Total
28442 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2009-3550 | 1 Wireshark | 1 Wireshark | 2024-02-28 | 4.3 MEDIUM | N/A |
The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a file that records a malformed packet trace. NOTE: some of these details are obtained from third party information. | |||||
CVE-2009-0668 | 1 Zope | 1 Zodb | 2024-02-28 | 6.5 MEDIUM | N/A |
Unspecified vulnerability in Zope Object Database (ZODB) before 3.8.2, when certain Zope Enterprise Objects (ZEO) database sharing is enabled, allows remote attackers to execute arbitrary Python code via vectors involving the ZEO network protocol. | |||||
CVE-2008-3693 | 1 Vmware | 4 Ace, Player, Server and 1 more | 2024-02-28 | 10.0 HIGH | N/A |
Unspecified vulnerability in a certain ActiveX control in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-3691, CVE-2008-3692, CVE-2008-3694, CVE-2008-3695, and CVE-2008-3696. | |||||
CVE-2008-4615 | 1 Portalapp | 1 Portalapp | 2024-02-28 | 10.0 HIGH | N/A |
Unspecified vulnerability in i_utils.asp in PortalApp before 4.01a has unknown impact and attack vectors. | |||||
CVE-2009-2481 | 2 Six Apart, Sixapart | 2 Movable Type, Movable Type | 2024-02-28 | 5.8 MEDIUM | N/A |
mt-wizard.cgi in Six Apart Movable Type before 4.261, when global templates are not initialized, allows remote attackers to bypass access restrictions and (1) send e-mail to arbitrary addresses or (2) obtain sensitive information via unspecified vectors. | |||||
CVE-2008-3914 | 1 Clamav | 1 Clamav | 2024-02-28 | 10.0 HIGH | N/A |
Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c. | |||||
CVE-2008-5444 | 1 Oracle | 1 Secure Backup | 2024-02-28 | 10.0 HIGH | N/A |
Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.2.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2008-5448 and CVE-2008-5449. | |||||
CVE-2008-7189 | 1 Bastian Blumentritt | 1 Local Media Browser | 2024-02-28 | 10.0 HIGH | N/A |
Multiple unspecified vulnerabilities in Local Media Browser before 0.1 have unknown impact and attack vectors related to "Security holes." | |||||
CVE-2009-0179 | 1 Igno Saitz | 1 Libmikmod | 2024-02-28 | 4.3 MEDIUM | N/A |
libmikmod 3.1.11 through 3.2.0, as used by MikMod and possibly other products, allows user-assisted attackers to cause a denial of service (application crash) by loading an XM file. | |||||
CVE-2008-0949 | 1 Ibm | 1 Informix Dynamic Server | 2024-02-28 | 10.0 HIGH | N/A |
Unspecified vulnerability in IBM Informix Dynamic Server (IDS) 7.x through 11.x allows remote attackers to gain privileges via a malformed connection request packet. | |||||
CVE-2009-1335 | 1 Microsoft | 3 Internet Explorer, Windows Vista, Windows Xp | 2024-02-28 | 4.3 MEDIUM | N/A |
Microsoft Internet Explorer 7 and 8 on Windows XP and Vista allows remote attackers to cause a denial of service (application hang) via a large document composed of unprintable characters, aka MSRC 9011jr. | |||||
CVE-2008-3989 | 1 Oracle | 1 Database 10g | 2024-02-28 | 6.5 MEDIUM | N/A |
Unspecified vulnerability in the Oracle Data Mining component in Oracle Database 10.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability, related to DMSYS.ODM_MODEL_UTIL. | |||||
CVE-2009-1997 | 1 Oracle | 1 Database Server | 2024-02-28 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in the Authentication component in Oracle Database 10.2.0.3 and 11.1.0.7 allows remote attackers to affect confidentiality via unknown vectors. | |||||
CVE-2009-0501 | 1 Moodle | 1 Moodle | 2024-02-28 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in the Calendar export feature in Moodle 1.8 before 1.8.8 and 1.9 before 1.9.4 allows attackers to obtain sensitive information and conduct "brute force attacks on user accounts" via unknown vectors. | |||||
CVE-2008-4007 | 1 Oracle | 2 Jd Edwards Enterpriseone, Peoplesoft Enterprise | 2024-02-28 | 6.5 MEDIUM | N/A |
Unspecified vulnerability in the PeopleSoft Enterprise Components component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.9.18 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
CVE-2009-0206 | 1 Hp | 2 Hp-ux, Oncplus | 2024-02-28 | 4.9 MEDIUM | N/A |
Unspecified vulnerability in NFS in HP ONCplus B.11.31.05 and earlier for HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors. | |||||
CVE-2008-6579 | 1 Nortel | 1 Cs1000 | 2024-02-28 | 5.0 MEDIUM | N/A |
Nortel Communication Server 1000 4.50.x allows remote attackers to obtain Web application structure via unknown vectors related to "web resources to phones and administrators." | |||||
CVE-2008-2308 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-02-28 | 4.6 MEDIUM | N/A |
Unspecified vulnerability in Alias Manager in Apple Mac OS X 10.5.1 and earlier on Intel platforms allows local users to gain privileges or cause a denial of service (memory corruption and application crash) by resolving an alias that contains crafted AFP volume mount information. | |||||
CVE-2008-4011 | 1 Oracle | 1 Bea Product Suite | 2024-02-28 | 2.1 LOW | N/A |
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote authenticated users to affect integrity via unknown vectors. | |||||
CVE-2008-3809 | 1 Cisco | 1 Ios | 2024-02-28 | 7.1 HIGH | N/A |
Cisco IOS 12.0 through 12.4 on Gigabit Switch Router (GSR) devices (aka 12000 Series routers) allows remote attackers to cause a denial of service (device crash) via a malformed Protocol Independent Multicast (PIM) packet. |