VYPR

CVEs

344,562 total · page 6424 of 6,892

  • CVE-2007-1000Mar 12, 2007
    risk 0.03cvss epss 0.01

    The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the Linux kernel before 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference.

  • CVE-2007-1412Mar 12, 2007
    risk 0.03cvss epss 0.06

    The cpdf_open function in the ClibPDF (cpdf) extension in PHP 4.4.6 allows context-dependent attackers to obtain sensitive information (script source code) via a long string in the second argument.

  • CVE-2007-1413Mar 12, 2007
    risk 0.04cvss epss 0.11

    Buffer overflow in the snmpget function in the snmp extension in PHP 5.2.3 and earlier, including PHP 4.4.6 and probably other PHP 4 versions, allows context-dependent attackers to execute arbitrary code via a long value in the third argument (object id).

  • CVE-2007-1414Mar 12, 2007
    risk 0.00cvss epss 0.05

    Multiple PHP remote file inclusion vulnerabilities in Coppermine Photo Gallery (CPG) allow remote attackers to execute arbitrary PHP code via a URL in the (1) cmd parameter to (a) image_processor.php or (b) picmgmt.inc.php, or the (2) path parameter to (c) include/functions.php,…

  • CVE-2007-1415Mar 12, 2007
    risk 0.04cvss epss 0.09

    Multiple PHP remote file inclusion vulnerabilities in PMB Services 3.0.13 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) class_path parameter to (a) includes/resa_func.inc.php (b) admin/notices/perso.inc.php, or (c)…

  • CVE-2007-1416Mar 12, 2007
    risk 0.03cvss epss 0.05

    PHP remote file inclusion vulnerability in createurl.php in JCcorp (aka James Coyle) URLshrink allows remote attackers to execute arbitrary PHP code via a URL in the formurl parameter.

  • CVE-2007-1417Mar 12, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in HC NEWSSYSTEM 1.0-4 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a komm aktion.

  • CVE-2007-1418Mar 12, 2007
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in skins/ace/popup-notopic.php in MindTouch OpenGarden DekiWiki before Gooseberry++ allows remote attackers to inject arbitrary web script or HTML via the message parameter.

  • CVE-2007-1419Mar 12, 2007
    risk 0.00cvss epss 0.01

    The Java Management Extensions Remote API Remote Method Invocation over Internet Inter-ORB Protocol (JMX RMI-IIOP) API in Java Dynamic Management Kit 5.1 before 20070309 does not properly enforce the java.policy, which allows local users to obtain certain MBeans data access by…

  • CVE-2007-1420Mar 12, 2007
    risk 0.03cvss epss 0.01

    MySQL 5.x before 5.0.36 allows local users to cause a denial of service (database crash) by performing information_schema table subselects and using ORDER BY to sort a single-row result, which prevents certain structure elements from being initialized and triggers a NULL…

  • CVE-2007-1389Mar 10, 2007
    risk 0.00cvss epss 0.02

    dynaliens 2.0 and 2.1 allows remote attackers to bypass authentication and perform certain privileged actions via a direct request for (1) validlien.php3 (2) supprlien.php3 (3) supprub.php3 (4) validlien.php3 (5) confsuppr.php3 (6) modiflien.php3, or (7) confmodif.php3 in admin/.

  • CVE-2007-1390Mar 10, 2007
    risk 0.00cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in dynaliens 2.0 and 2.1 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) recherche.php3 or (2) ajouter.php3.

  • CVE-2007-1391Mar 10, 2007
    risk 0.03cvss epss 0.05

    PHP remote file inclusion vulnerability in modules/abook/foldertree.php in Leo West WEBO (aka weborganizer) 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter.

  • CVE-2007-1392Mar 10, 2007
    risk 0.03cvss epss 0.03

    Directory traversal vulnerability in down.php in netForo! 0.1g allows remote attackers to read arbitrary files via a .. (dot dot) in the file_to_download parameter.

  • CVE-2007-1393Mar 10, 2007
    risk 0.03cvss epss 0.05

    PHP remote file inclusion vulnerability in mysave.php in Magic CMS 4.2.747 allows remote attackers to execute arbitrary PHP code via a URL in the file parameter.

  • CVE-2007-1394Mar 10, 2007
    risk 0.03cvss epss 0.04

    Direct static code injection vulnerability in startsession.php in Flat Chat 2.0 allows remote attackers to execute arbitrary PHP code via the Chat Name field, which is inserted into online.txt and included by users.php. NOTE: some of these details are obtained from third party…

  • CVE-2007-1395Mar 10, 2007
    risk 0.00cvss epss 0.01

    Incomplete blacklist vulnerability in index.php in phpMyAdmin 2.8.0 through 2.9.2 allows remote attackers to conduct cross-site scripting (XSS) attacks by injecting arbitrary JavaScript or HTML in a (1) db or (2) table parameter value followed by an uppercase end tag,…

  • CVE-2007-1396Mar 10, 2007
    risk 0.00cvss epss 0.02

    The import_request_variables function in PHP 4.0.7 through 4.4.6, and 5.x before 5.2.2, when called without a prefix, does not prevent the (1) GET, (2) POST, (3) COOKIE, (4) FILES, (5) SERVER, (6) SESSION, and other superglobals from being overwritten, which allows remote…

  • CVE-2007-1397Mar 10, 2007
    risk 0.04cvss epss 0.09

    Multiple stack-based buffer overflows in the (1) ExtractRnick and (2) decrypt_topic_332 functions in FiSH allow remote attackers to execute arbitrary code via long strings.

  • CVE-2007-1398Mar 10, 2007
    risk 0.03cvss epss 0.06

    The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ip_conntrack module loaded, allows remote attackers to cause a denial of service (segmentation fault and application crash) via certain UDP packets produced by…

  • CVE-2007-1399CriMar 10, 2007
    risk 0.68cvss 9.8epss 0.20

    Stack-based buffer overflow in the zip:// URL wrapper in PECL ZIP 1.8.3 and earlier, as bundled with PHP 5.2.0 and 5.2.1, allows remote attackers to execute arbitrary code via a long zip:// URL, as demonstrated by actively triggering URL access from a remote PHP interpreter via…

  • CVE-2007-1400Mar 10, 2007
    risk 0.00cvss epss 0.00

    Plash permits sandboxed processes to open /dev/tty, which allows local users to escape sandbox restrictions and execute arbitrary commands by sending characters to a shell process on the same termimal via the TIOCSTI ioctl.

  • CVE-2007-1401Mar 10, 2007
    risk 0.03cvss epss 0.01

    Buffer overflow in the crack extension (CrackLib), as bundled with PHP 4.4.6 and other versions before 5.0.0, might allow local users to gain privileges via a long argument to the crack_opendict function.

  • CVE-2007-1402Mar 10, 2007
    risk 0.03cvss epss 0.02

    The Rediff Toolbar 2.0 ActiveX control in redifftoolbar.dll allows remote attackers to cause a denial of service via unspecified manipulations, possibly involving improper initialization or blank arguments.

  • CVE-2007-1403Mar 10, 2007
    risk 0.05cvss epss 0.29

    Multiple stack-based buffer overflows in an ActiveX control in SwDir.dll 10.1.4.20 in Macromedia Shockwave allow remote attackers to cause a denial of service (Internet Explorer 7 crash) and possibly execute arbitrary code via a long (1) BGCOLOR, (2) SRC, (3) AutoStart, (4)…

  • CVE-2007-1404Mar 10, 2007
    risk 0.08cvss epss 0.67

    tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 allows remote attackers to cause a denial of service via a long UDP packet that is not properly handled in a recv_from call. NOTE: this issue might be related to CVE-2006-4948.

  • CVE-2007-1405Mar 10, 2007
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in the "download wiki page as text" feature in Trac before 0.10.3.1, when Microsoft Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

  • CVE-2007-1406Mar 10, 2007
    risk 0.00cvss epss 0.01

    Trac before 0.10.3.1 does not send a Content-Disposition HTTP header specifying an attachment in certain "unsafe" situations, which has unknown impact and remote attack vectors.

  • CVE-2007-1407Mar 10, 2007
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in OpenSolution Quick.Cart before 2.1 has unknown impact and attack vectors, related to a "low critical exploit."

  • CVE-2007-1408Mar 10, 2007
    risk 0.00cvss epss 0.01

    Multiple vulnerabilities in (1) bank.php, (2) landfill.php, (3) outposts.php, (4) tribes.php, (5) house.php, (6) tribearmor.php, (7) tribeastral.php, (8) tribeware.php, and (9) includes/head.php in Bartek Jasicki Vallheru before 1.3 beta have unknown impact and remote attack…

  • CVE-2007-1409Mar 10, 2007
    risk 0.00cvss epss 0.02

    WordPress allows remote attackers to obtain sensitive information via a direct request for wp-admin/admin-functions.php, which reveals the path in an error message.

  • CVE-2007-1410Mar 10, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in kategori.asp in GaziYapBoz Game Portal allows remote attackers to execute arbitrary SQL commands via the kategori parameter.

  • CVE-2007-1411Mar 10, 2007
    risk 0.04cvss epss 0.07

    Buffer overflow in PHP 4.4.6 and earlier, and unspecified PHP 5 versions, allows local and possibly remote attackers to execute arbitrary code via long server name arguments to the (1) mssql_connect and (2) mssql_pconnect functions.

  • CVE-2007-1365Mar 10, 2007
    risk 0.04cvss epss 0.18

    Buffer overflow in kern/uipc_mbuf2.c in OpenBSD 3.9 and 4.0 allows remote attackers to execute arbitrary code via fragmented IPv6 packets due to "incorrect mbuf handling for ICMP6 packets." NOTE: this was originally reported as a denial of service.

  • CVE-2007-1273Mar 10, 2007
    risk 0.00cvss epss 0.00

    Integer overflow in the ktruser function in NetBSD-current before 20061022, NetBSD 3 and 3-0 before 20061024, and NetBSD 2 before 20070209, when the kernel is built with the COMPAT_FREEBSD or COMPAT_DARWIN option, allows local users to cause a denial of service and possibly gain…

  • CVE-2007-0999Mar 10, 2007
    risk 0.00cvss epss 0.03

    Format string vulnerability in Ekiga 2.0.3, and probably other versions, allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2007-1006.

  • CVE-2007-1345Mar 10, 2007
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in cube.exe in the GINA component for CA (Computer Associates) eTrust Admin 8.1.0 through 8.1.2 allows attackers with physical interactive or Remote Desktop access to bypass authentication and gain privileges via the password reset interface.

  • CVE-2007-1388Mar 10, 2007
    risk 0.03cvss epss 0.01

    The do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux kernel before 2.6.20, and possibly other versions, allows local users to cause a denial of service (oops) by calling setsockopt with the IPV6_RTHDR option name and possibly a zero option length or invalid…

  • CVE-2007-1384Mar 10, 2007
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers to overwrite arbitrary files via ".." sequences in a torrent filename.

  • CVE-2007-1385Mar 10, 2007
    risk 0.00cvss epss 0.02

    chunkcounter.cpp in KTorrent before 2.1.2 allows remote attackers to cause a denial of service (crash) and heap corruption via a negative or large idx value.

  • CVE-2006-7163Mar 10, 2007
    risk 0.00cvss epss 0.00

    DreameeSoft Password Master 1.0 stores the database in an unencrypted format when the master password is set, which allows attackers with physical access to read the database contents via an unspecified authentication bypass. NOTE: the provenance of this information is unknown;…

  • CVE-2007-0005Mar 10, 2007
    risk 0.03cvss epss 0.01

    Multiple buffer overflows in the (1) read and (2) write handlers in the Omnikey CardMan 4040 driver in the Linux kernel before 2.6.21-rc3 allow local users to gain privileges.

  • CVE-2007-1371Mar 10, 2007
    risk 0.03cvss epss 0.04

    Multiple buffer overflows in Conquest 8.2a and earlier (1) allow local users to gain privileges by querying a metaserver that sends a long server entry processed by metaGetServerList and allow remote metaservers to execute arbitrary code via a long server entry processed by…

  • CVE-2007-1372Mar 10, 2007
    risk 0.03cvss epss 0.04

    PHP remote file inclusion vulnerability in styles/internal/header.php in the PostGuestbook 0.6.1 module for PHP-Nuke allows remote attackers to execute arbitrary PHP code via a URL in the tpl_pgb_moddir parameter.

  • CVE-2007-1373Mar 10, 2007
    risk 0.08cvss epss 0.59

    Stack-based buffer overflow in Mercury/32 (aka Mercury Mail Transport System) 4.01b and earlier allows remote attackers to execute arbitrary code via a long LOGIN command. NOTE: this might be the same issue as CVE-2006-5961.

  • CVE-2007-1374Mar 10, 2007
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in pop_profile.asp in Snitz Forums 2000 3.4.06 allows remote attackers to inject arbitrary web script or HTML via the MSN parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party…

  • CVE-2007-1375Mar 10, 2007
    risk 0.04cvss epss 0.08

    Integer overflow in the substr_compare function in PHP 5.2.1 and earlier allows context-dependent attackers to read sensitive memory via a large value in the length argument, a different vulnerability than CVE-2006-1991.

  • CVE-2007-1376Mar 10, 2007
    risk 0.04cvss epss 0.10

    The shmop functions in PHP before 4.4.5, and before 5.2.1 in the 5.x series, do not verify that their arguments correspond to a shmop resource, which allows context-dependent attackers to read and write arbitrary memory locations via arguments associated with an inappropriate…

  • CVE-2007-1377Mar 10, 2007
    risk 0.05cvss epss 0.20

    AcroPDF.DLL in Adobe Reader 8.0, when accessed from Mozilla Firefox, Netscape, or Opera, allows remote attackers to cause a denial of service (unspecified resource consumption) via a .pdf URL with an anchor identifier that begins with search= followed by many %n sequences, a…

  • CVE-2007-1378Mar 10, 2007
    risk 0.00cvss epss 0.01

    The ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-dependent attackers to write to arbitrary memory locations via the result_id and length arguments.