| Max CVSS | 10.0 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-2851 | 6.9 |
Integer overflow in the ping_init_sock function in net/ipv4/ping.c in the Linux kernel through 3.14.1 allows local users to cause a denial of service (use-after-free and system crash) or possibly gain privileges via a crafted application that leverag
|
15-12-2023 - 15:57 | 14-04-2014 - 23:55 | |
| CVE-2003-1326 | 7.5 |
Microsoft Internet Explorer 5.5 and 6.0 allows remote attackers to bypass the cross-domain security model to run malicious script or arbitrary programs via dialog boxes, aka "Improper Cross Domain Security Validation with dialog box."
|
23-07-2021 - 12:55 | 19-02-2003 - 05:00 | |
| CVE-2017-6314 | 4.3 |
The make_available_at_least function in io-tiff.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (infinite loop) via a large TIFF file.
|
04-08-2020 - 13:27 | 10-03-2017 - 02:59 | |
| CVE-2017-6313 | 5.8 |
Integer underflow in the load_resources function in io-icns.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (out-of-bounds read and program crash) via a crafted image entry size in an ICO file.
|
04-08-2020 - 13:27 | 10-03-2017 - 02:59 | |
| CVE-2017-6312 | 4.3 |
Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted image entry offset in an ICO file, which triggers an out-of-bounds read, related to co
|
04-08-2020 - 13:26 | 10-03-2017 - 02:59 | |
| CVE-2017-6311 | 5.0 |
gdk-pixbuf-thumbnailer.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to printing an error message.
|
04-08-2020 - 13:25 | 10-03-2017 - 02:59 | |
| CVE-2006-0736 | 10.0 |
Stack-based buffer overflow in the pam_micasa PAM authentication module in CASA on Novell Linux Desktop 9 and Open Enterprise Server 1 allows remote attackers to execute arbitrary code via unspecified vectors.
|
24-02-2020 - 14:15 | 27-02-2006 - 20:06 | |
| CVE-2014-3967 | 5.5 |
The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x does not properly check the return value from the IRQ setup check, which allows local HVM guest administrators to cause a denial of service (NULL pointer dereference and crash) via unspecif
|
30-10-2018 - 16:27 | 05-06-2014 - 20:55 | |
| CVE-2014-3968 | 5.5 |
The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x allows local guest HVM administrators to cause a denial of service (host crash) via a large number of crafted requests, which trigger an error messages to be logged.
|
30-10-2018 - 16:27 | 05-06-2014 - 20:55 | |
| CVE-2014-3956 | 1.9 |
The sm_close_on_exec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FD_CLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom ma
|
29-12-2017 - 02:29 | 04-06-2014 - 11:19 | |
| CVE-2007-6392 | 7.5 |
SQL injection vulnerability in DWdirectory 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the search parameter to the /search URI.
|
29-09-2017 - 01:29 | 17-12-2007 - 18:46 | |
| CVE-2014-2502 | 4.3 |
Cross-site scripting (XSS) vulnerability in rsa_fso.swf in EMC RSA Adaptive Authentication (Hosted) 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
18-06-2014 - 04:32 | 04-06-2014 - 04:24 |