remote attackers to execute arbitrary code or cause a denial of service via unspecified network traffic to the OLE for Process Control (OPC) interface, probably related to free…

  • CVE-2007-6389Dec 17, 2007
    risk 0.00cvss epss 0.00

    The notify feature in GNOME screensaver (gnome-screensaver) 2.20.0 might allow local users to read the clipboard contents and X selection data for a locked session by using ctrl-V.

  • CVE-2007-6390Dec 17, 2007
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in the mycalendar plugin before 0.13 for Serendipity allows remote attackers to perform actions as blog administrators, which can be leveraged to conduct cross-site scripting (XSS) attacks on the blog page.

  • CVE-2007-6391Dec 17, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in patch/comments.php in SH-News 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

  • CVE-2007-6392Dec 17, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in DWdirectory 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the search parameter to the /search URI.

  • CVE-2007-6393Dec 17, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in albums.php in Ace Image Hosting Script allows remote authenticated users to execute arbitrary SQL commands via the id parameter in editalbum mode.

  • CVE-2007-6394Dec 17, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in Content Injector 1.53 allows remote attackers to execute arbitrary SQL commands via the id parameter in an expand action.