Логотип exploitDog
source:"nvd"
Консоль
Логотип exploitDog

exploitDog

source:"nvd"

Количество 331 614

Количество 331 614

nvd логотип

CVE-2006-2413

больше 19 лет назад

GNUnet before SVN revision 2781 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an empty UDP datagram, possibly involving FIONREAD errors.

CVSS2: 5
EPSS: Средний
nvd логотип

CVE-2006-2412

больше 19 лет назад

The raydium_network_read function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service (application crash) via a large ID, which causes an invalid memory access (buffer over-read).

CVSS2: 5
EPSS: Средний
nvd логотип

CVE-2006-2411

больше 19 лет назад

Buffer overflow in raydium_network_read function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to execute arbitrary code by sending packets with long global variables to the client.

CVSS2: 7.5
EPSS: Средний
nvd логотип

CVE-2006-2410

больше 19 лет назад

raydium_network_netcall_exec function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service (application crash) via a packet of type 0xFF, which causes a null dereference.

CVSS2: 5
EPSS: Средний
nvd логотип

CVE-2006-2409

больше 19 лет назад

Format string vulnerability in the raydium_log function in console.c in Raydium before SVN revision 310 allows local users to execute arbitrary code via format string specifiers in the format parameter, which are not properly handled in a call to raydium_console_line_add.

CVSS2: 4.6
EPSS: Низкий
nvd логотип

CVE-2006-2408

больше 19 лет назад

Multiple buffer overflows in Raydium before SVN revision 310 allow remote attackers to execute arbitrary code via a large packet when logged via (1) the raydium_log function in log.c or (2) the raydium_console_line_add function in console.c, possibly from a long player name.

CVSS2: 7.5
EPSS: Средний
nvd логотип

CVE-2006-2407

больше 19 лет назад

Stack-based buffer overflow in (1) WeOnlyDo wodSSHServer ActiveX Component 1.2.7 and 1.3.3 DEMO, as used in other products including (2) FreeSSHd 1.0.9 and (3) freeFTPd 1.0.10, allows remote attackers to execute arbitrary code via a long key exchange algorithm string.

CVSS2: 7.5
EPSS: Высокий
nvd логотип

CVE-2006-2406

больше 19 лет назад

Directory traversal vulnerability in bb_lib/abbc.css.php in Unclassified NewsBoard (UNB) 1.5.3-d and possibly earlier versions, when register_globals is enabled, allows remote attackers to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in the design_path parameter. NOTE: this is closely related, but a different vulnerability than the ABBC[Config][smileset] parameter.

CVSS2: 2.6
EPSS: Низкий
nvd логотип

CVE-2006-2405

больше 19 лет назад

Directory traversal vulnerability in unb_lib/abbc.conf.php in Unclassified NewsBoard (UNB) 1.6.1 patch 1 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in the ABBC[Config][smileset] parameter to unb_lib/abbc.css.php.

CVSS2: 6.8
EPSS: Средний
nvd логотип

CVE-2006-2404

больше 19 лет назад

Directory traversal vulnerability in popup.php in RadScripts RadLance Gold 7.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the read parameter.

CVSS2: 6.4
EPSS: Низкий
nvd логотип

CVE-2006-2403

больше 19 лет назад

Buffer overflow in FileZilla before 2.2.23 allows remote attackers to execute arbitrary commands via unknown attack vectors.

CVSS2: 7.5
EPSS: Низкий
nvd логотип

CVE-2006-2402

больше 19 лет назад

Buffer overflow in the changeRegistration function in servernet.cpp for Outgun 1.0.3 bot 2 and earlier allows remote attackers to change the registration information of other players via a long string.

CVSS2: 5
EPSS: Средний
nvd логотип

CVE-2006-2401

больше 19 лет назад

The leetnet functions (leetnet/rudp.cpp) in Outgun 1.0.3 bot 2 and earlier allow remote attackers to cause a denial of service (application crash) via packets with incorrect message sizes, which triggers a buffer over-read.

CVSS2: 7.8
EPSS: Средний
nvd логотип

CVE-2006-2400

больше 19 лет назад

The leetnet functions (leetnet/rudp.cpp) in Outgun 1.0.3 bot 2 and earlier allow remote attackers to cause a denial of service (game interruption) via large packets, which cause an exception to be thrown.

CVSS2: 7.8
EPSS: Средний
nvd логотип

CVE-2006-2399

больше 19 лет назад

Stack-based buffer overflow in the ServerNetworking::incoming_client_data function in servnet.cpp in Outgun 1.0.3 bot 2 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a data_file_request command with a long (1) type or (2) name string.

CVSS2: 7.5
EPSS: Средний
nvd логотип

CVE-2006-2398

больше 19 лет назад

Directory traversal vulnerability in index.php in GPhotos 1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the rep parameter.

CVSS2: 5
EPSS: Низкий
nvd логотип

CVE-2006-2397

больше 19 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in GPhotos 1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) rep parameter to (a) index.php or (b) diapo.php or (2) image parameter to (c) affich.php. NOTE: item 1a might be resultant from directory traversal.

CVSS2: 5.8
EPSS: Низкий
nvd логотип

CVE-2006-2396

больше 19 лет назад

Cross-site scripting (XSS) vulnerability in phpODP 1.5h allows remote attackers to inject arbitrary web script via the browse parameter.

CVSS2: 5.8
EPSS: Низкий
nvd логотип

CVE-2006-2395

больше 19 лет назад

PHP remote file inclusion vulnerability in resources/includes/popp.config.loader.inc.php in PopSoft Digital PopPhoto Studio 3.5.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter (cfg['popphoto_base_path'] variable). NOTE: Pixaria has notified CVE that "PopPhoto is NOT a product of Pixaria. It was a product of PopSoft Digital and is only hosted by Pixaria as a courtesy... The vulnerability listed was patched by the previous vendor and all previous users have received this update."

CVSS2: 5
EPSS: Низкий
nvd логотип

CVE-2006-2394

больше 19 лет назад

Cross-site scripting (XSS) vulnerability in chat.php in PHP Live Helper allows remote attackers to inject arbitrary web script or HTML via the PHPSESSID parameter.

CVSS2: 5.8
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
nvd логотип
CVE-2006-2413

GNUnet before SVN revision 2781 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an empty UDP datagram, possibly involving FIONREAD errors.

CVSS2: 5
13%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2412

The raydium_network_read function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service (application crash) via a large ID, which causes an invalid memory access (buffer over-read).

CVSS2: 5
10%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2411

Buffer overflow in raydium_network_read function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to execute arbitrary code by sending packets with long global variables to the client.

CVSS2: 7.5
14%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2410

raydium_network_netcall_exec function in network.c in Raydium SVN revision 312 and earlier allows remote attackers to cause a denial of service (application crash) via a packet of type 0xFF, which causes a null dereference.

CVSS2: 5
10%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2409

Format string vulnerability in the raydium_log function in console.c in Raydium before SVN revision 310 allows local users to execute arbitrary code via format string specifiers in the format parameter, which are not properly handled in a call to raydium_console_line_add.

CVSS2: 4.6
0%
Низкий
больше 19 лет назад
nvd логотип
CVE-2006-2408

Multiple buffer overflows in Raydium before SVN revision 310 allow remote attackers to execute arbitrary code via a large packet when logged via (1) the raydium_log function in log.c or (2) the raydium_console_line_add function in console.c, possibly from a long player name.

CVSS2: 7.5
20%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2407

Stack-based buffer overflow in (1) WeOnlyDo wodSSHServer ActiveX Component 1.2.7 and 1.3.3 DEMO, as used in other products including (2) FreeSSHd 1.0.9 and (3) freeFTPd 1.0.10, allows remote attackers to execute arbitrary code via a long key exchange algorithm string.

CVSS2: 7.5
80%
Высокий
больше 19 лет назад
nvd логотип
CVE-2006-2406

Directory traversal vulnerability in bb_lib/abbc.css.php in Unclassified NewsBoard (UNB) 1.5.3-d and possibly earlier versions, when register_globals is enabled, allows remote attackers to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in the design_path parameter. NOTE: this is closely related, but a different vulnerability than the ABBC[Config][smileset] parameter.

CVSS2: 2.6
3%
Низкий
больше 19 лет назад
nvd логотип
CVE-2006-2405

Directory traversal vulnerability in unb_lib/abbc.conf.php in Unclassified NewsBoard (UNB) 1.6.1 patch 1 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in the ABBC[Config][smileset] parameter to unb_lib/abbc.css.php.

CVSS2: 6.8
18%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2404

Directory traversal vulnerability in popup.php in RadScripts RadLance Gold 7.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the read parameter.

CVSS2: 6.4
7%
Низкий
больше 19 лет назад
nvd логотип
CVE-2006-2403

Buffer overflow in FileZilla before 2.2.23 allows remote attackers to execute arbitrary commands via unknown attack vectors.

CVSS2: 7.5
1%
Низкий
больше 19 лет назад
nvd логотип
CVE-2006-2402

Buffer overflow in the changeRegistration function in servernet.cpp for Outgun 1.0.3 bot 2 and earlier allows remote attackers to change the registration information of other players via a long string.

CVSS2: 5
11%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2401

The leetnet functions (leetnet/rudp.cpp) in Outgun 1.0.3 bot 2 and earlier allow remote attackers to cause a denial of service (application crash) via packets with incorrect message sizes, which triggers a buffer over-read.

CVSS2: 7.8
10%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2400

The leetnet functions (leetnet/rudp.cpp) in Outgun 1.0.3 bot 2 and earlier allow remote attackers to cause a denial of service (game interruption) via large packets, which cause an exception to be thrown.

CVSS2: 7.8
13%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2399

Stack-based buffer overflow in the ServerNetworking::incoming_client_data function in servnet.cpp in Outgun 1.0.3 bot 2 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a data_file_request command with a long (1) type or (2) name string.

CVSS2: 7.5
14%
Средний
больше 19 лет назад
nvd логотип
CVE-2006-2398

Directory traversal vulnerability in index.php in GPhotos 1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the rep parameter.

CVSS2: 5
6%
Низкий
больше 19 лет назад
nvd логотип
CVE-2006-2397

Multiple cross-site scripting (XSS) vulnerabilities in GPhotos 1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) rep parameter to (a) index.php or (b) diapo.php or (2) image parameter to (c) affich.php. NOTE: item 1a might be resultant from directory traversal.

CVSS2: 5.8
1%
Низкий
больше 19 лет назад
nvd логотип
CVE-2006-2396

Cross-site scripting (XSS) vulnerability in phpODP 1.5h allows remote attackers to inject arbitrary web script via the browse parameter.

CVSS2: 5.8
1%
Низкий
больше 19 лет назад
nvd логотип
CVE-2006-2395

PHP remote file inclusion vulnerability in resources/includes/popp.config.loader.inc.php in PopSoft Digital PopPhoto Studio 3.5.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter (cfg['popphoto_base_path'] variable). NOTE: Pixaria has notified CVE that "PopPhoto is NOT a product of Pixaria. It was a product of PopSoft Digital and is only hosted by Pixaria as a courtesy... The vulnerability listed was patched by the previous vendor and all previous users have received this update."

CVSS2: 5
8%
Низкий
больше 19 лет назад
nvd логотип
CVE-2006-2394

Cross-site scripting (XSS) vulnerability in chat.php in PHP Live Helper allows remote attackers to inject arbitrary web script or HTML via the PHPSESSID parameter.

CVSS2: 5.8
0%
Низкий
больше 19 лет назад

Уязвимостей на страницу