|Max CVSS||10.0||Min CVSS||5.0||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL
|17-11-2021 - 22:15||05-06-2014 - 21:55|
Stack-based buffer overflow in Internet Download Manager (IDM) before 5.19 allows remote attackers to execute arbitrary code via a crafted FTP URI that causes unspecified "test sequences" to be sent from client to server.
|10-10-2018 - 19:55||06-05-2010 - 14:53|
Net/DNS/RR/A.pm in Net::DNS 0.60 build 654, as used in packages such as SpamAssassin and OTRS, allows remote attackers to cause a denial of service (program "croak") via a crafted DNS response.
|03-10-2018 - 21:51||20-12-2007 - 23:46|
Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to tr
|03-05-2018 - 01:29||27-08-2003 - 04:00|
SQL injection vulnerability in index.php in OneOrZero 126.96.36.199 allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly in the kans action.
|20-07-2017 - 01:30||30-03-2006 - 00:06|