Total
28426 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2009-3178 | 1 Symantec | 1 Altiris Deployment Solution | 2024-02-28 | 7.8 HIGH | N/A |
Unspecified vulnerability in mm.exe in Symantec Altiris Deployment Solution 6.9 allows remote attackers to cause a denial of service via unknown attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 7.18, "Symantec Altiris Deployment Solution 6.9 DoS." NOTE: as of 20090909, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes. | |||||
CVE-2008-5395 | 2 Hp, Linux | 2 Pa-risc, Linux Kernel | 2024-02-28 | 4.9 MEDIUM | N/A |
The parisc_show_stack function in arch/parisc/kernel/traps.c in the Linux kernel before 2.6.28-rc7 on PA-RISC allows local users to cause a denial of service (system crash) via vectors associated with an attempt to unwind a stack that contains userspace addresses. | |||||
CVE-2008-6602 | 1 Stadtaus | 1 Download Center Lite | 2024-02-28 | 10.0 HIGH | N/A |
Unspecified vulnerability in Download Center Lite before 2.1 has unknown impact and attack vectors related to "A minor security fix." | |||||
CVE-2009-2507 | 1 Microsoft | 3 Windows 2000, Windows 2003 Server, Windows Xp | 2024-02-28 | 9.3 HIGH | N/A |
A certain ActiveX control in the Indexing Service in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly process URLs, which allows remote attackers to execute arbitrary programs via unspecified vectors that cause a "vulnerable binary" to load and run, aka "Memory Corruption in Indexing Service Vulnerability." | |||||
CVE-2009-3449 | 1 Collectorz | 1 Mp3 Collector | 2024-02-28 | 4.3 MEDIUM | N/A |
MP3 Collector 2.3 allows remote attackers to cause a denial of service (application crash) via a long URL in a .m3u playlist file. | |||||
CVE-2008-4640 | 1 Sentex | 1 Jhead | 2024-02-28 | 3.6 LOW | N/A |
The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to delete arbitrary files via vectors involving a modified input filename in which (1) a final "z" character is replaced by a "t" character or (2) a final "t" character is replaced by a "z" character. | |||||
CVE-2009-0214 | 1 Areva | 1 E-terrahabitat | 2024-02-28 | 9.0 HIGH | N/A |
Unspecified vulnerability in the WebFGServer application in AREVA e-terrahabitat 5.7 and earlier allows remote authenticated users to gain privileges via unknown vectors, aka PD32022. | |||||
CVE-2009-1993 | 1 Oracle | 1 Database Server | 2024-02-28 | 5.5 MEDIUM | N/A |
Unspecified vulnerability in the Application Express component in Oracle Database 3.0.1 allows remote authenticated users to affect confidentiality and integrity, related to FLOWS_030000.WWV_EXECUTE_IMMEDIATE. | |||||
CVE-2009-1980 | 1 Oracle | 1 E-business Suite | 2024-02-28 | 6.0 MEDIUM | N/A |
Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
CVE-2009-1359 | 1 Sun | 1 Opensolaris | 2024-02-28 | 4.9 MEDIUM | N/A |
Unspecified vulnerability in the SCTP sockets implementation in Sun OpenSolaris snv_106 through snv_107 allows local users to cause a denial of service (panic) via unknown vectors. | |||||
CVE-2008-3548 | 1 Sun | 1 Netra T5220 Server | 2024-02-28 | 4.9 MEDIUM | N/A |
Unspecified vulnerability in the Sun Netra T5220 Server with firmware 7.1.3 allows local users to cause a denial of service (panic) via unknown vectors. | |||||
CVE-2009-1266 | 1 Wireshark | 1 Wireshark | 2024-02-28 | 10.0 HIGH | N/A |
Unspecified vulnerability in Wireshark before 1.0.7 has unknown impact and attack vectors. | |||||
CVE-2008-1665 | 1 Hp | 1 Hpsi Active Directory Bidirectional Ldap Connector | 2024-02-28 | 9.0 HIGH | N/A |
Multiple unspecified vulnerabilities in HP Select Identity (HPSI) Active Directory Bidirectional LDAP Connector 2.20, 2.20.001, 2.20.002, and 2.30 allow remote attackers to execute arbitrary code via unspecified vectors. | |||||
CVE-2009-3517 | 1 Ibm | 1 Aix | 2024-02-28 | 10.0 HIGH | N/A |
nfs.ext in IBM AIX 5.3.x through 5.3.9 and 6.1.0 through 6.1.2 does not properly use the nfs_portmon setting, which allows remote attackers to bypass intended access restrictions for NFSv4 shares via unspecified vectors. | |||||
CVE-2009-3242 | 1 Wireshark | 1 Wireshark | 2024-02-28 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in packet.c in the GSM A RR dissector in Wireshark 1.2.0 and 1.2.1 allows remote attackers to cause a denial of service (application crash) via unknown vectors related to "an uninitialized dissector handle," which triggers an assertion failure. | |||||
CVE-2009-3401 | 1 Oracle | 1 E-business Suite | 2024-02-28 | 1.7 LOW | N/A |
Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.1 allows local users to affect confidentiality via unknown vectors. | |||||
CVE-2009-3935 | 1 Ibm | 2 Advanced Management Module Firmware, Bladecenter | 2024-02-28 | 10.0 HIGH | N/A |
Multiple unspecified vulnerabilities in the Advanced Management Module firmware before 2.50G for the IBM BladeCenter T 8720-2xx and 8730-2xx have unknown impact and attack vectors. | |||||
CVE-2008-5646 | 1 Trac | 1 Trac | 2024-02-28 | 7.5 HIGH | N/A |
Unspecified vulnerability in Trac before 0.11.2 allows attackers to cause a denial of service via unknown attack vectors related to "certain wiki markup." | |||||
CVE-2008-2594 | 1 Oracle | 1 Oracle Application Server | 2024-02-28 | 6.4 MEDIUM | N/A |
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 10.1.2.3 and 10.1.4.2 has unknown impact and remote attack vectors, a different vulnerability than CVE-2008-2593. | |||||
CVE-2008-4580 | 1 Gentoo | 2 Cman, Fence | 2024-02-28 | 7.2 HIGH | N/A |
fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify arbitrary files via a symlink attack on the fence_manual.fifo temporary file. |