| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-2097 | 9.0 |
Buffer overflow in the openwsman management service in VMware ESXi 3.5 and ESX 3.5 allows remote authenticated users to gain privileges via an "invalid Content-Length."
|
11-10-2018 - 20:39 | 05-06-2008 - 20:32 | |
| CVE-2008-2142 | 6.8 |
Emacs 21 and XEmacs automatically load and execute .flc (fast lock) files that are associated with other files that are edited within Emacs, which allows user-assisted attackers to execute arbitrary code.
|
11-10-2018 - 20:39 | 12-05-2008 - 19:20 | |
| CVE-2008-1686 | 9.3 |
Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to ex
|
11-10-2018 - 20:36 | 08-04-2008 - 18:05 | |
| CVE-2008-1637 | 6.8 |
PowerDNS Recursor before 3.1.5 uses insufficient randomness to calculate (1) TRXID values and (2) UDP source port numbers, which makes it easier for remote attackers to poison a DNS cache, related to (a) algorithmic deficiencies in rand and random fu
|
11-10-2018 - 20:35 | 02-04-2008 - 17:44 | |
| CVE-2008-1420 | 6.8 |
Integer overflow in residue partition value (aka partvals) evaluation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to execute arbitrary code via a crafted OGG file, which triggers a heap overflow.
|
03-10-2018 - 21:53 | 16-05-2008 - 12:54 | |
| CVE-2008-1878 | 7.5 |
Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine-lib 1.1.12 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long NSF title.
|
29-09-2017 - 01:30 | 17-04-2008 - 22:05 | |
| CVE-2008-1419 | 4.3 |
Xiph.org libvorbis 1.2.0 and earlier does not properly handle a zero value for codebook.dim, which allows remote attackers to cause a denial of service (crash or infinite loop) or trigger an integer overflow.
|
29-09-2017 - 01:30 | 16-05-2008 - 12:54 | |
| CVE-2008-1423 | 9.3 |
Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its
|
29-09-2017 - 01:30 | 16-05-2008 - 12:54 | |
| CVE-2008-0073 | 6.8 |
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
|
08-08-2017 - 01:29 | 24-03-2008 - 22:44 | |
| CVE-2008-2388 | 10.0 |
Multiple off-by-one errors in opensuse-updater in openSUSE 10.2 have unspecified impact and attack vectors. NOTE: the vendor states that these "can be considered no security problem."
|
11-09-2008 - 01:10 | 06-06-2008 - 22:32 | |
| CVE-2008-2389 | 4.9 |
opensuse-updater in openSUSE 10.2 allows local users to access arbitrary files via a symlink attack.
|
11-09-2008 - 01:10 | 06-06-2008 - 22:32 |