|
279901
|
- |
|
oracle
|
oracle10g
oracle9i
|
Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with "SELECT" privileges for a base table to insert, update, or delete data by creating a crafted view then performing the operations on that vi…
|
NVD-CWE-Other
|
CVE-2006-1705
|
2018-10-19 01:33 |
2006-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279902
|
- |
|
microsoft
|
excel
excel_viewer
|
Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted COLINFO record, which triggers the overflow during a "data…
|
CWE-94
Code Injection
|
CVE-2006-1304
|
2018-10-19 01:32 |
2006-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279903
|
- |
|
microsoft
|
office
outlook
|
Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote attackers to cause a denial of service (memory exhaustion and interrupted mail recovery) via malformed e-mail header information, po…
|
CWE-399
Resource Management Errors
|
CVE-2006-1305
|
2018-10-19 01:32 |
2006-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279904
|
- |
|
microsoft
|
excel
excel_viewer
|
Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF record with an attacker-controlled array index that is used for a functi…
|
CWE-94
Code Injection
|
CVE-2006-1306
|
2018-10-19 01:32 |
2006-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279905
|
- |
|
microsoft
|
windows_2000
windows_2003_server
windows_xp
|
Heap-based buffer overflow in the Server Service (SRV.SYS driver) in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 up to SP1, and other products, allows remote attackers to execute arbitrar…
|
NVD-CWE-Other
|
CVE-2006-1314
|
2018-10-19 01:32 |
2006-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279906
|
- |
|
microsoft
|
server_service
|
The Server Service (SRV.SYS driver) in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 up to SP1, and other products, allows remote attackers to obtain sensitive information via crafted reque…
|
NVD-CWE-Other
|
CVE-2006-1315
|
2018-10-19 01:32 |
2006-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279907
|
- |
|
webtoolmaster_software
|
winhki
|
Directory traversal vulnerability in WinHKI 1.6 and earlier allows user-assisted attackers to overwrite arbitrary files via a (1) RAR, (2) TAR, (3) ZIP, or (4) TAR.GZ archive with a file whose file n…
|
NVD-CWE-Other
|
CVE-2006-1323
|
2018-10-19 01:32 |
2006-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279908
|
- |
|
invision_power_services
|
invision_power_board
|
Multiple cross-site scripting (XSS) vulnerabilities in Invision Power Board 2.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) result_type, (2) search_in, (3) nav, (4) fo…
|
NVD-CWE-Other
|
CVE-2006-1326
|
2018-10-19 01:32 |
2006-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279909
|
- |
|
skull-splitter
|
download_counter_wallpaper
|
SQL injection vulnerability in count.php in Skull-Splitter PHP Downloadcounter for Wallpapers 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) count_fieldname, (2) url_fieldn…
|
NVD-CWE-Other
|
CVE-2006-1328
|
2018-10-19 01:32 |
2006-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279910
|
- |
|
phpwebsite
|
phpwebsite
|
Multiple SQL injection vulnerabilities in phpWebsite 0.83 and earlier allow remote attackers to execute arbitrary SQL commands via the sid parameter to (1) friend.php or (2) article.php.
|
CWE-89
SQL Injection
|
CVE-2006-1330
|
2018-10-19 01:32 |
2006-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
