CVE-2006-5158
- EPSS 3.47%
- Veröffentlicht 05.10.2006 04:04:00
- Zuletzt bearbeitet 16.06.2026 22:30:36
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a kernel oops (null dereference...
CVE-2006-4343
- EPSS 17.42%
- Veröffentlicht 28.09.2006 18:07:00
- Zuletzt bearbeitet 16.06.2026 22:28:54
The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer derefer...
CVE-2006-4095
- EPSS 12.55%
- Veröffentlicht 06.09.2006 00:04:00
- Zuletzt bearbeitet 16.06.2026 22:28:24
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.
CVE-2006-4482
- EPSS 4.49%
- Veröffentlicht 31.08.2006 21:04:00
- Zuletzt bearbeitet 16.06.2026 22:29:11
Multiple heap-based buffer overflows in the (1) str_repeat and (2) wordwrap functions in ext/standard/string.c in PHP before 5.1.5, when used on a 64-bit system, have unspecified impact and attack vectors, a different vulnerability than CVE-2006-1990...
CVE-2006-4093
- EPSS 0.46%
- Veröffentlicht 21.08.2006 21:04:00
- Zuletzt bearbeitet 16.06.2026 22:28:24
Linux kernel 2.x.6 before 2.6.17.9 and 2.4.x before 2.4.33.1 on PowerPC PPC970 systems allows local users to cause a denial of service (crash) related to the "HID0 attention enable on PPC970 at boot time."
CVE-2006-3747
- EPSS 96.44%
- Veröffentlicht 28.07.2006 18:02:00
- Zuletzt bearbeitet 16.06.2026 22:27:43
Off-by-one error in the ldap scheme handling in the Rewrite module (mod_rewrite) in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service (applica...
CVE-2006-3918
- EPSS 94.28%
- Veröffentlicht 28.07.2006 00:04:00
- Zuletzt bearbeitet 16.06.2026 22:28:04
http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP request when it is reflected ba...
CVE-2006-2935
- EPSS 0.58%
- Veröffentlicht 05.07.2006 18:05:00
- Zuletzt bearbeitet 16.06.2026 22:26:04
The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device ...
- EPSS 16.17%
- Veröffentlicht 30.05.2006 19:02:00
- Zuletzt bearbeitet 16.06.2026 22:25:29
ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a crafted font file that triggers a null dereference.
CVE-2006-2275
- EPSS 3.29%
- Veröffentlicht 09.05.2006 20:02:00
- Zuletzt bearbeitet 16.06.2026 22:24:41
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock) via a large number of small messages to a receiver application that cannot process the messages quickly enough, which leads to "spillover of the receive...