Total
31934 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2007-4547 | 1 X-diesel | 1 Unreal Commander | 2018-10-15 | 4.3 MEDIUM | N/A |
| Unreal Commander 0.92 build 565 and 573 writes portions of heap memory into local files when extracting from an archive with malformed size information in a file header, which might allow user-assisted attackers to obtain sensitive information (memory contents) by reading the extracted files. NOTE: this issue is only a vulnerability if Unreal is run with privileges, or if the extracted files are made accessible to other users. | |||||
| CVE-2007-4577 | 1 Sophos | 3 Anti-virus, Scanning Engine, Small Business Suite | 2018-10-15 | 7.8 HIGH | N/A |
| Sophos Anti-Virus for Unix/Linux before 2.48.0 allows remote attackers to cause a denial of service (infinite loop) via a malformed BZip file that results in the creation of multiple Engine temporary files (aka a "BZip bomb"). | |||||
| CVE-2007-4402 | 1 Mirc | 1 Mirc | 2018-10-15 | 6.8 MEDIUM | N/A |
| Multiple unspecified scripts in mIRC allow user-assisted remote attackers to execute arbitrary code via the '|' (pipe) shell metacharacter in the name of the song in a .mp3 file. | |||||
| CVE-2007-4429 | 1 Skype Technologies | 1 Skype | 2018-10-15 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Skype allows remote attackers to cause a denial of service (server hang) via unknown vectors related to sending long URIs, as claimed to be actively exploited on 20070817 using a "call to a specific number." NOTE: this identifier is for the en.securitylab.ru disclosure. According to the vendor, this issue is separate from the "sign-on issues" that reduced Skype service on 20070817, which appears to be a site-specific problem. As of 20070821, it is not clear whether this issue is simply a symptom of the larger sign-on problem. | |||||
| CVE-2007-4250 | 1 Advanced Searchbar | 1 Advanced Searchbar | 2018-10-15 | 5.0 MEDIUM | N/A |
| The isChecked function in Toolbar.DLL in Advanced Searchbar before 3.33 allows remote attackers to cause a denial of service (NULL dereference and browser crash) via unspecified vectors. | |||||
| CVE-2007-3908 | 1 Hp | 2 Cluster Object Manager, Serviceguard | 2018-10-15 | 4.6 MEDIUM | N/A |
| Unspecified vulnerability in HP ServiceGuard for Linux for Red Hat Enterprise Linux (RHEL) 2.1 SG A.11.14.04 through A.11.14.06; RHEL 3.0 SG A.11.16.04 through A.11.16.10; and ServiceGuard Cluster Object Manager B.03.01.02 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2007-0980. | |||||
| CVE-2007-3907 | 1 Ledgersmb | 1 Ledgersmb | 2018-10-15 | 10.0 HIGH | N/A |
| Unspecified vulnerability in login.pl in LedgerSMB 1.2.0 through 1.2.6 allows remote attackers to bypass authentication and perform certain actions as an arbitrary user via unspecified vectors involving a URL with a redirect parameter value, along with a callback parameter containing an escaped URL that specifies the action. | |||||
| CVE-2007-3735 | 1 Mozilla | 2 Firefox, Thunderbird | 2018-10-15 | 9.3 HIGH | N/A |
| Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory corruption. | |||||
| CVE-2007-3780 | 1 Mysql | 1 Community Server | 2018-10-15 | 5.0 MEDIUM | N/A |
| MySQL Community Server before 5.0.45 allows remote attackers to cause a denial of service (daemon crash) via a malformed password packet in the connection protocol. | |||||
| CVE-2007-3738 | 1 Mozilla | 1 Firefox | 2018-10-15 | 9.3 HIGH | N/A |
| Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 allow remote attackers to execute arbitrary code via a crafted XPCNativeWrapper. | |||||
| CVE-2007-3734 | 1 Mozilla | 2 Firefox, Thunderbird | 2018-10-15 | 9.3 HIGH | N/A |
| Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 2.0.0.5 and Thunderbird before 2.0.0.5 allow remote attackers to cause a denial of service (crash) via unspecified vectors that trigger memory corruption. | |||||
| CVE-2007-3737 | 1 Mozilla | 1 Firefox | 2018-10-15 | 9.3 HIGH | N/A |
| Mozilla Firefox before 2.0.0.5 allows remote attackers to execute arbitrary code with chrome privileges by calling an event handler from an unspecified "element outside of a document." | |||||
| CVE-2016-4116 | 2 Adobe, Microsoft | 3 Flash Player, Edge, Internet Explorer | 2018-10-12 | 7.6 HIGH | 7.5 HIGH |
| Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064. | |||||
| CVE-2016-4110 | 2 Adobe, Microsoft | 3 Flash Player, Edge, Internet Explorer | 2018-10-12 | 7.6 HIGH | 7.5 HIGH |
| Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064. | |||||
| CVE-2016-4109 | 2 Adobe, Microsoft | 3 Flash Player, Edge, Internet Explorer | 2018-10-12 | 7.6 HIGH | 7.5 HIGH |
| Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064. | |||||
| CVE-2016-4113 | 2 Adobe, Microsoft | 3 Flash Player, Edge, Internet Explorer | 2018-10-12 | 7.6 HIGH | 7.5 HIGH |
| Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064. | |||||
| CVE-2016-4111 | 2 Adobe, Microsoft | 3 Flash Player, Edge, Internet Explorer | 2018-10-12 | 7.6 HIGH | 7.5 HIGH |
| Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064. | |||||
| CVE-2016-4115 | 2 Adobe, Microsoft | 3 Flash Player, Edge, Internet Explorer | 2018-10-12 | 7.6 HIGH | 7.5 HIGH |
| Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064. | |||||
| CVE-2016-4112 | 2 Adobe, Microsoft | 3 Flash Player, Edge, Internet Explorer | 2018-10-12 | 7.6 HIGH | 7.5 HIGH |
| Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064. | |||||
| CVE-2016-3297 | 1 Microsoft | 2 Edge, Internet Explorer | 2018-10-12 | 6.8 MEDIUM | 8.8 HIGH |
| Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability." | |||||