| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-0876 | 4.3 |
The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via an XML file wit
|
05-08-2022 - 14:52 | 03-07-2012 - 19:55 | |
| CVE-2012-1148 | 5.0 |
Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service (memory consumption) via a large number of crafted XML files that cause improperly-handled reallocation
|
25-01-2021 - 15:44 | 03-07-2012 - 19:55 | |
| CVE-2012-1147 | 4.3 |
readfilemap.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service (file descriptor consumption) via a large number of crafted XML files.
|
25-01-2021 - 15:44 | 03-07-2012 - 19:55 | |
| CVE-2012-0006 | 5.0 |
The DNS server in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 does not properly handle objects in memory during record lookup, which allows remote attackers to cause a denial of service (daemon restart) via a crafted query,
|
28-09-2020 - 12:58 | 13-03-2012 - 21:55 | |
| CVE-2012-0006 | 5.0 |
The DNS server in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 does not properly handle objects in memory during record lookup, which allows remote attackers to cause a denial of service (daemon restart) via a crafted query,
|
28-09-2020 - 12:58 | 13-03-2012 - 21:55 | |
| CVE-2018-8437 | 5.5 |
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hyper-V Denial of Service Vulnerability." This affects W
|
02-11-2018 - 15:36 | 13-09-2018 - 00:29 | |
| CVE-2007-4284 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified MeetingPlace Web Conferencing (MP) 5.3.235.0 and earlier allow remote attackers to inject arbitrary HTML and web script via the (1) Success Template (STPL) and (2) Failure Template
|
15-10-2018 - 21:34 | 09-08-2007 - 21:17 | |
| CVE-2016-8461 | 2.1 |
An information disclosure vulnerability in the bootloader could enable a local attacker to access data outside of its permission level. This issue is rated as High because it could be used to access sensitive data. Product: Android. Versions: Kernel-
|
18-01-2017 - 02:59 | 12-01-2017 - 20:59 | |
| CVE-2016-8462 | 2.1 |
An information disclosure vulnerability in the bootloader could enable a local attacker to access data outside of its permission level. This issue is rated as High because it could be used to access sensitive data. Product: Android. Versions: N/A. An
|
18-01-2017 - 02:59 | 12-01-2017 - 20:59 | |
| CVE-2015-3224 | 4.3 |
request.rb in Web Console before 2.1.3, as used with Ruby on Rails 3.x and 4.x, does not properly restrict the use of X-Forwarded-For headers in determining a client's IP address, which allows remote attackers to bypass the whitelisted_ips protection
|
03-12-2016 - 03:08 | 26-07-2015 - 22:59 | |
| CVE-2002-0663 | 7.5 |
Buffer overflow in HTTP Proxy for Symantec Norton Personal Internet Firewall 3.0.4.91 and Norton Internet Security 2001 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large outgoing HTTP request.
|
10-09-2008 - 19:12 | 26-07-2002 - 04:00 |