| Max CVSS | 10.0 | Min CVSS | 4.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-4020 | 4.6 |
scanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execute arbitrary code via a sscanf PHP function call that performs argument swapping, which increments an index past the end of an array and triggers a bu
|
14-02-2024 - 01:17 | 08-08-2006 - 20:04 | |
| CVE-2006-3083 | 7.2 |
The (1) krshd and (2) v4rcp applications in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x before 1.4.4, when running on Linux and AIX, and (b) Heimdal 0.7.2 and earlier, do not check return codes for setuid calls, which allows local users to gain pr
|
21-01-2020 - 15:45 | 09-08-2006 - 10:04 | |
| CVE-2006-3084 | 7.2 |
The (1) ftpd and (2) ksu programs in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x before 1.4.4, and (b) Heimdal 0.7.2 and earlier, do not check return codes for setuid calls, which might allow local users to gain privileges by causing setuid to fai
|
21-01-2020 - 15:45 | 09-08-2006 - 10:04 | |
| CVE-2006-3627 | 5.0 |
Unspecified vulnerability in the GSM BSSMAP dissector in Wireshark (aka Ethereal) 0.10.11 to 0.99.0 allows remote attackers to cause a denial of service (crash) via unspecified vectors. This vulnerability is addressed in the following product release
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
| CVE-2006-3631 | 5.0 |
Unspecified vulnerability in the SSH dissector in Wireshark (aka Ethereal) 0.9.10 to 0.99.0 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. This vulnerability is addressed in the following product rele
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
| CVE-2006-3628 | 10.0 |
Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissec
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
| CVE-2006-3630 | 7.5 |
Multiple off-by-one errors in Wireshark (aka Ethereal) 0.9.7 to 0.99.0 have unknown impact and remote attack vectors via the (1) NCP NMAS and (2) NDPS dissectors.
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
| CVE-2006-3629 | 7.8 |
Unspecified vulnerability in the MOUNT dissector in Wireshark (aka Ethereal) 0.9.4 to 0.99.0 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. This vulnerability is addressed in the following product r
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
| CVE-2006-3632 | 10.0 |
Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector. This vulnerability is addressed in the following product release:
Ethereal G
|
18-10-2018 - 16:48 | 21-07-2006 - 14:03 | |
| CVE-2006-3746 | 5.0 |
Integer overflow in parse_comment in GnuPG (gpg) 1.4.4 allows remote attackers to cause a denial of service (segmentation fault) via a crafted message.
|
17-10-2018 - 21:29 | 28-07-2006 - 21:04 | |
| CVE-2006-1168 | 7.5 |
The decompress function in compress42.c in (1) ncompress 4.2.4 and (2) liblzw allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code, via crafted data that leads to a buffer underflow.
|
11-10-2017 - 01:30 | 14-08-2006 - 20:04 |