OVAL Definitions - Class: Vulnerability

Filter: Compliance Inventory Patch Vulnerability All
Title Definition Id Class Family
Apple QuickTime before 7.6.4 allows Heap-based buffer overflow and DOS Vulnerabilities oval:org.mitre.oval:def:6405 Vulnerability windows
Apple QuickTime before 7.6.4 allows to execute arbitrary code or DOS Vulnerabilities oval:org.mitre.oval:def:5467 Vulnerability windows
Apple QuickTime before 7.6.4 allows Heap-based buffer overflow Vulnerability oval:org.mitre.oval:def:6258 Vulnerability windows
Apple QuickTime before 7.6.4 allows Buffer Overflow Vulnerability oval:org.mitre.oval:def:5672 Vulnerability windows
Apple Safari Cross-site scripting (XSS) vulnerability. oval:org.mitre.oval:def:6208 Vulnerability windows
Apple Safari WebKit Numeric Character References Remote Memory Corruption Vulnerability. oval:org.mitre.oval:def:5777 Vulnerability windows
Avaya Solaris BIND "EVP_VerifyFinal()" Signature Spoofing Vulnerability oval:org.mitre.oval:def:5569 Vulnerability unix
Buffer overflow in the IPMI dissector in Wireshark. oval:org.mitre.oval:def:6379 Vulnerability windows
Bzip2 Bug Lets Remote Users Deny Service oval:org.mitre.oval:def:6467 Vulnerability unix
Cross-site scripting (XSS) vulnerability in Opera 9 and 10 oval:org.mitre.oval:def:6370 Vulnerability windows
cURL/libcURL HTTP 'Location:' Redirect Security Bypass Vulnerability oval:org.mitre.oval:def:6074 Vulnerability unix
DEPRECATED: Opera before 10.00 does not properly implement the INPUT TYPE=file functionality oval:org.mitre.oval:def:5679 Vulnerability windows
DHCP dhclient Stack Overflow in script_write_params() Lets Remote Users Execute Arbitrary Code oval:org.mitre.oval:def:5941 Vulnerability unix
DHTML Editing Component ActiveX Control Vulnerability oval:org.mitre.oval:def:6271 Vulnerability windows
DOS vulnerability in the OpcUa (OPC UA) dissector in Wireshark. oval:org.mitre.oval:def:6162 Vulnerability windows
DOS vulnerability in the AFS dissector in Wireshark. oval:org.mitre.oval:def:5625 Vulnerability windows
DOS vulnerability in the Infiniband dissector in Wireshark. oval:org.mitre.oval:def:6321 Vulnerability windows
DOS vulnerability in the sFlow dissector in Wireshark. oval:org.mitre.oval:def:5795 Vulnerability windows
Harmoni Versions Prior to 1.6.0 Cross-Site Request Forgery and Security Bypass Vulnerabilities oval:org.mitre.oval:def:6427 Vulnerability unix
HP-UX Running bootpd, Remote Denial of Service (DoS) oval:org.mitre.oval:def:5780 Vulnerability unix
Java Runtime Environment UTF-8 Decoding Bug May Let Users Bypass Access Restrictions oval:org.mitre.oval:def:6212 Vulnerability unix
Java Runtime Environment (JRE) Buffer Overflow in Processing Image Files and Fonts Lets Remote Users Gain Privileges on ... oval:org.mitre.oval:def:6529 Vulnerability unix
Java Web Start Bugs Let Remote Users Read/Write Files, Execute Arbitrary Code, and Establish Network Connections oval:org.mitre.oval:def:5601 Vulnerability unix
JScript Remote Code Execution Vulnerability oval:org.mitre.oval:def:6316 Vulnerability windows
Kerberos ASN.1 GeneralizedTime Decoder Bug Lets Remote Users Execute Arbitrary Code oval:org.mitre.oval:def:5483 Vulnerability unix
Kerberos GSS-API SPNEGO Null Pointer Dereference and Invalid Memory Access Bugs Let Remote Denial of Service oval:org.mitre.oval:def:6449 Vulnerability unix
Libpng Library Uninitialized Pointer Arrays Memory Corruption Vulnerability oval:org.mitre.oval:def:6458 Vulnerability unix
LibTIFF Buffer Underflow in Decoding LZW Data Lets Remote Users Execute Arbitrary Code oval:org.mitre.oval:def:5514 Vulnerability unix
Libxml2 Heap Overflow in xmlParseAttValueComplex() Lets Remote Users Execute Arbitrary Code oval:org.mitre.oval:def:6103 Vulnerability unix
Libxml2 Integer Overflow in xmlBufferResize() Lets Remote Users Deny Service oval:org.mitre.oval:def:6415 Vulnerability unix
Total number of results : 125
Page : 1 (This Page) 2 3 4 5

OVAL Definitions By Referenced Objects

How does it work?   User agreement and privacy statement   About & Contact
CVE is a registred trademark of the MITRE Corporation and the authoritive source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritive source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritive source of OVAL content is MITRE's OVAL web site.
Warning: This site and all data are provided as is. It is not guaranteed that all information is accurate and complete. Use any information provided on this site at your own risk. By using this site you accept that you know that these data are provided as is and not guaranteed to be accurate, correct or complete. All trademarks appearing on this site are the property of their respective owners in the US or other countries. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss. PLEASE SEE nvd.nist.gov and oval.mitre.org for more details about OVAL language and definitions.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor/web site owner/maintainer be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Use of OVAL and all related data is subject to terms of use defined by Mitre at http://oval.mitre.org/oval/about/termsofuse.html