Total
2596 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2007-5712 | 1 Django Project | 1 Django | 2017-07-28 | 2.6 LOW | N/A |
The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as used in other products such as PyLucid, when the USE_I18N option and the i18n component are enabled, allows remote attackers to cause a denial of service (memory consumption) via many HTTP requests with large Accept-Language headers. | |||||
CVE-2007-6005 | 1 Webex Communications | 1 Webex Gpccontainer Activex Control | 2017-07-28 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in the GpcContainer.GpcContainer.1 ActiveX control in WebEx allows remote attackers to cause a denial of service (memory access violation and crash) via (1) an invalid argument to the InitParam method or (2) an unspecified vector involving the SetParam method. | |||||
CVE-2007-5896 | 1 Mozilla | 1 Firefox | 2017-07-28 | 7.1 HIGH | N/A |
Mozilla Firefox 2.0.0.9 allows remote attackers to cause a denial of service (CPU consumption and crash) via an iframe with Javascript that sets the document.location to contain a leading NULL byte (\x00) and a (1) res://, (2) about:config, or (3) file:/// URI. | |||||
CVE-2007-5861 | 1 Apple | 1 Mac Os X | 2017-07-28 | 6.8 MEDIUM | N/A |
Unspecified vulnerability in Spotlight in Apple Mac OS X 10.4.11 allows user-assisted attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted .XLS file that triggers memory corruption in the Microsoft Office Spotlight Importer. | |||||
CVE-2007-5859 | 1 Apple | 2 Mac Os X, Safari | 2017-07-28 | 9.3 HIGH | N/A |
Unspecified vulnerability in Safari RSS in Apple Mac OS X 10.4.11 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted feed: URL that triggers memory corruption. | |||||
CVE-2007-5656 | 1 Tibco | 3 Enterprise Message Service, Rtworks, Smartsockets Rtserver | 2017-07-28 | 10.0 HIGH | N/A |
TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service (EMS) 4.0.0 through 4.4.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted requests that control loop operations related to memory. | |||||
CVE-2007-5612 | 1 Ibm | 1 Director | 2017-07-28 | 7.8 HIGH | N/A |
CIM Server in IBM Director 5.20.1 and earlier allows remote attackers to cause a denial of service (CPU consumption, connection slot exhaustion, and daemon crash) via a large number of idle connections. | |||||
CVE-2007-5537 | 1 Cisco | 2 Unified Callmanager, Unified Communications Manager | 2017-07-28 | 7.8 HIGH | N/A |
Cisco Unified Communications Manager (CUCM, formerly CallManager) 5.1 before 5.1(2), and Unified CallManager 5.0, allow remote attackers to cause a denial of service (kernel panic) via a flood of SIP INVITE messages to UDP port 5060, which triggers resource exhaustion, aka CSCsi75822. | |||||
CVE-2007-4710 | 1 Apple | 1 Mac Os X | 2017-07-28 | 9.3 HIGH | N/A |
Unspecified vulnerability in ColorSync in Apple Mac OS X 10.4.11 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via an image with a crafted ColorSync profile, which triggers memory corruption. | |||||
CVE-2007-4690 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2017-07-28 | 9.0 HIGH | N/A |
Double free vulnerability in the NFS component in Apple Mac OS X 10.4 through 10.4.10 allows remote authenticated users to execute arbitrary code via a crafted AUTH_UNIX RPC packet. | |||||
CVE-2007-4689 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2017-07-28 | 10.0 HIGH | N/A |
Double free vulnerability in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to cause a denial of service (system shutdown) or execute arbitrary code via crafted IPV6 packets. | |||||
CVE-2007-3185 | 1 Apple | 1 Safari | 2017-07-28 | 7.8 HIGH | N/A |
Apple Safari Beta 3.0.1 for Windows public beta allows remote attackers to cause a denial of service (crash) via unspecified DHTML manipulations that trigger memory corruption, as demonstrated using Hamachi. | |||||
CVE-2007-2029 | 2 Clam Anti-virus, Debian | 2 Clamav, Debian Linux | 2017-07-28 | 7.8 HIGH | N/A |
File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file. | |||||
CVE-2007-2415 | 1 Pi3web | 1 Pi3web Web Server | 2017-07-28 | 5.0 MEDIUM | N/A |
Pi3Web Web Server 2.0.3 PL1 allows remote attackers to cause a denial of service (application exit) via a long URI. NOTE: this issue was originally reported as a crash, but the vendor states that the impact is a "clean" exit in which "the server I/O loop finishes and the process exits normally." | |||||
CVE-2007-0247 | 1 Squid | 1 Squid | 2017-07-28 | 5.0 MEDIUM | N/A |
squid/src/ftp.c in Squid before 2.6.STABLE7 allows remote FTP servers to cause a denial of service (core dump) via crafted FTP directory listing responses, possibly related to the (1) ftpListingFinish and (2) ftpHtmlifyListEntry functions. | |||||
CVE-2007-1593 | 1 Symantec | 1 Veritas Volume Replicator | 2017-07-28 | 5.0 MEDIUM | N/A |
The administrative service in Symantec Veritas Volume Replicator (VVR) for Windows 3.1 through 4.3, and VVR for Unix 3.5 through 5.0, in Symantec Storage Foundation products allows remote attackers to cause a denial of service (memory consumption and service crash) via a crafted packet to the service port (8199/tcp) that triggers a request for more memory than available, which causes the service to write to an invalid pointer. | |||||
CVE-2007-0772 | 1 Linux | 1 Linux Kernel | 2017-07-28 | 7.8 HIGH | N/A |
The Linux kernel 2.6.13 and other versions before 2.6.20.1 allows remote attackers to cause a denial of service (oops) via a crafted NFSACL 2 ACCESS request that triggers a free of an incorrect pointer. | |||||
CVE-2002-2241 | 1 Deerfield | 1 Visnetic Website | 2017-07-28 | 5.0 MEDIUM | N/A |
Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers to cause a denial of service (crash) via a long HTTP OPTIONS request. | |||||
CVE-2002-2306 | 1 Kazaa | 1 Kazaa Media Desktop | 2017-07-28 | 7.8 HIGH | N/A |
Sharman Networks KaZaA Media Desktop 1.7.1 allows remote attackers to cause a denial of service (CPU consumption) by sending several large messages. | |||||
CVE-2006-6681 | 1 Chetcpasswd | 1 Chetcpasswd | 2017-07-28 | 7.5 HIGH | N/A |
Pedro Lineu Orso chetcpasswd 2.3.3 does not have a rate limit for client requests, which might allow remote attackers to determine passwords via a dictionary attack. |