CVE-2007-1864
- EPSS 2.92%
- Veröffentlicht 09.05.2007 00:19:00
- Zuletzt bearbeitet 16.06.2026 22:38:27
Buffer overflow in the bundled libxmlrpc library in PHP before 4.4.7, and 5.x before 5.2.2, has unknown impact and remote attack vectors.
CVE-2007-1320
- EPSS 0.49%
- Veröffentlicht 02.05.2007 17:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:20
Multiple heap-based buffer overflows in the cirrus_invalidate_region function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and possibly other products, might allow local users to execute arbitrary code via unspecified vectors related to ...
CVE-2007-1322
- EPSS 0.4%
- Veröffentlicht 02.05.2007 17:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:21
QEMU 0.8.2 allows local users to halt a virtual machine by executing the icebp instruction.
CVE-2007-1366
- EPSS 0.4%
- Veröffentlicht 02.05.2007 17:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:26
QEMU 0.8.2 allows local users to crash a virtual machine via the divisor operand to the aam instruction, as demonstrated by "aam 0x0," which triggers a divide-by-zero error.
- EPSS 3.18%
- Veröffentlicht 24.04.2007 20:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:00
Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the p...
CVE-2007-2172
- EPSS 0.43%
- Veröffentlicht 22.04.2007 19:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:04
A typo in Linux kernel 2.6 before 2.6.21-rc6 and 2.4 before 2.4.35 causes RTA_MAX to be used as an array size instead of RTN_MAX, which leads to an "out of bound access" by the (1) dn_fib_props (dn_fib.c, DECNet) and (2) fib_props (fib_semantics.c, I...
CVE-2006-4250
- EPSS 1.33%
- Veröffentlicht 10.04.2007 18:19:00
- Zuletzt bearbeitet 16.06.2026 22:28:42
Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arguments to the -H flag.
- EPSS 29.84%
- Veröffentlicht 06.04.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:38
The telnet daemon (telnetd) in MIT krb5 before 1.6.1 allows remote attackers to bypass authentication and gain system access via a username beginning with a '-' character, a similar issue to CVE-2007-0882.
- EPSS 10.33%
- Veröffentlicht 06.04.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:38
Stack-based buffer overflow in the krb5_klog_syslog function in the kadm5 library, as used by the Kerberos administration daemon (kadmind) and Key Distribution Center (KDC), in MIT krb5 before 1.6.1 allows remote authenticated users to execute arbitr...
- EPSS 9.88%
- Veröffentlicht 06.04.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:09
Double free vulnerability in the GSS-API library (lib/gssapi/krb5/k5unseal.c), as used by the Kerberos administration daemon (kadmind) in MIT krb5 before 1.6.1, when used with the authentication method provided by the RPCSEC_GSS RPC library, allows r...