|
306341
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The ia64 subsystem in the Linux kernel before 2.6.26 allows local users to cause a denial of service (stack consumption and system crash) via a crafted application that leverages the mishandling of i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2006-3635
|
2024-11-21 09:14 |
2017-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306342
|
9.8 |
CRITICAL
Network
|
termpkg_project
|
termpkg
|
termpkg 3.3 suffers from buffer overflow.
|
CWE-120
Classic Buffer Overflow
|
CVE-2006-3100
|
2024-11-21 09:12 |
2019-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306343
|
7.5 |
HIGH
Network
|
apache
|
http_server
|
A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash.
…
|
-
|
CVE-2006-20001
|
2024-11-21 09:10 |
2023-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306344
|
- |
|
microsoft
|
office
|
Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, Office 2004 for Mac, and Office X for Mac do not properly parse record lengths, which allows remote attackers to execute arbitrary c…
|
CWE-94
Code Injection
|
CVE-2006-1318
|
2024-11-21 09:08 |
2014-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306345
|
5.4 |
MEDIUM
Network
|
markjaquith
|
subscribe_to_comments
|
A vulnerability, which was classified as problematic, was found in Subscribe to Comments Plugin up to 2.0.7 on WordPress. This affects an unknown part of the file subscribe-to-comments.php. The manip…
|
-
|
CVE-2006-10001
|
2024-11-21 09:07 |
2023-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306346
|
9.8 |
CRITICAL
Network
|
simplemachines
|
simple_machine_forum
|
Simple Machine Forum (SMF) versions 1.0.4 and earlier have an SQL injection vulnerability that allows remote attackers to inject arbitrary SQL statements.
|
CWE-89
SQL Injection
|
CVE-2005-4891
|
2024-11-21 09:05 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306347
|
9.8 |
CRITICAL
Network
|
sillycycle
|
xlockmore
|
xlockmore 5.13 allows potential xlock bypass when FVWM switches to the same virtual desktop as a new Gaim window.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2006-0062
|
2024-11-21 09:05 |
2019-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306348
|
9.8 |
CRITICAL
Network
|
sillycycle
|
xlockmore
|
xlockmore 5.13 and 5.22 segfaults when using libpam-opensc and returns the underlying xsession. This allows unauthorized users access to the X session.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2006-0061
|
2024-11-21 09:05 |
2019-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306349
|
7.8 |
HIGH
Local
|
sudo_project
debian
redhat
|
sudo
shadow
debian_linux
enterprise_linux
|
There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". The user session can be escaped to the parent session by using the TIOCSTI ioctl to …
|
CWE-20
Improper Input Validation
|
CVE-2005-4890
|
2024-11-21 09:05 |
2019-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306350
|
5.9 |
MEDIUM
Network
|
google
|
chrome
|
SHA-1 is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of SHA-1 in TLS 1.2. NOTE: this CVE exists …
|
CWE-326
Inadequate Encryption Strength
|
CVE-2005-4900
|
2024-11-21 09:05 |
2016-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
