| 3proxy |
fd_set -- bitmap index overflow in multiple applications
|
| a2ps-a4 |
a2ps -- insecure temporary file creation
|
| a2ps-a4 |
a2ps -- insecure command line argument handling
|
| a2ps-letter |
a2ps -- insecure temporary file creation
|
| a2ps-letter |
a2ps -- insecure command line argument handling
|
| a2ps-letterdj |
a2ps -- insecure temporary file creation
|
| a2ps-letterdj |
a2ps -- insecure command line argument handling
|
| a2ps-{a4,letter,letterdj} |
a2ps: Possible execution of shell commands as local user
|
| abiword |
abiword, koffice -- stack based buffer overflow vulnerabilities
|
| acroread |
acroread -- plug-in buffer overflow vulnerability
|
| acroread |
acroread -- insecure temporary file creation
|
| acroread |
acroread -- buffer overflow vulnerability
|
| acroread |
acroread5 -- mailListIsPdf() buffer overflow vulnerability
|
| acroread |
acroread uudecoder input validation error
|
| acroread |
Acrobat Reader handling of malformed uuencoded pdf files
|
| acroread4 |
acroread -- plug-in buffer overflow vulnerability
|
| acroread4 |
acroread -- insecure temporary file creation
|
| acroread4 |
acroread -- buffer overflow vulnerability
|
| acroread4 |
acroread5 -- mailListIsPdf() buffer overflow vulnerability
|
| acroread4 |
acroread uudecoder input validation error
|
| acroread5 |
acroread -- plug-in buffer overflow vulnerability
|
| acroread5 |
acroread -- insecure temporary file creation
|
| acroread5 |
acroread -- buffer overflow vulnerability
|
| acroread5 |
acroread5 -- mailListIsPdf() buffer overflow vulnerability
|
| acroread5 |
acroread uudecoder input validation error
|
| acroread7 |
acroread -- plug-in buffer overflow vulnerability
|
| acroread7 |
acroread -- XML External Entity vulnerability
|
| acroread9 |
acroread9 -- Multiple Vulnerabilities
|
| agenda-snow-libs |
xpm -- image decoding vulnerabilities
|
| alsaplayer |
alsaplayer -- multiple vulnerabilities
|
| amarok |
amarok -- multiple vulnerabilities
|
| amaya |
amaya -- multiple buffer overflow vulnerabilities
|
| amaya |
amaya -- Attribute Value Buffer Overflow Vulnerabilities
|
| ampache |
ampache -- insecure temporary file usage
|
| anubis |
GNU Anubis buffer overflows and format string vulnerabilities
|
| ap20-mod_pubcookie |
mod_pubcookie -- Empty Authentication Security Advisory
|
| apache |
Apache -- Insecure LD_LIBRARY_PATH handling
|
| apache |
apache -- multiple vulnerabilities
|
| apache |
Apache 1.3 -- mod_proxy reverse proxy exposure
|
| apache |
apache -- Range header DoS vulnerability
|
| apache |
apache -- Remote DoS bug in mod_cache and mod_dav
|
| apache |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache |
apache22 -- several vulnerabilities
|
| apache |
apr -- multiple vulnerabilities
|
| apache |
apache -- Cross-site scripting vulnerability
|
| apache |
apache -- multiple vulnerabilities
|
| apache |
apache -- multiple vulnerabilities
|
| apache |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache |
apache -- mod_imap cross-site scripting flaw
|
| apache |
apache -- Certificate Revocation List (CRL) off-by-one vulnerability
|
| apache |
apache -- http request smuggling
|
| apache |
apache2 multiple space header denial-of-service vulnerability
|
| apache |
apache mod_include buffer overflow vulnerability
|
| apache |
apache2 -- SSL remote DoS
|
| apache |
apache -- heap overflow in mod_proxy
|
| apache |
apache -- apr_uri_parse IPv6 address handling vulnerability
|
| apache |
mod_dav -- lock related denial-of-service
|
| apache |
apache -- ap_resolve_env buffer overflow
|
| apache |
Apache 2 mod_ssl denial-of-service
|
| apache |
Apache 1.3 IP address access control failure on some 64-bit platforms
|
| apache |
Apache input header folding DoS vulnerability
|
| apache |
mod_proxy buffer overflow (CAN-2004-0492)
|
| apache |
mod_ssl stack-based buffer overflow
|
| apache |
potential security flaws in mod_ssl
|
| apache+ipv6 |
Apache 1.3 -- mod_proxy reverse proxy exposure
|
| apache+ipv6 |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+ipv6 |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+ipv6 |
apache -- mod_imap cross-site scripting flaw
|
| apache+ipv6 |
apache -- http request smuggling
|
| apache+ipv6 |
apache mod_include buffer overflow vulnerability
|
| apache+mod_perl |
Apache 1.3 -- mod_proxy reverse proxy exposure
|
| apache+mod_perl |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_perl |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_perl |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_perl |
apache -- http request smuggling
|
| apache+mod_perl |
apache mod_include buffer overflow vulnerability
|
| apache+mod_ssl |
Apache 1.3 -- mod_proxy reverse proxy exposure
|
| apache+mod_ssl |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl |
apache -- http request smuggling
|
| apache+mod_ssl |
apache mod_include buffer overflow vulnerability
|
| apache+mod_ssl |
mod_ssl -- SSLCipherSuite bypass
|
| apache+mod_ssl |
apache13-modssl -- format string vulnerability in proxy support
|
| apache+mod_ssl |
Apache 1.3 IP address access control failure on some 64-bit platforms
|
| apache+mod_ssl* |
mod_proxy buffer overflow (CAN-2004-0492)
|
| apache+mod_ssl* |
mod_ssl stack-based buffer overflow
|
| apache+mod_ssl* |
mod_ssl format string vulnerability
|
| apache+mod_ssl+ipv6 |
Apache 1.3 -- mod_proxy reverse proxy exposure
|
| apache+mod_ssl+ipv6 |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+ipv6 |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+ipv6 |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+ipv6 |
apache -- http request smuggling
|
| apache+mod_ssl+ipv6 |
apache mod_include buffer overflow vulnerability
|
| apache+mod_ssl+ipv6 |
mod_ssl -- SSLCipherSuite bypass
|
| apache+mod_ssl+ipv6 |
apache13-modssl -- format string vulnerability in proxy support
|
| apache+mod_ssl+mod_accel |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_accel |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_accel |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_accel |
apache -- http request smuggling
|
| apache+mod_ssl+mod_accel+ipv6 |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_accel+ipv6 |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_accel+ipv6 |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_accel+ipv6 |
apache -- http request smuggling
|
| apache+mod_ssl+mod_accel+mod_deflate |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_accel+mod_deflate |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_accel+mod_deflate |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_accel+mod_deflate |
apache -- http request smuggling
|
| apache+mod_ssl+mod_accel+mod_deflate+ipv6 |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_accel+mod_deflate+ipv6 |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_accel+mod_deflate+ipv6 |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_accel+mod_deflate+ipv6 |
apache -- http request smuggling
|
| apache+mod_ssl+mod_deflate |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_deflate |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_deflate |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_deflate |
apache -- http request smuggling
|
| apache+mod_ssl+mod_deflate+ipv6 |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_deflate+ipv6 |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_deflate+ipv6 |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_deflate+ipv6 |
apache -- http request smuggling
|
| apache+mod_ssl+mod_snmp |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_snmp |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_snmp |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_snmp |
apache -- http request smuggling
|
| apache+mod_ssl+mod_snmp+mod_accel |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_snmp+mod_accel |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_snmp+mod_accel |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_snmp+mod_accel |
apache -- http request smuggling
|
| apache+mod_ssl+mod_snmp+mod_accel+ipv6 |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_snmp+mod_accel+ipv6 |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_snmp+mod_accel+ipv6 |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_snmp+mod_accel+ipv6 |
apache -- http request smuggling
|
| apache+mod_ssl+mod_snmp+mod_accel+mod_deflate+ipv6 |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_snmp+mod_accel+mod_deflate+ipv6 |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_snmp+mod_accel+mod_deflate+ipv6 |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_snmp+mod_accel+mod_deflate+ipv6 |
apache -- http request smuggling
|
| apache+mod_ssl+mod_snmp+mod_deflate |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_snmp+mod_deflate |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_snmp+mod_deflate |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_snmp+mod_deflate |
apache -- http request smuggling
|
| apache+mod_ssl+mod_snmp+mod_deflate+ipv6 |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+mod_ssl+mod_snmp+mod_deflate+ipv6 |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+mod_ssl+mod_snmp+mod_deflate+ipv6 |
apache -- mod_imap cross-site scripting flaw
|
| apache+mod_ssl+mod_snmp+mod_deflate+ipv6 |
apache -- http request smuggling
|
| apache+ssl |
Apache 1.3 -- mod_proxy reverse proxy exposure
|
| apache+ssl |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache+ssl |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache+ssl |
apache -- mod_imap cross-site scripting flaw
|
| apache+ssl |
apache -- http request smuggling
|
| apache+ssl |
apache mod_include buffer overflow vulnerability
|
| apache+ssl |
Apache 1.3 IP address access control failure on some 64-bit platforms
|
| apache+ssl |
Apache-SSL optional client certificate vulnerability
|
| apache-event |
Apache -- Insecure LD_LIBRARY_PATH handling
|
| apache-event |
apache -- Range header DoS vulnerability
|
| apache-itk |
Apache -- Insecure LD_LIBRARY_PATH handling
|
| apache-itk |
apache -- Range header DoS vulnerability
|
| apache-peruser |
Apache -- Insecure LD_LIBRARY_PATH handling
|
| apache-peruser |
apache -- Range header DoS vulnerability
|
| apache-tomcat |
tomcat -- XSS vulnerability in sample applications
|
| apache-tomcat |
tomcat -- multiple vulnerabilities
|
| apache-worker |
Apache -- Insecure LD_LIBRARY_PATH handling
|
| apache-worker |
apache -- Range header DoS vulnerability
|
| apache13+ipv6 |
apache -- heap overflow in mod_proxy
|
| apache13-modperl |
apache -- heap overflow in mod_proxy
|
| apache13-modssl |
apache -- heap overflow in mod_proxy
|
| apache13-ssl |
apache -- heap overflow in mod_proxy
|
| apache2 |
mod_ssl -- SSLCipherSuite bypass
|
| apache22 |
apache22 -- several vulnerabilities
|
| apache22 |
apache22 -- several vulnerabilities
|
| apache22-event-mpm |
apache22 -- several vulnerabilities
|
| apache22-event-mpm |
apache22 -- several vulnerabilities
|
| apache22-itk-mpm |
apache22 -- several vulnerabilities
|
| apache22-itk-mpm |
apache22 -- several vulnerabilities
|
| apache22-peruser-mpm |
apache22 -- several vulnerabilities
|
| apache22-peruser-mpm |
apache22 -- several vulnerabilities
|
| apache22-worker-mpm |
apache22 -- several vulnerabilities
|
| apache22-worker-mpm |
apache22 -- several vulnerabilities
|
| apache_fp |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| apache_fp |
apache -- mod_rewrite buffer overflow vulnerability
|
| apache_fp |
apache -- mod_imap cross-site scripting flaw
|
| apache_fp |
apache -- http request smuggling
|
| apr |
apr -- multiple vulnerabilities
|
| apr0 |
Apache APR -- DoS vulnerabilities
|
| apr0 |
apr -- multiple vunerabilities
|
| apr1 |
Apache APR -- DoS vulnerabilities
|
| apr1 |
Apache APR -- DoS vulnerabilities
|
| apr1 |
apr -- multiple vunerabilities
|
| ar-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| ar-openoffice |
openoffice -- document disclosure
|
| asterisk |
asterisk -- multiple vulnerabilities
|
| asterisk |
asterisk -- multiple vulnerabilities
|
| asterisk |
asterisk -- remote crash vulnerability in SIP channel driver
|
| asterisk |
asterisk -- remote heap overwrite vulnerability
|
| asterisk |
asterisk -- denial of service vulnerability, local system access
|
| asterisk |
Vulnerabilities in H.323 implementations
|
| asterisk-bristuff |
asterisk -- remote heap overwrite vulnerability
|
| asterisk10 |
asterisk -- multiple vulnerabilities
|
| asterisk10 |
asterisk -- multiple vulnerabilities
|
| asterisk10 |
asterisk -- remote crash vulnerability
|
| asterisk10 |
asterisk -- multiple vulnerabilities
|
| asterisk10 |
asterisk -- multiple vulnerabilities
|
| asterisk10 |
asterisk -- multiple vulnerabilities
|
| asterisk10 |
asterisk -- SRTP Video Remote Crash Vulnerability
|
| asterisk11 |
asterisk -- multiple vulnerabilities
|
| asterisk11 |
asterisk -- multiple vulnerabilities
|
| asterisk14 |
asterisk -- multiple vulnerabilities
|
| asterisk14 |
Asterisk -- multiple vulnerabilities
|
| asterisk14 |
Asterisk -- multiple vulnerabilities
|
| asterisk14 |
asterisk -- Exploitable Stack and Heap Array Overflows
|
| asterisk14 |
asterisk -- Exploitable Stack Buffer Overflow
|
| asterisk16 |
asterisk -- multiple vulnerabilities
|
| asterisk16 |
asterisk -- multiple vulnerabilities
|
| asterisk16 |
asterisk -- multiple vulnerabilities
|
| asterisk16 |
asterisk -- Multiple Vulnerabilities
|
| asterisk16 |
Asterisk -- multiple vulnerabilities
|
| asterisk16 |
Asterisk -- multiple vulnerabilities
|
| asterisk16 |
asterisk -- Multiple Vulnerabilities
|
| asterisk16 |
asterisk -- Exploitable Stack and Heap Array Overflows
|
| asterisk16 |
asterisk -- Exploitable Stack Buffer Overflow
|
| asterisk18 |
asterisk -- multiple vulnerabilities
|
| asterisk18 |
asterisk -- multiple vulnerabilities
|
| asterisk18 |
asterisk -- multiple vulnerabilities
|
| asterisk18 |
asterisk -- multiple vulnerabilities
|
| asterisk18 |
asterisk -- multiple vulnerabilities
|
| asterisk18 |
asterisk -- multiple vulnerabilities
|
| asterisk18 |
asterisk -- multiple vulnerabilities
|
| asterisk18 |
asterisk -- SRTP Video Remote Crash Vulnerability
|
| asterisk18 |
asterisk -- Multiple Vulnerabilities
|
| asterisk18 |
asterisk -- remote crash vulnerability in SIP channel driver
|
| asterisk18 |
Asterisk -- multiple vulnerabilities
|
| asterisk18 |
asterisk -- Remote crash vulnerability
|
| asterisk18 |
Asterisk -- multiple vulnerabilities
|
| asterisk18 |
asterisk -- Multiple Vulnerabilities
|
| asterisk18 |
asterisk -- Exploitable Stack and Heap Array Overflows
|
| asterisk18 |
asterisk -- Exploitable Stack Buffer Overflow
|
| automake |
automake -- Insecure 'distcheck' recipe granted world-writable distdir
|
| avahi |
avahi -- denial of service
|
| avahi-app |
avahi -- denial of service
|
| avahi-autoipd |
avahi -- denial of service
|
| avahi-gtk |
avahi -- denial of service
|
| avahi-libdns |
avahi -- denial of service
|
| avahi-qt3 |
avahi -- denial of service
|
| avahi-qt4 |
avahi -- denial of service
|
| avahi-sharp |
avahi -- denial of service
|
| awstats |
awstats -- arbitrary commands execution vulnerability
|
| awstats |
awstats -- multiple XSS vulnerabilities
|
| awstats |
awstats -- arbitrary command execution vulnerability
|
| awstats |
awstats -- arbitrary code execution vulnerability
|
| awstats |
awstats -- arbitrary command execution
|
| awstats |
awstats -- remote command execution vulnerability
|
| awstats-devel |
awstats -- arbitrary commands execution vulnerability
|
| awstats-devel |
awstats -- multiple XSS vulnerabilities
|
| axel |
axel -- remote buffer overflow
|
| b2evolution |
pear-XML_RPC -- remote PHP code injection vulnerability
|
| bacula |
bacula -- Console ACL Bypass
|
| base |
base -- PHP SQL injection vulnerability
|
| bidwatcher |
bidwatcher -- format string vulnerability
|
| bind |
bind8 negative cache poison attack
|
| bind84 |
bind -- buffer overrun vulnerability
|
| bind9 |
BIND -- Dynamic update message remote DoS
|
| bind9 |
bind9 -- Denial of Service in named(8)
|
| bind9 |
bind9 -- denial of service
|
| bind9-sdb-ldap |
BIND -- Large RRSIG RRsets and Negative Caching DoS
|
| bind9-sdb-ldap |
BIND -- Dynamic update message remote DoS
|
| bind9-sdb-postgresql |
BIND -- Large RRSIG RRsets and Negative Caching DoS
|
| bind9-sdb-postgresql |
BIND -- Dynamic update message remote DoS
|
| bind96 |
dns/bind9* -- crash on deliberately constructed combination of records
|
| bind96 |
dns/bind9* -- Several vulnerabilities
|
| bind96 |
dns/bind9* -- Heavy DNSSEC Validation Load Can Cause a 'Bad Cache' Assertion Failure
|
| bind96 |
dns/bind9* -- zero-length RDATA can cause named to terminate, reveal memory
|
| bind96 |
BIND -- Remote DOS
|
| bind96 |
BIND -- Remote DoS against authoritative and recursive servers
|
| bind96 |
BIND -- Large RRSIG RRsets and Negative Caching DoS
|
| bind96-base |
dns/bind9* -- crash on deliberately constructed combination of records
|
| bind97 |
dns/bind9* -- crash on deliberately constructed combination of records
|
| bind97 |
dns/bind9* -- Several vulnerabilities
|
| bind97 |
dns/bind9* -- Heavy DNSSEC Validation Load Can Cause a 'Bad Cache' Assertion Failure
|
| bind97 |
dns/bind9* -- zero-length RDATA can cause named to terminate, reveal memory
|
| bind97 |
BIND -- Remote DOS
|
| bind97 |
BIND -- Remote DoS against authoritative and recursive servers
|
| bind97 |
BIND -- Large RRSIG RRsets and Negative Caching DoS
|
| bind97-base |
dns/bind9* -- crash on deliberately constructed combination of records
|
| bind98 |
dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion
|
| bind98 |
dns/bind9* -- servers using DNS64 can be crashed by a crafted query
|
| bind98 |
dns/bind9* -- crash on deliberately constructed combination of records
|
| bind98 |
dns/bind9* -- Several vulnerabilities
|
| bind98 |
dns/bind9* -- Heavy DNSSEC Validation Load Can Cause a 'Bad Cache' Assertion Failure
|
| bind98 |
dns/bind9* -- zero-length RDATA can cause named to terminate, reveal memory
|
| bind98 |
BIND -- Remote DOS
|
| bind98 |
BIND -- Remote DoS against authoritative and recursive servers
|
| bind98 |
BIND -- Remote DoS with certain RPZ configurations
|
| bind98 |
BIND -- Large RRSIG RRsets and Negative Caching DoS
|
| bind98-base |
dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion
|
| bind98-base |
dns/bind9* -- servers using DNS64 can be crashed by a crafted query
|
| bind98-base |
dns/bind9* -- crash on deliberately constructed combination of records
|
| bind99 |
dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion
|
| bind99 |
dns/bind9* -- servers using DNS64 can be crashed by a crafted query
|
| bind99 |
dns/bind9* -- crash on deliberately constructed combination of records
|
| bind99 |
dns/bind9* -- Several vulnerabilities
|
| bind99 |
dns/bind9* -- Heavy DNSSEC Validation Load Can Cause a 'Bad Cache' Assertion Failure
|
| bind99 |
dns/bind9* -- zero-length RDATA can cause named to terminate, reveal memory
|
| bind99-base |
dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion
|
| bind99-base |
dns/bind9* -- servers using DNS64 can be crashed by a crafted query
|
| bind99-base |
dns/bind9* -- crash on deliberately constructed combination of records
|
| bip |
bip -- buffer overflow
|
| bitcoin |
bitcoin -- denial of service
|
| bitlbee |
bitlbee -- account recreation security issues
|
| bld |
fd_set -- bitmap index overflow in multiple applications
|
| bmon |
bmon -- unsafe set-user-ID application
|
| bnbt |
BNBT Authorization Header DoS
|
| bnc |
fd_set -- bitmap index overflow in multiple applications
|
| bnc |
bnc -- remotely exploitable buffer overflow in getnickuserhost
|
| bogofilter |
bogofilter -- heap corruption by invalid base64 input
|
| bogofilter |
bogofilter -- heap underrun on malformed base64 input
|
| bogofilter |
bogofilter -- heap corruption through excessively long words
|
| bogofilter |
bogofilter -- heap corruption through malformed input
|
| bogofilter |
bogofilter -- RFC 2047 decoder denial-of-service vulnerability
|
| bogofilter-qdbm |
bogofilter -- RFC 2047 decoder denial-of-service vulnerability
|
| bogofilter-sqlite |
bogofilter -- heap corruption by invalid base64 input
|
| bogofilter-sqlite |
bogofilter -- heap underrun on malformed base64 input
|
| bogofilter-tc |
bogofilter -- heap corruption by invalid base64 input
|
| bogofilter-tc |
bogofilter -- heap underrun on malformed base64 input
|
| bogofilter-tdb |
bogofilter -- RFC 2047 decoder denial-of-service vulnerability
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla Cross-Site Request Forgery
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- multiple serious vulnerabilities
|
| bugzilla |
bugzilla -- information disclosure, denial of service
|
| bugzilla |
bugzilla -- information disclosure
|
| bugzilla |
bugzilla -- information leak
|
| bugzilla |
bugzilla -- information leak
|
| bugzilla |
bugzilla -- two SQL injections, sensitive data exposure
|
| bugzilla |
bugzilla -- product name information leak
|
| bugzilla |
Bugzilla -- Directory Traversal in importxml.pl
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- "createmailregexp" security bypass vulnerability
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- multiple vulnerabilities
|
| bugzilla |
bugzilla -- cross-site scripting vulnerability
|
| bzip2 |
bzip2 -- integer overflow vulnerability
|
| bzip2 |
bzip2 -- crash with certain malformed archive files
|
| bzip2 |
bzip2 -- denial of service and permission race vulnerabilities
|
| c-ares |
c-ares -- DNS Cache Poisoning Vulnerability
|
| ca-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| ca-openoffice |
openoffice -- document disclosure
|
| ca_root_nss |
mozilla -- multiple vulnerabilities
|
| ca_root_nss |
ca_root_nss -- extraction of explicitly-untrusted certificates into trust bundle
|
| ca_root_nss |
nss/ca_root_nss -- fraudulent certificates issued by DigiNotar.nl
|
| cabextract |
libmspack -- infinite loop denial of service
|
| cabextract |
cabextract -- insecure directory handling
|
| cacti |
cacti -- Multiple vulnabilites
|
| cacti |
cacti -- multiple vulnerabilities
|
| cacti |
cacti -- SQL injection and command execution vulnerabilities
|
| cacti |
cacti -- cross-site scripting issues
|
| cacti |
cacti -- Multiple security vulnerabilities have been discovered
|
| cacti |
cacti -- Multiple vulnerabilities
|
| cacti |
cacti -- ADOdb "server.php" Insecure Test Script Security Issue
|
| cacti |
cacti -- multiple vulnerabilities
|
| cacti |
cacti -- potential SQL injection and cross site scripting attacks
|
| cacti |
cacti -- SQL injection
|
| calligra |
Calligra, KOffice -- input validation failure
|
| caml-light |
caml-light -- insecure use of temporary files
|
| cdf3 |
cdf3 -- Buffer overflow vulnerability
|
| cdrdao |
cdrdao -- unspecified privilege escalation vulnerability
|
| cdrtools |
cdrtools local privilege escalation
|
| cdrtools-cjk |
cdrtools local privilege escalation
|
| cdrtools-devel |
cdrtools local privilege escalation
|
| centericq |
libgadu -- multiple vulnerabilities
|
| cfengine |
cfengine -- arbitrary file overwriting vulnerability
|
| cfengine2 |
cfengine -- arbitrary file overwriting vulnerability
|
| cfengine2 |
cfengine authentication heap corruption
|
| cfs |
security/cfs -- buffer overflow
|
| cgiwrap |
cgiwrap -- XSS Vulnerability
|
| charybdis |
ircd-ratbox and charybdis -- remote DoS vulnerability
|
| chora |
chora: hole in the diff code that allowed malicious input
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- WebKit vulnerability
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
www/chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- Errant plug-in load and GPU process memory corruption
|
| chromium |
chromium -- cross-site scripting vulnerability
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| chromium |
chromium -- multiple vulnerabilities
|
| citadel |
fd_set -- bitmap index overflow in multiple applications
|
| clamav |
clamav -- multiple vulnerabilities
|
| clamav |
clamav -- off-by-one heap overflow in VBA project parser
|
| clamav |
clamav -- CHM Processing Denial of Service
|
| clamav |
clamav -- Multiple Vulnerabilities
|
| clamav |
clamav -- ClamAV libclamav PE File Integer Overflow Vulnerability
|
| clamav |
clamav -- multiple remote Denial of Service vulnerabilities
|
| clamav |
clamav -- multiple vulnerabilities
|
| clamav |
clamav -- CHM unpacker and PE rebuilding vulnerabilities
|
| clamav |
clamav -- Multipart Nestings Denial of Service
|
| clamav |
clamav -- heap overflow vulnerability
|
| clamav |
clamav -- Freshclam HTTP Header Buffer Overflow Vulnerability
|
| clamav |
clamav -- Multiple Vulnerabilities
|
| clamav |
clamav -- possible heap overflow in the UPX code
|
| clamav |
clamav -- arbitrary code execution and DoS vulnerabilities
|
| clamav |
clamav -- multiple remote buffer overflows
|
| clamav |
clamav -- cabinet file handling DoS vulnerability
|
| clamav |
clamav -- MS-Expand file handling DoS vulnerability
|
| clamav |
clamav -- zip handling DoS vulnerability
|
| clamav |
clamav remote denial-of-service
|
| clamav-devel |
clamav -- multiple vulnerabilities
|
| clamav-devel |
clamav -- off-by-one heap overflow in VBA project parser
|
| clamav-devel |
clamav -- CHM Processing Denial of Service
|
| clamav-devel |
clamav -- Multiple Vulnerabilities
|
| clamav-devel |
clamav -- CHM unpacker and PE rebuilding vulnerabilities
|
| clamav-devel |
clamav -- Multipart Nestings Denial of Service
|
| clamav-devel |
clamav -- heap overflow vulnerability
|
| clamav-devel |
clamav -- Freshclam HTTP Header Buffer Overflow Vulnerability
|
| clamav-devel |
clamav -- Multiple Vulnerabilities
|
| clamav-devel |
clamav -- possible heap overflow in the UPX code
|
| clamav-devel |
clamav -- arbitrary code execution and DoS vulnerabilities
|
| clamav-devel |
clamav -- multiple remote buffer overflows
|
| clamav-devel |
clamav -- cabinet file handling DoS vulnerability
|
| clamav-devel |
clamav -- MS-Expand file handling DoS vulnerability
|
| clamav-devel |
clamav -- zip handling DoS vulnerability
|
| claws-mail |
claws-mail -- insecure temporary file creation
|
| claws-mail |
claws-mail -- POP3 Format String Vulnerability
|
| claws-mail |
claws-mail -- APOP vulnerability
|
| codeigniter |
codeigniter -- file upload class vulnerability
|
| codeigniter |
codeigniter -- arbitrary script execution in the new Form Validation class
|
| compat5x-alpha |
openssl -- potential SSL 2.0 rollback
|
| compat5x-amd64 |
openssl -- potential SSL 2.0 rollback
|
| compat5x-i386 |
openssl -- potential SSL 2.0 rollback
|
| compat5x-sparc64 |
openssl -- potential SSL 2.0 rollback
|
| coppermine |
coppermine -- Multiple vulnerabilites
|
| coppermine |
coppermine -- multiple vulnerabilities
|
| coppermine |
coppermine -- multiple vulnerabilities
|
| coppermine |
coppermine -- Multiple File Extensions Vulnerability
|
| coppermine |
coppermine -- "file" Local File Inclusion Vulnerability
|
| coppermine |
coppermine -- File Inclusion Vulnerabilities
|
| coppermine |
coppermine -- IP spoofing and XSS vulnerability
|
| corkscrew |
corkscrew -- buffer overflow vulnerability
|
| courier |
Courier mail services: remotely exploitable buffer overflows
|
| courier-authlib |
Courier Authentication Library -- SQL Injection
|
| courier-imap |
courier-imap -- format string vulnerability in debug mode
|
| courier-imap |
Courier mail services: remotely exploitable buffer overflows
|
| crossfire-server |
crossfire-server -- denial of service and remote code execution vulnerability
|
| cs-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| cs-openoffice |
openoffice -- document disclosure
|
| cscope |
cscope -- multiple buffer overflows
|
| cscope |
cscope -- buffer overflow
|
| cscope |
cscope -- Buffer Overflow Vulnerabilities
|
| cscope |
cscope -- buffer overflow vulnerabilities
|
| cscope |
cscope -- symlink attack vulnerability
|
| ctorrent |
Enhanced cTorrent -- stack-based overflow
|
| cups-base |
cups -- remote code execution and DNS rebinding
|
| cups-base |
cups -- potential buffer overflow in PNG reading code
|
| cups-base |
cups -- multiple vulnerabilities
|
| cups-base |
xpdf -- multiple remote Stream.CC vulnerabilities
|
| cups-base |
cups -- off-by-one buffer overflow
|
| cups-base |
xpdf -- stack based buffer overflow
|
| cups-base |
cups -- Incomplete SSL Negotiation Denial of Service
|
| cups-base |
xpdf -- disk fill DoS vulnerability
|
| cups-base |
xpdf -- makeFileKey2() buffer overflow vulnerability
|
| cups-base |
cups-base -- CUPS server remote DoS vulnerability
|
| cups-base |
cups-base -- HPGL buffer overflow vulnerability
|
| cups-base |
xpdf -- buffer overflow vulnerability
|
| cups-base |
xpdf -- integer overflow vulnerabilities
|
| cups-base |
CUPS -- local information disclosure
|
| cups-base |
cups -- print queue browser denial-of-service
|
| cups-lpr |
cups-lpr -- lppasswd multiple vulnerabilities
|
| curl |
curl -- libcurl buffer overflow vulnerability
|
| curl |
curl -- cURL/libcURL Location: Redirect URLs Security Bypass
|
| curl |
curl -- TFTP packet buffer overflow vulnerability
|
| curl |
curl -- URL buffer overflow vulnerability
|
| curl |
curl -- authentication buffer overflow vulnerability
|
| cvs+ipv6 |
cvsbug -- race condition
|
| cvs+ipv6 |
cvs -- numerous vulnerabilities
|
| cvs+ipv6 |
multiple vulnerabilities in the cvs server code
|
| cvs+ipv6 |
CVS path validation errors
|
| cvstrac |
CVStrac remote code execution vulnerability
|
| cyrus |
Cyrus IMAP pre-authentication heap overflow vulnerability
|
| cyrus-imapd |
cyrus-imapd -- Potential buffer overflow in Sieve
|
| cyrus-imapd |
cyrus-imapd -- multiple buffer overflow vulnerabilities
|
| cyrus-imapd |
Cyrus IMAPd -- APPEND command uses undefined programming construct
|
| cyrus-imapd |
Cyrus IMAPd -- FETCH command out of bounds memory corruption
|
| cyrus-imapd |
Cyrus IMAPd -- PARTIAL command out of bounds memory corruption
|
| cyrus-imapd |
Cyrus IMAPd -- IMAPMAGICPLUS preauthentification overflow
|
| cyrus-imspd |
Cyrus IMSPd multiple vulnerabilities
|
| cyrus-sasl |
cyrus-sasl -- buffer overflow vulnerability
|
| cyrus-sasl |
cyrus-sasl -- DIGEST-MD5 Pre-Authentication Denial of Service
|
| cyrus-sasl |
cyrus-sasl -- potential buffer overflow in DIGEST-MD5 plugin
|
| cyrus-sasl |
cyrus-sasl -- dynamic library loading and set-user-ID applications
|
| dansguardian |
DansGuardian banned extension filter bypass vulnerability
|
| dante |
fd_set -- bitmap index overflow in multiple applications
|
| DarwinStreamingServer |
Darwin Streaming Server denial-of-service vulnerability
|
| dbmail{-mysql,-postgresql} |
DBMail: remote exploitable buffer overflow
|
| dbus |
dbus -- match_rule_equal() Weakness
|
| de-bugzilla |
bugzilla -- multiple vulnerabilities
|
| de-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| de-linux-mozillafirebird |
firefox & mozilla -- command line URL shell command injection
|
| de-linux-mozillafirebird |
firefox & mozilla -- buffer overflow vulnerability
|
| de-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| de-linux-mozillafirebird |
mozilla -- privilege escalation via non-DOM property overrides
|
| de-linux-mozillafirebird |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| de-linux-mozillafirebird |
mozilla -- code execution via javascript: IconURL vulnerability
|
| de-linux-mozillafirebird |
mozilla -- privilege escalation via DOM property overrides
|
| de-linux-mozillafirebird |
mozilla -- code execution through javascript: favicons
|
| de-linux-mozillafirebird |
mozilla -- javascript "lambda" replace exposes memory contents
|
| de-linux-mozillafirebird |
mozilla -- heap buffer overflow in GIF image processing
|
| de-linux-mozillafirebird |
mozilla -- insecure temporary directory vulnerability
|
| de-linux-mozillafirebird |
mozilla -- arbitrary code execution vulnerability
|
| de-linux-mozillafirebird |
web browsers -- window injection vulnerabilities
|
| de-linux-mozillafirebird |
mozilla -- insecure permissions for some downloaded files
|
| de-linux-mozillafirebird |
mozilla -- scripting vulnerabilities
|
| de-linux-mozillafirebird |
mozilla -- users may be lured into bypassing security dialogs
|
| de-linux-mozillafirebird |
mozilla -- hostname spoofing bug
|
| de-linux-mozillafirebird |
mozilla -- BMP decoder vulnerabilities
|
| de-linux-netscape |
firefox & mozilla -- multiple vulnerabilities
|
| de-linux-netscape |
firefox & mozilla -- command line URL shell command injection
|
| de-linux-netscape |
firefox & mozilla -- buffer overflow vulnerability
|
| de-linux-netscape |
firefox & mozilla -- multiple vulnerabilities
|
| de-linux-netscape |
mozilla -- privilege escalation via non-DOM property overrides
|
| de-linux-netscape |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| de-linux-netscape |
mozilla -- code execution via javascript: IconURL vulnerability
|
| de-linux-netscape |
mozilla -- privilege escalation via DOM property overrides
|
| de-linux-netscape |
mozilla -- code execution through javascript: favicons
|
| de-linux-netscape |
mozilla -- javascript "lambda" replace exposes memory contents
|
| de-linux-netscape |
mozilla -- heap buffer overflow in GIF image processing
|
| de-linux-netscape |
mozilla -- insecure temporary directory vulnerability
|
| de-linux-netscape |
mozilla -- arbitrary code execution vulnerability
|
| de-linux-netscape |
web browsers -- window injection vulnerabilities
|
| de-linux-netscape |
mozilla -- insecure permissions for some downloaded files
|
| de-linux-netscape |
mozilla -- heap overflow in NNTP handler
|
| de-linux-netscape |
mozilla -- scripting vulnerabilities
|
| de-linux-netscape |
mozilla -- users may be lured into bypassing security dialogs
|
| de-linux-netscape |
mozilla -- hostname spoofing bug
|
| de-linux-netscape |
mozilla -- BMP decoder vulnerabilities
|
| de-netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| de-netscape7 |
firefox & mozilla -- command line URL shell command injection
|
| de-netscape7 |
firefox & mozilla -- buffer overflow vulnerability
|
| de-netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| de-netscape7 |
mozilla -- privilege escalation via non-DOM property overrides
|
| de-netscape7 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| de-netscape7 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| de-netscape7 |
mozilla -- privilege escalation via DOM property overrides
|
| de-netscape7 |
mozilla -- code execution through javascript: favicons
|
| de-netscape7 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| de-netscape7 |
mozilla -- heap buffer overflow in GIF image processing
|
| de-netscape7 |
mozilla -- insecure temporary directory vulnerability
|
| de-netscape7 |
mozilla -- arbitrary code execution vulnerability
|
| de-netscape7 |
web browsers -- window injection vulnerabilities
|
| de-netscape7 |
mozilla -- insecure permissions for some downloaded files
|
| de-netscape7 |
mozilla -- heap overflow in NNTP handler
|
| de-netscape7 |
mozilla -- scripting vulnerabilities
|
| de-netscape7 |
mozilla -- users may be lured into bypassing security dialogs
|
| de-netscape7 |
mozilla -- hostname spoofing bug
|
| de-netscape7 |
mozilla -- BMP decoder vulnerabilities
|
| de-netscape7 |
libpng stack-based buffer overflow and other code concerns
|
| de-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| de-openoffice |
openoffice -- document disclosure
|
| de-wordpress |
wordpress -- multiple vulnerabilities
|
| de-wordpress |
WordPress -- cross site scripting vulnerability
|
| de-wordpress |
wordpress -- SQL injection vulnerability
|
| de-wordpress |
wordpress -- multiple vulnerabilities
|
| de-wordpress |
wordpress -- remote admin password reset vulnerability
|
| de-wordpress |
wordpress -- header rss feed script insertion vulnerability
|
| de-wordpress |
wordpress -- snoopy "_httpsrequest()" shell command execution vulnerability
|
| de-wordpress |
wordpress -- remote privilege escalation
|
| de-wordpress |
wordpress -- cross-site scripting
|
| de-wordpress |
wordpress -- remote sql injection vulnerability
|
| de-wordpress |
wordpress -- XMLRPC SQL Injection
|
| de-wordpress |
wordpress -- unmoderated comments disclosure
|
| dia |
dia -- remote command execution vulnerability
|
| dia |
dia -- XFig Import Plugin Buffer Overflow
|
| dia-gnome |
dia -- XFig Import Plugin Buffer Overflow
|
| diablo-jdk |
jdk -- jar directory traversal vulnerability
|
| diablo-jdk |
jdk/jre -- Security Vulnerability With Java Plugin
|
| diablo-jdk-freebsd6 |
jdk -- jar directory traversal vulnerability
|
| diablo-jre |
jdk/jre -- Security Vulnerability With Java Plugin
|
| dillo |
dillo -- format string vulnerability
|
| dircproxy |
dircproxy -- remote denial of service
|
| dircproxy-devel |
dircproxy -- remote denial of service
|
| distcc |
distcc -- incorrect parsing of IP access control rules
|
| django |
django -- multiple vulnerabilities
|
| django |
django -- multiple vulnerabilities
|
| django13 |
django -- multiple vulnerabilities
|
| django13 |
django -- multiple vulnerabilities
|
| dk-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| dk-openoffice |
openoffice -- document disclosure
|
| dnrd |
dnrd -- remote buffer and stack overflow vulnerabilities
|
| dnsmasq |
dnsmasq -- TFTP server remote code injection vulnerability
|
| dojo |
dojo -- cross-site scripting and other vulnerabilities
|
| dokuwiki |
Dokuwiki -- cross site scripting vulnerability
|
| dokuwiki |
Dokuwiki -- cross site scripting vulnerability
|
| dokuwiki |
Dokuwiki -- cross site scripting vulnerability
|
| dokuwiki |
dokuwiki -- multiple privilege escalation vulnerabilities
|
| dokuwiki |
dokuwiki -- multiple vulnerabilities
|
| dokuwiki |
dokuwiki -- Local File Inclusion with register_globals on
|
| dokuwiki |
dokuwiki -- XSS vulnerability in spellchecker backend
|
| dokuwiki |
dokuwiki -- multiple vulnerabilities
|
| dokuwiki |
dokuwiki -- multiple vulnerabilities
|
| dokuwiki |
dokuwiki -- multiple vulnerabilities
|
| dokuwiki |
dokuwiki -- spellchecker remote PHP code execution
|
| dokuwiki-devel |
dokuwiki -- Local File Inclusion with register_globals on
|
| dokuwiki-devel |
dokuwiki -- XSS vulnerability in spellchecker backend
|
| dokuwiki-devel |
dokuwiki -- multiple vulnerabilities
|
| dokuwiki-devel |
dokuwiki -- multiple vulnerabilities
|
| dovecot |
dovecot -- denial of service vulnerability
|
| dovecot |
dovecot -- Insecure directory permissions
|
| dovecot |
dovecot -- ACL plugin bypass vulnerabilities
|
| dovecot |
dovecot -- security hole in blocking passdbs
|
| dovecot |
dovecot -- Specific LDAP + auth cache configuration may mix up user logins
|
| dovecot-managesieve |
dovecot-managesieve -- Script Name Directory Traversal Vulnerability
|
| dropbear |
dropbear -- arbitrary code execution
|
| dropbear |
Dropbear DSS verification vulnerability
|
| drupal |
drupal -- multiple vulnerabilities
|
| drupal |
drupal -- HTML attribute injection
|
| drupal |
drupal -- cross site request forgeries
|
| drupal |
drupal -- multiple XSS vulnerabilities
|
| drupal |
drupal -- XSS vulnerability
|
| drupal |
drupal -- multiple vulnerabilities
|
| drupal |
drupal -- multiple vulnerabilities
|
| drupal |
drupal -- multiple vulnerabilities
|
| drupal |
drupal -- multiple vulnerabilities
|
| drupal |
pear-XML_RPC -- remote PHP code injection vulnerability
|
| drupal |
drupal -- PHP code execution vulnerabilities
|
| drupal-pubcookie |
drupal-pubcookie -- authentication may be bypassed
|
| drupal4 |
drupal -- cross site request forgery
|
| drupal4 |
drupal -- cross site scripting (utf8)
|
| drupal4 |
drupal -- cross site scripting (register_globals)
|
| drupal4 |
drupal -- SQL injection vulnerability
|
| drupal4 |
drupal --- multiple vulnerabilities
|
| drupal4 |
drupal -- Multiple cross-site scripting vulnerabilities
|
| drupal5 |
drupal -- multiple vulnerabilities
|
| drupal5 |
drupal -- multiple cross-site scripting
|
| drupal5 |
drupal -- multiple vulnerabilities
|
| drupal5 |
drupal -- multiple vulnerabilities
|
| drupal5 |
drupal -- cross-site scripting
|
| drupal5 |
drupal -- cross site scripting
|
| drupal5 |
drupal -- multiple vulnerabilities
|
| drupal5 |
drupal -- multiple vulnerabilities
|
| drupal5 |
drupal -- multiple vulnerabilities
|
| drupal5 |
drupal -- multiple vulnerabilities
|
| drupal5 |
drupal -- multiple vulnerabilities
|
| drupal5 |
drupal -- multiple vulnerabilities
|
| drupal5 |
drupal -- cross site request forgery
|
| drupal5 |
drupal -- cross site scripting (utf8)
|
| drupal5 |
drupal -- cross site scripting (register_globals)
|
| drupal5 |
drupal -- SQL injection vulnerability
|
| drupal5 |
drupal --- multiple vulnerabilities
|
| drupal5 |
drupal -- Cross site request forgeries
|
| drupal5 |
drupal -- Multiple cross-site scripting vulnerabilities
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal6 -- multiple vulnerabilities
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal -- multiple cross-site scripting
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal -- cross-site scripting
|
| drupal6 |
drupal -- cross site scripting
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6 |
drupal -- multiple vulnerabilities
|
| drupal6-cck |
drupal6-cck -- cross-site scripting
|
| drupal6-views |
Drupal Views plugin -- cross-site scripting
|
| drupal7 |
drupal7 -- Denial of service
|
| drupal7 |
drupal -- multiple vulnerabilities
|
| drupal7 |
drupal7 -- multiple vulnerabilities
|
| drupal7 |
drupal -- multiple vulnerabilities
|
| dtc |
dtc -- multiple vulnerabilities
|
| e107 |
e107 -- code execution and XSS vulnerabilities
|
| e2fsprogs |
e2fsprogs -- heap buffer overflow
|
| ecartis |
ecartis -- unauthorised access to admin interface
|
| ecartis |
ecartis buffer overflows and input validation bugs
|
| eggdrop |
eggdrop -- denial of service vulnerability
|
| egroupware |
egroupware -- two vulnerabilities
|
| eGroupWare |
pear-XML_RPC -- remote PHP code injection vulnerability
|
| egroupware |
egroupware -- multiple cross-site scripting (XSS) and SQL injection vulnerabilities
|
| eGroupWare |
egroupware -- arbitrary file download in JiNN
|
| ejabberd |
ejabberd -- remote denial of service vulnerability
|
| ejabberd |
ejabberd -- queue overload denial of service vulnerability
|
| ejabberd |
ejabberd -- cross-site scripting vulnerability
|
| el-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| el-linux-mozillafirebird |
firefox & mozilla -- command line URL shell command injection
|
| el-linux-mozillafirebird |
firefox & mozilla -- buffer overflow vulnerability
|
| el-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| el-linux-mozillafirebird |
mozilla -- privilege escalation via non-DOM property overrides
|
| el-linux-mozillafirebird |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| el-linux-mozillafirebird |
mozilla -- code execution via javascript: IconURL vulnerability
|
| el-linux-mozillafirebird |
mozilla -- privilege escalation via DOM property overrides
|
| el-linux-mozillafirebird |
mozilla -- code execution through javascript: favicons
|
| el-linux-mozillafirebird |
mozilla -- javascript "lambda" replace exposes memory contents
|
| el-linux-mozillafirebird |
mozilla -- heap buffer overflow in GIF image processing
|
| el-linux-mozillafirebird |
mozilla -- insecure temporary directory vulnerability
|
| el-linux-mozillafirebird |
mozilla -- arbitrary code execution vulnerability
|
| el-linux-mozillafirebird |
web browsers -- window injection vulnerabilities
|
| el-linux-mozillafirebird |
mozilla -- insecure permissions for some downloaded files
|
| el-linux-mozillafirebird |
mozilla -- scripting vulnerabilities
|
| el-linux-mozillafirebird |
mozilla -- users may be lured into bypassing security dialogs
|
| el-linux-mozillafirebird |
mozilla -- hostname spoofing bug
|
| el-linux-mozillafirebird |
mozilla -- BMP decoder vulnerabilities
|
| el-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| el-openoffice |
openoffice -- document disclosure
|
| elinks |
elinks -- buffer overflow vulnerability
|
| elm |
elm -- remote buffer overflow in Expires header
|
| emacs |
emacs -- remote code execution vulnerability
|
| emacs |
emacs -- run-python vulnerability
|
| emacs |
emacs -- movemail format string vulnerability
|
| emil |
Buffer overflows and format string bugs in Emil
|
| enscript-a4 |
enscript -- arbitrary code execution vulnerability
|
| enscript-a4 |
enscript -- multiple vulnerabilities
|
| enscript-letter |
enscript -- arbitrary code execution vulnerability
|
| enscript-letter |
enscript -- multiple vulnerabilities
|
| enscript-letterdj |
enscript -- arbitrary code execution vulnerability
|
| enscript-letterdj |
enscript -- multiple vulnerabilities
|
| eperl |
eperl -- Remote code execution
|
| epiphany |
epiphany -- untrusted search path vulnerability
|
| erlang |
Erlang -- ssh library uses a weak random number generator
|
| es-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| es-openoffice |
openoffice -- document disclosure
|
| et-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| et-openoffice |
openoffice -- document disclosure
|
| ethereal |
wireshark -- PCNFSD Dissector Denial of Service Vulnerability
|
| ethereal |
wireshark -- multiple vulnerabilities
|
| ethereal |
wireshark -- multiple vulnerabilities
|
| ethereal |
wireshark -- SMTP Processing Denial of Service Vulnerability
|
| ethereal |
wireshark -- multiple vulnerabilities
|
| ethereal |
wireshark -- Multiple problems
|
| ethereal |
ethereal -- Multiple Protocol Dissector Vulnerabilities
|
| ethereal |
ethereal -- multiple protocol dissectors vulnerabilities
|
| ethereal |
ethereal -- multiple protocol dissectors vulnerabilities
|
| ethereal |
ethereal -- multiple protocol dissectors vulnerabilities
|
| ethereal |
ethereal -- multiple protocol dissectors vulnerabilities
|
| ethereal |
ethereal -- multiple vulnerabilities
|
| ethereal |
multiple vulnerabilities in ethereal
|
| ethereal |
multiple vulnerabilities in ethereal
|
| ethereal |
multiple vulnerabilities in ethereal
|
| ethereal-lite |
wireshark -- PCNFSD Dissector Denial of Service Vulnerability
|
| ethereal-lite |
wireshark -- multiple vulnerabilities
|
| ethereal-lite |
wireshark -- multiple vulnerabilities
|
| ethereal-lite |
wireshark -- SMTP Processing Denial of Service Vulnerability
|
| ethereal-lite |
wireshark -- multiple vulnerabilities
|
| ethereal-lite |
wireshark -- Multiple problems
|
| ethereal-lite |
ethereal -- Multiple Protocol Dissector Vulnerabilities
|
| ethereal-lite |
ethereal -- multiple protocol dissectors vulnerabilities
|
| ethereal-lite |
ethereal -- multiple protocol dissectors vulnerabilities
|
| ethereal-lite |
ethereal -- multiple protocol dissectors vulnerabilities
|
| ethereal-lite |
ethereal -- multiple protocol dissectors vulnerabilities
|
| ethereal-lite |
ethereal -- multiple vulnerabilities
|
| ethereal-lite |
multiple vulnerabilities in ethereal
|
| ethereal-lite |
multiple vulnerabilities in ethereal
|
| ethereal{,-lite} |
multiple vulnerabilities in ethereal
|
| ethereal{,-lite} |
multiple vulnerabilities in ethereal
|
| ettercap |
ettercap -- buffer overflow in target list parsing
|
| evince |
evince -- Buffer Overflow Vulnerability
|
| evolution |
evolution -- remote format string vulnerabilities
|
| evolution |
evolution -- arbitrary code execution vulnerability
|
| evolution-data-server |
evolution-data-server -- remote execution of arbitrary code vulnerability
|
| exim |
Exim -- remote code execution
|
| exim |
Exim -- remote code execution and information disclosure
|
| exim |
exim -- local privilege escalation
|
| exim |
exim -- local privilege escalation
|
| exim |
exim -- two buffer overflow vulnerabilities
|
| exim |
exim buffer overflow when verify = header_syntax is used
|
| exim-ldap |
exim -- local privilege escalation
|
| exim-ldap |
exim -- two buffer overflow vulnerabilities
|
| exim-ldap2 |
exim -- local privilege escalation
|
| exim-ldap2 |
exim -- two buffer overflow vulnerabilities
|
| exim-ldap2 |
exim buffer overflow when verify = header_syntax is used
|
| exim-mysql |
exim -- local privilege escalation
|
| exim-mysql |
exim -- two buffer overflow vulnerabilities
|
| exim-mysql |
exim buffer overflow when verify = header_syntax is used
|
| exim-postgresql |
exim -- local privilege escalation
|
| exim-postgresql |
exim -- two buffer overflow vulnerabilities
|
| exim-postgresql |
exim buffer overflow when verify = header_syntax is used
|
| exim-sa-exim |
exim -- local privilege escalation
|
| exim-sa-exim |
exim -- two buffer overflow vulnerabilities
|
| expat2 |
expat2 -- Parser crash with specially formatted UTF-8 sequences
|
| expat2 |
expat2 -- buffer over-read and crash
|
| extman |
extman -- password bypass vulnerability
|
| eyeOS |
eyeOS -- multiple XSS security bugs
|
| ez-ipupdate |
ez-ipupdate -- format string vulnerability
|
| ezbounce |
ezbounce remote format string vulnerability
|
| f2c |
f2c -- insecure temporary files
|
| faad2 |
faad2 -- heap overflow vulnerability
|
| fcron |
fcron -- multiple vulnerabilities
|
| fetchmail |
fetchmail -- chosen plaintext attack against SSL CBC initialization vectors
|
| fetchmail |
fetchmail -- two vulnerabilities in NTLM authentication
|
| fetchmail |
fetchmail -- STARTTLS denial of service
|
| fetchmail |
fetchmail -- denial of service vulnerability
|
| fetchmail |
fetchmail -- heap overflow on verbose X.509 display
|
| fetchmail |
fetchmail -- improper SSL certificate subject verification
|
| fetchmail |
fetchmail -- potential crash in -v -v verbose mode (revised patch)
|
| fetchmail |
fetchmail -- potential crash in -v -v verbose mode
|
| fetchmail |
fetchmail -- denial of service on reject of local warning message
|
| fetchmail |
fetchmail -- insecure APOP authentication
|
| fetchmail |
fetchmail -- crashes when refusing a message bound for an MDA
|
| fetchmail |
fetchmail -- TLS enforcement problem/MITM attack/password exposure
|
| fetchmail |
fetchmail -- crash when bouncing a message
|
| fetchmail |
fetchmail -- null pointer dereference in multidrop mode with headerless email
|
| fetchmail |
fetchmail -- fetchmailconf local password exposure
|
| fetchmail |
fetchmail -- denial of service/crash from malicious POP3 server
|
| fetchmail |
fetchmail -- remote root/code injection from malicious POP3 server
|
| fetchmail |
fetchmail -- denial-of-service vulnerability
|
| fetchmail |
fetchmail -- address parsing vulnerability
|
| ffmpeg |
ffmpeg -- multiple vulnerabilities
|
| ffmpeg |
ffmpeg -- 4xm processing memory corruption vulnerability
|
| ffmpeg |
ffmpeg -- libavcodec buffer overflow vulnerability
|
| ffmpeg-devel |
ffmpeg -- libavcodec buffer overflow vulnerability
|
| fi-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| fi-openoffice |
openoffice -- document disclosure
|
| fidogate |
fidogate -- write files as `news' user
|
| fidogate-ds |
fidogate -- write files as `news' user
|
| file |
FreeBSD -- heap overflow in file(1)
|
| finch |
pidgin -- MSN overflow parsing SLP messages
|
| finch |
pidgin -- multiple vulnerabilities
|
| findutils |
findutils -- GNU locate heap buffer overrun
|
| firebird-server |
firebird -- multiple remote buffer overflow vulnerabilities
|
| firebird21-server |
firebird -- Remote Stack Buffer Overflow
|
| firebird25-server |
firebird -- Remote Stack Buffer Overflow
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- Use-after-free in HTML Editor
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- heap-buffer overflow
|
| firefox |
mozilla -- use after free in nsXBLDocumentInfo::ReadPrototypeBindings
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
Mozilla -- multiple vulnerabilities
|
| firefox |
nss/ca_root_nss -- fraudulent certificates issued by DigiNotar.nl
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
Mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- update to HTTPS certificate blacklist
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- Heap buffer overflow mixing document.write and DOM insertion
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
firefox -- Dangling pointer crash regression from plugin parameter array fix
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
firefox -- Re-use of freed object due to scope confusion
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
firefox -- WOFF heap corruption due to integer overflow
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla firefox -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- corrupt JIT state after deep return from native function
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
firefox -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
firefox -- javascript garbage collector vulnerability
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
firefox -- multiple remote unspecified memory corruption vulnerabilities
|
| firefox |
firefox -- OnUnload Javascript browser entrapment vulnerability
|
| firefox |
mozilla -- code execution via Quicktime media-link files
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
firefox -- denial of service vulnerability
|
| firefox |
mozilla -- multiple vulnerabilities
|
| firefox |
firefox & mozilla -- multiple vulnerabilities
|
| firefox |
firefox & mozilla -- command line URL shell command injection
|
| firefox |
firefox & mozilla -- buffer overflow vulnerability
|
| firefox |
firefox & mozilla -- multiple vulnerabilities
|
| firefox |
mozilla -- privilege escalation via non-DOM property overrides
|
| firefox |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| firefox |
mozilla -- code execution via javascript: IconURL vulnerability
|
| firefox |
firefox -- PLUGINSPAGE privileged javascript execution
|
| firefox |
mozilla -- privilege escalation via DOM property overrides
|
| firefox |
mozilla -- code execution through javascript: favicons
|
| firefox |
mozilla -- javascript "lambda" replace exposes memory contents
|
| firefox |
firefox -- arbitrary code execution in sidebar panel
|
| firefox |
firefox -- arbitrary code execution from sidebar panel
|
| firefox |
mozilla -- heap buffer overflow in GIF image processing
|
| firefox |
mozilla -- insecure temporary directory vulnerability
|
| firefox |
mozilla -- arbitrary code execution vulnerability
|
| firefox |
web browsers -- window injection vulnerabilities
|
| firefox |
mozilla -- insecure permissions for some downloaded files
|
| firefox |
mozilla -- scripting vulnerabilities
|
| firefox |
mozilla -- users may be lured into bypassing security dialogs
|
| firefox |
mozilla -- hostname spoofing bug
|
| firefox |
mozilla -- BMP decoder vulnerabilities
|
| firefox |
mozilla -- multiple heap buffer overflows
|
| firefox |
mozilla -- security icon spoofing
|
| firefox |
mozilla -- NULL bytes in FTP URLs
|
| firefox |
mozilla -- built-in CA certificates may be overridden
|
| firefox |
mozilla -- SOAPParameter integer overflow
|
| firefox |
Mutiple browser frame injection vulnerability
|
| firefox |
libpng stack-based buffer overflow and other code concerns
|
| firefox |
libpng stack-based buffer overflow and other code concerns
|
| firefox |
Mozilla / Firefox user interface spoofing vulnerability
|
| firefox |
Mozilla certificate spoofing
|
| firefox |
Mozilla / Firefox user interface spoofing vulnerability
|
| firefox |
Mozilla certificate spoofing
|
| firefox-ja |
mozilla -- code execution via Quicktime media-link files
|
| firefox-ja |
mozilla -- multiple vulnerabilities
|
| firefox-ja |
mozilla -- multiple vulnerabilities
|
| flac |
flac -- media file processing integer overflow vulnerabilities
|
| flac123 |
flac123 -- stack overflow in comment parsing
|
| flock |
mozilla -- multiple vulnerabilities
|
| flock |
firefox -- javascript garbage collector vulnerability
|
| flock |
mozilla -- multiple vulnerabilities
|
| flock |
mozilla -- multiple vulnerabilities
|
| flock |
firefox -- multiple remote unspecified memory corruption vulnerabilities
|
| flyspray |
flyspray -- multiple vulnerabilities
|
| flyspray |
flyspray -- authentication bypass
|
| flyspray |
flyspray -- cross-site scripting vulnerabilities
|
| foswiki |
foswiki -- Script Insertion Vulnerability via unchecked user registration fields
|
| fr-cups-base |
cups-base -- HPGL buffer overflow vulnerability
|
| fr-cups-lpr |
cups-lpr -- lppasswd multiple vulnerabilities
|
| fr-linux-netscape |
firefox & mozilla -- multiple vulnerabilities
|
| fr-linux-netscape |
firefox & mozilla -- command line URL shell command injection
|
| fr-linux-netscape |
firefox & mozilla -- buffer overflow vulnerability
|
| fr-linux-netscape |
firefox & mozilla -- multiple vulnerabilities
|
| fr-linux-netscape |
mozilla -- privilege escalation via non-DOM property overrides
|
| fr-linux-netscape |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| fr-linux-netscape |
mozilla -- code execution via javascript: IconURL vulnerability
|
| fr-linux-netscape |
mozilla -- privilege escalation via DOM property overrides
|
| fr-linux-netscape |
mozilla -- code execution through javascript: favicons
|
| fr-linux-netscape |
mozilla -- javascript "lambda" replace exposes memory contents
|
| fr-linux-netscape |
mozilla -- heap buffer overflow in GIF image processing
|
| fr-linux-netscape |
mozilla -- insecure temporary directory vulnerability
|
| fr-linux-netscape |
mozilla -- arbitrary code execution vulnerability
|
| fr-linux-netscape |
web browsers -- window injection vulnerabilities
|
| fr-linux-netscape |
mozilla -- insecure permissions for some downloaded files
|
| fr-linux-netscape |
mozilla -- heap overflow in NNTP handler
|
| fr-linux-netscape |
mozilla -- scripting vulnerabilities
|
| fr-linux-netscape |
mozilla -- users may be lured into bypassing security dialogs
|
| fr-linux-netscape |
mozilla -- hostname spoofing bug
|
| fr-linux-netscape |
mozilla -- BMP decoder vulnerabilities
|
| fr-netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| fr-netscape7 |
firefox & mozilla -- command line URL shell command injection
|
| fr-netscape7 |
firefox & mozilla -- buffer overflow vulnerability
|
| fr-netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| fr-netscape7 |
mozilla -- privilege escalation via non-DOM property overrides
|
| fr-netscape7 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| fr-netscape7 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| fr-netscape7 |
mozilla -- privilege escalation via DOM property overrides
|
| fr-netscape7 |
mozilla -- code execution through javascript: favicons
|
| fr-netscape7 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| fr-netscape7 |
mozilla -- heap buffer overflow in GIF image processing
|
| fr-netscape7 |
mozilla -- insecure temporary directory vulnerability
|
| fr-netscape7 |
mozilla -- arbitrary code execution vulnerability
|
| fr-netscape7 |
web browsers -- window injection vulnerabilities
|
| fr-netscape7 |
mozilla -- insecure permissions for some downloaded files
|
| fr-netscape7 |
mozilla -- heap overflow in NNTP handler
|
| fr-netscape7 |
mozilla -- scripting vulnerabilities
|
| fr-netscape7 |
mozilla -- users may be lured into bypassing security dialogs
|
| fr-netscape7 |
mozilla -- hostname spoofing bug
|
| fr-netscape7 |
mozilla -- BMP decoder vulnerabilities
|
| fr-netscape7 |
libpng stack-based buffer overflow and other code concerns
|
| fr-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| fr-openoffice |
openoffice -- document disclosure
|
| fractorama |
tiff -- buffer overflow vulnerability
|
| fractorama |
tiff -- divide-by-zero denial-of-service
|
| fractorama |
tiff -- directory entry count integer overflow vulnerability
|
| fractorama |
tiff -- multiple integer overflows
|
| fractorama |
tiff -- RLE decoder heap overflows
|
| freeamp |
zinf -- potential buffer overflow playlist support
|
| FreeBSD |
FreeBSD -- NFS remote denial of service
|
| FreeBSD |
FreeBSD -- BIND remote denial of service
|
| FreeBSD |
FreeBSD -- OpenSSL multiple vulnerabilities
|
| FreeBSD |
FreeBSD -- glob(3) related resource exhaustion
|
| FreeBSD |
FreeBSD -- BIND remote DoS with deliberately crafted DNS64 query
|
| FreeBSD |
FreeBSD -- Linux compatibility layer input validation error
|
| FreeBSD |
FreeBSD -- Insufficient message length validation for EAP-TLS messages
|
| FreeBSD |
FreeBSD -- Multiple Denial of Service vulnerabilities with named(8)
|
| FreeBSD |
FreeBSD -- named(8) DNSSEC validation Denial of Service
|
| FreeBSD |
FreeBSD -- Privilege escalation when returning from kernel
|
| FreeBSD |
FreeBSD -- Incorrect handling of zero-length RDATA fields in named(8)
|
| FreeBSD |
FreeBSD -- Incorrect crypt() hashing
|
| FreeBSD |
FreeBSD -- OpenSSL multiple vulnerabilities
|
| FreeBSD |
FreeBSD -- pam_ssh() does not validate service names
|
| FreeBSD |
FreeBSD -- pam_ssh improperly grants access when user account has unencrypted SSH private keys
|
| FreeBSD |
FreeBSD -- Buffer overflow in handling of UNIX socket addresses
|
| FreeBSD |
FreeBSD -- errors handling corrupt compress file in compress(1) and gzip(1)
|
| FreeBSD |
FreeBSD -- Network ACL mishandling in mountd(8)
|
| FreeBSD |
krb5-appl -- telnetd code execution vulnerability
|
| FreeBSD |
proftpd -- arbitrary code execution vulnerability with chroot
|
| FreeBSD |
BIND -- Remote DOS
|
| FreeBSD |
FreeBSD -- Integer overflow in bzip2 decompression
|
| FreeBSD |
FreeBSD -- Lost mbuf flag resulting in data corruption
|
| FreeBSD |
FreeBSD -- Unvalidated input in nfsclient
|
| FreeBSD |
FreeBSD -- OPIE off-by-one stack overflow
|
| FreeBSD |
FreeBSD -- Insufficient environment sanitization in jail(8)
|
| FreeBSD |
FreeBSD -- ZFS ZIL playback with insecure permissions
|
| FreeBSD |
FreeBSD -- ntpd mode 7 denial of service
|
| FreeBSD |
FreeBSD -- BIND named(8) cache poisoning with DNSSEC validation
|
| FreeBSD |
FreeBSD -- Inappropriate directory permissions in freebsd-update(8)
|
| FreeBSD |
FreeBSD -- Improper environment sanitization in rtld(1)
|
| FreeBSD |
FreeBSD -- SSL protocol flaw
|
| FreeBSD |
multiple vulnerabilities in the cvs server code
|
| FreeBSD |
zlib DoS vulnerability
|
| FreeBSD |
zlib DoS vulnerability
|
| freeciv |
freeciv -- Denial of Service Vulnerabilities
|
| freeciv |
freeciv -- Packet Parsing Denial of Service Vulnerability
|
| freeciv-gtk |
freeciv -- Denial of Service Vulnerabilities
|
| freeciv-gtk |
freeciv -- Packet Parsing Denial of Service Vulnerability
|
| freeciv-gtk2 |
freeciv -- Denial of Service Vulnerabilities
|
| freeciv-gtk2 |
freeciv -- Packet Parsing Denial of Service Vulnerability
|
| freeciv-nox11 |
freeciv -- Denial of Service Vulnerabilities
|
| freeciv-nox11 |
freeciv -- Packet Parsing Denial of Service Vulnerability
|
| freeradius |
freeradius -- arbitrary code execution for TLS-based authentication
|
| freeradius |
freeradius -- remote packet of death vulnerability
|
| freeradius |
freeradius -- EAP-TTLS Tunnel Memory Leak Remote DOS Vulnerability
|
| freeradius |
freeradius -- multiple vulnerabilities
|
| freeradius |
freeradius -- authentication bypass vulnerability
|
| freeradius |
freeradius -- EAP-MSCHAPv2 Authentication Bypass
|
| freeradius |
freeradius -- sql injection and denial of service vulnerability
|
| freeradius |
freeradius -- denial-of-service vulnerability
|
| freeradius-devel |
freeradius -- sql injection and denial of service vulnerability
|
| freeradius-mysql |
freeradius -- EAP-TTLS Tunnel Memory Leak Remote DOS Vulnerability
|
| freetype2 |
freetype -- Multiple vulnerabilities
|
| freetype2 |
freetype -- multiple vulnerabilities
|
| freetype2 |
freetype -- Some type 1 fonts handling vulnerabilities
|
| freetype2 |
freetype2 -- execute arbitrary code or cause denial of service
|
| freetype2 |
freetype2 -- multiple vulnerabilities
|
| freetype2 |
FreeType 2 -- Multiple Vulnerabilities
|
| freetype2 |
FreeType 2 -- Heap overflow vulnerability
|
| freetype2 |
freetype -- LWFN Files Buffer Overflow Vulnerability
|
| frontpage |
frontpage -- cross site scripting vulnerability
|
| fspd |
fsp buffer overflow and directory traversal vulnerabilities
|
| fsplib |
fsplib -- multiple vulnerabilities
|
| fswiki |
fswiki -- XSS vulnerability
|
| fswiki |
fswiki -- command injection vulnerability
|
| fswiki |
fswiki -- XSS problem in file upload form
|
| fuser |
fuser -- missing user's privileges check
|
| fwbuilder |
fwbuilder -- security issue in temporary file handling
|
| gaim |
libgadu -- multiple vulnerabilities
|
| gaim |
gaim -- AIM/ICQ non-UTF-8 filename crash
|
| gaim |
gaim -- AIM/ICQ away message buffer overflow
|
| gaim |
gaim -- Yahoo! remote crash vulnerability
|
| gaim |
gaim -- MSN Remote DoS vulnerability
|
| gaim |
gaim -- MSN remote DoS vulnerability
|
| gaim |
gaim -- remote crash on some protocols
|
| gaim |
gaim -- AIM/ICQ remote denial of service vulnerability
|
| gaim |
gaim -- remote DoS on receiving malformed HTML
|
| gaim |
gaim -- jabber remote crash
|
| gaim |
gaim -- remote DoS on receiving certain messages over IRC
|
| gaim |
gaim -- remote DoS on receiving malformed HTML
|
| gaim |
gaim -- MSN denial-of-service vulnerabilities
|
| gaim |
gaim -- MSN denial-of-service vulnerabilities
|
| gaim |
gaim -- Content-Length header denial-of-service vulnerability
|
| gaim |
gaim -- Content-Length header denial-of-service vulnerability
|
| gaim |
gaim -- multiple buffer overflows
|
| gaim |
gaim -- multiple buffer overflows
|
| gaim |
gaim -- heap overflow exploitable by malicious GroupWise server
|
| gaim |
gaim -- heap overflow exploitable by malicious GroupWise server
|
| gaim |
gaim -- malicious smiley themes
|
| gaim |
gaim -- malicious smiley themes
|
| gaim |
gaim -- buffer overflow in MSN protocol support
|
| gaim |
gaim -- buffer overflow in MSN protocol support
|
| gaim |
gaim remotely exploitable vulnerabilities in MSN component
|
| gaim |
gaim remotely exploitable vulnerabilities in MSN component
|
| gaim |
Several remotely exploitable buffer overflows in gaim
|
| gaim |
Several remotely exploitable buffer overflows in gaim
|
| gallery |
gallery -- multiple vulnerabilities
|
| gallery |
gallery -- remote code injection via HTTP_POST_VARS
|
| gallery |
gallery -- cross-site scripting
|
| gallery |
Gallery 1.4.3 and ealier user authentication bypass
|
| gallery |
Gallery arbitrary PHP file upload
|
| gallery2 |
gallery -- multiple vulnerabilities
|
| gallery2 |
gallery2 -- multiple vulnerabilities
|
| gallery2 |
gallery2 -- multiple vulnerabilities
|
| gallery2 |
gallery2 -- file disclosure vulnerability
|
| ganglia-monitor-core |
ganglia -- buffer overflow vulnerability
|
| ganglia-monitor-webfrontend |
ganglia -- buffer overflow vulnerability
|
| ganglia-webfrontend |
ganglia-webfrontend -- XSS vulnerabilities
|
| gatekeeper |
GNU gatekeeper -- denial of service
|
| gatekeeper |
fd_set -- bitmap index overflow in multiple applications
|
| gd |
gd -- '_gdGetColors' remote buffer overflow vulnerability
|
| gd |
gd -- multiple vulnerabilities
|
| gd |
gd -- integer overflow
|
| gdal |
tiff -- buffer overflow vulnerability
|
| gdal |
tiff -- divide-by-zero denial-of-service
|
| gdal |
tiff -- directory entry count integer overflow vulnerability
|
| gdal |
tiff -- multiple integer overflows
|
| gdal |
tiff -- RLE decoder heap overflows
|
| gdk-pixbuf |
gdk-pixbuf -- image decoding vulnerabilities
|
| gdm |
gdm -- privilege escalation vulnerability
|
| gedit |
gedit -- format string vulnerability
|
| geeklog |
geeklog xss vulnerability
|
| getmail |
getmail -- symlink vulnerability during maildir delivery
|
| gforge |
gforge -- XSS and email flood vulnerabilities
|
| gforge |
gforge -- directory traversal vulnerability
|
| gftp |
gftp -- multiple vulnerabilities
|
| gftp |
gftp -- directory traversal vulnerability
|
| ghostscript-afpl |
ghostscript -- insecure temporary file creation vulnerability
|
| ghostscript-afpl-nox11 |
ghostscript -- insecure temporary file creation vulnerability
|
| ghostscript-gnu |
ghostscript -- insecure temporary file creation vulnerability
|
| ghostscript-gnu-nox11 |
ghostscript -- insecure temporary file creation vulnerability
|
| ghostscript-gpl |
ghostscript -- zseticcspace() function buffer overflow vulnerability
|
| ghostscript-gpl-nox11 |
ghostscript -- zseticcspace() function buffer overflow vulnerability
|
| ghostscript8 |
ghostscript -- buffer overflow vulnerability
|
| ghostscript8-nox11 |
ghostscript -- buffer overflow vulnerability
|
| giFT-FastTrack |
Remote Denial of Service of HTTP server and client
|
| git |
git -- buffer overflow vulnerability
|
| git |
git -- denial of service vulnerability
|
| git |
git -- gitweb privilege escalation
|
| gitolite |
gitolite -- path traversal vulnerability
|
| gld |
gld -- format string and buffer overflow vulnerabilities
|
| globus |
globus -- Multiple tmpfile races
|
| glpi |
glpi -- remote attack via crafted POST request
|
| glpi |
glpi -- SQL Injection
|
| gnats |
gnats -- format string vulnerability
|
| gnats |
GNATS local privilege elevation
|
| gnome-screensaver |
gnome-screensaver -- Multiple monitor hotplug issues
|
| gnomevfs |
gnomevfs -- unsafe URI handling
|
| gnomevfs2 |
gnomevfs -- unsafe URI handling
|
| gnu-finger |
GNU finger vulnerability
|
| gnu-radius |
gnu-radius -- SNMP-related denial-of-service
|
| gnupg |
gnupg -- memory corruption vulnerability
|
| gnupg |
gnupg -- remotely controllable function pointer
|
| gnupg |
gnupg -- buffer overflow
|
| gnupg |
gnupg -- 2 more possible memory allocation attacks
|
| gnupg |
gnupg -- user id integer overflow vulnerability
|
| gnupg |
GnuPG does not detect injection of unsigned data
|
| gnupg |
gnupg -- false positive signature verification
|
| gnupg |
gnupg -- OpenPGP symmetric encryption vulnerability
|
| gnupg |
ElGamal sign+encrypt keys created by GnuPG can be compromised
|
| gnutls |
libtasn1 -- ASN.1 length decoding vulnerability
|
| gnutls |
gnutls -- possible overflow/Denial of service vulnerabilities
|
| gnutls |
gnutls -- client session resumption vulnerability
|
| gnutls |
GnuTLS -- multiple vulnerabilities
|
| gnutls |
GnuTLS -- improper SSL certificate verification
|
| gnutls |
gnutls -- X.509 certificate chain validation vulnerability
|
| gnutls |
gnutls -- "gnutls_handshake()" Denial of Service
|
| gnutls |
gnutls -- RSA Signature Forgery Vulnerability
|
| gnutls |
gnutls -- certificate chain verification DoS
|
| gnutls |
GnuTLS certificate chain verification DoS
|
| gnutls-devel |
libtasn1 -- ASN.1 length decoding vulnerability
|
| gnutls-devel |
gnutls -- possible overflow/Denial of service vulnerabilities
|
| gnutls-devel |
GnuTLS -- multiple vulnerabilities
|
| gnutls-devel |
GnuTLS -- improper SSL certificate verification
|
| gnutls-devel |
gnutls -- RSA Signature Forgery Vulnerability
|
| gnutls-devel |
gnutls -- certificate chain verification DoS
|
| gnutls-devel |
GnuTLS certificate chain verification DoS
|
| golddig |
golddig -- local buffer overflow vulnerabilities
|
| google-earth |
google-earth -- heap overflow in the KML engine
|
| gpdf |
xpdf -- multiple remote Stream.CC vulnerabilities
|
| gpdf |
xpdf -- stack based buffer overflow
|
| gpdf |
xpdf -- disk fill DoS vulnerability
|
| gpdf |
xpdf -- makeFileKey2() buffer overflow vulnerability
|
| gpdf |
xpdf -- buffer overflow vulnerability
|
| gpdf |
xpdf -- integer overflow vulnerabilities
|
| gr-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| gr-openoffice |
openoffice -- document disclosure
|
| GraphicsMagick |
ImageMagick and GraphicsMagick -- DoS via specially crafted PNG file
|
| GraphicsMagick-nox11 |
ImageMagick and GraphicsMagick -- DoS via specially crafted PNG file
|
| greed |
greed -- insecure GRX file processing
|
| grip |
grip -- CDDB response multiple matches buffer overflow vulnerability
|
| gstreamer-plugins-good |
gstreamer-plugins-good -- multiple memory overflows
|
| gtar |
gtar -- buffer overflow in rmt client
|
| gtar |
gtar -- GNU TAR safer_name_suffix Remote Denial of Service Vulnerability
|
| gtar |
gtar -- Directory traversal vulnerability
|
| gtar |
gtar -- GNUTYPE_NAMES directory traversal vulnerability
|
| gtar |
gtar -- invalid headers buffer overflow
|
| gtetrinet |
gtetrinet -- remote code execution
|
| gtk |
gdk-pixbuf -- image decoding vulnerabilities
|
| gzip |
gzip -- multiple vulnerabilities
|
| gzip |
gzip -- directory traversal and permission race vulnerabilities
|
| habari |
habari -- Cross-Site Scripting Vulnerability
|
| hafiye |
hafiye -- lack of terminal escape sequence filtering
|
| hanemacs |
emacs -- movemail format string vulnerability
|
| haproxy |
haproxy -- buffer overflow
|
| hashcash |
hashcash -- heap overflow vulnerability
|
| hashcash |
hashcash -- format string vulnerability
|
| heartbeat |
heartbeat -- insecure temporary file creation vulnerability
|
| heimdal |
heimdal -- Multiple vulnerabilities
|
| heimdal |
heimdal kadmind remote heap buffer overflow
|
| heimdal |
Incorrect cross-realm trust handling in Heimdal
|
| helvis |
helvis -- arbitrary file deletion problem
|
| helvis |
helvis -- information leak vulnerabilities
|
| hiawatha |
hiawatha -- memory leak in PreventSQLi routine
|
| hiawatha |
hiawatha -- integer overflow in Content-Length header parsing
|
| hlstats |
hlstats -- multiple cross site scripting vulnerabilities
|
| horde |
horde -- Phishing and Cross-Site Scripting Vulnerabilities
|
| horde |
horde -- various problems in dereferrer
|
| horde |
horde -- multiple parameter cross site scripting vulnerabilities
|
| horde |
horde -- remote code execution vulnerability in the help viewer
|
| horde |
horde -- "url" disclosure of sensitive information vulnerability
|
| horde |
horde -- Cross site scripting vulnerabilities in several of Horde's templates
|
| horde |
horde -- Cross site scripting vulnerabilities in MIME viewers
|
| horde |
horde -- Horde Page Title Cross-Site Scripting Vulnerability
|
| horde |
horde -- XSS vulnerabilities
|
| horde |
horde -- cross-site scripting vulnerability in help window
|
| horde-base |
horde-base -- XSS: VCARD attachments vulnerability
|
| horde-base |
horde-base -- XSS and CSRF vulnerabilities
|
| horde-base |
horde-base -- multiple vulnerabilities
|
| horde-base |
horde -- multiple vulnerabilities
|
| horde-devel |
horde -- cross-site scripting vulnerability in help window
|
| horde-gollem |
horde-gollem -- XSS vulnerability
|
| horde-imp |
horde-imp -- XSS vulnerability
|
| horde-php5 |
horde -- various problems in dereferrer
|
| horde-php5 |
horde -- multiple parameter cross site scripting vulnerabilities
|
| horde-php5 |
horde -- remote code execution vulnerability in the help viewer
|
| horde-php5 |
horde -- "url" disclosure of sensitive information vulnerability
|
| horde-php5 |
horde -- Cross site scripting vulnerabilities in several of Horde's templates
|
| horde-php5 |
horde -- Cross site scripting vulnerabilities in MIME viewers
|
| horde-php5 |
horde -- Horde Page Title Cross-Site Scripting Vulnerability
|
| horde-php5 |
horde -- XSS vulnerabilities
|
| horde{-php5} |
Horde: two XSS vulnerabilities can be exposed by making an authenticated user click on a specially crafted URL and allows to execute JavaScript code in the context of Horde.
|
| hplip |
hplip -- hpssd Denial of Service
|
| hsftp |
hsftp format string vulnerabilities
|
| htdig |
htdig -- cross site scripting vulnerability
|
| hu-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| hu-openoffice |
openoffice -- document disclosure
|
| hylafax |
hylafax -- unauthorized login vulnerability
|
| icecast |
icecast -- Cross-Site Scripting Vulnerability
|
| icecast |
icecast 1.x multiple vulnerabilities
|
| icecast2 |
icecast -- HTTP header overflow
|
| icecast2 |
Icecast remote DoS vulnerability
|
| icedtea-web |
Several vulnerabilities found in IcedTea-Web
|
| id3lib |
id3lib -- insecure temporary file creation
|
| ident2 |
ident2 double byte buffer overflow
|
| ifmail |
ifmail -- unsafe set-user-ID application
|
| ikiwiki |
ikiwiki -- tty hijacking via ikiwiki-mass-rebuild
|
| ikiwiki |
ikiwiki -- insufficient blacklisting in teximg plugin
|
| ikiwiki |
ikiwiki -- cleartext passwords
|
| ikiwiki |
ikiwiki -- empty password security hole
|
| ikiwiki |
ikiwiki -- cross site request forging
|
| ikiwiki |
ikiwiki -- javascript insertion via uris
|
| ikiwiki |
ikiwiki -- improper symlink verification vulnerability
|
| ilohamail |
"Content-Type" XSS vulnerability affecting other webmail systems
|
| ImageMagick |
ImageMagick and GraphicsMagick -- DoS via specially crafted PNG file
|
| ImageMagick |
ImageMagick -- multiple vulnerabilities
|
| ImageMagick |
ImageMagick -- multiple vulnerabilities
|
| ImageMagick |
ImageMagick -- SGI Image File heap overflow vulnerability
|
| ImageMagick |
ImageMagick -- ReadPNMImage() heap overflow vulnerability
|
| ImageMagick |
ImageMagick -- format string vulnerability
|
| ImageMagick |
ImageMagick -- PSD handler heap overflow vulnerability
|
| ImageMagick |
ImageMagick -- EXIF parser buffer overflow
|
| ImageMagick |
ImageMagick -- BMP decoder buffer overflow
|
| ImageMagick |
ImageMagick png vulnerability fix
|
| ImageMagick-nox11 |
ImageMagick and GraphicsMagick -- DoS via specially crafted PNG file
|
| ImageMagick-nox11 |
ImageMagick -- multiple vulnerabilities
|
| ImageMagick-nox11 |
ImageMagick -- multiple vulnerabilities
|
| ImageMagick-nox11 |
ImageMagick -- SGI Image File heap overflow vulnerability
|
| ImageMagick-nox11 |
ImageMagick -- ReadPNMImage() heap overflow vulnerability
|
| ImageMagick-nox11 |
ImageMagick -- format string vulnerability
|
| ImageMagick-nox11 |
ImageMagick -- PSD handler heap overflow vulnerability
|
| ImageMagick-nox11 |
ImageMagick -- EXIF parser buffer overflow
|
| ImageMagick-nox11 |
ImageMagick -- BMP decoder buffer overflow
|
| ImageMagick-nox11 |
ImageMagick png vulnerability fix
|
| ImageMagick{,-nox11} |
ImageMagick png and bmp vulnerabilities
|
| imap-uw |
imap-uw -- University of Washington IMAP c-client Remote Format String Vulnerability
|
| imap-uw |
imap-uw -- imap c-client buffer overflow
|
| imap-uw |
imap-uw -- local buffer overflow vulnerabilities
|
| imap-uw |
imap-uw -- mailbox name handling remote buffer vulnerability
|
| imap-uw |
imap-uw -- authentication bypass when CRAM-MD5 is enabled
|
| imlib |
imlib -- xpm heap buffer overflows and integer overflows
|
| imlib |
imlib -- BMP decoder heap buffer overflow
|
| imlib2 |
imlib2 -- XPM processing buffer overflow vulnerability
|
| imlib2 |
Imlib2 -- multiple image file processing vulnerabilities
|
| imlib2 |
imlib -- xpm heap buffer overflows and integer overflows
|
| imlib2 |
imlib2 -- BMP decoder buffer overflow
|
| imlib2-nox11 |
imlib2 -- XPM processing buffer overflow vulnerability
|
| imp |
horde -- Phishing and Cross-Site Scripting Vulnerabilities
|
| imp |
imp3 -- XSS hole in the HTML viewer
|
| imp |
XSS hole in the HTML viewer - This vulnerability only exists when using the Internet Explorer to access IMP and only when using the inline MIME viewer for HTML messages.
|
| imp |
XSS hole in the HTML viewer - The script vulnerabilities can only be exposed with certain browsers and allow XSS attacks when viewing HTML messages with the HTML MIME viewer.
|
| imp |
imp: XSS hole exploited via the Content-type header of malicious emails
|
| imwheel |
imwheel -- insecure handling of PID file
|
| ingo |
ingo -- local arbitrary shell command execution
|
| inn |
inn -- plaintext command injection into encrypted channel
|
| inn |
Buffer overflow in INN control message handling
|
| inn-stable |
Buffer overflow in INN control message handling
|
| inspircd |
inspircd -- buffer overflow
|
| ipsec-tools |
ipset-tools -- Denial of Service Vulnerabilities
|
| ircd-hybrid |
ircd-hybrid-7 low-bandwidth DoS
|
| ircd-hybrid-ru |
ircd-hybrid-7 low-bandwidth DoS
|
| ircd-ratbox |
ircd-ratbox and charybdis -- remote DoS vulnerability
|
| ircd-ratbox |
irc-ratbox -- multiple vulnerabilities
|
| ircd-ratbox-devel |
irc-ratbox -- multiple vulnerabilities
|
| ircservices |
IRC Services-- Denial of Service Vulnerability
|
| irssi |
irssi -- multiple vulnerabilities
|
| irssi-devel |
irssi -- multiple vulnerabilities
|
| isakmpd |
isakmpd payload handling denial-of-service vulnerabilities
|
| isakmpd |
isakmpd security association deletion vulnerability
|
| isc-dhcp |
isc-dhcpd -- format string vulnerabilities
|
| isc-dhcp3 |
isc-dhcpd -- format string vulnerabilities
|
| isc-dhcp3 |
ISC DHCPD minires library contains multiple buffer overflows
|
| isc-dhcp3 |
ISC "dhcrelay" fails to limit hop count when malicious bootp packet is received
|
| isc-dhcp3-client |
isc-dhcpd -- format string vulnerabilities
|
| isc-dhcp3-devel |
isc-dhcpd -- format string vulnerabilities
|
| isc-dhcp3-relay |
isc-dhcpd -- format string vulnerabilities
|
| isc-dhcp3-relay |
isc-dhcp3-server buffer overflow in logging mechanism
|
| isc-dhcp3-server |
isc-dhcpd -- format string vulnerabilities
|
| isc-dhcp3-server |
isc-dhcp3-server buffer overflow in logging mechanism
|
| isc-dhcp3-{relay,server} |
isc-dhcp3-server buffer overflow in logging mechanism
|
| isc-dhcp30-client |
isc-dhcp-client -- Stack overflow vulnerability
|
| isc-dhcp31-client |
isc-dhcp-client -- dhclient does not strip or escape shell meta-characters
|
| isc-dhcp31-client |
isc-dhcp-client -- Stack overflow vulnerability
|
| isc-dhcp31-server |
isc-dhcp-server -- server halt upon processing certain packets
|
| isc-dhcp41-client |
isc-dhcp-client -- dhclient does not strip or escape shell meta-characters
|
| isc-dhcp41-server |
isc-dhcp -- multiple vulnerabilities
|
| isc-dhcp41-server |
isc-dhcp-server -- Remote DoS
|
| isc-dhcp41-server |
isc-dhcp-server -- server halt upon processing certain packets
|
| isc-dhcp41-server |
isc-dhcp-server -- DHCPv6 crash
|
| isc-dhcp41-server |
isc-dhcp-server -- Empty link-address denial of service
|
| isc-dhcp42-server |
isc-dhcp -- multiple vulnerabilities
|
| isc-dhcp42-server |
isc-dhcp-server -- DoS in DHCPv6
|
| isc-dhcp42-server |
isc-dhcp-server -- Remote DoS
|
| isc-dhcp42-server |
isc-dhcp-server -- server halt upon processing certain packets
|
| isc-dhcpd |
isc-dhcpd -- format string vulnerabilities
|
| isolate |
isolate -- local root exploit
|
| it-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| it-openoffice |
openoffice -- document disclosure
|
| iv |
tiff -- buffer overflow vulnerability
|
| iv |
tiff -- divide-by-zero denial-of-service
|
| iv |
tiff -- directory entry count integer overflow vulnerability
|
| iv |
tiff -- multiple integer overflows
|
| iv |
tiff -- RLE decoder heap overflows
|
| ivtools |
tiff -- buffer overflow vulnerability
|
| ivtools |
tiff -- divide-by-zero denial-of-service
|
| ivtools |
tiff -- directory entry count integer overflow vulnerability
|
| ivtools |
tiff -- multiple integer overflows
|
| ivtools |
tiff -- RLE decoder heap overflows
|
| iw-pine |
pine remotely exploitable buffer overflow in newmail.c
|
| iw-pine |
pine insecure URL handling
|
| iw-pine |
pine remote denial-of-service attack
|
| iw-pine |
pine remotely exploitable vulnerabilities
|
| ja-acroread |
acroread -- XML External Entity vulnerability
|
| ja-bugzilla |
bugzilla -- multiple vulnerabilities
|
| ja-bugzilla |
Bugzilla -- Directory Traversal in importxml.pl
|
| ja-bugzilla |
bugzilla -- multiple vulnerabilities
|
| ja-bugzilla |
bugzilla -- multiple vulnerabilities
|
| ja-bugzilla |
bugzilla -- multiple vulnerabilities
|
| ja-bugzilla |
bugzilla -- multiple vulnerabilities
|
| ja-bugzilla |
bugzilla -- cross-site scripting vulnerability
|
| ja-gaim |
libgadu -- multiple vulnerabilities
|
| ja-gaim |
gaim -- AIM/ICQ non-UTF-8 filename crash
|
| ja-gaim |
gaim -- AIM/ICQ away message buffer overflow
|
| ja-gaim |
gaim -- Yahoo! remote crash vulnerability
|
| ja-gaim |
gaim -- MSN Remote DoS vulnerability
|
| ja-gaim |
gaim -- MSN remote DoS vulnerability
|
| ja-gaim |
gaim -- remote crash on some protocols
|
| ja-gaim |
gaim -- AIM/ICQ remote denial of service vulnerability
|
| ja-gaim |
gaim -- remote DoS on receiving malformed HTML
|
| ja-gaim |
gaim -- jabber remote crash
|
| ja-gaim |
gaim -- remote DoS on receiving certain messages over IRC
|
| ja-gaim |
gaim -- remote DoS on receiving malformed HTML
|
| ja-gaim |
gaim -- MSN denial-of-service vulnerabilities
|
| ja-gaim |
gaim -- Content-Length header denial-of-service vulnerability
|
| ja-gaim |
gaim -- multiple buffer overflows
|
| ja-gaim |
gaim -- heap overflow exploitable by malicious GroupWise server
|
| ja-gaim |
gaim -- malicious smiley themes
|
| ja-gaim |
gaim -- buffer overflow in MSN protocol support
|
| ja-gaim |
gaim remotely exploitable vulnerabilities in MSN component
|
| ja-gaim |
Several remotely exploitable buffer overflows in gaim
|
| ja-gd |
gd -- integer overflow
|
| ja-groff |
groff -- pic2graph and eqn2graph are vulnerable to symlink attack through temporary files
|
| ja-groff |
groff -- groffer uses temporary files unsafely
|
| ja-iv |
tiff -- buffer overflow vulnerability
|
| ja-iv |
tiff -- divide-by-zero denial-of-service
|
| ja-iv |
tiff -- directory entry count integer overflow vulnerability
|
| ja-iv |
tiff -- multiple integer overflows
|
| ja-iv |
tiff -- RLE decoder heap overflows
|
| ja-kdelibs |
kdelibs -- local DCOP denial of service vulnerability
|
| ja-kdelibs |
kdelibs -- insecure temporary file creation
|
| ja-kdelibs |
kdelibs3 -- konqueror FTP command injection vulnerability
|
| ja-libimg |
tiff -- buffer overflow vulnerability
|
| ja-libimg |
tiff -- divide-by-zero denial-of-service
|
| ja-libimg |
tiff -- directory entry count integer overflow vulnerability
|
| ja-libimg |
tiff -- multiple integer overflows
|
| ja-libimg |
tiff -- RLE decoder heap overflows
|
| ja-linux-mozillafirebird-gtk1 |
firefox & mozilla -- multiple vulnerabilities
|
| ja-linux-mozillafirebird-gtk1 |
firefox & mozilla -- command line URL shell command injection
|
| ja-linux-mozillafirebird-gtk1 |
firefox & mozilla -- buffer overflow vulnerability
|
| ja-linux-mozillafirebird-gtk1 |
firefox & mozilla -- multiple vulnerabilities
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- privilege escalation via non-DOM property overrides
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- privilege escalation via DOM property overrides
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- code execution through javascript: favicons
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- heap buffer overflow in GIF image processing
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- insecure temporary directory vulnerability
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- arbitrary code execution vulnerability
|
| ja-linux-mozillafirebird-gtk1 |
web browsers -- window injection vulnerabilities
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- insecure permissions for some downloaded files
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- scripting vulnerabilities
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- users may be lured into bypassing security dialogs
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- hostname spoofing bug
|
| ja-linux-mozillafirebird-gtk1 |
mozilla -- BMP decoder vulnerabilities
|
| ja-linux-netscape |
firefox & mozilla -- multiple vulnerabilities
|
| ja-linux-netscape |
firefox & mozilla -- command line URL shell command injection
|
| ja-linux-netscape |
firefox & mozilla -- buffer overflow vulnerability
|
| ja-linux-netscape |
firefox & mozilla -- multiple vulnerabilities
|
| ja-linux-netscape |
mozilla -- privilege escalation via non-DOM property overrides
|
| ja-linux-netscape |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| ja-linux-netscape |
mozilla -- code execution via javascript: IconURL vulnerability
|
| ja-linux-netscape |
mozilla -- privilege escalation via DOM property overrides
|
| ja-linux-netscape |
mozilla -- code execution through javascript: favicons
|
| ja-linux-netscape |
mozilla -- javascript "lambda" replace exposes memory contents
|
| ja-linux-netscape |
mozilla -- heap buffer overflow in GIF image processing
|
| ja-linux-netscape |
mozilla -- insecure temporary directory vulnerability
|
| ja-linux-netscape |
mozilla -- arbitrary code execution vulnerability
|
| ja-linux-netscape |
web browsers -- window injection vulnerabilities
|
| ja-linux-netscape |
mozilla -- insecure permissions for some downloaded files
|
| ja-linux-netscape |
mozilla -- heap overflow in NNTP handler
|
| ja-linux-netscape |
mozilla -- scripting vulnerabilities
|
| ja-linux-netscape |
mozilla -- users may be lured into bypassing security dialogs
|
| ja-linux-netscape |
mozilla -- hostname spoofing bug
|
| ja-linux-netscape |
mozilla -- BMP decoder vulnerabilities
|
| ja-lynx |
lynx -- remote buffer overflow
|
| ja-mailman |
mailman -- script insertion vulnerability
|
| ja-mailman |
mailman -- Multiple Vulnerabilities
|
| ja-mailman |
mailman -- Private Archive Script Cross-Site Scripting
|
| ja-mailman |
mailman -- generated passwords are poor quality
|
| ja-mailman |
mailman -- password disclosure
|
| ja-mailman |
mailman -- directory traversal vulnerability
|
| ja-mozillafirebird-gtk2 |
firefox & mozilla -- multiple vulnerabilities
|
| ja-mozillafirebird-gtk2 |
firefox & mozilla -- command line URL shell command injection
|
| ja-mozillafirebird-gtk2 |
firefox & mozilla -- buffer overflow vulnerability
|
| ja-mozillafirebird-gtk2 |
firefox & mozilla -- multiple vulnerabilities
|
| ja-mozillafirebird-gtk2 |
mozilla -- privilege escalation via non-DOM property overrides
|
| ja-mozillafirebird-gtk2 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| ja-mozillafirebird-gtk2 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| ja-mozillafirebird-gtk2 |
mozilla -- privilege escalation via DOM property overrides
|
| ja-mozillafirebird-gtk2 |
mozilla -- code execution through javascript: favicons
|
| ja-mozillafirebird-gtk2 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| ja-mozillafirebird-gtk2 |
mozilla -- heap buffer overflow in GIF image processing
|
| ja-mozillafirebird-gtk2 |
mozilla -- insecure temporary directory vulnerability
|
| ja-mozillafirebird-gtk2 |
mozilla -- arbitrary code execution vulnerability
|
| ja-mozillafirebird-gtk2 |
web browsers -- window injection vulnerabilities
|
| ja-mozillafirebird-gtk2 |
mozilla -- insecure permissions for some downloaded files
|
| ja-mozillafirebird-gtk2 |
mozilla -- scripting vulnerabilities
|
| ja-mozillafirebird-gtk2 |
mozilla -- users may be lured into bypassing security dialogs
|
| ja-mozillafirebird-gtk2 |
mozilla -- hostname spoofing bug
|
| ja-mozillafirebird-gtk2 |
mozilla -- BMP decoder vulnerabilities
|
| ja-mutt |
mutt -- buffer overflow vulnerability
|
| ja-mutt |
mutt -- Remote Buffer Overflow Vulnerability
|
| ja-mutt |
Buffer overflow in Mutt 1.4
|
| ja-mutt-devel |
mutt -- Remote Buffer Overflow Vulnerability
|
| ja-netscape-communicator-linux |
libpng stack-based buffer overflow and other code concerns
|
| ja-netscape-navigator-linux |
libpng stack-based buffer overflow and other code concerns
|
| ja-netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| ja-netscape7 |
firefox & mozilla -- command line URL shell command injection
|
| ja-netscape7 |
firefox & mozilla -- buffer overflow vulnerability
|
| ja-netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| ja-netscape7 |
mozilla -- privilege escalation via non-DOM property overrides
|
| ja-netscape7 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| ja-netscape7 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| ja-netscape7 |
mozilla -- privilege escalation via DOM property overrides
|
| ja-netscape7 |
mozilla -- code execution through javascript: favicons
|
| ja-netscape7 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| ja-netscape7 |
mozilla -- heap buffer overflow in GIF image processing
|
| ja-netscape7 |
mozilla -- insecure temporary directory vulnerability
|
| ja-netscape7 |
mozilla -- arbitrary code execution vulnerability
|
| ja-netscape7 |
web browsers -- window injection vulnerabilities
|
| ja-netscape7 |
mozilla -- insecure permissions for some downloaded files
|
| ja-netscape7 |
mozilla -- heap overflow in NNTP handler
|
| ja-netscape7 |
mozilla -- scripting vulnerabilities
|
| ja-netscape7 |
mozilla -- users may be lured into bypassing security dialogs
|
| ja-netscape7 |
mozilla -- hostname spoofing bug
|
| ja-netscape7 |
mozilla -- BMP decoder vulnerabilities
|
| ja-netscape7 |
libpng stack-based buffer overflow and other code concerns
|
| ja-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| ja-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| ja-openoffice |
openoffice -- document disclosure
|
| ja-postgresql |
postgresql -- encoding based SQL injection
|
| ja-postgresql |
postgresql -- multiple vulnerabilities
|
| ja-postgresql |
postgresql -- multiple buffer overflows in PL/PgSQL parser
|
| ja-postgresql |
postgresql -- privilege escalation vulnerability
|
| ja-ppxp |
ppxp -- local root exploit
|
| ja-samba |
samba -- potential leakage of arbitrary memory contents
|
| ja-samba |
samba -- buffer overflow vulnerability
|
| ja-samba |
samba -- multiple vulnerabilities
|
| ja-samba |
samba -- multiple vulnerabilities
|
| ja-samba |
samba -- potential Denial of Service bug in smbd
|
| ja-samba |
samba -- format string bug in afsacl.so VFS plugin
|
| ja-samba |
samba -- memory exhaustion DoS in smbd
|
| ja-samba |
samba -- Exposure of machine account credentials in winbind log files
|
| ja-samba |
samba -- integer overflow vulnerability
|
| ja-samba |
samba -- remote file disclosure
|
| ja-samba |
Multiple Potential Buffer Overruns in Samba
|
| ja-squirrelmail |
squirrelmail -- random variable overwrite vulnerability
|
| ja-squirrelmail |
squirrelmail -- _$POST variable handling allows for various attacks
|
| ja-squirrelmail |
squirrelmail -- Several cross site scripting vulnerabilities
|
| ja-squirrelmail |
squirrelmail -- XSS and remote code injection vulnerabilities
|
| ja-squirrelmail |
squirrelmail -- cross site scripting vulnerability
|
| ja-squirrelmail |
SquirrelMail XSS vulnerability
|
| ja-tdiary |
tdiary -- injection vulnerability
|
| ja-tdiary |
tdiary -- cross site scripting vulnerability
|
| ja-tdiary-devel |
tdiary -- injection vulnerability
|
| ja-tdiary-devel |
tdiary -- cross site scripting vulnerability
|
| ja-trac |
trac -- potential DOS vulnerability
|
| ja-trac |
trac -- cross site scripting vulnerability
|
| ja-trac |
trac -- reStructuredText breach of privacy and denial of service vulnerability
|
| ja-trac |
trac -- Wiki Macro Script Insertion Vulnerability
|
| ja-uim |
uim -- privilege escalation vulnerability
|
| ja-uim |
uim -- privilege escalation vulnerability
|
| ja-w3m |
w3m -- format string vulnerability
|
| ja-w3m-img |
w3m -- format string vulnerability
|
| ja-wordpress |
wordpress -- multiple vulnerabilities
|
| ja-xlockmore |
xlockmore -- local exploit
|
| ja-xv |
xv -- filename handling format string vulnerability
|
| jabber |
fd_set -- bitmap index overflow in multiple applications
|
| jabber |
jabberd -- denial-of-service vulnerability
|
| jabberd |
jabberd -- domain spoofing in server dialback protocol
|
| jabberd |
jabberd -- SASL Negotiation Denial of Service Vulnerability
|
| jabberd |
jabberd -- 3 buffer overflows
|
| jabberd |
jabberd -- remote buffer overflow vulnerability
|
| jakarta-tomcat |
tomcat -- XSS vulnerability in sample applications
|
| jakarta-tomcat |
tomcat -- multiple vulnerabilities
|
| jakarta-tomcat |
tomcat -- Tomcat Manager cross-site scripting
|
| jasper |
jasper -- buffer overflow
|
| jdk |
jdk/jre -- Applet Caching May Allow Network Access Restrictions to be Circumvented
|
| jdk |
jdk -- jar directory traversal vulnerability
|
| jdk |
jdk/jre -- Security Vulnerability With Java Plugin
|
| jenkins |
jenkins -- multiple vulnerabilities
|
| jenkins |
jenkins -- multiple vulnerabilities
|
| jenkins |
jenkins -- HTTP access to the server to retrieve the master cryptographic key
|
| jenkins |
jenkins -- multiple vulnerabilities
|
| jenkins |
jenkins -- XSS vulnerability
|
| jetty |
jetty -- multiple vulnerability
|
| jetty |
jetty -- multiple vulnerabilities
|
| jftpgw |
Arbitrary code execution via a format string vulnerability in jftpgw
|
| jftpgw |
jftpgw remote syslog format string vulnerability
|
| joomla |
Joomla! -- XXS and DDoS vulnerabilities
|
| joomla |
joomla -- Privilege Escalation
|
| joomla |
joomla -- multiple vulnerabilities
|
| joomla |
joomla -- multiple remote vulnerabilities
|
| joomla |
joomla -- multiple vulnerabilities
|
| joomla |
Joomla -- multiple vulnerabilities
|
| joomla15 |
joomla -- multiple vulnerabilities
|
| joomla15 |
joomla15 -- com_mailto Timeout Issue
|
| joomla15 |
joomla -- multiple vulnerabilities
|
| joomla15 |
joomla -- flaw in the reset token validation
|
| jp-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| jruby |
Multiple implementations -- DoS via hash algorithm collision
|
| junkbuster |
junkbuster -- heap corruption vulnerability and configuration modification vulnerability
|
| junkbuster-zlib |
junkbuster -- heap corruption vulnerability and configuration modification vulnerability
|
| kaffeine |
kaffeine -- buffer overflow vulnerability
|
| kdebase |
KDM -- local privilege escalation vulnerability
|
| kdebase |
konquerer -- address bar spoofing
|
| kdebase |
kdebase -- Kate backup file permission leak
|
| kdebase |
web browsers -- window injection vulnerabilities
|
| kdebase |
konqueror -- Password Disclosure for SMB Shares
|
| kdebase |
Mutiple browser frame injection vulnerability
|
| kdebase |
Konqueror frame injection vulnerability
|
| kdebase-runtime |
KDE -- multiple vulnerabilities
|
| kdebase-workspace |
KDM -- local privilege escalation vulnerability
|
| kdebase3 |
kdm -- passwordless login vulnerability
|
| kdeedu |
kstars -- exploitable set-user-ID application fliccd
|
| kdegraphics |
xpdf -- multiple remote Stream.CC vulnerabilities
|
| kdegraphics |
xpdf -- stack based buffer overflow
|
| kdegraphics |
kpdf -- heap based buffer overflow
|
| kdegraphics |
xpdf -- disk fill DoS vulnerability
|
| kdegraphics |
xpdf -- makeFileKey2() buffer overflow vulnerability
|
| kdegraphics |
xpdf -- buffer overflow vulnerability
|
| kdegraphics |
xpdf -- integer overflow vulnerabilities
|
| kdegraphics |
Multiple integer overflow and integer arithmetic flaws in imported xpdf code
|
| kdelibs |
kdelibs4, rekonq -- input validation failure
|
| kdelibs |
KDE -- multiple vulnerabilities
|
| kdelibs |
konquerer -- address bar spoofing
|
| kdelibs |
kdelibs -- integer overflow in khtml
|
| kdelibs |
kdelibs -- kimgio input validation errors
|
| kdelibs |
kdelibs -- local DCOP denial of service vulnerability
|
| kdelibs |
kdelibs -- insecure temporary file creation
|
| kdelibs |
web browsers -- window injection vulnerabilities
|
| kdelibs |
kdelibs3 -- konqueror FTP command injection vulnerability
|
| kdelibs |
konqueror -- Password Disclosure for SMB Shares
|
| kdelibs |
kdelibs -- konqueror cross-domain cookie injection
|
| kdelibs |
Mutiple browser frame injection vulnerability
|
| kdelibs |
kdelibs insecure temporary file handling
|
| kdelibs |
KDElibs temporary directory vulnerability
|
| kdelibs |
DCOPServer Temporary Filename Vulnerability
|
| kdelibs |
Konqueror frame injection vulnerability
|
| kdelibs |
URI handler vulnerabilities in several browsers
|
| kdelibs-nocups |
kdelibs -- integer overflow in khtml
|
| kdelibs-nocups |
kdelibs -- local DCOP denial of service vulnerability
|
| kdenetwork |
libgadu -- multiple vulnerabilities
|
| kdepim |
kdepim exploitable buffer overflow in VCF reader
|
| kdeutils |
kdeutils4 -- Directory traversal vulnerability
|
| kdewebdev |
kdewebdev -- kommander untrusted code execution vulnerability
|
| ko-gaim |
libgadu -- multiple vulnerabilities
|
| ko-gaim |
gaim -- AIM/ICQ non-UTF-8 filename crash
|
| ko-gaim |
gaim -- AIM/ICQ away message buffer overflow
|
| ko-gaim |
gaim -- Yahoo! remote crash vulnerability
|
| ko-gaim |
gaim -- MSN Remote DoS vulnerability
|
| ko-gaim |
gaim -- MSN remote DoS vulnerability
|
| ko-gaim |
gaim -- remote crash on some protocols
|
| ko-gaim |
gaim -- AIM/ICQ remote denial of service vulnerability
|
| ko-gaim |
gaim -- remote DoS on receiving malformed HTML
|
| ko-gaim |
gaim -- jabber remote crash
|
| ko-gaim |
gaim -- remote DoS on receiving certain messages over IRC
|
| ko-gaim |
gaim -- remote DoS on receiving malformed HTML
|
| ko-gaim |
gaim -- MSN denial-of-service vulnerabilities
|
| ko-gaim |
gaim -- Content-Length header denial-of-service vulnerability
|
| ko-gaim |
gaim -- multiple buffer overflows
|
| ko-gaim |
gaim -- heap overflow exploitable by malicious GroupWise server
|
| ko-gaim |
gaim -- malicious smiley themes
|
| ko-gaim |
gaim remotely exploitable vulnerabilities in MSN component
|
| ko-gaim |
Several remotely exploitable buffer overflows in gaim
|
| ko-helvis |
helvis -- arbitrary file deletion problem
|
| ko-helvis |
helvis -- information leak vulnerabilities
|
| ko-netscape-communicator-linux |
libpng stack-based buffer overflow and other code concerns
|
| ko-netscape-navigator-linux |
libpng stack-based buffer overflow and other code concerns
|
| ko-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| ko-openoffice |
openoffice -- document disclosure
|
| ko-unzip |
unzip -- permission race vulnerability
|
| koffice |
Calligra, KOffice -- input validation failure
|
| koffice |
xpdf -- multiple remote Stream.CC vulnerabilities
|
| koffice |
abiword, koffice -- stack based buffer overflow vulnerabilities
|
| koffice |
xpdf -- makeFileKey2() buffer overflow vulnerability
|
| koffice |
xpdf -- buffer overflow vulnerability
|
| koffice |
xpdf -- integer overflow vulnerabilities
|
| koffice |
Multiple integer overflow and integer arithmetic flaws in imported xpdf code
|
| koffice-kde4 |
Calligra, KOffice -- input validation failure
|
| konversation |
konversation -- shell script command injection
|
| kpopup |
kpopup -- local root exploit and local denial of service
|
| kr-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| krb5 |
krb5 -- null pointer dereference in the KDC PKINIT code [CVE-2013-1415]
|
| krb5 |
krb5 -- KDC null pointer dereference in TGS handling
|
| krb5 |
krb5 -- MITKRB5-SA-2011-004, kadmind invalid pointer free() [CVE-2011-0285]
|
| krb5 |
krb5 -- MITKRB5-SA-2011-003, KDC vulnerable to double-free when PKINIT enabled
|
| krb5 |
krb5 -- MITKRB5-SA-2011-002, KDC vulnerable to hang when using LDAP back end
|
| krb5 |
krb5 -- MITKRB5-SA-2011-001, kpropd denial of service
|
| krb5 |
krb5 -- client impersonation vulnerability
|
| krb5 |
krb5 -- RFC 3961 key-derivation checksum handling vulnerability
|
| krb5 |
krb5 -- unkeyed PAC checksum handling vulnerability
|
| krb5 |
krb5 -- multiple checksum handling vulnerabilities
|
| krb5 |
krb5 -- multiple checksum handling vulnerabilities
|
| krb5 |
krb5 -- KDC double free vulnerability
|
| krb5 |
krb5 -- remote denial of service vulnerability
|
| krb5 |
krb5 -- multiple denial of service vulnerabilities
|
| krb5 |
krb5 -- heap buffer overflow vulnerability in libkadm5srv
|
| krb5 |
krb5 -- double-free vulnerabilities
|
| krb5 |
krb5 -- ASN.1 decoder denial-of-service vulnerability
|
| krb5 |
MIT Kerberos 5 krb5_aname_to_localname() buffer overflow
|
| krb5-appl |
krb5-appl -- telnetd code execution vulnerability
|
| krb5-beta |
krb5 -- heap buffer overflow vulnerability in libkadm5srv
|
| kronolith |
kronolith -- arbitrary local file inclusion vulnerability
|
| kronolith |
kronolith -- Cross site scripting vulnerabilities in several of the calendar name and event data fields
|
| ktorrent |
ktorrent -- multiple vulnerabilities
|
| ktorrent-devel |
ktorrent -- multiple vulnerabilities
|
| kvirc |
kvirc -- multiple vulnerabilities
|
| kvirc-devel |
kvirc -- multiple vulnerabilities
|
| l2tpd |
l2tpd BSS-based buffer overflow
|
| lbreakout2 |
lbreakout2 vulnerability in environment variable handling
|
| lcdproc |
LCDProc buffer overflow/format string vulnerabilities
|
| ldapscripts |
ldapscripts -- Command Line User Credentials Disclosure
|
| leafnode |
leafnode -- denial of service vulnerability
|
| leafnode |
leafnode -- fetchnews denial-of-service triggered by transmission abort/timeout
|
| leafnode |
leafnode denial-of-service triggered by article request
|
| leafnode |
leafnode fetchnews denial-of-service triggered by missing header
|
| leafnode |
leafnode fetchnews denial-of-service triggered by truncated transmission
|
| lesstif |
xpm -- image decoding vulnerabilities
|
| lftp |
lftp -- multiple HTTP client download filename vulnerability
|
| lftp |
lftp HTML parsing vulnerability
|
| lha |
lha -- numerous vulnerabilities when extracting archives
|
| lha |
multiple vulnerabilities in LHA
|
| lha |
lha buffer overflows and path traversal issues
|
| libarchive |
libarchive -- Infinite loop in corrupt archives handling in libarchive
|
| libcdaudio |
libcdaudio -- remote buffer overflow and code execution
|
| libexif |
libexif -- multiple remote vulnerabilities
|
| libexif |
libexif -- buffer overflow vulnerability
|
| libjpeg-turbo |
libjpeg-turbo -- heap-based buffer overflow
|
| libmcrypt |
Buffer overflows in libmcrypt
|
| libmms |
libmms -- stack-based buffer overflow
|
| libmspack |
libmspack -- infinite loop denial of service
|
| libmusicbrainz |
libmusicbrainz -- multiple buffer overflow vulnerabilities
|
| libotr |
libotr -- buffer overflows
|
| libpurple |
libpurple -- multiple vulnerabilities
|
| libpurple |
libpurple -- Invalid memory dereference in the XMPP protocol plug-in by processing serie of specially-crafted file transfer requests
|
| libpurple |
libpurple -- Remote DoS via an MSN OIM message that lacks UTF-8 encoding
|
| libpurple |
pidgin -- multiple remote denial of service vulnerabilities
|
| libpurple |
pidgin -- MSN overflow parsing SLP messages
|
| libpurple |
pidgin -- multiple vulnerabilities
|
| libsndfile |
libsndfile -- PAF file processing integer overflow
|
| libsndfile |
libsndfile -- multiple vulnerabilities
|
| libsndfile |
libsndfile -- CAF processing integer overflow vulnerability
|
| libsoup |
libsoup -- unintentionally allow access to entire local filesystem
|
| libspf2 |
libspf2 -- Buffer overflow
|
| libtasn1 |
libtasn1 -- ASN.1 length decoding vulnerability
|
| libtomcrypt |
libtomcrypt -- weak signature scheme with ECC keys
|
| libtool |
libtool -- Library Search Path Privilege Escalation Issue
|
| libtool |
GNU libtool insecure temporary file handling
|
| libvorbis |
libvorbis -- multiple vulnerabilities
|
| libvorbis |
libvorbis -- various security issues
|
| libvorbis |
libvorbis -- Multiple memory corruption flaws
|
| libwmf |
libwmf -- embedded GD library Use-After-Free vulnerability
|
| libwmf |
libwmf -- integer overflow vulnerability
|
| libxfce4gui |
xfce -- multiple vulnerabilities
|
| libXfont |
libXfont -- possible local privilege escalation
|
| libXfont |
xorg -- multiple vulnerabilities
|
| libxine |
libxine -- multiple vulnerabilities
|
| libxine |
libxine -- multiple vulnerabilities
|
| libxine |
libxine -- denial of service vulnerability
|
| libxine |
libxine -- array index vulnerability
|
| libxine |
libxine -- buffer overflow vulnerability
|
| libxine |
libxine -- buffer overflow vulnerability
|
| libxine |
libxine -- buffer overflow vulnerability
|
| libxine |
libxine -- multiple buffer overflow vulnerabilities
|
| libxine |
libmms -- stack-based buffer overflow
|
| libxine |
libxine -- buffer overflow vulnerability
|
| libxine |
libxine -- format string vulnerability
|
| libxine |
mplayer & libxine -- MMS and Real RTSP buffer overflow vulnerabilities
|
| libxine |
libxine -- DVD subpicture decoder heap overflow
|
| libxine |
libxine -- multiple vulnerabilities in VideoCD handling
|
| libxine |
libxine -- multiple buffer overflows in RTSP
|
| libxine |
libxine -- buffer-overflow vulnerability in aiff support
|
| libxine |
mplayer -- multiple vulnerabilities
|
| libxine |
xine-lib arbitrary file overwrite
|
| libxine |
xine-lib RTSP handling vulnerabilities
|
| libxml |
libxml -- Integer overflow
|
| libxml |
libxml -- Multiple use-after-free vulnerabilities
|
| libxml |
libxml -- Stack consumption vulnerability
|
| libxml |
libxml -- remote buffer overflows
|
| libxml2 |
libxml2 -- cpu consumption Dos
|
| libxml2 |
libxml2 -- An off-by-one out-of-bounds write by XPointer
|
| libxml2 |
libxml2 -- heap buffer overflow
|
| libxml2 |
libxml -- Integer overflow
|
| libxml2 |
libxml2 -- multiple vulnerabilities
|
| libxml2 |
libxml2 -- two vulnerabilities
|
| libxml2 |
libxml -- remote buffer overflows
|
| libxml2 |
libxml2 stack buffer overflow in URI parsing
|
| libXpm |
xpm -- image decoding vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
Mozilla -- multiple vulnerabilities
|
| libxul |
Mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- update to HTTPS certificate blacklist
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- Heap buffer overflow mixing document.write and DOM insertion
|
| libxul |
mozilla -- multiple vulnerabilities
|
| libxul |
mozilla -- multiple vulnerabilities
|
| lifetype |
lifetype -- ADOdb "server.php" Insecure Test Script Security Issue
|
| lightning |
mozilla -- multiple vulnerabilities
|
| lighttpd |
lighttpd -- remote DoS in header parsing
|
| lighttpd |
lighttpd -- remote DoS in HTTP authentication
|
| lighttpd |
lighttpd -- denial of service vulnerability
|
| lighttpd |
lighttpd -- multiple vulnerabilities
|
| lighttpd |
lighttpd -- OpenSSL Error Queue Denial of Service Vulnerability
|
| lighttpd |
lighttpd -- FastCGI header overrun in mod_fastcgi
|
| lighttpd |
lighttpd -- multiple vulnerabilities
|
| lighttpd |
lighttpd -- DOS when access files with mtime 0
|
| lighttpd |
lighttpd -- Remote DOS in CRLF parsing
|
| lighttpd |
lighttpd -- script source disclosure vulnerability
|
| linux-aspell |
Buffer overflow in word-list-compress
|
| linux-blackdown-jdk |
jdk/jre -- Applet Caching May Allow Network Access Restrictions to be Circumvented
|
| linux-blackdown-jdk |
jdk -- jar directory traversal vulnerability
|
| linux-blackdown-jdk |
jdk/jre -- Security Vulnerability With Java Plugin
|
| linux-curl |
curl -- TFTP packet buffer overflow vulnerability
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- remote code execution vulnerability
|
| linux-f10-flashplugin |
linux-flashplugin -- cross-site scripting vulnerability
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- remote code execution vulnerability
|
| linux-f10-flashplugin |
linux-flashplugin -- remote code execution vulnerability
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- remote code execution
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f10-pango |
pango -- integer overflow
|
| linux-f8-flashplugin |
linux-flashplugin -- remote code execution vulnerability
|
| linux-f8-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f8-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f8-flashplugin |
linux-flashplugin -- remote code execution
|
| linux-f8-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f8-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f8-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f8-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-f8-pango |
pango -- integer overflow
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- Use-after-free in HTML Editor
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- heap-buffer overflow
|
| linux-firefox |
mozilla -- use after free in nsXBLDocumentInfo::ReadPrototypeBindings
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
Mozilla -- multiple vulnerabilities
|
| linux-firefox |
nss/ca_root_nss -- fraudulent certificates issued by DigiNotar.nl
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
Mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- update to HTTPS certificate blacklist
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- Heap buffer overflow mixing document.write and DOM insertion
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
firefox -- Dangling pointer crash regression from plugin parameter array fix
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
firefox -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
firefox -- javascript garbage collector vulnerability
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
firefox -- multiple remote unspecified memory corruption vulnerabilities
|
| linux-firefox |
firefox -- OnUnload Javascript browser entrapment vulnerability
|
| linux-firefox |
mozilla -- code execution via Quicktime media-link files
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
firefox -- denial of service vulnerability
|
| linux-firefox |
mozilla -- multiple vulnerabilities
|
| linux-firefox |
firefox & mozilla -- multiple vulnerabilities
|
| linux-firefox |
firefox & mozilla -- command line URL shell command injection
|
| linux-firefox |
firefox & mozilla -- buffer overflow vulnerability
|
| linux-firefox |
firefox & mozilla -- multiple vulnerabilities
|
| linux-firefox |
mozilla -- privilege escalation via non-DOM property overrides
|
| linux-firefox |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| linux-firefox |
mozilla -- code execution via javascript: IconURL vulnerability
|
| linux-firefox |
firefox -- PLUGINSPAGE privileged javascript execution
|
| linux-firefox |
mozilla -- privilege escalation via DOM property overrides
|
| linux-firefox |
mozilla -- code execution through javascript: favicons
|
| linux-firefox |
mozilla -- javascript "lambda" replace exposes memory contents
|
| linux-firefox |
firefox -- arbitrary code execution in sidebar panel
|
| linux-firefox |
firefox -- arbitrary code execution from sidebar panel
|
| linux-firefox |
mozilla -- heap buffer overflow in GIF image processing
|
| linux-firefox-devel |
Mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- update to HTTPS certificate blacklist
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- Heap buffer overflow mixing document.write and DOM insertion
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
firefox -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
firefox -- javascript garbage collector vulnerability
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
firefox -- multiple remote unspecified memory corruption vulnerabilities
|
| linux-firefox-devel |
mozilla -- code execution via Quicktime media-link files
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-firefox-devel |
mozilla -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- remote code execution vulnerability
|
| linux-flashplugin |
linux-flashplugin -- cross-site scripting vulnerability
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- remote code execution vulnerability
|
| linux-flashplugin |
linux-flashplugin -- remote code execution vulnerability
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- remote code execution
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- unspecified remote code execution vulnerability
|
| linux-flashplugin |
linux-flashplugin -- multiple vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- critical vulnerabilities
|
| linux-flashplugin |
linux-flashplugin7 -- arbitrary code execution vulnerabilities
|
| linux-flashplugin |
linux-flashplugin -- arbitrary code execution vulnerability
|
| linux-flashplugin6 |
Macromedia flash player -- swf file handling arbitrary code
|
| linux-flashplugin7 |
Macromedia flash player -- swf file handling arbitrary code
|
| linux-flock |
mozilla -- multiple vulnerabilities
|
| linux-flock |
firefox -- javascript garbage collector vulnerability
|
| linux-flock |
mozilla -- multiple vulnerabilities
|
| linux-flock |
mozilla -- multiple vulnerabilities
|
| linux-flock |
firefox -- multiple remote unspecified memory corruption vulnerabilities
|
| linux-gdk-pixbuf |
gdk-pixbuf -- image decoding vulnerabilities
|
| linux-ibm-jdk |
jdk -- jar directory traversal vulnerability
|
| linux-ibm-jdk |
jdk/jre -- Security Vulnerability With Java Plugin
|
| linux-jdk |
jdk -- jar directory traversal vulnerability
|
| linux-jdk |
jdk/jre -- Security Vulnerability With Java Plugin
|
| linux-mozilla |
mozilla -- code execution via Quicktime media-link files
|
| linux-mozilla |
mozilla -- multiple vulnerabilities
|
| linux-mozilla |
mozilla -- multiple vulnerabilities
|
| linux-mozilla |
mozilla -- multiple vulnerabilities
|
| linux-mozilla |
mozilla -- multiple vulnerabilities
|
| linux-mozilla |
mozilla -- multiple vulnerabilities
|
| linux-mozilla |
firefox & mozilla -- multiple vulnerabilities
|
| linux-mozilla |
firefox & mozilla -- command line URL shell command injection
|
| linux-mozilla |
firefox & mozilla -- buffer overflow vulnerability
|
| linux-mozilla |
firefox & mozilla -- multiple vulnerabilities
|
| linux-mozilla |
mozilla -- privilege escalation via non-DOM property overrides
|
| linux-mozilla |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| linux-mozilla |
mozilla -- code execution via javascript: IconURL vulnerability
|
| linux-mozilla |
mozilla -- privilege escalation via DOM property overrides
|
| linux-mozilla |
mozilla -- code execution through javascript: favicons
|
| linux-mozilla |
mozilla -- javascript "lambda" replace exposes memory contents
|
| linux-mozilla |
mozilla -- heap buffer overflow in GIF image processing
|
| linux-mozilla |
mozilla -- insecure temporary directory vulnerability
|
| linux-mozilla |
mozilla -- arbitrary code execution vulnerability
|
| linux-mozilla |
web browsers -- window injection vulnerabilities
|
| linux-mozilla |
mozilla -- insecure permissions for some downloaded files
|
| linux-mozilla |
mozilla -- heap overflow in NNTP handler
|
| linux-mozilla |
mozilla -- scripting vulnerabilities
|
| linux-mozilla |
mozilla -- users may be lured into bypassing security dialogs
|
| linux-mozilla |
mozilla -- hostname spoofing bug
|
| linux-mozilla |
mozilla -- BMP decoder vulnerabilities
|
| linux-mozilla |
mozilla -- vCard stack buffer overflow
|
| linux-mozilla |
mozilla -- multiple heap buffer overflows
|
| linux-mozilla |
mozilla -- security icon spoofing
|
| linux-mozilla |
mozilla -- NULL bytes in FTP URLs
|
| linux-mozilla |
mozilla -- built-in CA certificates may be overridden
|
| linux-mozilla |
mozilla -- POP client heap overflow
|
| linux-mozilla |
mozilla -- SOAPParameter integer overflow
|
| linux-mozilla |
Mutiple browser frame injection vulnerability
|
| linux-mozilla |
libpng stack-based buffer overflow and other code concerns
|
| linux-mozilla |
libpng stack-based buffer overflow and other code concerns
|
| linux-mozilla |
Mozilla / Firefox user interface spoofing vulnerability
|
| linux-mozilla |
Mozilla certificate spoofing
|
| linux-mozilla |
Mozilla / Firefox user interface spoofing vulnerability
|
| linux-mozilla |
Mozilla certificate spoofing
|
| linux-mozilla-devel |
mozilla -- code execution via Quicktime media-link files
|
| linux-mozilla-devel |
mozilla -- multiple vulnerabilities
|
| linux-mozilla-devel |
mozilla -- multiple vulnerabilities
|
| linux-mozilla-devel |
mozilla -- multiple vulnerabilities
|
| linux-mozilla-devel |
mozilla -- multiple vulnerabilities
|
| linux-mozilla-devel |
mozilla -- multiple vulnerabilities
|
| linux-mozilla-devel |
firefox & mozilla -- multiple vulnerabilities
|
| linux-mozilla-devel |
firefox & mozilla -- command line URL shell command injection
|
| linux-mozilla-devel |
firefox & mozilla -- buffer overflow vulnerability
|
| linux-mozilla-devel |
firefox & mozilla -- multiple vulnerabilities
|
| linux-mozilla-devel |
mozilla -- privilege escalation via non-DOM property overrides
|
| linux-mozilla-devel |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| linux-mozilla-devel |
mozilla -- code execution via javascript: IconURL vulnerability
|
| linux-mozilla-devel |
mozilla -- privilege escalation via DOM property overrides
|
| linux-mozilla-devel |
mozilla -- code execution through javascript: favicons
|
| linux-mozilla-devel |
mozilla -- javascript "lambda" replace exposes memory contents
|
| linux-mozilla-devel |
mozilla -- heap buffer overflow in GIF image processing
|
| linux-mozilla-devel |
mozilla -- insecure temporary directory vulnerability
|
| linux-mozilla-devel |
mozilla -- arbitrary code execution vulnerability
|
| linux-mozilla-devel |
web browsers -- window injection vulnerabilities
|
| linux-mozilla-devel |
mozilla -- insecure permissions for some downloaded files
|
| linux-mozilla-devel |
mozilla -- heap overflow in NNTP handler
|
| linux-mozilla-devel |
mozilla -- scripting vulnerabilities
|
| linux-mozilla-devel |
mozilla -- users may be lured into bypassing security dialogs
|
| linux-mozilla-devel |
mozilla -- hostname spoofing bug
|
| linux-mozilla-devel |
mozilla -- BMP decoder vulnerabilities
|
| linux-mozilla-devel |
mozilla -- security icon spoofing
|
| linux-mozilla-devel |
mozilla -- NULL bytes in FTP URLs
|
| linux-mozilla-devel |
mozilla -- built-in CA certificates may be overridden
|
| linux-mozilla-devel |
mozilla -- SOAPParameter integer overflow
|
| linux-mozilla-devel |
Mutiple browser frame injection vulnerability
|
| linux-mozilla-devel |
libpng stack-based buffer overflow and other code concerns
|
| linux-mozilla-devel |
libpng stack-based buffer overflow and other code concerns
|
| linux-mozilla-devel |
Mozilla / Firefox user interface spoofing vulnerability
|
| linux-mozilla-devel |
Mozilla certificate spoofing
|
| linux-mozilla-devel |
Mozilla / Firefox user interface spoofing vulnerability
|
| linux-mozilla-devel |
Mozilla certificate spoofing
|
| linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| linux-mozillafirebird |
firefox & mozilla -- command line URL shell command injection
|
| linux-mozillafirebird |
firefox & mozilla -- buffer overflow vulnerability
|
| linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| linux-mozillafirebird |
mozilla -- privilege escalation via non-DOM property overrides
|
| linux-mozillafirebird |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| linux-mozillafirebird |
mozilla -- code execution via javascript: IconURL vulnerability
|
| linux-mozillafirebird |
mozilla -- privilege escalation via DOM property overrides
|
| linux-mozillafirebird |
mozilla -- code execution through javascript: favicons
|
| linux-mozillafirebird |
mozilla -- javascript "lambda" replace exposes memory contents
|
| linux-mozillafirebird |
mozilla -- heap buffer overflow in GIF image processing
|
| linux-mozillafirebird |
mozilla -- insecure temporary directory vulnerability
|
| linux-mozillafirebird |
mozilla -- arbitrary code execution vulnerability
|
| linux-mozillafirebird |
web browsers -- window injection vulnerabilities
|
| linux-mozillafirebird |
mozilla -- insecure permissions for some downloaded files
|
| linux-mozillafirebird |
mozilla -- scripting vulnerabilities
|
| linux-mozillafirebird |
mozilla -- users may be lured into bypassing security dialogs
|
| linux-mozillafirebird |
mozilla -- hostname spoofing bug
|
| linux-mozillafirebird |
mozilla -- BMP decoder vulnerabilities
|
| linux-mozillafirebird |
mozilla -- multiple heap buffer overflows
|
| linux-netscape |
firefox & mozilla -- multiple vulnerabilities
|
| linux-netscape |
firefox & mozilla -- command line URL shell command injection
|
| linux-netscape |
firefox & mozilla -- buffer overflow vulnerability
|
| linux-netscape |
firefox & mozilla -- multiple vulnerabilities
|
| linux-netscape |
mozilla -- privilege escalation via non-DOM property overrides
|
| linux-netscape |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| linux-netscape |
mozilla -- code execution via javascript: IconURL vulnerability
|
| linux-netscape |
mozilla -- privilege escalation via DOM property overrides
|
| linux-netscape |
mozilla -- code execution through javascript: favicons
|
| linux-netscape |
mozilla -- javascript "lambda" replace exposes memory contents
|
| linux-netscape |
mozilla -- heap buffer overflow in GIF image processing
|
| linux-netscape |
mozilla -- insecure temporary directory vulnerability
|
| linux-netscape |
mozilla -- arbitrary code execution vulnerability
|
| linux-netscape |
web browsers -- window injection vulnerabilities
|
| linux-netscape |
mozilla -- insecure permissions for some downloaded files
|
| linux-netscape |
mozilla -- heap overflow in NNTP handler
|
| linux-netscape |
mozilla -- scripting vulnerabilities
|
| linux-netscape |
mozilla -- users may be lured into bypassing security dialogs
|
| linux-netscape |
mozilla -- hostname spoofing bug
|
| linux-netscape |
mozilla -- BMP decoder vulnerabilities
|
| linux-netscape-communicator |
libpng stack-based buffer overflow and other code concerns
|
| linux-netscape-navigator |
libpng stack-based buffer overflow and other code concerns
|
| linux-netscape-{communicator,navigator} |
libpng stack-based buffer overflow and other code concerns
|
| linux-openmotif |
xpm -- image decoding vulnerabilities
|
| linux-opera |
opera -- moderately severe issue
|
| linux-opera |
opera -- execution of arbitrary code
|
| linux-opera |
opera -- execution of arbitrary code
|
| linux-opera |
opera -- execution of arbitrary code
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
Opera -- code injection vulnerability through broken frameset handling
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- Vulnerability in javascript handling
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- URL parsing heap overflow vulnerability
|
| linux-opera |
opera -- RSA Signature Forgery
|
| linux-opera |
opera -- multiple vulnerabilities
|
| linux-opera |
opera -- command line URL shell command injection
|
| linux-opera |
opera -- image dragging vulnerability
|
| linux-opera |
opera -- download dialog spoofing vulnerability
|
| linux-opera |
opera -- XMLHttpRequest security bypass
|
| linux-opera |
opera -- "javascript:" URL cross-site scripting vulnerability
|
| linux-opera |
opera -- redirection cross-site scripting vulnerability
|
| linux-opera |
opera -- "data:" URI handler spoofing vulnerability
|
| linux-opera |
opera -- kfmclient exec command execution vulnerability
|
| linux-opera |
web browsers -- window injection vulnerabilities
|
| linux-opera |
opera -- multiple vulnerabilities in Java implementation
|
| linux-opera |
Mutiple browser frame injection vulnerability
|
| linux-opera |
URI handler vulnerabilities in several browsers
|
| linux-opera-devel |
opera -- moderately severe issue
|
| linux-opera-devel |
opera -- execution of arbitrary code
|
| linux-opera-devel |
opera -- execution of arbitrary code
|
| linux-opera-devel |
opera -- execution of arbitrary code
|
| linux-opera-devel |
opera -- multiple vulnerabilities
|
| linux-pango |
pango -- integer overflow
|
| linux-phoenix |
firefox & mozilla -- multiple vulnerabilities
|
| linux-phoenix |
firefox & mozilla -- command line URL shell command injection
|
| linux-phoenix |
firefox & mozilla -- buffer overflow vulnerability
|
| linux-phoenix |
firefox & mozilla -- multiple vulnerabilities
|
| linux-phoenix |
mozilla -- privilege escalation via non-DOM property overrides
|
| linux-phoenix |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| linux-phoenix |
mozilla -- code execution via javascript: IconURL vulnerability
|
| linux-phoenix |
mozilla -- privilege escalation via DOM property overrides
|
| linux-phoenix |
mozilla -- code execution through javascript: favicons
|
| linux-phoenix |
mozilla -- javascript "lambda" replace exposes memory contents
|
| linux-phoenix |
mozilla -- heap buffer overflow in GIF image processing
|
| linux-phoenix |
mozilla -- insecure temporary directory vulnerability
|
| linux-phoenix |
mozilla -- arbitrary code execution vulnerability
|
| linux-phoenix |
web browsers -- window injection vulnerabilities
|
| linux-phoenix |
mozilla -- insecure permissions for some downloaded files
|
| linux-phoenix |
mozilla -- scripting vulnerabilities
|
| linux-phoenix |
mozilla -- users may be lured into bypassing security dialogs
|
| linux-phoenix |
mozilla -- hostname spoofing bug
|
| linux-phoenix |
mozilla -- BMP decoder vulnerabilities
|
| linux-png |
libpng stack-based buffer overflow and other code concerns
|
| linux-png |
libpng stack-based buffer overflow and other code concerns
|
| linux-png |
libpng denial-of-service
|
| linux-png |
libpng denial-of-service
|
| linux-png |
libpng row buffer overflow
|
| linux-realplayer |
linux-realplayer -- multiple vulnerabilities
|
| linux-realplayer |
linux-realplayer -- buffer overrun
|
| linux-realplayer |
linux-realplayer -- heap overflow
|
| linux-realplayer |
linux-realplayer -- RealText parsing heap overflow
|
| linux-realplayer |
realplayer -- remote heap overflow
|
| linux-realplayer |
realplayer -- arbitrary file deletion and other vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- Use-after-free in HTML Editor
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- heap-buffer overflow
|
| linux-seamonkey |
mozilla -- use after free in nsXBLDocumentInfo::ReadPrototypeBindings
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
Mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
nss/ca_root_nss -- fraudulent certificates issued by DigiNotar.nl
|
| linux-seamonkey |
Mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- update to HTTPS certificate blacklist
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- Heap buffer overflow mixing document.write and DOM insertion
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
firefox -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
firefox -- javascript garbage collector vulnerability
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
firefox -- multiple remote unspecified memory corruption vulnerabilities
|
| linux-seamonkey |
firefox -- OnUnload Javascript browser entrapment vulnerability
|
| linux-seamonkey |
mozilla -- code execution via Quicktime media-link files
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey-devel |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey-devel |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey-devel |
firefox -- multiple vulnerabilities
|
| linux-seamonkey-devel |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey-devel |
firefox -- javascript garbage collector vulnerability
|
| linux-seamonkey-devel |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey-devel |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey-devel |
firefox -- multiple remote unspecified memory corruption vulnerabilities
|
| linux-seamonkey-devel |
mozilla -- code execution via Quicktime media-link files
|
| linux-seamonkey-devel |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey-devel |
mozilla -- multiple vulnerabilities
|
| linux-seamonkey-devel |
mozilla -- multiple vulnerabilities
|
| linux-shoutcast |
shoutcast -- cross-site scripting, information exposure
|
| linux-sun-jdk |
java 7.x -- security manager bypass
|
| linux-sun-jdk |
Java 1.7 -- security manager bypass
|
| linux-sun-jdk |
jdk/jre -- Applet Caching May Allow Network Access Restrictions to be Circumvented
|
| linux-sun-jdk |
jdk -- jar directory traversal vulnerability
|
| linux-sun-jdk |
jdk/jre -- Security Vulnerability With Java Plugin
|
| linux-sun-jre |
java 7.x -- security manager bypass
|
| linux-sun-jre |
Java 1.7 -- security manager bypass
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- Use-after-free in HTML Editor
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- heap-buffer overflow
|
| linux-thunderbird |
mozilla -- use after free in nsXBLDocumentInfo::ReadPrototypeBindings
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
Mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
nss/ca_root_nss -- fraudulent certificates issued by DigiNotar.nl
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- Heap buffer overflow mixing document.write and DOM insertion
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
firefox -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
firefox -- javascript garbage collector vulnerability
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-thunderbird |
mozilla -- multiple vulnerabilities
|
| linux-tiff |
tiff -- Multiple integer overflows
|
| linux-tiff |
tiff -- buffer overflow vulnerability
|
| linux-tiff |
tiff -- buffer overflow vulnerability
|
| linux-tiff |
tiff -- divide-by-zero denial-of-service
|
| linux-tiff |
tiff -- tiffdump integer overflow vulnerability
|
| linux-tiff |
tiff -- directory entry count integer overflow vulnerability
|
| linux-tiff |
tiff -- multiple integer overflows
|
| linux-tiff |
tiff -- RLE decoder heap overflows
|
| linux-unace |
unace -- multiple vulnerabilities
|
| linux_base |
linux_base -- vulnerabilities in Red Hat 7.1 libraries
|
| linux_base |
xpm -- image decoding vulnerabilities
|
| linux_base-suse |
zlib -- buffer overflow vulnerability
|
| linux_base-suse |
kdebase -- Kate backup file permission leak
|
| liveMedia |
liveMedia -- DoS vulnerability
|
| lsh |
lsh -- multiple vulnerabilities
|
| lukemftpd |
tnftpd -- remotely exploitable vulnerability
|
| lxr |
lxr -- multiple XSS vulnerabilities
|
| lynx |
lynx -- remote buffer overflow
|
| lynx-ssl |
lynx -- remote buffer overflow
|
| mahara |
mahara -- sql injection vulnerability
|
| mail-notification |
mail-notification -- denial-of-service vulnerability
|
| mailman |
mailman -- XSS vulnerability
|
| mailman |
Mailman -- cross-site scripting in web interface
|
| mailman |
mailman -- script insertion vulnerability
|
| mailman |
mailman -- Multiple Vulnerabilities
|
| mailman |
mailman -- Private Archive Script Cross-Site Scripting
|
| mailman |
mailman -- generated passwords are poor quality
|
| mailman |
mailman -- password disclosure
|
| mailman |
mailman -- directory traversal vulnerability
|
| mailman |
mailman denial-of-service vulnerability in MailCommandHandler
|
| mailman |
mailman XSS in admin script
|
| mailman |
mailman XSS in create script
|
| mailman |
mailman XSS in user options page
|
| mailman |
mailman allows 3rd parties to retrieve member passwords
|
| mailman-with-htdig |
mailman -- script insertion vulnerability
|
| mailman-with-htdig |
mailman -- Multiple Vulnerabilities
|
| mailman-with-htdig |
mailman -- Private Archive Script Cross-Site Scripting
|
| mambo |
mambo -- multiple SQL injection vulnerabilities
|
| mambo |
mambo -- SQL injection vulnerabilities
|
| mambo |
mambo -- "register_globals" emulation layer overwrite vulnerability
|
| mambo |
mambo -- multiple vulnerabilities
|
| mantis |
mantis -- multiple vulnerabilities
|
| mantis |
XSS issue in MantisBT
|
| mantis |
mantis -- php code execution vulnerability
|
| mantis |
mantis -- multiple vulnerabilities
|
| mantis |
mantis -- session hijacking vulnerability
|
| mantis |
mantis -- "view_filters_page.php" cross site scripting vulnerability
|
| mantis |
mantis -- "t_core_path" file inclusion vulnerability
|
| mantis |
mantis -- "view_filters_page.php" cross-site scripting vulnerability
|
| maradns |
maradns -- denial of service when resolving a long DNS hostname
|
| maradns |
maradns -- CNAME record resource rotation denial of service
|
| mariadb-server |
mysql/mariadb/percona server -- multiple vulnerabilities
|
| mathopd |
mathopd -- directory traversal vulnerability
|
| mathopd |
Mathopd buffer overflow
|
| mc |
mc -- multiple vulnerabilities
|
| mc |
gnomevfs -- unsafe URI handling
|
| mc |
Midnight Commander buffer overflows, format string bugs, and insecure temporary file handling
|
| mc |
Midnight Commander buffer overflow during symlink resolution
|
| mcweject |
mcweject -- exploitable buffer overflow
|
| mDNSResponder |
mDNSResponder -- corrupted stack crash when parsing bad resolv.conf
|
| mediawiki |
mediawiki -- multiple vulnerabilities
|
| mediawiki |
mediawiki -- multiple vulnerabilities
|
| mediawiki |
mediawiki -- multiple vulnerabilities
|
| mediawiki |
mediawiki -- Clickjacking vulnerabilities
|
| mediawiki |
mediawiki -- two security vulnerabilities
|
| mediawiki |
mediawiki -- authenticated CSRF vulnerability
|
| mediawiki |
mediawiki -- multiple vulnerabilities
|
| mediawiki |
mediawiki -- cross site scripting vulnerability
|
| mediawiki |
mediawiki -- hardcoded placeholder string security bypass vulnerability
|
| mediawiki |
mediawiki -- cross site scripting vulnerability
|
| memcached |
memcached -- memcached stats maps Information Disclosure Weakness
|
| metamail |
metamail format string bugs and buffer overflows
|
| mgetty+sendfax |
mgetty+sendfax -- symlink attack via insecure temporary files
|
| milter-bogom |
milter-bogom -- headerless message crash
|
| mkbold-mkitalic |
mkbold-mkitalic -- format string vulnerability
|
| mksh |
mksh -- TTY attachment privilege escalation
|
| mnemo |
mnemo -- Cross site scripting vulnerabilities in several of the notepad name and note data fields
|
| mnogosearch |
mnGoSearch buffer overflow in UdmDocToTextBuf()
|
| mod_access_referer |
mod_access_referer -- null pointer dereference vulnerability
|
| mod_dav |
mod_dav -- lock related denial-of-service
|
| mod_dosevasive20 |
mod_dosevasive -- insecure temporary file creation
|
| mod_frontpage13 |
frontpage -- cross site scripting vulnerability
|
| mod_frontpage20 |
frontpage -- cross site scripting vulnerability
|
| mod_frontpage21 |
frontpage -- cross site scripting vulnerability
|
| mod_frontpage22 |
frontpage -- cross site scripting vulnerability
|
| mod_jk |
mod_jk -- information disclosure
|
| mod_jk |
mod_jk -- long URL stack overflow vulnerability
|
| mod_jk-ap2 |
mod_jk -- information disclosure
|
| mod_jk-ap2 |
mod_jk -- long URL stack overflow vulnerability
|
| mod_pagespeed |
mod_pagespeed -- multiple vulnerabilities
|
| mod_perl |
mod_perl -- cross-site scripting
|
| mod_perl |
mod_perl -- remote DoS in PATH_INFO parsing
|
| mod_perl2 |
mod_perl -- cross-site scripting
|
| mod_perl2 |
mod_perl -- remote DoS in PATH_INFO parsing
|
| mod_php |
php -- multiple vulnerabilities
|
| mod_php |
php -- multiple vulnerabilities
|
| mod_php |
PHP -- multiple vulnerabilities
|
| mod_php |
php -- readfile() DoS vulnerability
|
| mod_php |
php -- multiple vulnerabilities
|
| mod_php |
php -- php_variables memory disclosure
|
| mod_php4 |
php -- multiple vulnerabilities
|
| mod_php4 |
php -- multiple vulnerabilities
|
| mod_php4 |
php -- open_basedir Race Condition Vulnerability
|
| mod_php4 |
php -- multiple vulnerabilities
|
| mod_php4 |
PHP -- multiple vulnerabilities
|
| mod_php4 |
php -- readfile() DoS vulnerability
|
| mod_php4 |
php -- multiple vulnerabilities
|
| mod_php4 |
php -- php_variables memory disclosure
|
| mod_php4 |
php -- strip_tags cross-site scripting vulnerability
|
| mod_php4 |
php -- memory_limit related vulnerability
|
| mod_php4 |
php -- vulnerability in RFC 1867 file upload processing
|
| mod_php4 |
PHP memory_limit and strip_tags() vulnerabilities
|
| mod_php4-twig |
php -- multiple vulnerabilities
|
| mod_php4-twig |
php -- multiple vulnerabilities
|
| mod_php4-twig |
PHP -- multiple vulnerabilities
|
| mod_php4-twig |
php -- readfile() DoS vulnerability
|
| mod_php4-twig |
php -- multiple vulnerabilities
|
| mod_php4-twig |
php -- php_variables memory disclosure
|
| mod_php4-twig |
php -- strip_tags cross-site scripting vulnerability
|
| mod_php4-twig |
php -- memory_limit related vulnerability
|
| mod_php4-twig |
PHP memory_limit and strip_tags() vulnerabilities
|
| mod_php5 |
php -- multiple vulnerabilities
|
| mod_php5 |
php -- multiple vulnerabilities
|
| mod_php5 |
php -- _ecalloc Integer Overflow Vulnerability
|
| mod_php5 |
php -- open_basedir Race Condition Vulnerability
|
| mod_php5 |
php -- multiple vulnerabilities
|
| mod_php5 |
php -- multiple vulnerabilities
|
| mod_php5 |
php -- php_variables memory disclosure
|
| mod_php5 |
php -- strip_tags cross-site scripting vulnerability
|
| mod_php5 |
php -- memory_limit related vulnerability
|
| mod_php5 |
php -- vulnerability in RFC 1867 file upload processing
|
| mod_php5 |
PHP memory_limit and strip_tags() vulnerabilities
|
| mod_pubcookie |
mod_pubcookie -- cross site scripting vulnerability
|
| mod_python |
mod_python -- information leakage vulnerability
|
| mod_python |
mod_python denial-of-service vulnerability in parse_qs
|
| mod_security |
ModSecurity -- XML External Entity Processing Vulnerability
|
| mod_security |
ModSecurity for Apache 2.x remote off-by-one overflow
|
| moinmoin |
moinmoin -- Multiple vulnerabilities
|
| moinmoin |
moinmoin -- cross-site scripting via RST parser
|
| moinmoin |
moinmoin -- wrong processing of group membership
|
| moinmoin |
MoinMoin -- cross-site scripting vulnerabilities
|
| moinmoin |
moinmoin -- cross-site scripting vulnerabilities
|
| moinmoin |
moinmoin -- multiple cross site scripting vulnerabilities
|
| moinmoin |
moinmoin -- multiple cross site scripting vulnerabilities
|
| moinmoin |
moinmoin -- superuser privilege escalation
|
| moinmoin |
moinmoin -- multiple vulnerabilities
|
| moinmoin |
moinmoin -- ACL group bypass
|
| moinmoin |
MoinMoin administrative group name privilege escalation vulnerability
|
| monkey |
monkey -- improper input validation vulnerability
|
| mono |
mono -- XML signature HMAC truncation spoofing
|
| mono |
mono -- "System.CodeDom.Compiler" Insecure Temporary Creation
|
| monotone |
monotone -- remote denial of service in default setup
|
| moodle |
moodle -- multiple vulnerabilities
|
| moodle |
moodle -- multiple vulnerabilities
|
| movemail |
emacs -- movemail format string vulnerability
|
| mozilla |
mozilla -- code execution via Quicktime media-link files
|
| mozilla |
mozilla -- multiple vulnerabilities
|
| mozilla |
mozilla -- multiple vulnerabilities
|
| mozilla |
mozilla -- multiple vulnerabilities
|
| mozilla |
mozilla -- multiple vulnerabilities
|
| mozilla |
mozilla -- multiple vulnerabilities
|
| mozilla |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla |
firefox & mozilla -- command line URL shell command injection
|
| mozilla |
firefox & mozilla -- buffer overflow vulnerability
|
| mozilla |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla |
mozilla -- privilege escalation via non-DOM property overrides
|
| mozilla |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| mozilla |
mozilla -- code execution via javascript: IconURL vulnerability
|
| mozilla |
mozilla -- privilege escalation via DOM property overrides
|
| mozilla |
mozilla -- code execution through javascript: favicons
|
| mozilla |
mozilla -- javascript "lambda" replace exposes memory contents
|
| mozilla |
mozilla -- heap buffer overflow in GIF image processing
|
| mozilla |
mozilla -- insecure temporary directory vulnerability
|
| mozilla |
mozilla -- arbitrary code execution vulnerability
|
| mozilla |
web browsers -- window injection vulnerabilities
|
| mozilla |
mozilla -- insecure permissions for some downloaded files
|
| mozilla |
mozilla -- heap overflow in NNTP handler
|
| mozilla |
mozilla -- scripting vulnerabilities
|
| mozilla |
mozilla -- users may be lured into bypassing security dialogs
|
| mozilla |
mozilla -- hostname spoofing bug
|
| mozilla |
mozilla -- BMP decoder vulnerabilities
|
| mozilla |
mozilla -- vCard stack buffer overflow
|
| mozilla |
mozilla -- multiple heap buffer overflows
|
| mozilla |
mozilla -- security icon spoofing
|
| mozilla |
mozilla -- NULL bytes in FTP URLs
|
| mozilla |
mozilla -- automated file upload
|
| mozilla |
mozilla -- built-in CA certificates may be overridden
|
| mozilla |
mozilla -- POP client heap overflow
|
| mozilla |
mozilla -- SOAPParameter integer overflow
|
| mozilla |
Mutiple browser frame injection vulnerability
|
| mozilla |
libpng stack-based buffer overflow and other code concerns
|
| mozilla |
libpng stack-based buffer overflow and other code concerns
|
| mozilla |
Mozilla / Firefox user interface spoofing vulnerability
|
| mozilla |
Mozilla certificate spoofing
|
| mozilla |
Mozilla / Firefox user interface spoofing vulnerability
|
| mozilla |
Mozilla certificate spoofing
|
| mozilla+ipv6 |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla+ipv6 |
firefox & mozilla -- command line URL shell command injection
|
| mozilla+ipv6 |
firefox & mozilla -- buffer overflow vulnerability
|
| mozilla+ipv6 |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla+ipv6 |
mozilla -- privilege escalation via non-DOM property overrides
|
| mozilla+ipv6 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| mozilla+ipv6 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| mozilla+ipv6 |
mozilla -- privilege escalation via DOM property overrides
|
| mozilla+ipv6 |
mozilla -- code execution through javascript: favicons
|
| mozilla+ipv6 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| mozilla+ipv6 |
mozilla -- heap buffer overflow in GIF image processing
|
| mozilla+ipv6 |
mozilla -- insecure temporary directory vulnerability
|
| mozilla+ipv6 |
mozilla -- arbitrary code execution vulnerability
|
| mozilla+ipv6 |
web browsers -- window injection vulnerabilities
|
| mozilla+ipv6 |
mozilla -- insecure permissions for some downloaded files
|
| mozilla+ipv6 |
mozilla -- heap overflow in NNTP handler
|
| mozilla+ipv6 |
mozilla -- scripting vulnerabilities
|
| mozilla+ipv6 |
mozilla -- users may be lured into bypassing security dialogs
|
| mozilla+ipv6 |
mozilla -- hostname spoofing bug
|
| mozilla+ipv6 |
mozilla -- BMP decoder vulnerabilities
|
| mozilla-embedded |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-embedded |
firefox & mozilla -- command line URL shell command injection
|
| mozilla-embedded |
firefox & mozilla -- buffer overflow vulnerability
|
| mozilla-embedded |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-embedded |
mozilla -- privilege escalation via non-DOM property overrides
|
| mozilla-embedded |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| mozilla-embedded |
mozilla -- code execution via javascript: IconURL vulnerability
|
| mozilla-embedded |
mozilla -- privilege escalation via DOM property overrides
|
| mozilla-embedded |
mozilla -- code execution through javascript: favicons
|
| mozilla-embedded |
mozilla -- javascript "lambda" replace exposes memory contents
|
| mozilla-embedded |
mozilla -- heap buffer overflow in GIF image processing
|
| mozilla-embedded |
mozilla -- insecure temporary directory vulnerability
|
| mozilla-embedded |
mozilla -- arbitrary code execution vulnerability
|
| mozilla-embedded |
web browsers -- window injection vulnerabilities
|
| mozilla-embedded |
mozilla -- insecure permissions for some downloaded files
|
| mozilla-embedded |
mozilla -- heap overflow in NNTP handler
|
| mozilla-embedded |
mozilla -- scripting vulnerabilities
|
| mozilla-embedded |
mozilla -- users may be lured into bypassing security dialogs
|
| mozilla-embedded |
mozilla -- hostname spoofing bug
|
| mozilla-embedded |
mozilla -- BMP decoder vulnerabilities
|
| mozilla-firebird |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-firebird |
firefox & mozilla -- command line URL shell command injection
|
| mozilla-firebird |
firefox & mozilla -- buffer overflow vulnerability
|
| mozilla-firebird |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-firebird |
mozilla -- privilege escalation via non-DOM property overrides
|
| mozilla-firebird |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| mozilla-firebird |
mozilla -- code execution via javascript: IconURL vulnerability
|
| mozilla-firebird |
mozilla -- privilege escalation via DOM property overrides
|
| mozilla-firebird |
mozilla -- code execution through javascript: favicons
|
| mozilla-firebird |
mozilla -- javascript "lambda" replace exposes memory contents
|
| mozilla-firebird |
mozilla -- heap buffer overflow in GIF image processing
|
| mozilla-firebird |
mozilla -- insecure temporary directory vulnerability
|
| mozilla-firebird |
mozilla -- arbitrary code execution vulnerability
|
| mozilla-firebird |
web browsers -- window injection vulnerabilities
|
| mozilla-firebird |
mozilla -- insecure permissions for some downloaded files
|
| mozilla-firebird |
mozilla -- scripting vulnerabilities
|
| mozilla-firebird |
mozilla -- users may be lured into bypassing security dialogs
|
| mozilla-firebird |
mozilla -- hostname spoofing bug
|
| mozilla-firebird |
mozilla -- BMP decoder vulnerabilities
|
| mozilla-gtk |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-gtk |
firefox & mozilla -- command line URL shell command injection
|
| mozilla-gtk |
firefox & mozilla -- buffer overflow vulnerability
|
| mozilla-gtk |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-gtk |
mozilla -- privilege escalation via non-DOM property overrides
|
| mozilla-gtk |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| mozilla-gtk |
mozilla -- code execution via javascript: IconURL vulnerability
|
| mozilla-gtk |
mozilla -- privilege escalation via DOM property overrides
|
| mozilla-gtk |
mozilla -- code execution through javascript: favicons
|
| mozilla-gtk |
mozilla -- javascript "lambda" replace exposes memory contents
|
| mozilla-gtk |
mozilla -- heap buffer overflow in GIF image processing
|
| mozilla-gtk |
mozilla -- insecure temporary directory vulnerability
|
| mozilla-gtk |
mozilla -- arbitrary code execution vulnerability
|
| mozilla-gtk |
web browsers -- window injection vulnerabilities
|
| mozilla-gtk |
mozilla -- insecure permissions for some downloaded files
|
| mozilla-gtk |
mozilla -- heap overflow in NNTP handler
|
| mozilla-gtk |
mozilla -- scripting vulnerabilities
|
| mozilla-gtk |
mozilla -- users may be lured into bypassing security dialogs
|
| mozilla-gtk |
mozilla -- hostname spoofing bug
|
| mozilla-gtk |
mozilla -- BMP decoder vulnerabilities
|
| mozilla-gtk1 |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-gtk1 |
firefox & mozilla -- command line URL shell command injection
|
| mozilla-gtk1 |
firefox & mozilla -- buffer overflow vulnerability
|
| mozilla-gtk1 |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-gtk1 |
mozilla -- privilege escalation via non-DOM property overrides
|
| mozilla-gtk1 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| mozilla-gtk1 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| mozilla-gtk1 |
mozilla -- privilege escalation via DOM property overrides
|
| mozilla-gtk1 |
mozilla -- code execution through javascript: favicons
|
| mozilla-gtk1 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| mozilla-gtk1 |
mozilla -- heap buffer overflow in GIF image processing
|
| mozilla-gtk1 |
mozilla -- insecure temporary directory vulnerability
|
| mozilla-gtk1 |
mozilla -- arbitrary code execution vulnerability
|
| mozilla-gtk1 |
web browsers -- window injection vulnerabilities
|
| mozilla-gtk1 |
mozilla -- insecure permissions for some downloaded files
|
| mozilla-gtk1 |
mozilla -- heap overflow in NNTP handler
|
| mozilla-gtk1 |
mozilla -- scripting vulnerabilities
|
| mozilla-gtk1 |
mozilla -- users may be lured into bypassing security dialogs
|
| mozilla-gtk1 |
mozilla -- hostname spoofing bug
|
| mozilla-gtk1 |
mozilla -- BMP decoder vulnerabilities
|
| mozilla-gtk1 |
mozilla -- vCard stack buffer overflow
|
| mozilla-gtk1 |
mozilla -- multiple heap buffer overflows
|
| mozilla-gtk1 |
mozilla -- security icon spoofing
|
| mozilla-gtk1 |
mozilla -- NULL bytes in FTP URLs
|
| mozilla-gtk1 |
mozilla -- automated file upload
|
| mozilla-gtk1 |
mozilla -- built-in CA certificates may be overridden
|
| mozilla-gtk1 |
mozilla -- SOAPParameter integer overflow
|
| mozilla-gtk1 |
Mutiple browser frame injection vulnerability
|
| mozilla-gtk1 |
libpng stack-based buffer overflow and other code concerns
|
| mozilla-gtk1 |
libpng stack-based buffer overflow and other code concerns
|
| mozilla-gtk1 |
Mozilla / Firefox user interface spoofing vulnerability
|
| mozilla-gtk1 |
Mozilla certificate spoofing
|
| mozilla-gtk1 |
Mozilla / Firefox user interface spoofing vulnerability
|
| mozilla-gtk1 |
Mozilla certificate spoofing
|
| mozilla-gtk2 |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-gtk2 |
firefox & mozilla -- command line URL shell command injection
|
| mozilla-gtk2 |
firefox & mozilla -- buffer overflow vulnerability
|
| mozilla-gtk2 |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-gtk2 |
mozilla -- privilege escalation via non-DOM property overrides
|
| mozilla-gtk2 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| mozilla-gtk2 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| mozilla-gtk2 |
mozilla -- privilege escalation via DOM property overrides
|
| mozilla-gtk2 |
mozilla -- code execution through javascript: favicons
|
| mozilla-gtk2 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| mozilla-gtk2 |
mozilla -- heap buffer overflow in GIF image processing
|
| mozilla-gtk2 |
mozilla -- insecure temporary directory vulnerability
|
| mozilla-gtk2 |
mozilla -- arbitrary code execution vulnerability
|
| mozilla-gtk2 |
web browsers -- window injection vulnerabilities
|
| mozilla-gtk2 |
mozilla -- insecure permissions for some downloaded files
|
| mozilla-gtk2 |
mozilla -- heap overflow in NNTP handler
|
| mozilla-gtk2 |
mozilla -- scripting vulnerabilities
|
| mozilla-gtk2 |
mozilla -- users may be lured into bypassing security dialogs
|
| mozilla-gtk2 |
mozilla -- hostname spoofing bug
|
| mozilla-gtk2 |
mozilla -- BMP decoder vulnerabilities
|
| mozilla-thunderbird |
mozilla -- multiple vulnerabilities
|
| mozilla-thunderbird |
mozilla -- multiple vulnerabilities
|
| mozilla-thunderbird |
mozilla -- multiple vulnerabilities
|
| mozilla-thunderbird |
mozilla -- multiple vulnerabilities
|
| mozilla-thunderbird |
mozilla -- multiple vulnerabilities
|
| mozilla-thunderbird |
thunderbird -- javascript execution
|
| mozilla-thunderbird |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-thunderbird |
firefox & mozilla -- command line URL shell command injection
|
| mozilla-thunderbird |
firefox & mozilla -- buffer overflow vulnerability
|
| mozilla-thunderbird |
firefox & mozilla -- multiple vulnerabilities
|
| mozilla-thunderbird |
mozilla -- privilege escalation via non-DOM property overrides
|
| mozilla-thunderbird |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| mozilla-thunderbird |
mozilla -- code execution via javascript: IconURL vulnerability
|
| mozilla-thunderbird |
mozilla -- privilege escalation via DOM property overrides
|
| mozilla-thunderbird |
mozilla -- code execution through javascript: favicons
|
| mozilla-thunderbird |
mozilla -- javascript "lambda" replace exposes memory contents
|
| mozilla-thunderbird |
mozilla -- heap buffer overflow in GIF image processing
|
| mozilla-thunderbird |
mozilla -- insecure temporary directory vulnerability
|
| mozilla-thunderbird |
mozilla -- arbitrary code execution vulnerability
|
| mozilla-thunderbird |
web browsers -- window injection vulnerabilities
|
| mozilla-thunderbird |
mozilla -- insecure permissions for some downloaded files
|
| mozilla-thunderbird |
mozilla -- scripting vulnerabilities
|
| mozilla-thunderbird |
mozilla -- users may be lured into bypassing security dialogs
|
| mozilla-thunderbird |
mozilla -- hostname spoofing bug
|
| mozilla-thunderbird |
mozilla -- BMP decoder vulnerabilities
|
| mpack |
mpack -- Information disclosure
|
| mpg123 |
mpg123 -- buffer overflow vulnerability
|
| mpg123 |
mpg123 -- playlist processing buffer overflow vulnerability
|
| mpg123 |
mpg123 -- buffer overflow in URL handling
|
| mpg123 |
mpg123 buffer overflow
|
| mpg123 |
mpg123 vulnerabilities
|
| mpg123 |
mpg123 layer 2 decoder buffer overflow
|
| mpg123-esound |
mpg123 -- buffer overflow vulnerability
|
| mpg123-esound |
mpg123 -- playlist processing buffer overflow vulnerability
|
| mpg123-esound |
mpg123 -- buffer overflow in URL handling
|
| mpg123-esound |
mpg123 buffer overflow
|
| mpg123-esound |
mpg123 vulnerabilities
|
| mpg123-nas |
mpg123 -- buffer overflow vulnerability
|
| mpg123-nas |
mpg123 -- playlist processing buffer overflow vulnerability
|
| mpg123-nas |
mpg123 -- buffer overflow in URL handling
|
| mpg123-nas |
mpg123 buffer overflow
|
| mpg123-nas |
mpg123 vulnerabilities
|
| mplayer |
mplayer -- vulnerability in STR files processor
|
| mplayer |
mplayer -- twinvq processing buffer overflow vulnerability
|
| mplayer |
mplayer -- multiple integer overflows
|
| mplayer |
mplayer -- multiple vulnerabilities
|
| mplayer |
mplayer -- cddb stack overflow
|
| mplayer |
mplayer -- DMO File Parsing Buffer Overflow Vulnerability
|
| mplayer |
mplayer -- buffer overflow in the code for RealMedia RTSP streams.
|
| mplayer |
mplayer -- Multiple integer overflows
|
| mplayer |
mplayer -- heap overflow in the ASF demuxer
|
| mplayer |
mplayer & libxine -- MMS and Real RTSP buffer overflow vulnerabilities
|
| mplayer |
libxine -- multiple buffer overflows in RTSP
|
| mplayer |
mplayer -- multiple vulnerabilities
|
| mplayer |
mplayer heap overflow in http requests
|
| mplayer-esound |
mplayer -- vulnerability in STR files processor
|
| mplayer-esound |
mplayer -- twinvq processing buffer overflow vulnerability
|
| mplayer-esound |
mplayer -- multiple integer overflows
|
| mplayer-esound |
mplayer -- multiple vulnerabilities
|
| mplayer-esound |
mplayer -- cddb stack overflow
|
| mplayer-esound |
mplayer -- DMO File Parsing Buffer Overflow Vulnerability
|
| mplayer-esound |
mplayer -- buffer overflow in the code for RealMedia RTSP streams.
|
| mplayer-esound |
mplayer -- Multiple integer overflows
|
| mplayer-esound |
mplayer -- heap overflow in the ASF demuxer
|
| mplayer-esound |
mplayer & libxine -- MMS and Real RTSP buffer overflow vulnerabilities
|
| mplayer-esound |
libxine -- multiple buffer overflows in RTSP
|
| mplayer-esound |
mplayer -- multiple vulnerabilities
|
| mplayer-esound |
mplayer heap overflow in http requests
|
| mplayer-gtk |
mplayer -- vulnerability in STR files processor
|
| mplayer-gtk |
mplayer -- twinvq processing buffer overflow vulnerability
|
| mplayer-gtk |
mplayer -- multiple integer overflows
|
| mplayer-gtk |
mplayer -- multiple vulnerabilities
|
| mplayer-gtk |
mplayer -- cddb stack overflow
|
| mplayer-gtk |
mplayer -- DMO File Parsing Buffer Overflow Vulnerability
|
| mplayer-gtk |
mplayer -- buffer overflow in the code for RealMedia RTSP streams.
|
| mplayer-gtk |
mplayer -- Multiple integer overflows
|
| mplayer-gtk |
mplayer -- heap overflow in the ASF demuxer
|
| mplayer-gtk |
mplayer & libxine -- MMS and Real RTSP buffer overflow vulnerabilities
|
| mplayer-gtk |
libxine -- multiple buffer overflows in RTSP
|
| mplayer-gtk |
mplayer -- multiple vulnerabilities
|
| mplayer-gtk |
mplayer heap overflow in http requests
|
| mplayer-gtk-esound |
mplayer -- vulnerability in STR files processor
|
| mplayer-gtk-esound |
mplayer -- twinvq processing buffer overflow vulnerability
|
| mplayer-gtk-esound |
mplayer -- multiple integer overflows
|
| mplayer-gtk-esound |
mplayer -- multiple vulnerabilities
|
| mplayer-gtk-esound |
mplayer -- cddb stack overflow
|
| mplayer-gtk-esound |
mplayer -- DMO File Parsing Buffer Overflow Vulnerability
|
| mplayer-gtk-esound |
mplayer -- buffer overflow in the code for RealMedia RTSP streams.
|
| mplayer-gtk-esound |
mplayer -- Multiple integer overflows
|
| mplayer-gtk-esound |
mplayer -- heap overflow in the ASF demuxer
|
| mplayer-gtk-esound |
mplayer & libxine -- MMS and Real RTSP buffer overflow vulnerabilities
|
| mplayer-gtk-esound |
libxine -- multiple buffer overflows in RTSP
|
| mplayer-gtk-esound |
mplayer -- multiple vulnerabilities
|
| mplayer-gtk-esound |
mplayer heap overflow in http requests
|
| mplayer-gtk2 |
mplayer -- vulnerability in STR files processor
|
| mplayer-gtk2 |
mplayer -- twinvq processing buffer overflow vulnerability
|
| mplayer-gtk2 |
mplayer -- multiple integer overflows
|
| mplayer-gtk2 |
mplayer -- multiple vulnerabilities
|
| mplayer-gtk2 |
mplayer -- cddb stack overflow
|
| mplayer-gtk2 |
mplayer -- DMO File Parsing Buffer Overflow Vulnerability
|
| mplayer-gtk2 |
mplayer -- buffer overflow in the code for RealMedia RTSP streams.
|
| mplayer-gtk2 |
mplayer -- Multiple integer overflows
|
| mplayer-gtk2 |
mplayer & libxine -- MMS and Real RTSP buffer overflow vulnerabilities
|
| mplayer-gtk2 |
libxine -- multiple buffer overflows in RTSP
|
| mplayer-gtk2 |
mplayer -- multiple vulnerabilities
|
| mplayer-gtk2-esound |
mplayer -- vulnerability in STR files processor
|
| mplayer-gtk2-esound |
mplayer -- twinvq processing buffer overflow vulnerability
|
| mplayer-gtk2-esound |
mplayer -- multiple integer overflows
|
| mplayer-gtk2-esound |
mplayer -- multiple vulnerabilities
|
| mplayer-gtk2-esound |
mplayer -- cddb stack overflow
|
| mplayer-gtk2-esound |
mplayer -- DMO File Parsing Buffer Overflow Vulnerability
|
| mplayer-gtk2-esound |
mplayer -- buffer overflow in the code for RealMedia RTSP streams.
|
| mplayer-gtk2-esound |
mplayer -- Multiple integer overflows
|
| mplayer-gtk2-esound |
mplayer & libxine -- MMS and Real RTSP buffer overflow vulnerabilities
|
| mplayer-gtk2-esound |
libxine -- multiple buffer overflows in RTSP
|
| mplayer-gtk2-esound |
mplayer -- multiple vulnerabilities
|
| mplayer{,-gtk}{,-esound} |
MPlayer remotely exploitable buffer overflow in the ASX parser
|
| mplayer{,-gtk}{,-esound} |
MPlayer remotely exploitable buffer overflow in the HTTP parser
|
| MT |
MT -- Search Unspecified XSS
|
| mt-daapd |
mt-daapd -- integer overflow
|
| mt-daapd |
mt-daapd -- denial of service vulnerability
|
| mule-common |
emacs -- movemail format string vulnerability
|
| multi-gnome-terminal |
Possible information leak in multi-gnome-terminal
|
| mupad |
xpm -- image decoding vulnerabilities
|
| mupdf |
mupdf -- Remote System Access
|
| mutt |
mutt -- buffer overflow vulnerability
|
| mutt |
mutt -- Remote Buffer Overflow Vulnerability
|
| mutt |
Buffer overflow in Mutt 1.4
|
| mutt-devel |
mutt-devel -- failure to check SMTP TLS server certificate
|
| mutt-devel |
mutt -- Remote Buffer Overflow Vulnerability
|
| mutt-devel-lite |
mutt -- Remote Buffer Overflow Vulnerability
|
| mutt-lite |
mutt -- buffer overflow vulnerability
|
| mutt-lite |
mutt -- Remote Buffer Overflow Vulnerability
|
| mutt-ng |
mutt -- Remote Buffer Overflow Vulnerability
|
| mybb |
mybb -- multiple vulnerabilities
|
| mysql-client |
mysql -- command line client input validation vulnerability
|
| mysql-client |
mysql -- mysql_real_connect buffer overflow vulnerability
|
| mysql-client |
mysql -- heap buffer overflow with prepared statements
|
| mysql-client |
MySQL insecure temporary file creation (mysqlbug)
|
| mysql-scripts |
mysql-scripts -- mysqlaccess insecure temporary file creation
|
| mysql-scripts |
mysql -- mysqlhotcopy insecure temporary file creation
|
| mysql-server |
mysql/mariadb/percona server -- multiple vulnerabilities
|
| mysql-server |
mysql -- empty bit-string literal denial of service
|
| mysql-server |
mysql -- privilege escalation and overwrite of the system table information
|
| mysql-server |
mysql -- remote dos via malformed password packet
|
| mysql-server |
mysql -- renaming of arbitrary tables by authenticated users
|
| mysql-server |
mysql -- MyISAM table privileges security bypass vulnerability for symlinked paths
|
| mysql-server |
mysql -- MyISAM table privileges security bypass vulnerability
|
| mysql-server |
mysql -- database suid privilege escalation
|
| mysql-server |
mysql -- database "case-sensitive" privilege escalation
|
| mysql-server |
mysql -- format string vulnerability
|
| mysql-server |
MySQL -- SQL-injection security vulnerability
|
| mysql-server |
MySQL -- Information Disclosure and Buffer Overflow Vulnerabilities
|
| mysql-server |
mysql50-server -- COM_TABLE_DUMP arbitrary code execution
|
| mysql-server |
mysql-server -- insecure temporary file creation
|
| mysql-server |
mysql-server -- multiple remote vulnerabilities
|
| mysql-server |
mysql -- GRANT access restriction problem
|
| mysql-server |
mysql -- ALTER MERGE denial of service vulnerability
|
| mysql-server |
mysql -- FTS request denial of service vulnerability
|
| mysql-server |
mysql -- mysql_real_connect buffer overflow vulnerability
|
| mysql-server |
mysql -- erroneous access restrictions applied to table renames
|
| mysql-server |
mysql -- heap buffer overflow with prepared statements
|
| mysql-server |
MySQL authentication bypass / buffer overflow
|
| mysql-server |
MySQL authentication bypass / buffer overflow
|
| nag |
nag -- Cross site scripting vulnerabilities in several of the tasklist name and task data fields
|
| nagios |
nagios -- buffer overflow in history.cgi
|
| nagios |
nagios -- Command Injection Vulnerability
|
| nagios |
nagios -- web interface privilege escalation vulnerability
|
| nagios |
Nagios -- Cross Site Scripting Vulnerability
|
| nagios-devel |
nagios -- Command Injection Vulnerability
|
| nagios-devel |
Nagios -- Cross Site Scripting Vulnerability
|
| nagios-plugins |
nagios-plugins -- Long Location Header Buffer Overflow Vulnerability
|
| nagios2 |
nagios -- Command Injection Vulnerability
|
| nagios2 |
nagios -- web interface privilege escalation vulnerability
|
| named |
FreeBSD -- Predictable query ids in named(8)
|
| named |
bind -- Multiple Denial of Service vulnerabilities
|
| nap |
nap allows arbitrary file access
|
| nbd-server |
nbd-server -- buffer overflow vulnerability
|
| nbsmtp |
nbsmtp -- format string vulnerability
|
| neon |
neon date parsing vulnerability
|
| neon |
neon format string vulnerabilities
|
| neon28 |
neon -- NULL pointer dereference in Digest domain support
|
| nessus |
Nessus "adduser" race condition vulnerability
|
| nessus-devel |
Nessus "adduser" race condition vulnerability
|
| net-snmp |
net-snmp -- Remote DoS
|
| net-snmp |
net-snmp -- DoS for SNMP agent via crafted GETBULK request
|
| net-snmp |
net-snmp -- denial of service via GETBULK request
|
| net-snmp |
net-snmp -- fixproc insecure temporary file creation
|
| net-snmp |
net-snmp -- remote DoS vulnerability
|
| netatalk |
netatalk -- arbitrary command execution in papd daemon
|
| netpbm |
netpbm -- buffer overflow in pnmtopng
|
| netscape-communicator |
libpng stack-based buffer overflow and other code concerns
|
| netscape-navigator |
libpng stack-based buffer overflow and other code concerns
|
| netscape-{communicator,navigator} |
libpng stack-based buffer overflow and other code concerns
|
| netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| netscape7 |
firefox & mozilla -- command line URL shell command injection
|
| netscape7 |
firefox & mozilla -- buffer overflow vulnerability
|
| netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| netscape7 |
mozilla -- privilege escalation via non-DOM property overrides
|
| netscape7 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| netscape7 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| netscape7 |
mozilla -- privilege escalation via DOM property overrides
|
| netscape7 |
mozilla -- code execution through javascript: favicons
|
| netscape7 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| netscape7 |
mozilla -- heap buffer overflow in GIF image processing
|
| netscape7 |
mozilla -- insecure temporary directory vulnerability
|
| netscape7 |
mozilla -- arbitrary code execution vulnerability
|
| netscape7 |
web browsers -- window injection vulnerabilities
|
| netscape7 |
mozilla -- insecure permissions for some downloaded files
|
| netscape7 |
mozilla -- heap overflow in NNTP handler
|
| netscape7 |
mozilla -- scripting vulnerabilities
|
| netscape7 |
mozilla -- users may be lured into bypassing security dialogs
|
| netscape7 |
mozilla -- hostname spoofing bug
|
| netscape7 |
mozilla -- BMP decoder vulnerabilities
|
| netscape7 |
mozilla -- POP client heap overflow
|
| netscape7 |
mozilla -- SOAPParameter integer overflow
|
| netscape7 |
Mutiple browser frame injection vulnerability
|
| netscape7 |
libpng stack-based buffer overflow and other code concerns
|
| newsfetch |
newsfetch -- server response buffer overflow vulnerability
|
| newsgrab |
newsgrab -- insecure file and directory creation
|
| newsgrab |
newsgrab -- directory traversal vulnerability
|
| newspost |
newspost -- server response buffer overflow vulnerability
|
| nfsen |
nfsen -- remote command execution
|
| nginx |
nginx -- multiple vulnerabilities
|
| nginx |
nginx -- Buffer overflow in the ngx_http_mp4_module
|
| nginx |
nginx -- potential information leak
|
| nginx |
nginx -- remote denial of service vulnerability
|
| nginx-devel |
nginx -- multiple vulnerabilities
|
| nginx-devel |
nginx -- Buffer overflow in the ngx_http_mp4_module
|
| nginx-devel |
nginx -- potential information leak
|
| nginx-devel |
nginx -- remote denial of service vulnerability
|
| ngircd |
ngircd -- format string vulnerability
|
| ngircd |
ngircd -- buffer overflow vulnerability
|
| nl-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| nl-openoffice |
openoffice -- document disclosure
|
| node |
node -- private information disclosure
|
| node |
Multiple implementations -- DoS via hash algorithm collision
|
| node-devel |
node -- private information disclosure
|
| nsd |
nsd -- Denial of Service
|
| nsd |
dns/nsd -- DoS vulnerability from non-standard DNS packet
|
| nsd |
nsd -- buffer overflow vulnerability
|
| nsd2 |
nsd -- buffer overflow vulnerability
|
| nss |
nss/ca_root_nss -- fraudulent certificates issued by DigiNotar.nl
|
| nss |
nss -- exploitable buffer overflow in SSLv2 protocol handler
|
| nss |
Mozilla / NSS S/MIME DoS vulnerability
|
| nss-pam-ldapd |
nss-pam-ldapd -- file descriptor buffer overflow
|
| ntp |
ntp -- stack-based buffer overflow
|
| nut |
nut -- upsd can be remotely crashed
|
| nvidia-driver |
NVIDIA UNIX driver -- ARGB cursor buffer overflow in "NoScanout" mode
|
| nvidia-driver |
NVIDIA UNIX driver -- access to arbitrary system memory
|
| nvidia-driver |
nvidia-driver -- arbitrary root code execution vulnerability
|
| nwclient |
nwclient -- multiple vulnerabilities
|
| oftpd |
oftpd denial-of-service vulnerability (PORT command)
|
| oops |
oops -- format string vulnerability
|
| open-motif |
xpm -- image decoding vulnerabilities
|
| open-motif-devel |
xpm -- image decoding vulnerabilities
|
| opendchub |
Open DC Hub -- remote buffer overflow vulnerability
|
| opendkim |
DomainKeys Identified Mail (DKIM) Verifiers may inappropriately convey message trust
|
| openfire |
openfire -- Openfire No Password Changes Security Bypass
|
| openfire |
openfire -- multiple vulnerabilities
|
| openfire |
openfire -- multiple vulnerabilities
|
| openfire |
openfire -- unspecified denial of service
|
| openh323 |
Vulnerabilities in H.323 implementations
|
| openjdk |
Java 1.7 -- security manager bypass
|
| openjdk7 |
java 7.x -- security manager bypass
|
| openldap-sasl-server |
openldap -- slapd acl selfwrite Security Issue
|
| openldap-server |
openldap -- two security bypass vulnerabilities
|
| openldap-server |
openldap -- modrdn Denial of Service vulnerability
|
| openldap-server |
openldap -- multiple remote denial of service vulnerabilities
|
| openldap-server |
openldap -- slapd acl selfwrite Security Issue
|
| openoffice |
openoffice -- arbitrary command execution vulnerability
|
| openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| openoffice |
openoffice -- document disclosure
|
| openoffice.org |
openoffice.org -- Multiple vulnerabilities
|
| openoffice.org |
openoffice.org -- multiple vulnerabilities
|
| openoffice.org-2 |
openoffice -- arbitrary code execution vulnerabilities
|
| openoffice.org-2-devel |
openoffice -- arbitrary code execution vulnerabilities
|
| openoffice.org-2-RC |
openoffice -- arbitrary code execution vulnerabilities
|
| opensaml2 |
opensaml2 -- unauthenticated login
|
| openssh |
openssh -- multiple vulnerabilities
|
| openssh-portable |
openssh -- multiple vulnerabilities
|
| openssl |
OpenSSL -- TLS 1.1, 1.2 denial of service
|
| openssl |
OpenSSL -- DTLS and TLS 1.1, 1.2 denial of service
|
| openssl |
OpenSSL -- integer conversions result in memory corruption
|
| openssl |
OpenSSL -- CMS and S/MIME Bleichenbacher attack
|
| openssl |
OpenSSL -- DTLS Denial of Service
|
| openssl |
OpenSSL -- multiple vulnerabilities
|
| openssl |
OpenSSL -- multiple vulnerabilities
|
| openssl |
openssl -- TLS extension parsing race condition
|
| openssl |
openssl -- denial of service in DTLS implementation
|
| openssl |
OpenSSL -- Multiple problems in crypto(3)
|
| openssl |
openssl -- Incorrect PKCS#1 v1.5 padding validation in crypto(3)
|
| openssl |
openssl -- potential SSL 2.0 rollback
|
| openssl |
OpenSSL ChangeCipherSpec denial-of-service vulnerability
|
| openssl-beta |
openssl -- potential SSL 2.0 rollback
|
| openssl-beta |
OpenSSL ChangeCipherSpec denial-of-service vulnerability
|
| openssl-beta-overwrite-base |
openssl -- potential SSL 2.0 rollback
|
| openssl-overwrite-base |
openssl -- potential SSL 2.0 rollback
|
| openttd |
OpenTTD -- Denial of Service
|
| openttd |
OpenTTD -- Denial of service (server) via slow read attack
|
| openttd |
OpenTTD -- Multiple buffer overflows in validation of external data
|
| openttd |
OpenTTD -- Buffer overflows in savegame loading
|
| openttd |
OpenTTD -- Denial of service via improperly validated commands
|
| openttd |
OpenTTD -- Denial of service (server/client) via invalid read
|
| openttd |
OpenTTD -- Denial of service (server) via infinite loop
|
| openvpn |
OpenVPN -- potential side-channel/timing attack when comparing HMACs
|
| openvpn |
openvpn -- LD_PRELOAD code execution on client through malicious or compromised server
|
| openvpn |
openvpn -- potential denial-of-service on servers in TCP mode
|
| openvpn |
openvpn -- arbitrary code execution on client through malicious or compromised server
|
| openvpn |
openvpn -- multiple TCP clients connecting with the same certificate at the same time can crash the server
|
| openvpn |
openvpn -- denial of service: malicious authenticated "tap" client can deplete server virtual memory
|
| openvpn |
openvpn -- denial of service: undecryptable packet from authorized client can disconnect unrelated clients
|
| openvpn |
openvpn -- denial of service: client certificate validation can disconnect unrelated clients
|
| openvpn-devel |
openvpn-devel -- arbitrary code execution
|
| openwebmail |
"Content-Type" XSS vulnerability affecting other webmail systems
|
| openx |
OpenX -- SQL injection vulnerability
|
| openx |
openx -- undisclosed security issue
|
| openx |
openx -- remote code execution vulnerability
|
| openx |
openx -- sql injection vulnerability
|
| opera |
opera -- moderately severe issue
|
| opera |
opera -- execution of arbitrary code
|
| opera |
opera -- execution of arbitrary code
|
| opera |
opera -- execution of arbitrary code
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
Opera -- code injection vulnerability through broken frameset handling
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- Data URIs can be used to allow cross-site scripting
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- Vulnerability in javascript handling
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- URL parsing heap overflow vulnerability
|
| opera |
opera -- RSA Signature Forgery
|
| opera |
opera -- multiple vulnerabilities
|
| opera |
opera -- command line URL shell command injection
|
| opera |
opera -- image dragging vulnerability
|
| opera |
opera -- download dialog spoofing vulnerability
|
| opera |
opera -- XMLHttpRequest security bypass
|
| opera |
opera -- "javascript:" URL cross-site scripting vulnerability
|
| opera |
opera -- redirection cross-site scripting vulnerability
|
| opera |
opera -- "data:" URI handler spoofing vulnerability
|
| opera |
opera -- kfmclient exec command execution vulnerability
|
| opera |
web browsers -- window injection vulnerabilities
|
| opera |
opera -- multiple vulnerabilities in Java implementation
|
| opera |
Mutiple browser frame injection vulnerability
|
| opera |
URI handler vulnerabilities in several browsers
|
| opera-devel |
opera -- moderately severe issue
|
| opera-devel |
opera -- execution of arbitrary code
|
| opera-devel |
opera -- execution of arbitrary code
|
| opera-devel |
opera -- execution of arbitrary code
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
Opera -- code injection vulnerability through broken frameset handling
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
opera -- Data URIs can be used to allow cross-site scripting
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
opera -- Vulnerability in javascript handling
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
opera -- URL parsing heap overflow vulnerability
|
| opera-devel |
opera -- RSA Signature Forgery
|
| opera-devel |
opera -- multiple vulnerabilities
|
| opera-devel |
opera -- command line URL shell command injection
|
| opera-devel |
opera -- image dragging vulnerability
|
| opera-devel |
opera -- download dialog spoofing vulnerability
|
| opera-devel |
opera -- XMLHttpRequest security bypass
|
| opera-devel |
opera -- "javascript:" URL cross-site scripting vulnerability
|
| opera-devel |
opera -- redirection cross-site scripting vulnerability
|
| opera-devel |
opera -- "data:" URI handler spoofing vulnerability
|
| opera-devel |
opera -- kfmclient exec command execution vulnerability
|
| opera-devel |
web browsers -- window injection vulnerabilities
|
| opera-devel |
opera -- multiple vulnerabilities in Java implementation
|
| optipng |
optipng -- use-after-free vulnerability
|
| optipng |
optipng -- arbitrary code execution via crafted BMP image
|
| otrs |
otrs -- Information disclosure and Data manipulation
|
| otrs |
otrs -- XSS vulnerability could lead to remote code execution
|
| otrs |
otrs -- XSS vulnerability in Firefox and Opera could lead to remote code execution
|
| otrs |
otrs -- XSS vulnerability in Internet Explorer could lead to remote code execution
|
| otrs |
otrs -- XSS vulnerability
|
| otrs |
otrs -- XSS vulnerability in Firefox and Opera
|
| otrs |
otrs -- XSS vulnerability in Internet Explorer
|
| otrs |
OTRS -- Vulnerabilities in OTRS-Core allows read access to any file on local file system
|
| otrs |
OTRS -- Several XSS attacks possible
|
| otrs |
OTRS -- Multiple XSS and denial of service vulnerabilities
|
| otrs |
otrs -- SQL injection
|
| p5-Archive-Zip |
p5-Archive-Zip -- virus detection evasion
|
| p5-Config-IniFiles |
p5-Config-IniFiles -- unsafe temporary file creation
|
| p5-Crypt-OpenPGP |
gnupg -- OpenPGP symmetric encryption vulnerability
|
| p5-DBI |
p5-DBI -- insecure temporary file creation vulnerability
|
| p5-DBI-137 |
p5-DBI -- insecure temporary file creation vulnerability
|
| p5-File-Path |
p5-File-Path -- rmtree allows creation of setuid files
|
| p5-HTML-Parser |
p5-HTML-Parser -- denial of service
|
| p5-Imager |
p5-Imager -- possibly exploitable buffer overflow
|
| p5-libwww |
p5-libwww -- possibility to remote servers to create file with a .(dot) character
|
| p5-Mail-SpamAssassin |
p5-Mail-SpamAssassin -- local user symlink-attack DoS vulnerability
|
| p5-Mail-SpamAssassin |
p5-Mail-SpamAssassin -- long message header denial of service
|
| p5-Mail-SpamAssassin |
p5-Mail-SpamAssassin -- denial of service vulnerability
|
| p5-Mail-SpamAssassin |
SpamAssassin -- denial-of-service in tokenize_headers
|
| p5-Mail-SpamAssassin |
SpamAssassin DoS vulnerability
|
| p5-Net-DNS |
p5-Net-DNS -- multiple Vulnerabilities
|
| p5-RT-Authen-ExternalAuth |
p5-RT-Authen-ExternalAuth -- privilege escalation
|
| p5-subversion |
subversion -- heap overflow vulnerability
|
| pam_ldap |
pam_ldap -- authentication bypass vulnerability
|
| pam_smb |
Buffer overflow in pam_smb password handling
|
| pango |
pango -- integer overflow
|
| paraview |
tiff -- buffer overflow vulnerability
|
| paraview |
tiff -- divide-by-zero denial-of-service
|
| paraview |
tiff -- directory entry count integer overflow vulnerability
|
| paraview |
tiff -- multiple integer overflows
|
| paraview |
tiff -- RLE decoder heap overflows
|
| pavuk |
Pavuk HTTP Location header overflow
|
| pavuk |
pavuk digest auth buffer overflow
|
| pcal |
pcal -- buffer overflow vulnerabilities
|
| pcre |
pcre -- buffer overflow vulnerability
|
| pcre |
pcre -- arbitrary code execution
|
| pcre |
pcre -- regular expression buffer overflow
|
| pcre-utf8 |
pcre -- arbitrary code execution
|
| pcre-utf8 |
pcre -- regular expression buffer overflow
|
| pdfjam |
pdfjam -- insecure temporary files
|
| pdflib |
tiff -- buffer overflow vulnerability
|
| pdflib |
tiff -- divide-by-zero denial-of-service
|
| pdflib |
tiff -- directory entry count integer overflow vulnerability
|
| pdflib |
tiff -- multiple integer overflows
|
| pdflib |
tiff -- RLE decoder heap overflows
|
| pdflib-perl |
tiff -- buffer overflow vulnerability
|
| pdflib-perl |
tiff -- divide-by-zero denial-of-service
|
| pdflib-perl |
tiff -- directory entry count integer overflow vulnerability
|
| pdflib-perl |
tiff -- multiple integer overflows
|
| pdflib-perl |
tiff -- RLE decoder heap overflows
|
| pdftohtml |
xpdf -- stack based buffer overflow
|
| pdftohtml |
xpdf -- makeFileKey2() buffer overflow vulnerability
|
| pdftohtml |
xpdf -- buffer overflow vulnerability
|
| pear-Net_Ping |
PEAR -- Net_Ping and Net_Traceroute remote arbitrary command injection
|
| pear-Net_Traceroute |
PEAR -- Net_Ping and Net_Traceroute remote arbitrary command injection
|
| pear-PEAR |
pear-PEAR -- PEAR installer arbitrary code execution vulnerability
|
| pear-XML_RPC |
pear-XML_RPC -- remote PHP code injection vulnerability
|
| pear-XML_RPC |
pear-XML_RPC -- information disclosure vulnerabilities
|
| pear-XML_RPC |
pear-XML_RPC -- arbitrary remote code execution
|
| pecl-phar |
pecl-phar -- format string vulnerability
|
| peercast |
peercast -- arbitrary code execution
|
| peercast |
peercast -- buffer overflow vulnerability
|
| percona-server |
mysql/mariadb/percona server -- multiple vulnerabilities
|
| perdition |
perdition -- str_vwrite format string vulnerability
|
| perl |
perl -- denial of service via algorithmic complexity attack on hashing routines
|
| perl |
perl -- Directory Permissions Race Condition
|
| perl |
perl -- regular expressions unicode data buffer overflow
|
| perl |
perl, webmin, usermin -- perl format string integer wrap vulnerability
|
| perl |
perl -- vulnerabilities in PERLIO_DEBUG handling
|
| perl |
perl -- File::Path insecure file/directory permissions
|
| perl-threaded |
perl -- denial of service via algorithmic complexity attack on hashing routines
|
| perl-threaded |
perl -- regular expressions unicode data buffer overflow
|
| perl-threaded |
perl -- vulnerabilities in PERLIO_DEBUG handling
|
| perl-threaded |
perl -- File::Path insecure file/directory permissions
|
| pgp |
gnupg -- OpenPGP symmetric encryption vulnerability
|
| phoenix |
firefox & mozilla -- multiple vulnerabilities
|
| phoenix |
firefox & mozilla -- command line URL shell command injection
|
| phoenix |
firefox & mozilla -- buffer overflow vulnerability
|
| phoenix |
firefox & mozilla -- multiple vulnerabilities
|
| phoenix |
mozilla -- privilege escalation via non-DOM property overrides
|
| phoenix |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| phoenix |
mozilla -- code execution via javascript: IconURL vulnerability
|
| phoenix |
mozilla -- privilege escalation via DOM property overrides
|
| phoenix |
mozilla -- code execution through javascript: favicons
|
| phoenix |
mozilla -- javascript "lambda" replace exposes memory contents
|
| phoenix |
mozilla -- heap buffer overflow in GIF image processing
|
| phoenix |
mozilla -- insecure temporary directory vulnerability
|
| phoenix |
mozilla -- arbitrary code execution vulnerability
|
| phoenix |
web browsers -- window injection vulnerabilities
|
| phoenix |
mozilla -- insecure permissions for some downloaded files
|
| phoenix |
mozilla -- scripting vulnerabilities
|
| phoenix |
mozilla -- users may be lured into bypassing security dialogs
|
| phoenix |
mozilla -- hostname spoofing bug
|
| phoenix |
mozilla -- BMP decoder vulnerabilities
|
| php-suhosin |
php -- open_basedir Race Condition Vulnerability
|
| php4 |
php -- vulnerability in certain CGI-based setups
|
| php4 |
php -- multiple vulnerabilities
|
| php4 |
php -- multiple vulnerabilities
|
| php4 |
php -- multiple vulnerabilities
|
| php4 |
php -- open_basedir Race Condition Vulnerability
|
| php4 |
php -- multiple vulnerabilities
|
| php4 |
PHP -- multiple vulnerabilities
|
| php4 |
php -- readfile() DoS vulnerability
|
| php4 |
php -- multiple vulnerabilities
|
| php4 |
php -- php_variables memory disclosure
|
| php4 |
php -- strip_tags cross-site scripting vulnerability
|
| php4 |
php -- memory_limit related vulnerability
|
| php4 |
php -- vulnerability in RFC 1867 file upload processing
|
| php4 |
PHP memory_limit and strip_tags() vulnerabilities
|
| php4-cgi |
php -- multiple vulnerabilities
|
| php4-cgi |
php -- multiple vulnerabilities
|
| php4-cgi |
php -- open_basedir Race Condition Vulnerability
|
| php4-cgi |
php -- multiple vulnerabilities
|
| php4-cgi |
PHP -- multiple vulnerabilities
|
| php4-cgi |
php -- readfile() DoS vulnerability
|
| php4-cgi |
php -- multiple vulnerabilities
|
| php4-cgi |
php -- php_variables memory disclosure
|
| php4-cgi |
php -- strip_tags cross-site scripting vulnerability
|
| php4-cgi |
php -- memory_limit related vulnerability
|
| php4-cgi |
php -- vulnerability in RFC 1867 file upload processing
|
| php4-cli |
php -- multiple vulnerabilities
|
| php4-cli |
php -- multiple vulnerabilities
|
| php4-cli |
php -- open_basedir Race Condition Vulnerability
|
| php4-cli |
php -- multiple vulnerabilities
|
| php4-cli |
PHP -- multiple vulnerabilities
|
| php4-cli |
php -- readfile() DoS vulnerability
|
| php4-cli |
php -- multiple vulnerabilities
|
| php4-cli |
php -- php_variables memory disclosure
|
| php4-cli |
php -- strip_tags cross-site scripting vulnerability
|
| php4-cli |
php -- memory_limit related vulnerability
|
| php4-dba |
php -- ini database truncation inside dba_replace() function
|
| php4-dtc |
php -- multiple vulnerabilities
|
| php4-dtc |
php -- multiple vulnerabilities
|
| php4-dtc |
php -- open_basedir Race Condition Vulnerability
|
| php4-dtc |
php -- multiple vulnerabilities
|
| php4-dtc |
PHP -- multiple vulnerabilities
|
| php4-dtc |
php -- readfile() DoS vulnerability
|
| php4-dtc |
php -- multiple vulnerabilities
|
| php4-dtc |
php -- php_variables memory disclosure
|
| php4-dtc |
php -- strip_tags cross-site scripting vulnerability
|
| php4-dtc |
php -- memory_limit related vulnerability
|
| php4-gd |
gd -- '_gdGetColors' remote buffer overflow vulnerability
|
| php4-horde |
php -- multiple vulnerabilities
|
| php4-horde |
php -- multiple vulnerabilities
|
| php4-horde |
php -- open_basedir Race Condition Vulnerability
|
| php4-horde |
php -- multiple vulnerabilities
|
| php4-horde |
PHP -- multiple vulnerabilities
|
| php4-horde |
php -- readfile() DoS vulnerability
|
| php4-horde |
php -- multiple vulnerabilities
|
| php4-horde |
php -- php_variables memory disclosure
|
| php4-horde |
php -- strip_tags cross-site scripting vulnerability
|
| php4-horde |
php -- memory_limit related vulnerability
|
| php4-mbstring |
php-mbstring -- php mbstring buffer overflow vulnerability
|
| php4-nms |
php -- multiple vulnerabilities
|
| php4-nms |
php -- multiple vulnerabilities
|
| php4-nms |
php -- open_basedir Race Condition Vulnerability
|
| php4-nms |
php -- multiple vulnerabilities
|
| php4-nms |
PHP -- multiple vulnerabilities
|
| php4-nms |
php -- readfile() DoS vulnerability
|
| php4-nms |
php -- multiple vulnerabilities
|
| php4-nms |
php -- php_variables memory disclosure
|
| php4-nms |
php -- strip_tags cross-site scripting vulnerability
|
| php4-nms |
php -- memory_limit related vulnerability
|
| php4-odbc |
php -- multiple vulnerabilities
|
| php4-odbc |
php -- multiple vulnerabilities
|
| php4-session |
php -- multiple vulnerabilities
|
| php4-session |
php -- multiple vulnerabilities
|
| php4-shmop |
php -- multiple vulnerabilities
|
| php4-shmop |
php -- multiple vulnerabilities
|
| php4-wddx |
php -- multiple vulnerabilities
|
| php4-wddx |
php -- multiple vulnerabilities
|
| php4-{cgi,cli,dtc,horde,nms} |
PHP memory_limit and strip_tags() vulnerabilities
|
| php5 |
php5 -- Multiple vulnerabilities
|
| php5 |
php5 -- Denial of Service in php_date_parse_tzfile()
|
| php5 |
php5 -- header splitting attack via carriage-return character
|
| php5 |
php -- potential overflow in _php_stream_scandir
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- vulnerability in certain CGI-based setups
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- arbitrary remote code execution vulnerability
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
PHP -- crypt() returns only the salt for MD5
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- NULL byte poisoning
|
| php5 |
php -- open_basedir bypass
|
| php5 |
php -- corruption of $GLOBALS and $this variables via extract() method
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php5 -- Multiple security issues
|
| php5 |
php5 -- potential magic_quotes_gpc vulnerability
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- input validation error in safe_mode
|
| php5 |
php -- integer overflow vulnerability
|
| php5 |
php -- multiple security vulnerabilities
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- _ecalloc Integer Overflow Vulnerability
|
| php5 |
php -- open_basedir Race Condition Vulnerability
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- multiple vulnerabilities
|
| php5 |
php -- php_variables memory disclosure
|
| php5 |
php -- strip_tags cross-site scripting vulnerability
|
| php5 |
php -- memory_limit related vulnerability
|
| php5 |
php -- vulnerability in RFC 1867 file upload processing
|
| php5 |
PHP memory_limit and strip_tags() vulnerabilities
|
| php5-cgi |
php -- multiple vulnerabilities
|
| php5-cgi |
php -- multiple vulnerabilities
|
| php5-cgi |
php -- _ecalloc Integer Overflow Vulnerability
|
| php5-cgi |
php -- open_basedir Race Condition Vulnerability
|
| php5-cgi |
php -- multiple vulnerabilities
|
| php5-cgi |
php -- multiple vulnerabilities
|
| php5-cgi |
php -- php_variables memory disclosure
|
| php5-cgi |
php -- strip_tags cross-site scripting vulnerability
|
| php5-cgi |
php -- memory_limit related vulnerability
|
| php5-cgi |
php -- vulnerability in RFC 1867 file upload processing
|
| php5-cli |
php -- multiple vulnerabilities
|
| php5-cli |
php -- multiple vulnerabilities
|
| php5-cli |
php -- _ecalloc Integer Overflow Vulnerability
|
| php5-cli |
php -- open_basedir Race Condition Vulnerability
|
| php5-cli |
php -- multiple vulnerabilities
|
| php5-cli |
php -- multiple vulnerabilities
|
| php5-cli |
php -- php_variables memory disclosure
|
| php5-cli |
php -- strip_tags cross-site scripting vulnerability
|
| php5-cli |
php -- memory_limit related vulnerability
|
| php5-dba |
php -- ini database truncation inside dba_replace() function
|
| php5-dtc |
php -- multiple vulnerabilities
|
| php5-dtc |
php -- multiple vulnerabilities
|
| php5-dtc |
php -- _ecalloc Integer Overflow Vulnerability
|
| php5-dtc |
php -- open_basedir Race Condition Vulnerability
|
| php5-dtc |
php -- multiple vulnerabilities
|
| php5-exif |
php -- multiple vulnerabilities
|
| php5-exif |
php -- crash on crafted tag in exif
|
| php5-filter |
php-filter -- Denial of Service
|
| php5-gd |
gd -- '_gdGetColors' remote buffer overflow vulnerability
|
| php5-gd |
php5-gd -- uninitialized memory information disclosure vulnerability
|
| php5-horde |
php -- multiple vulnerabilities
|
| php5-horde |
php -- multiple vulnerabilities
|
| php5-horde |
php -- _ecalloc Integer Overflow Vulnerability
|
| php5-horde |
php -- open_basedir Race Condition Vulnerability
|
| php5-horde |
php -- multiple vulnerabilities
|
| php5-imap |
php-imap -- Denial of Service
|
| php5-imap |
php -- multiple vulnerabilities
|
| php5-imap |
php -- multiple vulnerabilities
|
| php5-mbstring |
php-mbstring -- php mbstring buffer overflow vulnerability
|
| php5-nms |
php -- multiple vulnerabilities
|
| php5-nms |
php -- multiple vulnerabilities
|
| php5-nms |
php -- _ecalloc Integer Overflow Vulnerability
|
| php5-nms |
php -- open_basedir Race Condition Vulnerability
|
| php5-nms |
php -- multiple vulnerabilities
|
| php5-odbc |
php -- multiple vulnerabilities
|
| php5-odbc |
php -- multiple vulnerabilities
|
| php5-session |
php -- multiple vulnerabilities
|
| php5-session |
php -- multiple vulnerabilities
|
| php5-shmop |
php -- multiple vulnerabilities
|
| php5-shmop |
php -- multiple vulnerabilities
|
| php5-sockets |
php -- multiple vulnerabilities
|
| php5-sqlite |
php5-sqlite -- open_basedir bypass
|
| php5-sqlite |
php -- multiple vulnerabilities
|
| php5-sqlite |
php -- multiple vulnerabilities
|
| php5-wddx |
php -- multiple vulnerabilities
|
| php5-wddx |
php -- multiple vulnerabilities
|
| php5-zip |
php -- ZipArchive segfault with FL_UNCHANGED on empty archive
|
| php5-zip |
php-zip -- multiple Denial of Service vulnerabilities
|
| php5-{cgi,cli} |
PHP memory_limit and strip_tags() vulnerabilities
|
| php52 |
php5 -- Denial of Service in php_date_parse_tzfile()
|
| php52 |
php5 -- header splitting attack via carriage-return character
|
| php52 |
php -- potential overflow in _php_stream_scandir
|
| php52 |
php -- multiple vulnerabilities
|
| php52 |
php -- vulnerability in certain CGI-based setups
|
| php52 |
php -- multiple vulnerabilities
|
| php52 |
php -- NULL byte poisoning
|
| php52 |
php -- open_basedir bypass
|
| php52 |
php -- corruption of $GLOBALS and $this variables via extract() method
|
| php52 |
php -- multiple vulnerabilities
|
| php52-exif |
php -- multiple vulnerabilities
|
| php52-filter |
php-filter -- Denial of Service
|
| php52-imap |
php-imap -- Denial of Service
|
| php52-sqlite |
php5-sqlite -- open_basedir bypass
|
| php52-zip |
php-zip -- multiple Denial of Service vulnerabilities
|
| php53 |
php5 -- Multiple vulnerabilities
|
| php53 |
php5 -- Denial of Service in php_date_parse_tzfile()
|
| php53 |
php5 -- header splitting attack via carriage-return character
|
| php53 |
php -- potential overflow in _php_stream_scandir
|
| php53 |
php -- multiple vulnerabilities
|
| php53 |
php -- vulnerability in certain CGI-based setups
|
| php53 |
php -- multiple vulnerabilities
|
| php53-sqlite |
php5-sqlite -- open_basedir bypass
|
| phpAdsNew |
pear-XML_RPC -- remote PHP code injection vulnerability
|
| phpbb |
phpbb -- NULL byte injection vulnerability
|
| phpbb |
phpbb -- multiple vulnerabilities
|
| phpbb |
phpbb -- multiple vulnerabilities
|
| phpbb |
phpbb -- remote PHP code execution vulnerability
|
| phpbb |
phpbb -- Insuffient check against HTML code in usercp_register.php
|
| phpbb |
phpbb -- privilege elevation and path disclosure
|
| phpbb |
phpbb -- multiple information disclosure vulnerabilities
|
| phpbb |
phpbb -- arbitrary command execution and other vulnerabilities
|
| phpbb |
phpBB session table exhaustion
|
| phpbb |
phpBB IP address spoofing
|
| phpbb |
Critical SQL injection in phpBB
|
| phpbb |
multiple vulnerabilities in phpBB
|
| phpbb |
phpBB cross site scripting vulnerabilities
|
| phpgedview |
phpGedView: muliple vulnerabilities
|
| phpgroupware |
pear-XML_RPC -- remote PHP code injection vulnerability
|
| phpicalendar |
phpicalendar -- cross site scripting vulnerability
|
| phpicalendar |
phpicalendar -- file disclosure vulnerability
|
| phpldapadmin |
phpLDAPadmin -- Remote PHP code injection vulnerability
|
| phpldapadmin098 |
phpldapadmin -- Cross-Site Scripting and Script Insertion vulnerabilities
|
| phplist |
phpList -- SQL injection and XSS vulnerability
|
| phplist |
phplist -- local file inclusion vulnerability
|
| phpMyAdmin |
phpMyAdmin -- Multiple security vulnerabilities
|
| phpMyAdmin |
phpMyAdmin -- XSS due to unescaped HTML output in GIS visualisation page
|
| phpMyAdmin |
phpMyAdmin -- Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack
|
| phpMyAdmin |
phpMyAdmin -- Multiple XSS in Table operations, Database structure, Trigger and Visualize GIS data pages
|
| phpMyAdmin |
phpMyAdmin -- Path disclosure due to missing library
|
| phpMyAdmin |
phpMyAdmin -- Path disclosure due to missing verification of file presence
|
| phpMyAdmin |
phpMyAdmin -- XSS in replication setup
|
| phpMyAdmin |
phpMyAdmin -- Multiple XSS
|
| phpMyAdmin |
phpMyAdmin -- Multiple XSS
|
| phpMyAdmin |
phpmyadmin -- Local file inclusion
|
| phpMyAdmin |
phpMyAdmin -- multiple XSS vulnerabilities
|
| phpMyAdmin |
phpMyAdmin -- multiple XSS vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- multiple vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- multiple vulnerabilities
|
| phpMyAdmin |
phpMyAdmin -- multiple vulnerabilities
|
| phpMyAdmin |
phpMyAdmin -- XSS attack in database search
|
| phpMyAdmin |
phpmyadmin -- Several XSS vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- XSS and SQL injection vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- XSS vulnerability
|
| phpMyAdmin |
phpmyadmin -- insufficient output sanitizing when generating configuration file
|
| phpMyAdmin |
phpmyadmin -- insufficient output sanitizing when generating configuration file
|
| phpMyAdmin |
phpmyadmin -- cross-site request forgery vulnerability
|
| phpMyAdmin |
phpmyadmin -- Cross-Site Scripting Vulnerability
|
| phpMyAdmin |
phpmyadmin -- Cross-Site Scripting Vulnerability
|
| phpMyAdmin |
phpmyadmin -- Code execution vulnerability
|
| phpMyAdmin |
phpmyadmin -- cross site request forgery vulnerabilites
|
| phpMyAdmin |
phpmyadmin -- Cross Site Scripting Vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- Shared Host Information Disclosure
|
| phpMyAdmin |
phpmyadmin -- Username/Password Session File Information Disclosure
|
| phpMyAdmin |
phpmyadmin -- SQL injection vulnerability
|
| phpmyadmin |
phpmyadmin -- Cross Site Scripting
|
| phpMyAdmin |
phpmyadmin -- cross-site scripting vulnerability
|
| phpMyAdmin |
phpmyadmin -- cross-site scripting vulnerability
|
| phpMyAdmin |
phpmyadmin -- cross-site scripting vulnerability
|
| phpMyAdmin |
phpmyadmin -- XSRF vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- cross site scripting vulnerability
|
| phpMyAdmin |
phpmyadmin -- XSRF vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- XSS vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- 'set_theme' Cross-Site Scripting
|
| phpMyAdmin |
phpmyadmin -- register_globals emulation "import_blacklist" manipulation
|
| phpMyAdmin |
phpmyadmin -- XSS vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- HTTP Response Splitting vulnerability
|
| phpMyAdmin |
phpmyadmin -- local file inclusion vulnerability
|
| phpmyadmin |
phpmyadmin -- cross site scripting vulnerability
|
| phpMyAdmin |
phpmyadmin -- cross site scripting vulnerability
|
| phpmyadmin |
phpmyadmin -- increased privilege vulnerability
|
| phpMyAdmin |
phpmyadmin -- increased privilege vulnerability
|
| phpmyadmin |
phpmyadmin -- information disclosure vulnerability
|
| phpMyAdmin |
phpmyadmin -- information disclosure vulnerability
|
| phpmyadmin |
phpmyadmin -- arbitrary file include and XSS vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- arbitrary file include and XSS vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- command execution vulnerability
|
| phpMyAdmin |
phpmyadmin -- file disclosure vulnerability
|
| phpMyAdmin |
phpMyAdmin -- cross-site scripting vulnerabilities
|
| phpMyAdmin |
phpmyadmin -- remote command execution vulnerability
|
| phpmyadmin |
phpmyadmin -- remote command execution vulnerability
|
| phpMyAdmin |
Remote code injection in phpMyAdmin
|
| phpMyAdmin |
file disclosure in phpMyAdmin
|
| phpMyAdmin |
phpMyAdmin configuration manipulation and code injection
|
| phpMyAdmin211 |
phpMyAdmin -- multiple vulnerabilities
|
| phpMyAdmin211 |
phpMyAdmin -- XSS attack in database search
|
| phpMyAdmin211 |
phpmyadmin -- Several XSS vulnerabilities
|
| phpMyAdmin211 |
phpmyadmin -- XSS and SQL injection vulnerabilities
|
| phpMyAdmin211 |
phpmyadmin -- insufficient output sanitizing when generating configuration file
|
| phpMyAdmin211 |
phpmyadmin -- cross-site request forgery vulnerability
|
| phpMyAdmin211 |
phpmyadmin -- Cross-Site Scripting Vulnerability
|
| phpmyfaq |
phpmyfaq -- Remote PHP Code Execution Vulnerability
|
| phpmyfaq |
phpmyfaq -- Remote PHP Code Injection Vulnerability
|
| phpmyfaq |
phpmyfaq -- cross site scripting vulnerabilities
|
| phpmyfaq |
phpmyfaq -- SQL injection, takeover, path disclosure, remote code execution
|
| phpmyfaq |
pear-XML_RPC -- remote PHP code injection vulnerability
|
| phpnuke |
Several vulnerabilities found in PHPNuke
|
| phpnuke |
SQL injection vulnerability in phpnuke
|
| phppgadmin |
phppgadmin -- directory traversal with register_globals enabled
|
| phppgadmin |
phppgadmin -- cross site scripting vulnerability
|
| phppgadmin |
phppgadmin -- "formLanguage" local file inclusion vulnerability
|
| phpSysInfo |
phpsysinfo -- url Cross-Site Scripting
|
| phpSysInfo |
phpSysInfo -- "register_globals" emulation layer overwrite vulnerability
|
| phpSysInfo |
phpSysInfo -- cross site scripting vulnerability
|
| phpwebftp |
phpwebftp -- "language" Local File Inclusion
|
| picasm |
picasm -- buffer overflow vulnerability
|
| pidgin |
pidgin -- multiple remote denial of service vulnerabilities
|
| pidgin |
pidgin -- MSN overflow parsing SLP messages
|
| pidgin |
pidgin -- multiple vulnerabilities
|
| pidgin-otr |
pidgin-otr -- format string vulnerability
|
| pine |
pine remotely exploitable buffer overflow in newmail.c
|
| pine |
pine insecure URL handling
|
| pine |
pine remote denial-of-service attack
|
| pine |
pine remotely exploitable vulnerabilities
|
| pine4-ssl |
pine remotely exploitable buffer overflow in newmail.c
|
| pivot-weblog |
pivot-weblog -- file deletion vulnerability
|
| pivotx |
PivotX -- 'ajaxhelper.php' Cross Site Scripting Vulnerability
|
| pivotx |
PivotX -- Remote File Inclusion Vulnerability of TimThumb
|
| pivotx |
PivotX -- administrator password reset vulnerability
|
| piwigo |
piwigo -- CSRF/Path Traversal
|
| piwik |
piwik -- xss and click-jacking issues
|
| piwik |
piwik -- unknown critical vulnerabilities
|
| piwik |
Piwik -- remote command execution vulnerability
|
| piwik |
Piwik -- Local File Inclusion Vulnerability
|
| piwik |
piwik -- cross site scripting vulnerability
|
| piwik |
piwik -- php code execution
|
| pl-ekg |
libgadu -- multiple vulnerabilities
|
| pl-ekg |
ekg -- insecure temporary file creation
|
| pl-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| pl-openoffice |
openoffice -- document disclosure
|
| plans |
plans -- multiple vulnerabilities
|
| plib |
plib -- remote code execution via buffer overflow
|
| pligg |
pligg -- Cross-Site Scripting and Cross-Site Request Forgery
|
| plone |
plone -- Remote Security Bypass
|
| plone |
plone -- unsafe data interpreted as pickles
|
| plone |
zope -- cross-site scripting vulnerability
|
| plone |
plone -- user can masquerade as a group
|
| plone |
plone -- unprotected MembershipTool methods
|
| plone |
plone -- "member_id" Parameter Portrait Manipulation Vulnerability
|
| plone3 |
plone -- Remote Security Bypass
|
| png |
png -- memory corruption/possible remote code execution
|
| png |
png -- libpng decompression buffer overflow
|
| png |
png -- libpng decompression denial of service
|
| png |
png -- unknown chunk processing uninitialized memory access
|
| png |
png -- multiple vulnerabilities
|
| png |
png -- DoS crash vulnerability
|
| png |
libpng stack-based buffer overflow and other code concerns
|
| png |
libpng stack-based buffer overflow and other code concerns
|
| png |
libpng denial-of-service
|
| png |
libpng denial-of-service
|
| png |
libpng row buffer overflow
|
| pngcrush |
pngcrush -- libpng Uninitialised Pointer Arrays Vulnerability
|
| pop3proxy |
up-imapproxy -- multiple vulnerabilities
|
| popfile |
popfile file disclosure
|
| poppler |
poppler -- Poppler Multiple Vulnerabilities
|
| poppler |
poppler -- uninitialized pointer
|
| poppler |
xpdf -- multiple remote Stream.CC vulnerabilities
|
| poppler |
xpdf -- stack based buffer overflow
|
| portaudit |
portaudit -- auditfile remote code execution
|
| portupgrade |
portupgrade -- insecure temporary file handling vulnerability
|
| portupgrade-devel |
portupgrade-devel -- lack of distfile checksums
|
| postfix |
Postfix -- memory corruption vulnerability
|
| postfix |
postfix -- plaintext command injection with SMTP over TLS
|
| postfix-base |
Postfix -- memory corruption vulnerability
|
| postfix-base |
postfix -- plaintext command injection with SMTP over TLS
|
| postfix-current |
Postfix -- memory corruption vulnerability
|
| postfix-current |
postfix -- plaintext command injection with SMTP over TLS
|
| postfix-current-base |
Postfix -- memory corruption vulnerability
|
| postfix-current-base |
postfix -- plaintext command injection with SMTP over TLS
|
| postfix-policyd-weight |
postfix-policyd-weight -- working directory symlink vulnerability
|
| postfixadmin |
postfixadmin -- Multiple Vulnerabilities
|
| postgresql |
postgresql -- multiple vulnerabilities
|
| postgresql |
postgresql -- encoding based SQL injection
|
| postgresql |
postgresql -- multiple vulnerabilities
|
| postgresql |
postgresql -- character conversion and tsearch2 vulnerabilities
|
| postgresql |
postgresql -- multiple buffer overflows in PL/PgSQL parser
|
| postgresql |
postgresql -- privilege escalation vulnerability
|
| postgresql-client |
databases/postgresql*-client -- multiple vulnerabilities
|
| postgresql-client |
postgresql -- multiple vulnerabilities
|
| postgresql-contrib |
postgresql-contrib -- insecure temporary file creation
|
| postgresql-devel |
postgresql -- privilege escalation vulnerability
|
| postgresql-server |
PostgreSQL -- anonymous remote access data corruption vulnerability
|
| postgresql-server |
databases/postgresql*-server -- multiple vulnerabilities
|
| postgresql-server |
databases/postgresql*-server -- crypt vulnerabilities
|
| postgresql-server |
postgresql -- bitsubstr overflow
|
| postgresql-server |
postgresql -- multiple vulnerabilities
|
| postgresql-server |
postgresql -- multiple vulnerabilities
|
| postgresql-server |
postgresql -- encoding based SQL injection
|
| postgresql-server |
postgresql -- multiple vulnerabilities
|
| postgresql-server |
postgresql81-server -- SET ROLE privilege escalation
|
| postgresql-server |
postgresql -- multiple buffer overflows in PL/PgSQL parser
|
| postgresql-server |
postgresql -- privilege escalation vulnerability
|
| postnuke |
postnuke -- admin section SQL injection
|
| postnuke |
postnuke -- multiple vulnerabilities
|
| postnuke |
postnuke -- SQL injection vulnerabilities
|
| postnuke |
postnuke -- cross-site scripting (XSS) vulnerabilities
|
| pound |
pound remotely exploitable vulnerability
|
| poweradmin |
poweradmin -- multiple XSS vulnerabilities
|
| powerdns |
PowerDNS -- Denial of Service Vulnerability
|
| powerdns |
PowerDNS -- LDAP backend fails to escape all queries
|
| powerdns |
powerdns -- DoS vulnerability
|
| powerdns-devel |
PowerDNS -- Denial of Service Vulnerability
|
| powerdns-recursor |
powerdns-recursor -- multiple vulnerabilities
|
| powerdns-recursor |
powerdns-recursor -- DNS cache poisoning
|
| ppxp |
ppxp -- local root exploit
|
| proftpd |
proftpd -- arbitrary code execution vulnerability with chroot
|
| proftpd |
proftpd -- Compromised source packages backdoor
|
| proftpd |
proftpd -- remote code execution vulnerability
|
| proftpd |
proftpd -- multiple sql injection vulnerabilities
|
| proftpd |
proftpd -- Long Command Processing Vulnerability
|
| proftpd |
proftpd -- remote code execution vulnerabilities
|
| proftpd |
proftpd -- Remote Code Execution Vulnerability
|
| proftpd |
proftpd -- format string vulnerabilities
|
| proftpd |
proftpd IP address access control list breakage
|
| proftpd |
ProFTPD ASCII translation bug resulting in remote root compromise
|
| proftpd-devel |
proftpd -- arbitrary code execution vulnerability with chroot
|
| proftpd-devel |
proftpd -- multiple sql injection vulnerabilities
|
| proftpd-devel |
proftpd -- Long Command Processing Vulnerability
|
| proftpd-mysql |
proftpd -- arbitrary code execution vulnerability with chroot
|
| proftpd-mysql |
proftpd -- multiple sql injection vulnerabilities
|
| proftpd-mysql |
proftpd -- Long Command Processing Vulnerability
|
| proftpd-mysql |
proftpd -- remote code execution vulnerabilities
|
| proftpd-mysql |
proftpd -- Remote Code Execution Vulnerability
|
| proftpd-mysql |
proftpd -- format string vulnerabilities
|
| proxytunnel |
proxytunnel -- format string vulnerability
|
| prozilla |
ProZilla -- server response buffer overflow vulnerabilities
|
| pt-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| pt-openoffice |
openoffice -- document disclosure
|
| pt_BR-netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| pt_BR-netscape7 |
firefox & mozilla -- command line URL shell command injection
|
| pt_BR-netscape7 |
firefox & mozilla -- buffer overflow vulnerability
|
| pt_BR-netscape7 |
firefox & mozilla -- multiple vulnerabilities
|
| pt_BR-netscape7 |
mozilla -- privilege escalation via non-DOM property overrides
|
| pt_BR-netscape7 |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| pt_BR-netscape7 |
mozilla -- code execution via javascript: IconURL vulnerability
|
| pt_BR-netscape7 |
mozilla -- privilege escalation via DOM property overrides
|
| pt_BR-netscape7 |
mozilla -- code execution through javascript: favicons
|
| pt_BR-netscape7 |
mozilla -- javascript "lambda" replace exposes memory contents
|
| pt_BR-netscape7 |
mozilla -- heap buffer overflow in GIF image processing
|
| pt_BR-netscape7 |
mozilla -- insecure temporary directory vulnerability
|
| pt_BR-netscape7 |
mozilla -- arbitrary code execution vulnerability
|
| pt_BR-netscape7 |
web browsers -- window injection vulnerabilities
|
| pt_BR-netscape7 |
mozilla -- insecure permissions for some downloaded files
|
| pt_BR-netscape7 |
mozilla -- heap overflow in NNTP handler
|
| pt_BR-netscape7 |
mozilla -- scripting vulnerabilities
|
| pt_BR-netscape7 |
mozilla -- users may be lured into bypassing security dialogs
|
| pt_BR-netscape7 |
mozilla -- hostname spoofing bug
|
| pt_BR-netscape7 |
mozilla -- BMP decoder vulnerabilities
|
| pt_BR-netscape7 |
libpng stack-based buffer overflow and other code concerns
|
| pt_BR-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| pt_BR-openoffice |
openoffice -- document disclosure
|
| pubcookie-login-server |
Pubcookie Login Server -- XSS vulnerability
|
| pubcookie-login-server |
pubcookie-login-server -- cross site scripting vulnerability
|
| punbb |
punbb -- NULL byte injection vulnerability
|
| puppet |
puppet27 and puppet -- multiple vulnerabilities
|
| puppet |
puppet -- multiple vulnerabilities
|
| puppet |
puppet -- multiple vulnerabilities
|
| puppet |
puppet -- Multiple Vulnerabilities
|
| puppet26 |
puppet26 -- multiple vulnerabilities
|
| puppet27 |
puppet27 and puppet -- multiple vulnerabilities
|
| pure-ftpd |
pureftpd -- multiple vulnerabilities
|
| pure-ftpd |
Pure-FTPd DoS when maximum number of connections is reached
|
| putty |
PuTTY -- Password vulnerability
|
| putty |
putty -- pscp/psftp heap corruption vulnerabilities
|
| putty |
putty -- buffer overflow vulnerability in ssh2 support
|
| putty |
modified server can execute commands on the client
|
| pwlib |
Vulnerabilities in H.323 implementations
|
| py-django-cms |
django-cms -- XSS Vulnerability
|
| py-libcloud |
libcloud -- possible SSL MITM due to invalid regexp used to validate target server hostname
|
| py-pycrypto |
pycrypto -- vulnerable ElGamal key generation
|
| py-pycrypto |
pycrypto -- ARC2 module buffer overflow
|
| py-subversion |
subversion -- heap overflow vulnerability
|
| py23-django |
django -- multiple vulnerabilities
|
| py23-django |
django -- multiple vulnerabilities
|
| py23-django |
django -- multiple vulnerabilities
|
| py23-django |
django -- cross-site scripting vulnerability
|
| py23-django |
django -- denial-of-service attack
|
| py23-django |
django -- XSS vulnerability
|
| py23-django |
py-django -- denial of service vulnerability
|
| py23-django-devel |
django -- multiple vulnerabilities
|
| py23-django-devel |
django -- multiple vulnerabilities
|
| py23-django-devel |
django -- multiple vulnerabilities
|
| py23-django-devel |
django -- cross-site scripting vulnerability
|
| py23-django-devel |
django -- denial-of-service attack
|
| py23-django-devel |
django -- XSS vulnerability
|
| py23-django-devel |
py-django -- denial of service vulnerability
|
| py24-django |
django -- multiple vulnerabilities
|
| py24-django |
django -- multiple vulnerabilities
|
| py24-django |
django -- multiple vulnerabilities
|
| py24-django |
django -- cross-site scripting vulnerability
|
| py24-django |
django -- denial-of-service attack
|
| py24-django |
django -- XSS vulnerability
|
| py24-django |
py-django -- denial of service vulnerability
|
| py24-django-devel |
django -- multiple vulnerabilities
|
| py24-django-devel |
django -- multiple vulnerabilities
|
| py24-django-devel |
django -- multiple vulnerabilities
|
| py24-django-devel |
django -- cross-site scripting vulnerability
|
| py24-django-devel |
django -- denial-of-service attack
|
| py24-django-devel |
django -- XSS vulnerability
|
| py24-django-devel |
py-django -- denial of service vulnerability
|
| py24-pylons |
py-pylons -- Path traversal bug
|
| py25-django |
django -- multiple vulnerabilities
|
| py25-django |
django -- multiple vulnerabilities
|
| py25-django |
django -- multiple vulnerabilities
|
| py25-django |
django -- cross-site scripting vulnerability
|
| py25-django |
django -- denial-of-service attack
|
| py25-django |
django -- XSS vulnerability
|
| py25-django |
py-django -- denial of service vulnerability
|
| py25-django-devel |
django -- multiple vulnerabilities
|
| py25-django-devel |
django -- multiple vulnerabilities
|
| py25-django-devel |
django -- multiple vulnerabilities
|
| py25-django-devel |
django -- cross-site scripting vulnerability
|
| py25-django-devel |
django -- denial-of-service attack
|
| py25-django-devel |
django -- XSS vulnerability
|
| py25-django-devel |
py-django -- denial of service vulnerability
|
| py26-django |
django -- multiple vulnerabilities
|
| py26-django |
django -- multiple vulnerabilities
|
| py26-django |
django -- multiple vulnerabilities
|
| py26-django |
django -- multiple vulnerabilities
|
| py26-django |
django -- multiple vulnerabilities
|
| py26-django |
django -- cross-site scripting vulnerability
|
| py26-django |
django -- denial-of-service attack
|
| py26-django-devel |
django -- multiple vulnerabilities
|
| py26-django-devel |
django -- multiple vulnerabilities
|
| py26-django-devel |
django -- multiple vulnerabilities
|
| py26-django-devel |
django -- multiple vulnerabilities
|
| py26-django-devel |
django -- cross-site scripting vulnerability
|
| py26-django-devel |
django -- denial-of-service attack
|
| py27-django |
django -- multiple vulnerabilities
|
| py27-django |
django -- multiple vulnerabilities
|
| py27-django |
django -- multiple vulnerabilities
|
| py27-django |
django -- multiple vulnerabilities
|
| py27-django |
django -- multiple vulnerabilities
|
| py27-django-devel |
django -- multiple vulnerabilities
|
| py27-django-devel |
django -- multiple vulnerabilities
|
| py27-django-devel |
django -- multiple vulnerabilities
|
| py27-django-devel |
django -- multiple vulnerabilities
|
| py30-django |
django -- multiple vulnerabilities
|
| py30-django |
django -- multiple vulnerabilities
|
| py30-django |
django -- multiple vulnerabilities
|
| py30-django |
django -- cross-site scripting vulnerability
|
| py30-django |
django -- denial-of-service attack
|
| py30-django-devel |
django -- multiple vulnerabilities
|
| py30-django-devel |
django -- multiple vulnerabilities
|
| py30-django-devel |
django -- multiple vulnerabilities
|
| py30-django-devel |
django -- cross-site scripting vulnerability
|
| py30-django-devel |
django -- denial-of-service attack
|
| py31-django |
django -- multiple vulnerabilities
|
| py31-django |
django -- multiple vulnerabilities
|
| py31-django |
django -- multiple vulnerabilities
|
| py31-django |
django -- cross-site scripting vulnerability
|
| py31-django |
django -- denial-of-service attack
|
| py31-django-devel |
django -- multiple vulnerabilities
|
| py31-django-devel |
django -- multiple vulnerabilities
|
| py31-django-devel |
django -- multiple vulnerabilities
|
| py31-django-devel |
django -- cross-site scripting vulnerability
|
| py31-django-devel |
django -- denial-of-service attack
|
| pyblosxom |
pyblosxom -- atom flavor multiple XML injection vulnerabilities
|
| pypy |
Python -- DoS via malformed XML-RPC / HTTP POST request
|
| python |
python -- buffer overrun in repr() for unicode strings
|
| python |
python -- SimpleXMLRPCServer.py allows unrestricted traversal
|
| python+ipv6 |
python -- buffer overrun in repr() for unicode strings
|
| python+ipv6 |
python -- SimpleXMLRPCServer.py allows unrestricted traversal
|
| python23 |
python -- multiple vulnerabilities
|
| python23 |
python -- Integer Signedness Error in zlib Module
|
| python24 |
Python -- DoS via malformed XML-RPC / HTTP POST request
|
| python24 |
python -- multiple vulnerabilities
|
| python24 |
python -- Integer Signedness Error in zlib Module
|
| python25 |
Python -- DoS via malformed XML-RPC / HTTP POST request
|
| python25 |
python -- multiple vulnerabilities
|
| python25 |
python -- Integer Signedness Error in zlib Module
|
| python26 |
Python -- DoS via malformed XML-RPC / HTTP POST request
|
| python27 |
Python -- DoS via malformed XML-RPC / HTTP POST request
|
| python31 |
Python -- DoS via malformed XML-RPC / HTTP POST request
|
| python32 |
Python -- DoS via malformed XML-RPC / HTTP POST request
|
| qemu |
qemu -- Heap overflow in Cirrus emulation
|
| qemu |
qemu -- "drive_init()" Disk Format Security Bypass
|
| qemu |
qemu -- unchecked block read/write vulnerability
|
| qemu |
qemu -- Translation Block Local Denial of Service Vulnerability
|
| qemu |
qemu -- several vulnerabilities
|
| qemu-devel |
qemu -- Heap overflow in Cirrus emulation
|
| qemu-devel |
qemu -- "drive_init()" Disk Format Security Bypass
|
| qemu-devel |
qemu -- unchecked block read/write vulnerability
|
| qemu-devel |
qemu -- Translation Block Local Denial of Service Vulnerability
|
| qemu-devel |
qemu -- several vulnerabilities
|
| qpopper |
qpopper -- multiple privilege escalation vulnerabilities
|
| qpopper |
qpopper format string vulnerability
|
| qt |
kdelibs -- integer overflow in khtml
|
| qt |
qt -- image loader vulnerabilities
|
| qt |
Qt 3.x BMP heap-based overflow, GIF and XPM DoS NULL pointer dereference
|
| qt-copy |
kdelibs -- integer overflow in khtml
|
| quagga |
quagga -- BGP OPEN denial of service vulnerability
|
| quagga |
quagga -- multiple vulnerabilities
|
| quagga |
quagga -- multiple vulnerabilities
|
| quagga |
quagga -- two DoS vulnerabilities
|
| quagga |
quagga -- stack overflow and DoS vulnerabilities
|
| quagga |
quagga -- Denial of Service
|
| quagga |
zebra/quagga denial of service vulnerability
|
| quagga-re |
quagga -- BGP OPEN denial of service vulnerability
|
| quagga-re |
quagga -- multiple vulnerabilities
|
| quake2forge |
quake2 -- multiple critical vulnerabilities
|
| quake2lnx |
quake2 -- multiple critical vulnerabilities
|
| racoon |
racoon -- remote denial-of-service
|
| racoon |
racoon -- improper certificate handling
|
| racoon |
racoon remote denial of service vulnerability (ISAKMP header length field)
|
| racoon |
racoon remote denial of service vulnerability (IKE Generic Payload Header)
|
| racoon |
racoon fails to verify signature during Phase 1
|
| racoon |
tcpdump ISAKMP payload handling remote denial-of-service
|
| racoon |
racoon security association deletion vulnerability
|
| racoon |
Racoon may validate invalid certificates
|
| raptor |
raptor/raptor2 -- XXE in RDF/XML File Interpretation
|
| raptor2 |
raptor/raptor2 -- XXE in RDF/XML File Interpretation
|
| rar |
rar -- password prompt buffer overflow vulnerability
|
| razor-agents |
razor-agents -- denial of service vulnerability
|
| redis |
Multiple implementations -- DoS via hash algorithm collision
|
| redmine |
redmine -- XSS vulnerability
|
| redmine |
redmine -- multiple vulnerabilities
|
| redmine |
redmine -- multiple vulnerabilities
|
| redmine |
redmine -- multiple vulnerabilities
|
| rekonq |
kdelibs4, rekonq -- input validation failure
|
| rinetd |
fd_set -- bitmap index overflow in multiple applications
|
| ripmime |
ripMIME -- decoding bug allowing content filter bypass
|
| rkhunter |
rkhunter -- insecure temporary file creation
|
| rlpr |
rlpr "msg()" buffer overflow and format string vulnerabilities
|
| rockdodger |
rockdodger -- buffer overflows
|
| roundcube |
roundcube -- arbitrary file disclosure vulnerability
|
| roundcube |
roundcube -- cross-site scripting in HTML email messages
|
| roundcube |
roundcube -- XSS vulnerability
|
| roundcube |
roundcube -- webmail script insertion and php code injection
|
| roundcube |
roundcube -- remote execution of arbitrary code
|
| roundup |
Roundup remote file disclosure vulnerability
|
| rsnapshot |
rsnapshot -- local privilege escalation
|
| rssh |
rssh -- configuration restrictions bypass
|
| rssh |
rssh -- arbitrary command execution
|
| rssh |
rssh -- privilege escalation vulnerability
|
| rssh |
rssh & scponly -- arbitrary command execution
|
| rssh |
rssh -- format string vulnerability
|
| rssh |
rssh -- file name disclosure bug
|
| rssh |
rssh file existence information disclosure weakness
|
| rsync |
rsync -- incremental recursion memory corruption vulnerability
|
| rsync |
rsync -- off by one stack overflow
|
| rsync |
rsync -- path sanitizing vulnerability
|
| rsync |
rsync path traversal issue
|
| rsync |
rsync buffer overflow in server mode
|
| rt |
rt -- Session fixation vulnerability
|
| rt36 |
rt -- multiple vulnerabilities
|
| rt38 |
RT -- Multiple Vulnerabilities
|
| rt38 |
RT -- Multiple Vulnerabilities
|
| rt38 |
rt -- multiple vulnerabilities
|
| rt40 |
RT -- Multiple Vulnerabilities
|
| rt40 |
RT -- Multiple Vulnerabilities
|
| ru-apache |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| ru-apache |
apache -- mod_rewrite buffer overflow vulnerability
|
| ru-apache |
apache -- mod_imap cross-site scripting flaw
|
| ru-apache |
apache -- http request smuggling
|
| ru-apache |
apache mod_include buffer overflow vulnerability
|
| ru-apache |
Apache 1.3 IP address access control failure on some 64-bit platforms
|
| ru-apache+mod_ssl |
Apache 1.3 -- mod_proxy reverse proxy exposure
|
| ru-apache+mod_ssl |
apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
|
| ru-apache+mod_ssl |
apache -- mod_rewrite buffer overflow vulnerability
|
| ru-apache+mod_ssl |
apache -- mod_imap cross-site scripting flaw
|
| ru-apache+mod_ssl |
apache -- http request smuggling
|
| ru-apache+mod_ssl |
apache mod_include buffer overflow vulnerability
|
| ru-apache+mod_ssl |
mod_ssl -- SSLCipherSuite bypass
|
| ru-apache+mod_ssl |
apache13-modssl -- format string vulnerability in proxy support
|
| ru-apache+mod_ssl |
Apache 1.3 IP address access control failure on some 64-bit platforms
|
| ru-apache+mod_ssl |
mod_proxy buffer overflow (CAN-2004-0492)
|
| ru-apache+mod_ssl |
mod_ssl stack-based buffer overflow
|
| ru-apache+mod_ssl |
mod_ssl format string vulnerability
|
| ru-apache-1.3 |
Apache 1.3 -- mod_proxy reverse proxy exposure
|
| ru-bogofilter |
bogofilter -- RFC 2047 decoder denial-of-service vulnerability
|
| ru-bugzilla |
bugzilla -- multiple vulnerabilities
|
| ru-gaim |
libgadu -- multiple vulnerabilities
|
| ru-gaim |
gaim -- AIM/ICQ non-UTF-8 filename crash
|
| ru-gaim |
gaim -- AIM/ICQ away message buffer overflow
|
| ru-gaim |
gaim -- Yahoo! remote crash vulnerability
|
| ru-gaim |
gaim -- MSN Remote DoS vulnerability
|
| ru-gaim |
gaim -- MSN remote DoS vulnerability
|
| ru-gaim |
gaim -- remote crash on some protocols
|
| ru-gaim |
gaim -- AIM/ICQ remote denial of service vulnerability
|
| ru-gaim |
gaim -- remote DoS on receiving malformed HTML
|
| ru-gaim |
gaim -- jabber remote crash
|
| ru-gaim |
gaim -- remote DoS on receiving certain messages over IRC
|
| ru-gaim |
gaim -- remote DoS on receiving malformed HTML
|
| ru-gaim |
gaim -- MSN denial-of-service vulnerabilities
|
| ru-gaim |
gaim -- Content-Length header denial-of-service vulnerability
|
| ru-gaim |
gaim -- multiple buffer overflows
|
| ru-gaim |
gaim -- heap overflow exploitable by malicious GroupWise server
|
| ru-gaim |
gaim -- malicious smiley themes
|
| ru-gaim |
gaim -- buffer overflow in MSN protocol support
|
| ru-gaim |
gaim remotely exploitable vulnerabilities in MSN component
|
| ru-gaim |
Several remotely exploitable buffer overflows in gaim
|
| ru-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| ru-linux-mozillafirebird |
firefox & mozilla -- command line URL shell command injection
|
| ru-linux-mozillafirebird |
firefox & mozilla -- buffer overflow vulnerability
|
| ru-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| ru-linux-mozillafirebird |
mozilla -- privilege escalation via non-DOM property overrides
|
| ru-linux-mozillafirebird |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| ru-linux-mozillafirebird |
mozilla -- code execution via javascript: IconURL vulnerability
|
| ru-linux-mozillafirebird |
mozilla -- privilege escalation via DOM property overrides
|
| ru-linux-mozillafirebird |
mozilla -- code execution through javascript: favicons
|
| ru-linux-mozillafirebird |
mozilla -- javascript "lambda" replace exposes memory contents
|
| ru-linux-mozillafirebird |
mozilla -- heap buffer overflow in GIF image processing
|
| ru-linux-mozillafirebird |
mozilla -- insecure temporary directory vulnerability
|
| ru-linux-mozillafirebird |
mozilla -- arbitrary code execution vulnerability
|
| ru-linux-mozillafirebird |
web browsers -- window injection vulnerabilities
|
| ru-linux-mozillafirebird |
mozilla -- insecure permissions for some downloaded files
|
| ru-linux-mozillafirebird |
mozilla -- scripting vulnerabilities
|
| ru-linux-mozillafirebird |
mozilla -- users may be lured into bypassing security dialogs
|
| ru-linux-mozillafirebird |
mozilla -- hostname spoofing bug
|
| ru-linux-mozillafirebird |
mozilla -- BMP decoder vulnerabilities
|
| ru-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| ru-openoffice |
openoffice -- document disclosure
|
| ru-wordpress |
wordpress -- multiple vulnerabilities
|
| ruby |
ruby -- DoS vulnerability in REXML
|
| ruby |
Ruby -- Denial of Service and Unsafe Object Creation Vulnerability in JSON
|
| ruby |
Ruby -- XSS exploit of RDoc documentation generated by rdoc
|
| ruby |
ruby -- Hash-flooding DoS vulnerability for ruby 1.9
|
| ruby |
ruby -- Unintentional file creation caused by inserting an illegal NUL character
|
| ruby |
ruby -- $SAFE escaping vulnerability about Exception#to_s/NameError#to_s
|
| ruby |
Multiple implementations -- DoS via hash algorithm collision
|
| ruby |
ruby -- UTF-7 encoding XSS vulnerability in WEBrick
|
| ruby |
ruby -- heap overflow vulnerability
|
| ruby |
ruby -- BigDecimal denial of service vulnerability
|
| ruby |
ruby -- multiple vulnerabilities in safe level
|
| ruby |
ruby -- DoS vulnerability in WEBrick
|
| ruby |
ruby -- DNS spoofing vulnerability
|
| ruby |
ruby -- multiple integer and buffer overflow vulnerabilities
|
| ruby |
ruby -- cgi.rb library Denial of Service
|
| ruby |
ruby -- cgi.rb library Denial of Service
|
| ruby |
ruby -- multiple vulnerabilities
|
| ruby |
ruby -- vulnerability in the safe level settings
|
| ruby |
ruby -- arbitrary command execution on XMLRPC server
|
| ruby |
ruby -- CGI DoS
|
| ruby |
Ruby insecure file permissions in the CGI session management
|
| ruby+nopthreads |
Multiple implementations -- DoS via hash algorithm collision
|
| ruby+nopthreads+oniguruma |
Multiple implementations -- DoS via hash algorithm collision
|
| ruby+oniguruma |
Multiple implementations -- DoS via hash algorithm collision
|
| ruby+oniguruma |
ruby -- UTF-7 encoding XSS vulnerability in WEBrick
|
| ruby+oniguruma |
ruby -- BigDecimal denial of service vulnerability
|
| ruby+oniguruma |
ruby -- multiple vulnerabilities in safe level
|
| ruby+oniguruma |
ruby -- DoS vulnerability in WEBrick
|
| ruby+oniguruma |
ruby -- DNS spoofing vulnerability
|
| ruby+oniguruma |
ruby -- multiple integer and buffer overflow vulnerabilities
|
| ruby+oniguruma |
ruby -- cgi.rb library Denial of Service
|
| ruby+oniguruma |
ruby -- cgi.rb library Denial of Service
|
| ruby+pthreads |
ruby -- UTF-7 encoding XSS vulnerability in WEBrick
|
| ruby+pthreads |
ruby -- BigDecimal denial of service vulnerability
|
| ruby+pthreads |
ruby -- multiple vulnerabilities in safe level
|
| ruby+pthreads |
ruby -- DoS vulnerability in WEBrick
|
| ruby+pthreads |
ruby -- DNS spoofing vulnerability
|
| ruby+pthreads |
ruby -- multiple integer and buffer overflow vulnerabilities
|
| ruby+pthreads |
ruby -- cgi.rb library Denial of Service
|
| ruby+pthreads |
ruby -- cgi.rb library Denial of Service
|
| ruby+pthreads+oniguruma |
ruby -- UTF-7 encoding XSS vulnerability in WEBrick
|
| ruby+pthreads+oniguruma |
ruby -- BigDecimal denial of service vulnerability
|
| ruby+pthreads+oniguruma |
ruby -- multiple vulnerabilities in safe level
|
| ruby+pthreads+oniguruma |
ruby -- DoS vulnerability in WEBrick
|
| ruby+pthreads+oniguruma |
ruby -- DNS spoofing vulnerability
|
| ruby+pthreads+oniguruma |
ruby -- multiple integer and buffer overflow vulnerabilities
|
| ruby+pthreads+oniguruma |
ruby -- cgi.rb library Denial of Service
|
| ruby+pthreads+oniguruma |
ruby -- cgi.rb library Denial of Service
|
| ruby-1.7.0 |
ruby -- CGI DoS
|
| ruby_r |
ruby -- CGI DoS
|
| ruby_static |
ruby -- multiple integer and buffer overflow vulnerabilities
|
| ruby_static |
ruby -- cgi.rb library Denial of Service
|
| ruby_static |
ruby -- cgi.rb library Denial of Service
|
| ruby_static |
ruby -- multiple vulnerabilities
|
| ruby_static |
ruby -- vulnerability in the safe level settings
|
| ruby_static |
ruby -- arbitrary command execution on XMLRPC server
|
| rubygem-actionpack |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-actionpack |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-actionpack |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-actionpack |
rubygem-actionpack -- Denial of Service
|
| rubygem-activemodel |
rubygem-activerecord -- multiple vulnerabilities
|
| rubygem-activerecord |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-activerecord |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-activesupport |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-activesupport |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-activesupport |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-activesupport |
rubygem-rails -- JSON XSS vulnerability
|
| rubygem-mail |
rubygem-mail -- multiple vulnerabilities
|
| rubygem-mail |
rubygem-mail -- Remote Arbitrary Shell Command Injection Vulnerability
|
| rubygem-rack |
Multiple implementations -- DoS via hash algorithm collision
|
| rubygem-rails |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-rails |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-rails |
rubygem-rails -- SQL injection vulnerability
|
| rubygem-rails |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-rails |
rubygem-rails -- multiple vulnerabilities
|
| rubygem-rails |
rubygem-rails -- SQL injection vulnerability
|
| rubygem-rails |
rubygem-rails -- JSON XSS vulnerability
|
| rubygem-rails |
rubygem-rails -- session-fixation vulnerability
|
| rubygem-rails |
rubygem-rails -- evaluation of ruby code
|
| rubygem18-activemodel |
Ruby Activemodel Gem -- Circumvention of attr_protected
|
| rubygem18-dragonfly |
rubygem-dragonfly -- arbitrary code execution
|
| rubygem18-json |
Ruby -- Denial of Service and Unsafe Object Creation Vulnerability in JSON
|
| rubygem18-json_pure |
Ruby -- Denial of Service and Unsafe Object Creation Vulnerability in JSON
|
| rubygem18-rack |
Ruby Rack Gem -- Multiple Issues
|
| rubygem18-rdoc |
Ruby -- XSS exploit of RDoc documentation generated by rdoc
|
| rubygem18-ruby_parser |
rubygem-ruby_parser -- insecure tmp file usage
|
| rubygem19-activemodel |
Ruby Activemodel Gem -- Circumvention of attr_protected
|
| rubygem19-dragonfly |
rubygem-dragonfly -- arbitrary code execution
|
| rubygem19-json |
Ruby -- Denial of Service and Unsafe Object Creation Vulnerability in JSON
|
| rubygem19-json_pure |
Ruby -- Denial of Service and Unsafe Object Creation Vulnerability in JSON
|
| rubygem19-rack |
Ruby Rack Gem -- Multiple Issues
|
| rubygem19-rdoc |
Ruby -- XSS exploit of RDoc documentation generated by rdoc
|
| rubygem19-ruby_parser |
rubygem-ruby_parser -- insecure tmp file usage
|
| rubygem20-dragonfly |
rubygem-dragonfly -- arbitrary code execution
|
| rubygem20-ruby_parser |
rubygem-ruby_parser -- insecure tmp file usage
|
| ruby{,_r,_static} |
ruby CGI::Session insecure file creation
|
| rxvt-unicode |
rxvt-unicode -- restore permissions on tty devices
|
| rxvt-unicode |
rxvt-unicode -- buffer overflow vulnerability
|
| samba |
samba -- potential leakage of arbitrary memory contents
|
| samba |
samba -- buffer overflow vulnerability
|
| samba |
samba -- multiple vulnerabilities
|
| samba |
samba -- nss_info plugin privilege escalation vulnerability
|
| samba |
samba -- multiple vulnerabilities
|
| samba |
samba -- potential Denial of Service bug in smbd
|
| samba |
samba -- format string bug in afsacl.so VFS plugin
|
| samba |
samba -- memory exhaustion DoS in smbd
|
| samba |
samba -- Exposure of machine account credentials in winbind log files
|
| samba |
samba -- integer overflow vulnerability
|
| samba |
smbd -- buffer-overrun vulnerability
|
| samba |
samba -- potential remote DoS vulnerability
|
| samba |
samba -- remote file disclosure
|
| samba |
Multiple Potential Buffer Overruns in Samba
|
| samba |
Samba 3.0.x password initialization bug
|
| samba3 |
samba -- potential leakage of arbitrary memory contents
|
| samba3 |
samba -- buffer overflow vulnerability
|
| samba3 |
samba -- multiple vulnerabilities
|
| samba3 |
samba3 DoS attack
|
| samba32-devel |
samba -- potential leakage of arbitrary memory contents
|
| samba34 |
samba -- incorrect permission checks vulnerability
|
| samba34 |
samba -- "root" credential remote code execution
|
| samba34 |
Samba -- cross site scripting and request forgery vulnerabilities
|
| samba34 |
Samba -- Denial of service - memory corruption
|
| samba35 |
samba -- incorrect permission checks vulnerability
|
| samba35 |
samba -- "root" credential remote code execution
|
| samba35 |
Samba -- cross site scripting and request forgery vulnerabilities
|
| samba35 |
Samba -- Denial of service - memory corruption
|
| samba36 |
samba -- incorrect permission checks vulnerability
|
| samba36 |
samba -- "root" credential remote code execution
|
| scorched3d |
Scorched 3D server chat box format string vulnerability
|
| scponly |
scponly -- local privilege escalation exploits
|
| scponly |
rssh & scponly -- arbitrary command execution
|
| screen |
screen -- combined UTF-8 characters vulnerability
|
| sdl_image |
sdl_image -- buffer overflow vulnerabilities
|
| se-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| se-openoffice |
openoffice -- document disclosure
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- Use-after-free in HTML Editor
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- heap-buffer overflow
|
| seamonkey |
mozilla -- use after free in nsXBLDocumentInfo::ReadPrototypeBindings
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
Mozilla -- multiple vulnerabilities
|
| seamonkey |
nss/ca_root_nss -- fraudulent certificates issued by DigiNotar.nl
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
Mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- update to HTTPS certificate blacklist
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- Heap buffer overflow mixing document.write and DOM insertion
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
firefox -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
firefox -- javascript garbage collector vulnerability
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
firefox -- multiple remote unspecified memory corruption vulnerabilities
|
| seamonkey |
firefox -- OnUnload Javascript browser entrapment vulnerability
|
| seamonkey |
mozilla -- code execution via Quicktime media-link files
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| seamonkey |
mozilla -- multiple vulnerabilities
|
| sendmail |
sendmail -- race condition vulnerability
|
| serendipity |
serendipity -- multiple cross site scripting vulnerabilities
|
| serendipity |
Serendipity -- XSS Vulnerabilities
|
| serendipity-devel |
serendipity -- multiple cross site scripting vulnerabilities
|
| setiathome |
seti@home remotely exploitable buffer overflow
|
| sge |
sge -- local root exploit in bundled rsh executable
|
| sgeee |
sge -- local root exploit in bundled rsh executable
|
| sharutils |
sharutils -- unshar insecure temporary file creation
|
| sharutils |
sharutils -- buffer overflows
|
| shoutcast |
shoutcast -- cross-site scripting, information exposure
|
| shtool |
shtool -- insecure temporary file creation
|
| sieve-connect |
sieve-connect -- TLS hostname verification was not occurring
|
| silc-client |
silc-client -- Format string vulnerability
|
| silc-client |
silc -- pkcs_decode buffer overflow
|
| silc-irssi-client |
silc-client -- Format string vulnerability
|
| silc-irssi-client |
silc -- pkcs_decode buffer overflow
|
| silc-server |
silc -- pkcs_decode buffer overflow
|
| silc-toolkit |
silc-toolkit -- Format string vulnerabilities
|
| sircd |
sircd -- remote reverse DNS buffer overflow
|
| sircd |
sircd -- remote operator privilege escalation vulnerability
|
| sitecopy |
neon date parsing vulnerability
|
| sitecopy |
neon format string vulnerabilities
|
| sk-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| sk-openoffice |
openoffice -- document disclosure
|
| skype |
skype -- multiple buffer overflow vulnerabilities
|
| sl-openoffice-SI |
openoffice -- DOC document heap overflow vulnerability
|
| sl-openoffice-SI |
openoffice -- document disclosure
|
| sl-openoffice-SL |
openoffice -- DOC document heap overflow vulnerability
|
| slim |
slim -- insecure PATH assignment
|
| slim |
slim -- local disclosure of X authority magic cookie
|
| smbftpd |
smbftpd -- format string vulnerability
|
| smtpproxy |
smtpproxy: remotely exploitable format string vulnerability
|
| snort |
snort -- DCE/RPC preprocessor vulnerability
|
| snort |
snort -- Back Orifice preprocessor buffer overflow vulnerability
|
| socat |
socat -- Heap-based buffer overflow
|
| socat |
socat -- format string vulnerability
|
| sox |
SoX buffer overflows when handling .WAV files
|
| spamass-milter |
spamass-milter -- remote command execution vulnerability
|
| spamdyke |
spamdyke -- Buffer Overflow Vulnerabilities
|
| spamdyke |
spamdyke -- STARTTLS Plaintext Injection Vulnerability
|
| spamdyke |
spamdyke -- open relay
|
| sql-ledger |
sql-ledger -- security bypass vulnerability
|
| sql-ledger |
sql-ledger -- multiple vulnerabilities
|
| squid |
squid -- denial of service
|
| squid |
squid -- Denial of service vulnerability in request handling
|
| squid |
squid -- Denial of Service vulnerability in HTCP
|
| squid |
squid -- Denial of Service vulnerability in DNS handling
|
| squid |
squid -- several remote denial of service vulnerabilities
|
| squid |
squid -- remote denial of service vulnerability
|
| squid |
Squid -- Denial of Service Vulnerability
|
| squid |
Squid -- TRACE method handling denial of service
|
| squid |
squid -- FTP server response handling denial of service
|
| squid |
squid -- possible denial of service condition regarding NTLM authentication
|
| squid |
squid -- Denial Of Service Vulnerability in sslConnectTimeout
|
| squid |
squid -- Possible Denial Of Service Vulnerability in store.c
|
| squid |
squid -- denial-of-service vulnerabilities
|
| squid |
squid -- possible abuse of cachemgr.cgi
|
| squid |
squid -- DNS lookup spoofing vulnerability
|
| squid |
squid -- DoS on failed PUT/POST requests vulnerability
|
| squid |
squid -- correct handling of oversized HTTP reply headers
|
| squid |
squid -- buffer overflow in WCCP recvfrom() call
|
| squid |
squid -- possible cache-poisoning via malformed HTTP responses
|
| squid |
squid -- HTTP response splitting cache pollution attack
|
| squid |
squid -- no sanity check of usernames in squid_ldap_auth
|
| squid |
squid -- denial of service with forged WCCP messages
|
| squid |
squid -- buffer overflow vulnerability in gopherToHTML
|
| squid |
squid -- confusing results on empty acl declarations
|
| squid |
squid -- possible information disclosure
|
| squid |
squid -- SNMP module denial-of-service vulnerability
|
| squid |
squid -- NTLM authentication denial-of-service vulnerability
|
| squid |
Buffer overflow in Squid NTLM authentication helper
|
| squid |
squid ACL bypass due to URL decoding bug
|
| squid |
Squid NTLM authentication helper DoS
|
| squidclamav |
squidclamav -- cross-site scripting in default virus warning pages
|
| squidclamav |
squidclamav -- Denial of Service
|
| squidGuard |
squidGuard -- multiple vulnerabilities
|
| squirrelmail |
squirrelmail -- Cross site scripting vulnerability
|
| squirrelmail |
squirrelmail -- Session hijacking vulnerability
|
| squirrelmail |
squirrelmail -- Cross site scripting in HTML filter
|
| squirrelmail |
squirrelmail -- random variable overwrite vulnerability
|
| squirrelmail |
squirrelmail -- plugin.php local file inclusion vulnerability
|
| squirrelmail |
squirrelmail -- multiple vulnerabilities
|
| squirrelmail |
squirrelmail -- _$POST variable handling allows for various attacks
|
| squirrelmail |
squirrelmail -- Several cross site scripting vulnerabilities
|
| squirrelmail |
squirrelmail -- XSS and remote code injection vulnerabilities
|
| squirrelmail |
squirrelmail -- cross site scripting vulnerability
|
| squirrelmail |
SquirrelMail XSS vulnerability
|
| squirrelmail-multilogin-plugin |
SquirrelMail -- Plug-ins compromise
|
| sqwebmail |
Courier mail services: remotely exploitable buffer overflows
|
| sqwebmail |
Sqwebmail XSS vulnerability
|
| ssh2 |
SSH.COM SFTP server -- format string vulnerability
|
| ssh2-nox11 |
SSH.COM SFTP server -- format string vulnerability
|
| SSLtelnet |
Format string vulnerability in SSLtelnet
|
| SSLtelnet |
SSLtelnet remote format string vulnerability
|
| star |
Vulnerability in star versions that support ssh for remote tape access
|
| streamripper |
streamripper -- multiple buffer overflows
|
| strongswan |
strongSwan -- ECDSA signature verification issue
|
| stunnel |
stunnel -- Remote Code Execution
|
| stunnel |
stunnel -- heap corruption vulnerability
|
| subversion |
Subversion -- multiple vulnerabilities
|
| subversion |
Subversion -- multiple vulnerabilities
|
| subversion |
subversion -- remote HTTP DoS vulnerability
|
| subversion |
subversion -- multiple DoS
|
| subversion |
subversion -- heap overflow vulnerability
|
| subversion |
subversion -- WebDAV fails to protect metadata
|
| subversion |
subversion date parsing vulnerability
|
| subversion |
mod_authz_svn access control bypass
|
| subversion-freebsd |
Subversion -- multiple vulnerabilities
|
| subversion-freebsd |
subversion -- remote HTTP DoS vulnerability
|
| subversion-freebsd |
subversion -- multiple DoS
|
| subversion-freebsd |
subversion -- heap overflow vulnerability
|
| subversion-perl |
subversion -- WebDAV fails to protect metadata
|
| subversion-python |
subversion -- WebDAV fails to protect metadata
|
| subversion-{perl,python} |
mod_authz_svn access control bypass
|
| subversion{,-perl,-python} |
subversion: remote exploitable buffer overflow in 'svn://' parser
|
| sudo |
sudo -- Authentication bypass when clock is reset
|
| sudo |
sudo -- Potential bypass of tty_tickets constraints
|
| sudo |
sudo -- netmask vulnerability
|
| sudo |
sudo -- format string vulnerability
|
| sudo |
sudo -- local privilege escalation
|
| sudo |
sudo -- Flaw in Runas group matching
|
| sudo |
sudo -- Secure path vulnerability
|
| sudo |
sudo -- Privilege escalation with sudoedit
|
| sudo |
sudo -- Privilege escalation with sudoedit
|
| sudo |
sudo -- certain authorized users could run commands as any user
|
| sudo |
sudo -- arbitrary command execution
|
| sudo |
sudo -- local race condition vulnerability
|
| sudo |
sudo -- environmental variable CDPATH is not cleared
|
| sudo |
sudo -- privilege escalation with bash scripts
|
| sudo |
sudo -- sudoedit information disclosure
|
| sudoscript |
sudoscript -- signal delivery vulnerability
|
| sudosh2 |
sudosh -- buffer overflow
|
| sudosh3 |
sudosh -- buffer overflow
|
| sup |
sup -- format string vulnerability
|
| sup |
CMU SUP logging format string vulnerabilities
|
| super |
super format string vulnerability
|
| suphp |
suphp -- multiple local privilege escalation vulnerabilities
|
| surf |
surf -- private information disclosure
|
| swfdec |
swfdec -- exposure of sensitive information
|
| sylpheed |
sylpheed -- MIME-encoded file name buffer overflow vulnerability
|
| sylpheed |
sylpheed -- buffer overflow in header processing
|
| sylpheed-claws |
claws-mail -- POP3 Format String Vulnerability
|
| sylpheed-claws |
sylpheed -- MIME-encoded file name buffer overflow vulnerability
|
| sylpheed-claws |
sylpheed -- buffer overflow in header processing
|
| sylpheed-gtk2 |
sylpheed -- MIME-encoded file name buffer overflow vulnerability
|
| sylpheed-gtk2 |
sylpheed -- buffer overflow in header processing
|
| sylpheed2 |
claws-mail -- POP3 Format String Vulnerability
|
| sympa |
mail/sympa* -- Multiple vulnerabilities in Sympa archive management
|
| sympa |
sympa -- Multiple Security Bypass Vulnerabilities
|
| sympa |
sympa -- buffer overflow in "queue"
|
| sympa |
Sympa unauthorized list creation
|
| syslog-ng |
syslog-ng2 -- startup directory leakage in the chroot environment
|
| syslog-ng2 |
syslog-ng2 -- startup directory leakage in the chroot environment
|
| tarsnap |
tarsnap -- cryptographic nonce reuse
|
| tcpdump |
FreeBSD -- Buffer overflow in tcpdump(1)
|
| tcpdump |
tcpdump -- infinite loops in protocol decoding
|
| tcpdump |
tcpdump ISAKMP payload handling remote denial-of-service
|
| tcpdump |
L2TP, ISAKMP, and RADIUS parsing vulnerabilities in tcpdump
|
| tdiary |
tdiary -- injection vulnerability
|
| tdiary |
tdiary -- cross site scripting vulnerability
|
| tdiary-devel |
tdiary -- injection vulnerability
|
| tdiary-devel |
tdiary -- cross site scripting vulnerability
|
| teamspeak_server |
Teamspeak Server -- Directory Traversal Vulnerability
|
| teTeX-base |
xpdf -- makeFileKey2() buffer overflow vulnerability
|
| teTeX-base |
xpdf -- buffer overflow vulnerability
|
| teTeX-base |
xpdf -- integer overflow vulnerabilities
|
| tethereal |
wireshark -- PCNFSD Dissector Denial of Service Vulnerability
|
| tethereal |
wireshark -- multiple vulnerabilities
|
| tethereal |
wireshark -- multiple vulnerabilities
|
| tethereal |
wireshark -- SMTP Processing Denial of Service Vulnerability
|
| tethereal |
wireshark -- multiple vulnerabilities
|
| tethereal |
wireshark -- Multiple problems
|
| tethereal |
ethereal -- Multiple Protocol Dissector Vulnerabilities
|
| tethereal |
ethereal -- multiple protocol dissectors vulnerabilities
|
| tethereal |
ethereal -- multiple protocol dissectors vulnerabilities
|
| tethereal |
ethereal -- multiple protocol dissectors vulnerabilities
|
| tethereal |
ethereal -- multiple protocol dissectors vulnerabilities
|
| tethereal |
ethereal -- multiple vulnerabilities
|
| tethereal |
multiple vulnerabilities in ethereal
|
| tethereal |
multiple vulnerabilities in ethereal
|
| tethereal |
multiple vulnerabilities in ethereal
|
| tethereal-lite |
wireshark -- PCNFSD Dissector Denial of Service Vulnerability
|
| tethereal-lite |
wireshark -- multiple vulnerabilities
|
| tethereal-lite |
wireshark -- multiple vulnerabilities
|
| tethereal-lite |
wireshark -- SMTP Processing Denial of Service Vulnerability
|
| tethereal-lite |
wireshark -- multiple vulnerabilities
|
| tethereal-lite |
wireshark -- Multiple problems
|
| tethereal-lite |
ethereal -- Multiple Protocol Dissector Vulnerabilities
|
| tethereal-lite |
ethereal -- multiple protocol dissectors vulnerabilities
|
| tethereal-lite |
ethereal -- multiple protocol dissectors vulnerabilities
|
| tethereal-lite |
ethereal -- multiple protocol dissectors vulnerabilities
|
| tethereal-lite |
ethereal -- multiple protocol dissectors vulnerabilities
|
| tethereal-lite |
ethereal -- multiple vulnerabilities
|
| tethereal-lite |
multiple vulnerabilities in ethereal
|
| tethereal-lite |
multiple vulnerabilities in ethereal
|
| tethereal{,-lite} |
multiple vulnerabilities in ethereal
|
| tethereal{,-lite} |
multiple vulnerabilities in ethereal
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- Use-after-free in HTML Editor
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- heap-buffer overflow
|
| thunderbird |
mozilla -- use after free in nsXBLDocumentInfo::ReadPrototypeBindings
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
Mozilla -- multiple vulnerabilities
|
| thunderbird |
nss/ca_root_nss -- fraudulent certificates issued by DigiNotar.nl
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- Heap buffer overflow mixing document.write and DOM insertion
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
firefox -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
firefox -- javascript garbage collector vulnerability
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
mozilla -- multiple vulnerabilities
|
| thunderbird |
thunderbird -- javascript execution
|
| thunderbird |
mozilla -- heap buffer overflow in GIF image processing
|
| thunderbird |
mozilla -- insecure permissions for some downloaded files
|
| thunderbird |
mozilla -- scripting vulnerabilities
|
| thunderbird |
mozilla -- users may be lured into bypassing security dialogs
|
| thunderbird |
mozilla -- hostname spoofing bug
|
| thunderbird |
mozilla -- BMP decoder vulnerabilities
|
| thunderbird |
mozilla -- vCard stack buffer overflow
|
| thunderbird |
mozilla -- multiple heap buffer overflows
|
| thunderbird |
mozilla -- POP client heap overflow
|
| thunderbird |
libpng stack-based buffer overflow and other code concerns
|
| thunderbird |
libpng stack-based buffer overflow and other code concerns
|
| tiff |
tiff -- Multiple integer overflows
|
| tiff |
tiff -- buffer overflow vulnerability
|
| tiff |
tiff -- buffer overflow vulnerability
|
| tiff |
tiff -- divide-by-zero denial-of-service
|
| tiff |
tiff -- tiffdump integer overflow vulnerability
|
| tiff |
tiff -- directory entry count integer overflow vulnerability
|
| tiff |
tiff -- multiple integer overflows
|
| tiff |
tiff -- RLE decoder heap overflows
|
| tikiwik |
tikiwiki -- multiple vulnerabilities
|
| tikiwiki |
tikiwiki -- multiple vulnerabilities
|
| tin |
tin -- buffer overflow vulnerabilities
|
| tinc |
tinc -- Buffer overflow
|
| tinyproxy |
tinyproxy -- ACL lists ineffective when range is configured
|
| tk |
tcl/tk -- buffer overflow in ReadImage function
|
| tk-threads |
tcl/tk -- buffer overflow in ReadImage function
|
| tkdiff |
tkdiff -- temporary file symlink privilege escalation
|
| tla |
neon format string vulnerabilities
|
| tnftp |
tnftp -- mget does not check for directory escapes
|
| tnftpd |
tnftpd -- Remote root Exploit
|
| tnftpd |
tnftpd -- remotely exploitable vulnerability
|
| tomcat |
tomcat -- authentication weaknesses
|
| tomcat |
tomcat -- Denial of Service
|
| tomcat |
tomcat -- Denial of Service
|
| tomcat |
tomcat -- Denial of Service
|
| tomcat |
tomcat -- Denial of Service
|
| tomcat |
tomcat -- Cross-site scripting vulnerability
|
| tomcat |
tomcat -- Cross-site scripting vulnerability
|
| tomcat |
tomcat -- Cross-site scripting vulnerability
|
| tomcat |
tomcat -- information disclosure vulnerability
|
| tomcat |
tomcat -- XSS vulnerability in sample applications
|
| tomcat |
tomcat -- multiple vulnerabilities
|
| tomcat6 |
tomcat -- bypass of CSRF prevention filter
|
| tomcat6 |
tomcat -- denial of service
|
| tomcat6 |
tomcat -- bypass of security constraints
|
| tomcat7 |
tomcat -- bypass of CSRF prevention filter
|
| tomcat7 |
tomcat -- denial of service
|
| tomcat7 |
tomcat -- bypass of security constraints
|
| tor |
tor -- remote code execution and crash
|
| tor |
tor -- remote crash and potential remote code execution
|
| tor |
tor -- multiple vulnerabilites
|
| tor |
tor -- unspecified memory corruption vulnerability
|
| tor |
tor -- malicious tor server can locate a hidden service
|
| tor |
tor -- diffie-hellman handshake flaw
|
| tor |
tor -- information disclosure
|
| tor |
tor -- remote DoS and loss of anonymity
|
| tor-devel |
tor -- remote code execution and crash
|
| tor-devel |
tor -- remote crash and potential remote code execution
|
| tor-devel |
tor-devel -- DNS resolution vulnerabiliity
|
| tor-devel |
tor -- multiple vulnerabilites
|
| tor-devel |
tor -- unspecified memory corruption vulnerability
|
| torcs |
plib -- remote code execution via buffer overflow
|
| torcs |
torcs -- untrusted local library loading
|
| torrentflux |
torrentflux -- User-Agent XSS Vulnerability
|
| tptest |
tptest -- pwd Remote Stack Buffer Overflow
|
| tr-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| tr-openoffice |
openoffice -- document disclosure
|
| trac |
trac -- potential DOS vulnerability
|
| trac |
trac -- cross site scripting vulnerability
|
| trac |
trac -- reStructuredText breach of privacy and denial of service vulnerability
|
| trac |
trac -- Wiki Macro Script Insertion Vulnerability
|
| trac |
trac -- search module SQL injection vulnerability
|
| trac |
trac -- file upload/download vulnerability
|
| trafficserver |
Apache Traffic Server -- heap overflow vulnerability
|
| tshark |
Wireshark -- Multiple Vulnerabilities
|
| tshark |
wireshark -- denial of service in DRDA dissector
|
| tshark |
Wireshark -- Multiple vulnerabilities
|
| tshark |
Wireshark -- Multiple vulnerabilities
|
| tshark |
Wireshark -- DoS in the BER-based dissectors
|
| tshark-lite |
Wireshark -- Multiple Vulnerabilities
|
| tshark-lite |
wireshark -- denial of service in DRDA dissector
|
| tshark-lite |
Wireshark -- Multiple vulnerabilities
|
| tshark-lite |
Wireshark -- Multiple vulnerabilities
|
| tshark-lite |
Wireshark -- DoS in the BER-based dissectors
|
| turba |
turba -- Cross site scripting vulnerabilities in several of the address book name and contact data fields
|
| twiki |
twiki -- multiple vulnerabilities
|
| twiki |
twiki -- Arbitrary code execution in session files
|
| twiki |
twiki -- multiple file extensions file upload vulnerability
|
| twiki |
twiki -- arbitrary shell command execution
|
| typespeed |
typespeed -- arbitrary code execution
|
| typo3 |
typo3 -- Multiple vulnerabilities in TYPO3 Core
|
| typo3 |
typo3 -- Multiple vulnerabilities in TYPO3 Core
|
| typo3 |
typo3 -- Multiple vulernabilities in TYPO3 Core
|
| typo3 |
typo3 -- Cross-Site Scripting Vulnerability in TYPO3 Core
|
| typo3 |
typo -- Cross-Site Scripting
|
| typo3 |
typo3 -- Remote Code Execution
|
| typo3 |
typo3 -- multiple vulnerabilities in TYPO3 Core
|
| typo3 |
typo3 -- cross-site scripting and information disclosure
|
| typo3 |
typo3 -- multiple vulnerabilities
|
| typo3 |
typo3 -- email header injection
|
| uk-gd |
gd -- integer overflow
|
| unace |
unace -- multiple vulnerabilities
|
| unarj |
unarj -- long filename buffer overflow
|
| unarj |
unarj -- directory traversal vulnerability
|
| unbound |
unbound -- denial of service vulnerabilities from nonstandard redirection and denial of existence
|
| unbound |
Unbound -- an empty error packet handling assertion failure
|
| unrar |
rar -- password prompt buffer overflow vulnerability
|
| unrtf |
unrtf -- buffer overflow vulnerability
|
| unzip |
unzip -- permission race vulnerability
|
| unzoo |
unzoo -- Directory Traversal Vulnerability
|
| up-imapproxy |
up-imapproxy -- multiple vulnerabilities
|
| upnp |
upnp -- multiple vulnerabilities
|
| urban |
urban -- stack overflow vulnerabilities
|
| usermin |
webmin, usermin -- arbitrary file disclosure vulnerability
|
| usermin |
perl, webmin, usermin -- perl format string integer wrap vulnerability
|
| usermin |
Usermin remote shell command injection and insecure installation vulnerability
|
| uudeview |
uudeview buffer overflows
|
| uulib |
uudeview buffer overflows
|
| v8 |
Multiple implementations -- DoS via hash algorithm collision
|
| varnish |
varnish -- Varnish HTTP Request Parsing Denial of Service
|
| verlihub |
verlihub -- insecure temporary file usage and arbitrary command execution
|
| viewcvs |
viewcvs -- information leakage
|
| viewvc |
ViewVC -- user-reachable override of cvsdb row limit
|
| vim |
vim -- multiple vulnerabilities in the netrw module
|
| vim |
vim -- Vim Shell Command Injection Vulnerabilities
|
| vim |
vim -- Command Format String Vulnerability
|
| vim |
vim -- vulnerabilities in modeline handling: glob, expand
|
| vim |
vim -- vulnerabilities in modeline handling
|
| vim+ruby |
vim -- vulnerabilities in modeline handling: glob, expand
|
| vim+ruby |
vim -- vulnerabilities in modeline handling
|
| vim-gnome |
vim -- multiple vulnerabilities in the netrw module
|
| vim-gtk2 |
vim -- multiple vulnerabilities in the netrw module
|
| vim-lite |
vim -- multiple vulnerabilities in the netrw module
|
| vim-lite |
vim -- Vim Shell Command Injection Vulnerabilities
|
| vim-lite |
vim -- Command Format String Vulnerability
|
| vim-lite |
vim -- vulnerabilities in modeline handling: glob, expand
|
| vim-lite |
vim -- vulnerabilities in modeline handling
|
| vim-ruby |
vim -- Vim Shell Command Injection Vulnerabilities
|
| vim-ruby |
vim -- Command Format String Vulnerability
|
| vim6 |
vim6 -- heap-based overflow while parsing shell metacharacters
|
| vim6 |
vim -- Vim Shell Command Injection Vulnerabilities
|
| vim6 |
vim -- Command Format String Vulnerability
|
| vim6+ruby |
vim6 -- heap-based overflow while parsing shell metacharacters
|
| vim6-ruby |
vim -- Vim Shell Command Injection Vulnerabilities
|
| vim6-ruby |
vim -- Command Format String Vulnerability
|
| vinagre |
vinagre -- format string vulnerability
|
| virtualbox |
virtualbox -- privilege escalation
|
| vlc |
vlc -- arbitrary code execution in Real RTSP and MMS support
|
| vlc |
VLC -- Heap corruption in MP4 demultiplexer
|
| vlc |
vlc -- Insufficient input validation in MKV demuxer
|
| vlc |
vlc -- invalid id3v2 tags may lead to invalid memory dereferencing
|
| vlc |
vlc -- unintended code execution with specially crafted data
|
| vlc |
vlc -- stack overflow in MPA, AVI and ASF demuxer
|
| vlc |
vlc -- cue processing stack overflow
|
| vlc |
vlc -- format string vulnerability and integer overflow
|
| vlc-devel |
vlc -- arbitrary code execution in the RealMedia processor
|
| vlc-devel |
vlc -- cue processing stack overflow
|
| vnc |
vnc -- authentication bypass vulnerability
|
| vorbis-tools |
vorbis-tools -- Speex header processing vulnerability
|
| vpopmail |
vpopmail multiple vulnerabilities
|
| vpopmail-devel |
vpopmail multiple vulnerabilities
|
| vte |
vte -- Classic terminal title set+query attack
|
| vtiger |
vtiger -- multiple remote file inclusion vulnerabilities
|
| w3m |
w3m -- format string vulnerability
|
| w3m-img |
w3m -- format string vulnerability
|
| w3m-m17n |
w3m -- format string vulnerability
|
| w3m-m17n-img |
w3m -- format string vulnerability
|
| WebCalendar |
WebCalendar -- Persistent XSS
|
| WebCalendar |
WebCalendar -- "noSet" variable overwrite vulnerability
|
| WebCalendar |
WebCalendar -- information disclosure vulnerability
|
| WebCalendar |
WebCalendar -- unauthorized access vulnerability
|
| WebCalendar |
WebCalendar -- remote file inclusion vulnerability
|
| WebCalendar-devel |
WebCalendar -- multiple vulnerabilities
|
| WebCalendar-devel |
WebCalendar -- Persistent XSS
|
| webkit-gtk2 |
webkit-gtk2 -- Multiple vurnabilities.
|
| webkit-gtk2 |
webkit-gtk2 -- Multiple vulnabilities
|
| webkit-gtk2 |
Webkit-gtk2 -- Multiple Vulnabilities
|
| webkit-gtk2 |
webkit-gtk2 -- Multiple vulnabilities
|
| webkit-gtk2 |
webkit-gtk2 -- Multiple vulnabilities
|
| webmin |
webmin -- potential XSS attack via real name field
|
| webmin |
webmin -- cross site scripting vulnerability
|
| webmin |
webmin, usermin -- arbitrary file disclosure vulnerability
|
| webmin |
perl, webmin, usermin -- perl format string integer wrap vulnerability
|
| webmin |
webmin -- insecure temporary file creation at installation time
|
| webmin |
Multiple vulnerabilities in Webmin
|
| websvn |
websvn -- multiple vulnerabilities
|
| weechat |
weechat -- Arbitrary shell command execution via scripts
|
| weechat |
weechat -- Crash or freeze when decoding IRC colors in strings
|
| weechat-devel |
weechat -- Arbitrary shell command execution via scripts
|
| weechat-devel |
weechat -- Crash or freeze when decoding IRC colors in strings
|
| weex |
weex -- remote format string vulnerability
|
| wget |
wget -- multiple HTTP client download filename vulnerability
|
| wget |
wget -- multiple vulnerabilities
|
| wget+ipv6 |
wget -- multiple vulnerabilities
|
| wget-devel |
wget -- multiple HTTP client download filename vulnerability
|
| wget-devel |
wget -- multiple vulnerabilities
|
| wgetpro |
wget -- multiple vulnerabilities
|
| win32-codecs |
win32-codecs -- multiple vulnerabilities
|
| wine |
wine -- information disclosure due to insecure temporary file handling
|
| wireshark |
Wireshark -- Multiple Vulnerabilities
|
| wireshark |
wireshark -- denial of service in DRDA dissector
|
| wireshark |
Wireshark -- Multiple vulnerabilities
|
| wireshark |
Wireshark -- Multiple vulnerabilities
|
| wireshark |
Wireshark -- DoS in the BER-based dissectors
|
| wireshark |
wireshark -- DOCSIS dissector denial of service
|
| wireshark |
wireshark -- LWRES vulnerability
|
| wireshark |
wireshark -- PCNFSD Dissector Denial of Service Vulnerability
|
| wireshark |
wireshark -- multiple vulnerabilities
|
| wireshark |
wireshark -- multiple vulnerabilities
|
| wireshark |
wireshark -- SMTP Processing Denial of Service Vulnerability
|
| wireshark |
wireshark -- multiple vulnerabilities
|
| wireshark |
wireshark -- Multiple problems
|
| wireshark-lite |
Wireshark -- Multiple Vulnerabilities
|
| wireshark-lite |
wireshark -- denial of service in DRDA dissector
|
| wireshark-lite |
Wireshark -- Multiple vulnerabilities
|
| wireshark-lite |
Wireshark -- Multiple vulnerabilities
|
| wireshark-lite |
Wireshark -- DoS in the BER-based dissectors
|
| wireshark-lite |
wireshark -- LWRES vulnerability
|
| wireshark-lite |
wireshark -- PCNFSD Dissector Denial of Service Vulnerability
|
| wireshark-lite |
wireshark -- multiple vulnerabilities
|
| wireshark-lite |
wireshark -- multiple vulnerabilities
|
| wireshark-lite |
wireshark -- SMTP Processing Denial of Service Vulnerability
|
| wireshark-lite |
wireshark -- multiple vulnerabilities
|
| wireshark-lite |
wireshark -- Multiple problems
|
| wordpress |
wordpress -- multiple vulnerabilities
|
| wordpress |
wordpress -- multiple unspecified privilege escalation bugs
|
| wordpress |
wordpress -- multiple vulnerabilities
|
| wordpress |
WordPress -- cross site scripting vulnerability
|
| wordpress |
wordpress -- SQL injection vulnerability
|
| wordpress |
wordpress -- multiple vulnerabilities
|
| wordpress |
wordpress -- remote admin password reset vulnerability
|
| wordpress |
wordpress -- header rss feed script insertion vulnerability
|
| wordpress |
wordpress -- snoopy "_httpsrequest()" shell command execution vulnerability
|
| wordpress |
wordpress -- remote privilege escalation
|
| wordpress |
wordpress -- cross-site scripting
|
| wordpress |
wordpress -- remote sql injection vulnerability
|
| wordpress |
wordpress -- XMLRPC SQL Injection
|
| wordpress |
wordpress -- unmoderated comments disclosure
|
| wordpress |
wordpress -- full path disclosure
|
| wordpress |
wordpress -- multiple vulnerabilities
|
| wordpress |
wordpress -- multiple vulnerabilities
|
| wordpress |
wordpress -- XSS in administration panel
|
| wordpress-mu |
wordpress -- remote admin password reset vulnerability
|
| wordpress-mu |
wordpress -- header rss feed script insertion vulnerability
|
| wordpress-mu |
wordpress -- snoopy "_httpsrequest()" shell command execution vulnerability
|
| wordpress-mu |
wordpress -- remote privilege escalation
|
| wordpress-mu |
wordpress -- remote sql injection vulnerability
|
| wu-ftpd |
wu-ftpd -- remote globbing DoS vulnerability
|
| wu-ftpd |
wu-ftpd ftpaccess `restricted-uid'/`restricted-gid' directive may be bypassed
|
| wu-ftpd+ipv6 |
wu-ftpd -- remote globbing DoS vulnerability
|
| wu-ftpd+ipv6 |
wu-ftpd ftpaccess `restricted-uid'/`restricted-gid' directive may be bypassed
|
| wv |
wv -- Multiple Integer Overflow Vulnerabilities
|
| wv |
wv library datetime field buffer overflow
|
| wv2 |
wv2 -- Integer Overflow Vulnerability
|
| wzdftpd |
wzdftpd -- remote DoS
|
| x11vnc |
x11vnc -- authentication bypass vulnerability
|
| xapian-omega |
xapian-omega -- cross-site scripting vulnerability
|
| xboing |
multiple buffer overflows in xboing
|
| xchat2 |
xchat remotely exploitable buffer overflow (Socks5)
|
| xdeview |
uudeview buffer overflows
|
| xemacs |
emacs -- movemail format string vulnerability
|
| xemacs-devel |
emacs -- movemail format string vulnerability
|
| xemacs-devel-21.5 |
emacs -- movemail format string vulnerability
|
| xemacs-devel-mule |
emacs -- movemail format string vulnerability
|
| xemacs-mule |
emacs -- movemail format string vulnerability
|
| xerces-c2 |
xerces-c2 -- Attribute blowup denial-of-service
|
| xfce4-panel |
xfce -- multiple vulnerabilities
|
| XFree86-libraries |
xpm -- image decoding vulnerabilities
|
| XFree86-Server |
X11 server -- pixmap allocation vulnerability
|
| XFree86-Server |
Buffer overflows in XFree86 servers
|
| xfs |
xfs -- multiple vulnerabilites
|
| xine |
xine -- multiple remote string vulnerabilities
|
| xine |
insecure temporary file creation in xine-check, xine-bugreport
|
| xinetd |
xinetd -- attackers can bypass access restrictions if tcpmux-servers service enabled
|
| xli |
xloadimage -- buffer overflows in NIFF image title handling
|
| xli |
xli -- integer overflows in image size calculations
|
| xli |
xloadimage -- arbitrary command execution when handling compressed files
|
| xli |
xloadimage -- buffer overflow in FACES image handling
|
| xloadimage |
xloadimage -- buffer overflows in NIFF image title handling
|
| xloadimage |
xloadimage -- arbitrary command execution when handling compressed files
|
| xloadimage |
xloadimage -- buffer overflow in FACES image handling
|
| xlockmore |
xlockmore -- local exploit
|
| xorg-clients |
XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0
|
| xorg-libraries |
xpm -- image decoding vulnerabilities
|
| xorg-server |
Xorg server -- two vulnerabilities in X server lock handling code
|
| xorg-server |
xorg -- multiple vulnerabilities
|
| xorg-server |
xorg -- multiple vulnerabilities
|
| xorg-server |
xorg-server -- privilege escalation
|
| xorg-server |
X11 server -- pixmap allocation vulnerability
|
| xpcd |
xpcd -- buffer overflow
|
| xpdf |
Xpdf -- Multiple Vulnerabilities
|
| xpdf |
xpdf -- multiple vulnerabilities
|
| xpdf |
xpdf -- multiple remote Stream.CC vulnerabilities
|
| xpdf |
xpdf -- stack based buffer overflow
|
| xpdf |
xpdf -- disk fill DoS vulnerability
|
| xpdf |
xpdf -- makeFileKey2() buffer overflow vulnerability
|
| xpdf |
xpdf -- buffer overflow vulnerability
|
| xpdf |
xpdf -- integer overflow vulnerabilities
|
| xpm |
xpm -- image decoding vulnerabilities
|
| xrdb |
xrdb -- root hole via rogue hostname
|
| xshisen |
xshisen -- local buffer overflows
|
| xterm |
xterm -- DECRQSS remote command execution vulnerability
|
| xtrlock |
xtrlock -- X display locking bypass
|
| xv |
xv -- filename handling format string vulnerability
|
| xv |
xv -- exploitable buffer overflows
|
| xv-m17n |
xv -- exploitable buffer overflows
|
| xview |
xview -- multiple buffer overflows in xv_parse_one
|
| xzgv |
zgv, xzgv -- heap overflow vulnerability
|
| xzgv |
zgv -- exploitable heap overflows
|
| yahoo-ui |
YUI JavaScript library -- JavaScript injection exploits in Flash components
|
| yahoo-ui |
YUI JavaScript library -- JavaScript injection exploits in Flash components
|
| yamt |
yamt -- buffer overflow and directory traversal issues
|
| yamt |
yamt -- arbitrary command execution vulnerability
|
| zabbix |
zabbix -- php frontend multiple vulnerabilities
|
| zabbix-agent |
zabbix -- php frontend multiple vulnerabilities
|
| zabbix-frontend |
zabbix-frontend -- multiple XSS vulnerabilities
|
| zebra |
zebra/quagga denial of service vulnerability
|
| ZendFramework |
Zend Framework -- Multiple vulnerabilities via XXE injection
|
| ZendFramework |
Zend Framework -- potential SQL injection when using PDO_MySql
|
| ZendFramework |
Zend Framework -- security issues in bundled Dojo library
|
| ZendFramework |
Zend Framework -- multiple vulnerabilities
|
| ZendFramework |
Zend Framework -- Local File Inclusion vulnerability in Zend_View::render()
|
| zenphoto |
zenphoto -- XSS vulnerability
|
| zgv |
zgv, xzgv -- heap overflow vulnerability
|
| zgv |
zgv -- exploitable heap overflows
|
| zh-cce |
CCE contains exploitable buffer overflows
|
| zh-chitex |
ChiTeX/ChiLaTeX unsafe set-user-id root
|
| zh-cle_base |
xpm -- image decoding vulnerabilities
|
| zh-emacs |
emacs -- movemail format string vulnerability
|
| zh-irssi |
irssi -- multiple vulnerabilities
|
| zh-mutt |
mutt -- buffer overflow vulnerability
|
| zh-mutt-devel |
mutt -- Remote Buffer Overflow Vulnerability
|
| zh-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| zh-openoffice-CN |
openoffice -- DOC document heap overflow vulnerability
|
| zh-openoffice-CN |
openoffice -- document disclosure
|
| zh-openoffice-TW |
openoffice -- DOC document heap overflow vulnerability
|
| zh-openoffice-TW |
openoffice -- document disclosure
|
| zh-phpbb-tw |
phpbb -- NULL byte injection vulnerability
|
| zh-phpbb-tw |
phpbb -- multiple vulnerabilities
|
| zh-pine |
pine remotely exploitable buffer overflow in newmail.c
|
| zh-pine |
pine insecure URL handling
|
| zh-pine |
pine remote denial-of-service attack
|
| zh-pine |
pine remotely exploitable vulnerabilities
|
| zh-tin |
tin -- buffer overflow vulnerabilities
|
| zh-unrar |
rar -- password prompt buffer overflow vulnerability
|
| zh-unzip |
unzip -- permission race vulnerability
|
| zh-wordpress |
wordpress -- header rss feed script insertion vulnerability
|
| zh-wordpress |
wordpress -- remote privilege escalation
|
| zh-wordpress |
wordpress -- cross-site scripting
|
| zh-wordpress |
wordpress -- remote sql injection vulnerability
|
| zh-wordpress |
wordpress -- XMLRPC SQL Injection
|
| zh-wordpress |
wordpress -- unmoderated comments disclosure
|
| zh-wordpress-zh_CN |
wordpress -- multiple vulnerabilities
|
| zh-wordpress-zh_CN |
WordPress -- cross site scripting vulnerability
|
| zh-wordpress-zh_CN |
wordpress -- SQL injection vulnerability
|
| zh-wordpress-zh_TW |
wordpress -- multiple vulnerabilities
|
| zh-wordpress-zh_TW |
WordPress -- cross site scripting vulnerability
|
| zh-wordpress-zh_TW |
wordpress -- SQL injection vulnerability
|
| zh-xemacs |
emacs -- movemail format string vulnerability
|
| zh-xemacs-mule |
emacs -- movemail format string vulnerability
|
| zh-zhcon |
zhcon -- unauthorized file access
|
| zh_TW-openoffice |
openoffice -- DOC document heap overflow vulnerability
|
| zhCN-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| zhCN-linux-mozillafirebird |
firefox & mozilla -- command line URL shell command injection
|
| zhCN-linux-mozillafirebird |
firefox & mozilla -- buffer overflow vulnerability
|
| zhCN-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| zhCN-linux-mozillafirebird |
mozilla -- privilege escalation via non-DOM property overrides
|
| zhCN-linux-mozillafirebird |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| zhCN-linux-mozillafirebird |
mozilla -- code execution via javascript: IconURL vulnerability
|
| zhCN-linux-mozillafirebird |
mozilla -- privilege escalation via DOM property overrides
|
| zhCN-linux-mozillafirebird |
mozilla -- code execution through javascript: favicons
|
| zhCN-linux-mozillafirebird |
mozilla -- javascript "lambda" replace exposes memory contents
|
| zhCN-linux-mozillafirebird |
mozilla -- heap buffer overflow in GIF image processing
|
| zhCN-linux-mozillafirebird |
mozilla -- insecure temporary directory vulnerability
|
| zhCN-linux-mozillafirebird |
mozilla -- arbitrary code execution vulnerability
|
| zhCN-linux-mozillafirebird |
web browsers -- window injection vulnerabilities
|
| zhCN-linux-mozillafirebird |
mozilla -- insecure permissions for some downloaded files
|
| zhCN-linux-mozillafirebird |
mozilla -- scripting vulnerabilities
|
| zhCN-linux-mozillafirebird |
mozilla -- users may be lured into bypassing security dialogs
|
| zhCN-linux-mozillafirebird |
mozilla -- hostname spoofing bug
|
| zhCN-linux-mozillafirebird |
mozilla -- BMP decoder vulnerabilities
|
| zhcon |
zhcon -- unauthorized file access
|
| zhTW-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| zhTW-linux-mozillafirebird |
firefox & mozilla -- command line URL shell command injection
|
| zhTW-linux-mozillafirebird |
firefox & mozilla -- buffer overflow vulnerability
|
| zhTW-linux-mozillafirebird |
firefox & mozilla -- multiple vulnerabilities
|
| zhTW-linux-mozillafirebird |
mozilla -- privilege escalation via non-DOM property overrides
|
| zhTW-linux-mozillafirebird |
mozilla -- "Wrapped" javascript: urls bypass security checks
|
| zhTW-linux-mozillafirebird |
mozilla -- code execution via javascript: IconURL vulnerability
|
| zhTW-linux-mozillafirebird |
mozilla -- privilege escalation via DOM property overrides
|
| zhTW-linux-mozillafirebird |
mozilla -- code execution through javascript: favicons
|
| zhTW-linux-mozillafirebird |
mozilla -- javascript "lambda" replace exposes memory contents
|
| zhTW-linux-mozillafirebird |
mozilla -- heap buffer overflow in GIF image processing
|
| zhTW-linux-mozillafirebird |
mozilla -- insecure temporary directory vulnerability
|
| zhTW-linux-mozillafirebird |
mozilla -- arbitrary code execution vulnerability
|
| zhTW-linux-mozillafirebird |
web browsers -- window injection vulnerabilities
|
| zhTW-linux-mozillafirebird |
mozilla -- insecure permissions for some downloaded files
|
| zhTW-linux-mozillafirebird |
mozilla -- scripting vulnerabilities
|
| zhTW-linux-mozillafirebird |
mozilla -- users may be lured into bypassing security dialogs
|
| zhTW-linux-mozillafirebird |
mozilla -- hostname spoofing bug
|
| zhTW-linux-mozillafirebird |
mozilla -- BMP decoder vulnerabilities
|
| zinf |
zinf -- potential buffer overflow playlist support
|
| zip |
zip -- long path buffer overflow
|
| ziproxy |
ziproxy -- security vulnerability in PNG decoder
|
| ziproxy |
ziproxy -- atypical huge picture files vulnerability
|
| ziproxy |
ziproxy -- multiple vulnerability
|
| zoo |
zoo -- stack based buffer overflow
|
| zope |
zope -- cross-site scripting vulnerability
|
| zope |
zope -- restructuredText "csv_table" Information Disclosure
|
| zope |
zope -- information disclosure vulnerability
|
| zope |
zope -- expose RestructuredText functionality to untrusted users
|
| zsync |
zlib -- buffer overflow vulnerability
|
| {,ja-}netscape7 |
libpng stack-based buffer overflow and other code concerns
|
| {de-,fr-,pt_BR-}netscape7 |
libpng stack-based buffer overflow and other code concerns
|
| {ja,ko}-netscape-{communicator,navigator}-linux |
libpng stack-based buffer overflow and other code concerns
|
| {ja-,ru-,}gaim |
gaim remotely exploitable vulnerabilities in MSN component
|
| {ja-,ru-,}gaim |
multiple vulnerabilities in gaim
|
| {ja-,}bugzilla |
multiple vulnerabilities in Bugzilla
|
| {ja-,}phpgroupware |
phpGroupWare stores passwords in plain text
|
| {ja-,}phpgroupware |
phpGroupWare calendar and infolog SQL injection, calendar server side script execution
|
| {ja-,}phpgroupware |
XSS vulnerability in phpGroupWare wiki module
|
| {ja-,}samba |
samba printer change notification request DoS
|
| {ja-,}xv |
multiple buffer overflows in xv
|
| {linux-,}opera |
Opera "location" object write access vulnerability
|
