CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

477 matches found

UbuntuCve•added 2007/03/19 10:19 p.m.•27 views

CVE-2007-1503

Multiple format string vulnerabilities in comm.c in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via format string specifiers to the createctcpmessage function using the message argument to the 1 me or 2 ctcp commands, and possibly related vectors involving the 3 whois, 4...

7.5CVSS6.3AI score0.03405EPSS

Exploits0References1

NVD•added 2007/03/19 10:19 p.m.•25 views

CVE-2007-1503

7.5CVSS7.8AI score0.03405EPSS

Exploits0References4

CVE•added 2007/03/19 10:0 p.m.•55 views

CVE-2007-1503

CVE-2007-1503 concerns the Rhapsody IRC client (version 0.28b) with multiple format string vulnerabilities in comm.c, specifically in create_ctcp_message used by (1) me and (2) ctcp commands, and potentially vectors involving (3) whois, (4) mode, and (5) topic. The defect allows remote attackers ...

7.5CVSS7.8AI score0.03405EPSS

Exploits0References4Affected Software1

securityvulns•added 2007/02/21 12:0 a.m.•52 views

[ MDKSA-2007:045 ] - Updated gnomemeeting packages fix string vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2007:045 http://www.mandriva.com/security/ Package : gnomemeeting Date : February 21, 2007 Affected: Corporate 3.0 Problem Description: A format string flaw was discovered in how GnomeMeeting processes certain...

10CVSS7AI score0.07031EPSS

Exploits0

CVE•added 2007/02/13 11:0 p.m.•114 views

CVE-2007-0909

PHP 5.2.1 and earlier versions are affected by CVE-2007-0909 due to format string vulnerabilities in 64‑bit print functions and odbc_result_all, enabling arbitrary code execution. OpenVAS/Nessus references confirm this is fixed in later PHP releases by backported patches (PHP 5.2.1+). Affected co...

7.5CVSS7.9AI score0.03252EPSS

Exploits0References40Affected Software1

Gentoo Linux•added 2007/01/23 12:0 a.m.•27 views

xine-ui: Format string vulnerabilities

Background xine-ui is a skin-based user interface for xine. xine is a free multimedia player. It plays CDs, DVDs, and VCDs, and can also decode other common multimedia formats. Description Due to the improper handling and use of format strings, the errorscreatewindow function in errors.c does not...

10CVSS7AI score0.03486EPSS

Exploits0

NVD•added 2007/01/18 2:28 a.m.•15 views

CVE-2007-0344

Multiple format string vulnerabilities in 1 invitedToRoom: and 2 invitedToDirectChat: in Colloquy 2.1 and earlier allow remote attackers to cause a denial of service application crash and possibly execute arbitrary code via format string specifiers in the channel name of an INVITE request, relate...

7.5CVSS7.6AI score0.06558EPSS

Exploits1References6

CVE•added 2007/01/18 2:0 a.m.•73 views

CVE-2007-0344

CVE-2007-0344 affects Colloquy 2.1 and earlier, with multiple format-string vulnerabilities in the internal methods _invitedToRoom and _invitedToDirectChat. The format specifiers in the channel name of an INVITE request can trigger denial of service (application crash) and potentially arbitrary c...

7.5CVSS7.6AI score0.06558EPSS

Exploits1References6Affected Software1

Prion•added 2007/01/03 2:28 a.m.•12 views

Format string

Multiple format string vulnerabilities in 1 the cdiologhandler function in modules/access/cdda/access.c in the CDDA libcddaplugin plugin, and the 2 cdiologhandler and 3 vcdloghandler functions in modules/access/vcdx/access.c in the VCDX libvcdxplugin plugin, in VideoLAN VLC 0.7.0 through 0.8.6...

6.8CVSS7.6AI score0.11975EPSS

Exploits3References20Affected Software1

UbuntuCve•added 2007/01/03 2:28 a.m.•28 views

CVE-2007-0017

6.8CVSS6.2AI score0.11975EPSS

Exploits3References1

NVD•added 2007/01/03 2:28 a.m.•15 views

CVE-2007-0017

6.8CVSS7.5AI score0.11975EPSS

Exploits3References20

OSV•added 2007/01/03 2:28 a.m.•7 views

CVE-2007-0017

7.5AI score

Exploits0References21

OSV•added 2007/01/03 2:28 a.m.•1 views

DEBIAN-CVE-2007-0017

6.8CVSS7.7AI score0.11975EPSS

Exploits3References1

Cvelist•added 2007/01/03 2:0 a.m.•19 views

CVE-2007-0017

7.4AI score0.11975EPSS

Exploits3References20

Debian•added 2006/12/27 10:33 p.m.•36 views

[SECURITY] [DSA 1242-1] New elog packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1242-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 27th, 2006 http://www.debian.org/security/faq -...

7.5CVSS6.6AI score0.03177EPSS

Exploits1

NVD•added 2006/12/21 9:28 p.m.•20 views

CVE-2006-6692

Multiple format string vulnerabilities in zabbix before 20061006 allow attackers to cause a denial of service application crash and possibly execute arbitrary code via format string specifiers in information that would be recorded in the system log using 1 zabbixlog or 2 zabbixsyslog...

7.5CVSS7.8AI score0.07792EPSS

Exploits1References5

OSV•added 2006/12/21 9:28 p.m.•7 views

CVE-2006-6692

8AI score

Exploits0References5

Cvelist•added 2006/12/21 9:0 p.m.•23 views

CVE-2006-6692

7.8AI score0.07792EPSS

Exploits1References5

Debian CVE•added 2006/12/21 9:0 p.m.•25 views

CVE-2006-6692

7.5CVSS7AI score0.07792EPSS

Exploits1

CVE•added 2006/12/02 2:0 a.m.•50 views

CVE-2006-6226

CVE-2006-6226 affects NeoEngine 0.8.2 and earlier and CVS 3422. The root cause is multiple format-string vulnerabilities in Console::Render (neoengine/console.cpp) and TextArea::Render (neowtk/textarea.cpp). Impact per sources: remote denial of service and potential arbitrary code execution. Affe...

7.5CVSS8.2AI score0.02462EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by