Lucene search
+L

4 matches found

ubuntucve
ubuntucve
added 2006/05/05 7:2 p.m.35 views

CVE-2006-2230

Multiple format string vulnerabilities in xiTK xitk/main.c in xine 0.99.4 might allow attackers to cause a denial of service via format string specifiers in an MP3 filename specified on the command line. NOTE: this is a different vulnerability than CVE-2006-1905. In addition, if the only attack...

5CVSS5.9AI score0.07095EPSS
Exploits0References1
nvd
nvd
added 2006/03/09 12:2 a.m.22 views

CVE-2006-1079

htpasswd, as used in Acme thttpd 2.25b and possibly other products such as Apache, might allow local users to gain privileges via shell metacharacters in a command line argument, which is used in a call to the system function. NOTE: since htpasswd is normally installed as a non-setuid program, an...

7.2CVSS6.8AI score0.00393EPSS
Exploits1References8
cvelist
cvelist
added 2006/01/25 9:0 p.m.28 views

CVE-2005-4667

Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...

7.4AI score0.01516EPSS
Exploits1References13
osv
osv
added 2005/12/31 5:0 a.m.4 views

DEBIAN-CVE-2005-4667

Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...

3.7CVSS7.7AI score0.01516EPSS
Exploits1References1
Rows per page
Query Builder