| Max CVSS | 10.0 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-2444 | 7.2 |
Logic error in the SID/Name translation functionality in smbd in Samba 3.0.23d through 3.0.25pre2 allows local users to gain temporary privileges and execute SMB/CIFS protocol operations via unspecified vectors that cause the daemon to transition to
|
29-08-2022 - 20:19 | 14-05-2007 - 21:19 | |
| CVE-2007-2583 | 4.0 |
The in_decimal::set function in item_cmpfunc.cc in MySQL before 5.0.40, and 5.1 before 5.1.18-beta, allows context-dependent attackers to cause a denial of service (crash) via a crafted IF clause that results in a divide-by-zero error and a NULL poin
|
08-11-2021 - 21:47 | 10-05-2007 - 00:19 | |
| CVE-2007-1864 | 7.5 |
Buffer overflow in the bundled libxmlrpc library in PHP before 4.4.7, and 5.x before 5.2.2, has unknown impact and remote attack vectors.
|
22-05-2019 - 18:44 | 09-05-2007 - 00:19 | |
| CVE-2007-2511 | 7.2 |
Buffer overflow in the user_filter_factory_create function in PHP before 5.2.2 has unknown impact and local attack vectors.
|
30-10-2018 - 16:25 | 09-05-2007 - 00:19 | |
| CVE-2007-2509 | 2.6 |
CRLF injection vulnerability in the ftp_putcmd function in PHP before 4.4.7, and 5.x before 5.2.2 allows remote attackers to inject arbitrary FTP commands via CRLF sequences in the parameters to earlier FTP commands.
|
30-10-2018 - 16:25 | 09-05-2007 - 00:19 | |
| CVE-2007-2510 | 5.1 |
Buffer overflow in the make_http_soap_request function in PHP before 5.2.2 has unknown impact and remote attack vectors, possibly related to "/" (slash) characters.
|
30-10-2018 - 16:25 | 09-05-2007 - 00:19 | |
| CVE-2007-2438 | 7.6 |
The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines. Successful exploitation requires that the "modeline
|
16-10-2018 - 16:43 | 02-05-2007 - 21:19 | |
| CVE-2007-2447 | 6.0 |
The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when the "username map script" smb.conf option is enabled,
|
16-10-2018 - 16:43 | 14-05-2007 - 21:19 | |
| CVE-2007-2446 | 10.0 |
Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (netdfs_io_dfs_EnumInfo_d), (2) RFNPCNEX (smb_io_notif
|
16-10-2018 - 16:43 | 14-05-2007 - 21:19 | |
| CVE-2007-2027 | 4.4 |
Untrusted search path vulnerability in the add_filename_to_string function in intl/gettext/loadmsgcat.c for Elinks 0.11.1 allows local users to cause Elinks to use an untrusted gettext message catalog (.po file) in a "../po" directory, which can be l
|
11-10-2017 - 01:32 | 13-04-2007 - 18:19 | |
| CVE-2007-1995 | 6.3 |
bgpd/bgp_attr.c in Quagga 0.98.6 and earlier, and 0.99.6 and earlier 0.99 versions, does not validate length values in the MP_REACH_NLRI and MP_UNREACH_NLRI attributes, which allows remote attackers to cause a denial of service (daemon crash or exit)
|
11-10-2017 - 01:32 | 12-04-2007 - 10:19 | |
| CVE-2007-0244 | 5.0 |
pptpgre.c in PoPToP Point to Point Tunneling Server (pptpd) before 1.3.4 allows remote attackers to cause a denial of service (PPTP connection tear-down) via (1) GRE packets with out-of-order sequence numbers or (2) certain GRE packets that are proce
|
08-03-2011 - 02:49 | 11-05-2007 - 04:19 |